$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json) Hash identifier: 66dGXZsVKltYFkHJmRbAWluySSxT1r62c3gcisygtm4= Subject key identifier: 8D:8B:4A:36:C8:2B:4C:89:7A:7F:3B:8B:74:D4:4C:AB:AC:C5:95:CD Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft Manifest number: 0396 Signing time: Sun 19 May 2024 02:37:08 +0000 Manifest this update: Sun 19 May 2024 02:37:07 +0000 Manifest next update: Sun 26 May 2024 02:37:07 +0000 Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: FkeKEDGoKw7zCW2YNCfodpt72ERw8hqFiqLtg5c5OLg=) 2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: QBD6YJv6MqaQvb/fyqpzOOca05ASQtdQe3enzaytMzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: May 19 02:37:07 2024 GMT Not After : May 26 02:37:07 2024 GMT Subject: CN=664965d3-2516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a7:f8:3a:0d:d1:10:07:25:8a:3f:1b:a2:8a: b6:0d:31:48:5d:c7:ab:b0:ac:07:90:ea:fd:5a:9b: c6:b5:11:f1:7d:69:71:5f:fe:84:40:96:a0:3e:e4: 04:1e:00:53:55:42:cf:b9:b8:7b:34:52:8a:59:6a: 35:a8:e9:52:db:26:ef:bd:62:e8:03:34:44:e6:27: 6f:fa:65:9b:7c:84:3d:95:db:76:6c:60:a5:35:9e: 01:07:f7:35:d2:62:6f:ea:5d:f5:02:0e:31:0d:d3: 92:83:9a:19:c4:a6:93:d1:54:ce:f8:a5:0d:05:24: c5:71:3e:f6:2e:2d:4d:f6:0c:98:54:43:23:93:69: 85:9a:96:5f:af:f2:9f:3a:e4:a9:ab:ee:95:df:d2: e1:fc:bc:5a:2f:6f:ad:64:59:19:80:5d:e2:56:91: 29:51:ab:ac:ed:8e:85:65:40:20:38:e2:1d:1c:82: bb:96:4c:3f:fe:9d:81:5a:68:85:41:58:6d:bb:8d: cd:d2:bb:7d:6e:3f:69:4b:a6:9e:4e:f4:2b:78:e8: 5e:f0:20:72:7f:e8:2a:8a:5f:61:a6:21:1d:86:51: 4c:0f:cc:ae:0f:75:e9:e9:8e:15:67:dc:7a:e1:9f: 26:1c:80:b1:0d:ff:a7:27:86:16:92:27:53:c6:3f: 75:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8B:4A:36:C8:2B:4C:89:7A:7F:3B:8B:74:D4:4C:AB:AC:C5:95:CD X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:79:e9:25:7a:1c:db:cd:ed:03:da:e7:95:46:49:9b:75:47: cb:39:11:ef:e3:bb:1d:c0:00:e6:fb:2b:6d:99:2c:2a:00:de: 1f:d9:46:91:ea:9d:d8:4d:a1:31:6c:2d:d9:0e:fc:7c:20:79: d4:b0:18:bd:50:35:c8:80:5b:cc:be:e6:2a:8a:47:25:1b:c3: 47:03:52:72:80:03:98:e8:da:cf:34:b8:cf:41:95:af:ef:09: c7:98:3a:11:ca:8d:a2:9c:20:e4:29:da:6a:74:b2:af:64:4d: 80:18:2d:23:ee:ab:69:0b:e9:8a:eb:d6:4b:ea:ca:f6:59:d6: 44:7a:69:52:bf:74:fb:de:ee:96:9d:b3:f0:1e:6d:6d:23:01: f0:ae:49:61:66:e8:ca:cb:ca:b3:55:6e:3e:f9:4d:f3:97:85: 1f:2d:bd:99:7a:0f:f9:ad:11:c2:4e:29:bf:cc:57:38:6b:fc: cd:6d:54:4d:2f:22:ef:0a:60:7c:e1:53:00:b9:9d:5e:6a:2c: b2:48:8a:4f:3a:90:c2:95:a8:da:32:21:bf:93:d4:3d:e7:84: b5:b1:3e:b4:d1:07:a3:d5:8e:4e:0d:49:60:95:02:58:91:c0: 3d:5a:5c:1e:56:2f:8c:23:ad:49:75:80:7b:10:67:fc:ad:c2: c3:83:d8:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjQwNTE5MDIzNzA3WhcNMjQwNTI2MDIzNzA3WjAYMRYwFAYD VQQDEw02NjQ5NjVkMy0yNTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqf4Og3REAclij8booq2DTFIXcersKwHkOr9WpvGtRHxfWlxX/6EQJagPuQE HgBTVULPubh7NFKKWWo1qOlS2ybvvWLoAzRE5idv+mWbfIQ9ldt2bGClNZ4BB/c1 0mJv6l31Ag4xDdOSg5oZxKaT0VTO+KUNBSTFcT72Li1N9gyYVEMjk2mFmpZfr/Kf OuSpq+6V39Lh/LxaL2+tZFkZgF3iVpEpUaus7Y6FZUAgOOIdHIK7lkw//p2BWmiF QVhtu43N0rt9bj9pS6aeTvQreOhe8CByf+gqil9hpiEdhlFMD8yuD3Xp6Y4VZ9x6 4Z8mHICxDf+nJ4YWkidTxj91QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2LSjbI K0yJen87i3TUTKusxZXNMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODcxQS8wNUJEMEYzMDUyNDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4 UUFYemNaajlIaUxtZ2tuZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAheeklehzbze0D2ueVRkmbdUfLORHv47sdwADm+yttmSwqAN4f2UaR 6p3YTaExbC3ZDvx8IHnUsBi9UDXIgFvMvuYqikclG8NHA1JygAOY6NrPNLjPQZWv 7wnHmDoRyo2inCDkKdpqdLKvZE2AGC0j7qtpC+mK69ZL6sr2WdZEemlSv3T73u6W nbPwHm1tIwHwrklhZujKy8qzVW4++U3zl4UfLb2Zeg/5rRHCTim/zFc4a/zNbVRN LyLvCmB84VMAuZ1eaiyySIpPOpDClajaMiG/k9Q954S1sT600Qej1Y5ODUlglQJY kcA9WlweVi+MI61JdYB7EGf8rcLDg9ip -----END CERTIFICATE-----Generated at Sun May 19 03:14:48 2024 by rpki-client on console-fra.rpki-client.org