$ rpki-client -vvf rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft File: WfIhqdcBRydJAka2joLCl2fHDTg.mft (raw, json) Hash identifier: +d/ywMkh204j0fvX7iteW8k0oH5WDMsrg8UhQTY3sbQ= Subject key identifier: 32:92:FD:2F:6C:C1:B3:14:41:05:8C:E9:3D:87:95:84:6C:0C:52:15 Authority key identifier: 59:F2:21:A9:D7:01:47:27:49:02:46:B6:8E:82:C2:97:67:C7:0D:38 Certificate issuer: /CN=A912CE21/serialNumber=59F221A9D7014727490246B68E82C29767C70D38 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft Manifest number: 01FF Signing time: Sun 19 May 2024 04:11:18 +0000 Manifest this update: Sun 19 May 2024 04:11:17 +0000 Manifest next update: Sun 26 May 2024 04:11:17 +0000 Files and hashes: 1: WfIhqdcBRydJAka2joLCl2fHDTg.crl (hash: FVmNdKMU/yrWU54lcnBfaqfJTX0w1eq3wyIvBij8XrE=) 2: A033FFB4F7F511ECADEAB528C4F9AE02.roa (hash: CGmdTdxNE4CtKZ1npSPVTLiZv02EjkNH36UTa8hZE6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.crl rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CE21/serialNumber=59F221A9D7014727490246B68E82C29767C70D38 Validity Not Before: May 19 04:11:17 2024 GMT Not After : May 26 04:11:17 2024 GMT Subject: CN=66497be5-3e1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fd:43:d6:ba:65:ee:f6:4e:58:08:1f:f1:90: 7f:53:e4:8a:91:dd:77:45:6b:fb:1b:ec:66:04:ee: 05:3c:71:f5:d0:75:68:6f:b2:e8:e7:26:2a:7e:6f: ed:1c:de:14:50:94:e9:3b:0e:18:25:a7:d2:cc:6e: 73:c6:80:3b:55:00:d1:19:c9:3f:56:b1:91:e6:e6: 05:b6:2a:35:31:3f:f0:e6:9e:ee:3a:8f:59:22:a4: 31:8d:7a:0e:54:97:e2:c5:75:24:e1:48:fa:f7:2e: ee:0d:54:85:f5:40:d4:06:57:6f:73:e7:e4:64:05: cc:92:72:c7:aa:84:e5:8b:7f:d4:8e:ea:0f:a6:17: fe:87:ca:1b:5a:91:ab:5d:f0:a6:d3:98:df:9d:f4: e5:b8:11:ec:1a:0f:e5:d8:e1:26:ab:68:32:ae:bb: b1:6c:7e:b2:db:1e:f3:af:56:92:c6:9d:76:ee:01: 1f:a0:1f:9b:3e:5d:c0:94:65:59:cc:79:7b:50:72: 92:64:03:ac:a2:59:a6:ca:95:53:05:20:8b:22:3c: 80:64:c5:fa:0d:9c:d4:d2:9f:2d:ef:46:0d:79:bb: ba:e8:65:8c:a5:75:f3:b0:fe:d5:3a:e0:4d:67:0e: 62:c8:45:9b:ab:2b:74:0f:e2:c2:ba:4e:ab:dc:bd: 2c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:92:FD:2F:6C:C1:B3:14:41:05:8C:E9:3D:87:95:84:6C:0C:52:15 X509v3 Authority Key Identifier: keyid:59:F2:21:A9:D7:01:47:27:49:02:46:B6:8E:82:C2:97:67:C7:0D:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WfIhqdcBRydJAka2joLCl2fHDTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CE21/CE48E7C8F19E11ECA9EE9B3DC4F9AE02/WfIhqdcBRydJAka2joLCl2fHDTg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:78:70:52:b0:2a:08:cc:b4:6e:e8:48:10:16:7c:6e:79:29: 86:d0:1c:f4:94:b4:12:6e:f1:6c:3e:1f:7d:c1:8a:81:13:e5: c1:b4:48:cf:c6:2f:69:96:1c:45:41:9c:1b:33:e7:d9:ef:34: 8c:13:cf:03:91:00:18:a1:8f:05:51:26:a4:b5:98:ce:9e:37: 23:25:4a:6a:c9:ec:69:1b:bf:ca:96:96:b7:e4:8a:c8:0f:28: a5:91:07:a4:4b:ea:cf:42:1b:5a:44:55:1f:c8:49:3f:42:4c: f9:f0:58:5f:dc:f8:c3:16:9b:19:61:36:22:64:36:24:0b:25: 90:b2:5a:7e:32:59:83:97:7a:f2:95:47:dd:d0:69:b5:55:3a: 80:bc:c5:d1:2e:b9:8c:33:49:5a:20:3c:fe:f8:33:f6:69:75: 2e:14:dd:20:59:20:c4:98:f6:36:48:e6:9a:cd:37:4b:dc:79: 2c:9c:5d:fd:d4:d9:c9:43:c9:73:d7:7a:74:22:64:ca:02:58: f6:a2:16:c0:ea:d2:95:3e:6d:36:86:49:a1:90:c5:0a:8d:3e: 4d:9c:88:de:f0:97:5e:bc:19:63:92:1a:7d:e6:89:c1:d4:19: cb:39:9a:e0:d5:bc:95:22:af:14:67:29:c4:73:4b:de:66:46: 20:d4:89:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNFMjExMTAvBgNVBAUTKDU5RjIyMUE5RDcwMTQ3Mjc0OTAyNDZCNjhFODJDMjk3 NjdDNzBEMzgwHhcNMjQwNTE5MDQxMTE3WhcNMjQwNTI2MDQxMTE3WjAYMRYwFAYD VQQDEw02NjQ5N2JlNS0zZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArP1D1rpl7vZOWAgf8ZB/U+SKkd13RWv7G+xmBO4FPHH10HVob7Lo5yYqfm/t HN4UUJTpOw4YJafSzG5zxoA7VQDRGck/VrGR5uYFtio1MT/w5p7uOo9ZIqQxjXoO VJfixXUk4Uj69y7uDVSF9UDUBldvc+fkZAXMknLHqoTli3/UjuoPphf+h8obWpGr XfCm05jfnfTluBHsGg/l2OEmq2gyrruxbH6y2x7zr1aSxp127gEfoB+bPl3AlGVZ zHl7UHKSZAOsolmmypVTBSCLIjyAZMX6DZzU0p8t70YNebu66GWMpXXzsP7VOuBN Zw5iyEWbqyt0D+LCuk6r3L0slwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKS/S9s wbMUQQWM6T2HlYRsDFIVMB8GA1UdIwQYMBaAFFnyIanXAUcnSQJGto6Cwpdnxw04 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0UyMS9DRTQ4RTdDOEYx OUUxMUVDQTlFRTlCM0RDNEY5QUUwMi9XZklocWRjQlJ5ZEpBa2Eyam9MQ2wyZkhE VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dmSWhxZGNCUnlkSkFrYTJqb0xDbDJmSERUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0UyMS9DRTQ4RTdDOEYxOUUxMUVDQTlFRTlCM0RDNEY5QUUwMi9XZklocWRjQlJ5 ZEpBa2Eyam9MQ2wyZkhEVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBieHBSsCoIzLRu6EgQFnxueSmG0Bz0lLQSbvFsPh99wYqBE+XBtEjP xi9plhxFQZwbM+fZ7zSME88DkQAYoY8FUSaktZjOnjcjJUpqyexpG7/Klpa35IrI DyilkQekS+rPQhtaRFUfyEk/Qkz58Fhf3PjDFpsZYTYiZDYkCyWQslp+MlmDl3ry lUfd0Gm1VTqAvMXRLrmMM0laIDz++DP2aXUuFN0gWSDEmPY2SOaazTdL3HksnF39 1NnJQ8lz13p0ImTKAlj2ohbA6tKVPm02hkmhkMUKjT5NnIje8JdevBljkhp95onB 1BnLOZrg1byVIq8UZynEc0veZkYg1ImA -----END CERTIFICATE-----Generated at Sun May 19 04:56:54 2024 by rpki-client on console-fra.rpki-client.org