$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft File: 07chXhZgoZ79Lncvm6envcbuDSg.mft (raw, json) Hash identifier: iaBFNydPInsa25HzJoWItkATcECmrEVorM4ZzQYy4s8= Subject key identifier: 19:92:95:36:35:A9:4E:78:E1:2F:2F:34:BB:09:44:A0:52:75:35:18 Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 086D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft Manifest number: 0853 Signing time: Sat 18 May 2024 21:45:25 +0000 Manifest this update: Sat 18 May 2024 21:45:25 +0000 Manifest next update: Sat 25 May 2024 21:45:25 +0000 Files and hashes: 1: 07chXhZgoZ79Lncvm6envcbuDSg.crl (hash: oMh99eJIui/HakN1qdtusgHiZdg4b78jQ0QLkvakBeg=) 2: 42B13940C3C011EE86C2C317C4F9AE02.roa (hash: 0EIE+vDWHFaoFPA2AVIORwfIn3x496ZZBHkxZt3nDRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: May 18 21:45:25 2024 GMT Not After : May 25 21:45:25 2024 GMT Subject: CN=66492175-1005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:24:f1:4a:bd:aa:bd:52:55:a0:41:88:92:90: 1c:87:4d:41:c0:25:53:d7:f9:cb:17:21:e4:12:3e: b9:2b:60:db:01:d0:40:66:26:1c:18:95:cb:9b:e3: b8:7d:a0:de:03:08:60:de:b4:0c:2e:38:4f:bc:ee: cc:e8:f7:21:ff:8e:8b:fa:6e:dd:ad:8a:c1:73:10: eb:c8:e4:17:c2:de:58:e1:c2:2a:92:44:58:79:2a: 59:9f:fb:cc:2b:f7:be:d0:42:f0:ae:97:3a:67:79: 13:cb:87:d6:32:dd:c9:ef:be:41:90:65:f7:fc:a1: 87:41:e8:df:29:03:61:62:4f:f5:8d:b6:18:93:ec: f8:b0:52:21:bb:9a:b6:32:c0:82:83:3a:19:08:72: 84:7e:27:70:ba:b1:ad:3a:5e:3c:af:8a:e6:29:58: eb:28:a2:0b:46:0e:be:6d:25:ea:9c:0b:6a:4f:42: a5:81:56:02:57:e3:82:0d:a3:7b:ba:fc:27:32:78: 93:be:ad:fa:9d:03:c6:45:90:34:c0:ac:d7:17:30: 58:37:3e:df:1e:c4:d6:f1:2c:f4:09:96:85:50:d0: 18:cb:49:6e:c5:14:e2:01:0b:21:33:c9:16:cd:d3: c8:c2:12:db:af:8e:f7:df:2d:a9:e8:b0:58:30:1a: 95:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:92:95:36:35:A9:4E:78:E1:2F:2F:34:BB:09:44:A0:52:75:35:18 X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b5:fd:cc:35:6e:36:e0:5d:69:fb:87:9d:80:5c:b6:e5:13: 48:39:77:1c:70:b4:be:38:e5:99:05:a2:99:d9:65:f8:f1:7f: 43:1c:d8:c0:9d:c2:61:9a:26:74:4c:0d:b7:83:b7:44:76:29: f6:59:e1:52:9a:d5:63:63:e9:6a:7a:04:84:85:6a:8a:e4:00: 2f:1c:0e:c5:15:74:7e:a1:0c:20:75:0b:fd:4c:31:d8:72:db: d4:fb:be:f3:fc:09:0e:99:8a:64:77:c5:84:df:6f:37:31:90: f3:5a:43:fd:af:3b:5b:47:d3:72:42:78:51:38:2e:d0:c8:11: 61:bd:1a:46:8d:99:84:7f:63:3d:75:dd:ee:f2:ae:c8:e7:2a: de:50:89:92:c2:8d:e0:1f:06:db:24:af:e1:e0:e7:8b:c7:aa: 4e:d7:6d:d8:f7:62:9b:f4:48:46:6b:df:ed:95:5b:bd:ef:7b: 7f:1d:79:73:0d:73:2a:fe:7d:65:a9:58:26:6a:da:6b:1e:87: 86:9b:8e:d6:44:d3:a6:0e:92:11:2e:95:7d:76:4b:0d:52:9e: 72:31:01:1e:ce:20:1c:78:05:12:55:f1:6d:ce:ae:f8:d7:46: ff:86:0c:66:cc:cd:6b:f7:6c:2c:d5:57:56:e8:52:51:93:e1: a0:d4:d1:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjQwNTE4MjE0NTI1WhcNMjQwNTI1MjE0NTI1WjAYMRYwFAYD VQQDEw02NjQ5MjE3NS0xMDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSTxSr2qvVJVoEGIkpAch01BwCVT1/nLFyHkEj65K2DbAdBAZiYcGJXLm+O4 faDeAwhg3rQMLjhPvO7M6Pch/46L+m7drYrBcxDryOQXwt5Y4cIqkkRYeSpZn/vM K/e+0ELwrpc6Z3kTy4fWMt3J775BkGX3/KGHQejfKQNhYk/1jbYYk+z4sFIhu5q2 MsCCgzoZCHKEfidwurGtOl48r4rmKVjrKKILRg6+bSXqnAtqT0KlgVYCV+OCDaN7 uvwnMniTvq36nQPGRZA0wKzXFzBYNz7fHsTW8Sz0CZaFUNAYy0luxRTiAQshM8kW zdPIwhLbr4733y2p6LBYMBqVrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmSlTY1 qU544S8vNLsJRKBSdTUYMB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkJDOS84M0ZGOUZFQ0FBODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29a NzlMbmN2bTZlbnZjYnVEU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANtf3MNW424F1p+4edgFy25RNIOXcccLS+OOWZBaKZ2WX48X9DHNjA ncJhmiZ0TA23g7dEdin2WeFSmtVjY+lqegSEhWqK5AAvHA7FFXR+oQwgdQv9TDHY ctvU+77z/AkOmYpkd8WE3283MZDzWkP9rztbR9NyQnhROC7QyBFhvRpGjZmEf2M9 dd3u8q7I5yreUImSwo3gHwbbJK/h4OeLx6pO123Y92Kb9EhGa9/tlVu973t/HXlz DXMq/n1lqVgmatprHoeGm47WRNOmDpIRLpV9dksNUp5yMQEeziAceAUSVfFtzq74 10b/hgxmzM1r92ws1VdW6FJRk+Gg1NHX -----END CERTIFICATE-----Generated at Sun May 19 00:16:12 2024 by rpki-client on console-fra.rpki-client.org