$ rpki-client -vvf rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft File: u7hAsFOTTV4f7dQN0CPvevQouuA.mft (raw, json) Hash identifier: kexpAf4XtiGeASW29LA0vNrOaPEDSL9wuiowUIdYDGE= Subject key identifier: 32:E7:34:2C:A6:8C:BF:35:F9:A6:A2:B2:27:91:14:0A:2E:F9:69:2D Authority key identifier: BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 Certificate issuer: /CN=A912AD2E/serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Certificate serial: 1702 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft Manifest number: 16F8 Signing time: Sat 18 May 2024 17:05:24 +0000 Manifest this update: Sat 18 May 2024 17:05:24 +0000 Manifest next update: Sat 25 May 2024 17:05:24 +0000 Files and hashes: 1: u7hAsFOTTV4f7dQN0CPvevQouuA.crl (hash: kC2waIChV1Gk5ij47rFKmXXV3Tqi9WKn3wMmZdAJeLU=) 2: E3D5A6F4422411E8804DBC3AC4F9AE02.roa (hash: /JgYGo3qS7GdOEYuvjiyt8nj1OmHxHJ+X1Z1GtdQPR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5890 (0x1702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AD2E/serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Validity Not Before: May 18 17:05:24 2024 GMT Not After : May 25 17:05:24 2024 GMT Subject: CN=6648dfd4-eb28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:32:2a:8a:56:de:13:d1:76:c2:fd:f4:78:fe: 38:78:37:76:4d:2b:9e:40:34:b5:59:fe:57:54:22: 7d:de:bf:b1:93:37:3b:57:87:97:fa:01:75:36:a2: 51:0e:9f:96:e3:a5:75:93:51:3a:6c:f7:dc:9f:c2: 52:c9:da:21:f0:06:80:50:34:ae:2b:fc:33:45:67: 67:7b:be:85:84:60:e0:19:6b:37:44:e8:04:93:19: 23:e6:57:e2:7c:15:79:02:69:fc:6b:7f:87:a0:63: 5d:48:c3:19:75:8f:97:71:78:25:9a:01:c8:c4:58: 0c:96:49:67:95:cc:8d:19:35:75:bd:4b:14:98:04: 9f:43:35:c4:24:59:af:8b:9f:26:bb:62:f9:ca:41: b0:5e:e7:ec:f7:c8:44:db:96:e5:94:6c:90:74:04: 5c:74:df:d1:1c:a1:cf:d5:a1:c5:c2:5a:e0:71:60: 31:bc:38:5d:3a:9d:73:0a:06:9e:1c:fc:03:38:56: 17:c1:b9:60:37:bb:51:89:e1:51:a1:6c:cf:35:e0: 05:25:dc:3e:f6:92:4a:42:73:69:2c:90:98:67:e0: 8e:8a:c0:78:8c:a6:75:2c:88:3c:9f:83:42:cc:2d: 95:6c:1e:70:74:53:a7:6d:14:62:d8:a4:d0:80:8f: b3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E7:34:2C:A6:8C:BF:35:F9:A6:A2:B2:27:91:14:0A:2E:F9:69:2D X509v3 Authority Key Identifier: keyid:BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:cf:12:f6:c4:d8:3a:2d:e8:9b:56:9b:af:0b:bd:5e:24:89: 0a:89:30:c8:3e:c5:bf:c8:b1:ea:a4:4c:81:05:ef:7d:e8:cb: ed:b7:24:c5:98:96:3a:6f:1d:bd:76:b8:b2:e8:93:98:bf:65: 2c:41:d6:6f:8d:c0:87:f3:f0:34:95:8f:78:1e:cb:07:bc:13: 0a:22:a2:60:f8:f4:bb:aa:d6:5c:bd:71:7f:11:4f:d7:35:d1: 73:2b:22:9f:bb:86:7e:e4:02:48:71:67:4e:f9:b5:4d:06:0c: 9d:7a:a7:1d:93:f2:fe:3b:13:4d:ad:89:4f:58:eb:ec:7e:e1: 90:f9:92:be:76:27:99:47:64:9c:27:98:7d:1e:ab:d7:df:e3: f4:16:53:4e:c8:30:c2:50:15:88:af:84:ef:96:6b:db:65:09: a4:7c:dd:e3:93:ed:ce:67:66:36:fc:c4:6a:ca:ca:43:f7:b2: 20:c7:cf:dd:88:cf:1f:71:ff:cc:08:bc:25:5a:ce:ba:29:94: 35:11:6d:c3:8e:21:e6:32:34:72:cd:ea:31:be:ff:6e:6d:91: 2c:ae:71:0e:64:ed:5c:09:53:36:20:4b:5e:30:81:e9:48:b5: 16:4a:71:7a:a7:d1:5b:9c:b6:c1:1f:2f:bf:00:e7:46:c6:30: 9d:e8:18:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFEMkUxMTAvBgNVBAUTKEJCQjg0MEIwNTM5MzRENUUxRkVERDQwREQwMjNFRjdB RjQyOEJBRTAwHhcNMjQwNTE4MTcwNTI0WhcNMjQwNTI1MTcwNTI0WjAYMRYwFAYD VQQDEw02NjQ4ZGZkNC1lYjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzIqilbeE9F2wv30eP44eDd2TSueQDS1Wf5XVCJ93r+xkzc7V4eX+gF1NqJR Dp+W46V1k1E6bPfcn8JSydoh8AaAUDSuK/wzRWdne76FhGDgGWs3ROgEkxkj5lfi fBV5Amn8a3+HoGNdSMMZdY+XcXglmgHIxFgMlklnlcyNGTV1vUsUmASfQzXEJFmv i58mu2L5ykGwXufs98hE25bllGyQdARcdN/RHKHP1aHFwlrgcWAxvDhdOp1zCgae HPwDOFYXwblgN7tRieFRoWzPNeAFJdw+9pJKQnNpLJCYZ+COisB4jKZ1LIg8n4NC zC2VbB5wdFOnbRRi2KTQgI+zVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLnNCym jL81+aaisieRFAou+WktMB8GA1UdIwQYMBaAFLu4QLBTk01eH+3UDdAj73r0KLrg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUQyRS8wNzhDNjJBQUM1 MzMxMUU3QTExREJCNEFDNEY5QUUwMi91N2hBc0ZPVFRWNGY3ZFFOMENQdmV2UW91 dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3aEFzRk9UVFY0ZjdkUU4wQ1B2ZXZRb3V1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUQyRS8wNzhDNjJBQUM1MzMxMUU3QTExREJCNEFDNEY5QUUwMi91N2hBc0ZPVFRW NGY3ZFFOMENQdmV2UW91dUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3zxL2xNg6LeibVpuvC71eJIkKiTDIPsW/yLHqpEyBBe996MvttyTF mJY6bx29driy6JOYv2UsQdZvjcCH8/A0lY94HssHvBMKIqJg+PS7qtZcvXF/EU/X NdFzKyKfu4Z+5AJIcWdO+bVNBgydeqcdk/L+OxNNrYlPWOvsfuGQ+ZK+dieZR2Sc J5h9HqvX3+P0FlNOyDDCUBWIr4TvlmvbZQmkfN3jk+3OZ2Y2/MRqyspD97Igx8/d iM8fcf/MCLwlWs66KZQ1EW3DjiHmMjRyzeoxvv9ubZEsrnEOZO1cCVM2IEteMIHp SLUWSnF6p9FbnLbBHy+/AOdGxjCd6Bic -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org