$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: v+AxKktWh7OBCHq/mJ8ioQzJDPO8RYlUTHOa42SXBsg= Subject key identifier: EE:34:BD:32:58:31:EA:60:85:01:EA:AF:18:50:3B:81:38:9B:90:6D Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 0112 Signing time: Sun 19 May 2024 05:21:23 +0000 Manifest this update: Sun 19 May 2024 05:21:23 +0000 Manifest next update: Sun 26 May 2024 05:21:23 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: FQ2d6jw3HB8qx/pPIRdArt5AW0QJv+clUO9gbKdEg/w=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: YUVp3qWVkxU1C4l/jL7nJncbv6O1MZagBu3nKdafcnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: May 19 05:21:23 2024 GMT Not After : May 26 05:21:23 2024 GMT Subject: CN=66498c53-4287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:f5:f9:4f:d8:50:cc:01:d8:5a:a3:28:db: 86:8d:fd:4c:bf:ca:d7:84:ce:5c:10:09:73:d8:5b: a6:de:95:17:25:a5:73:ad:59:49:42:7f:0b:a9:58: 43:b3:e0:83:ab:d9:02:2f:83:12:d5:32:8d:0d:ff: 27:7a:c9:bc:75:28:76:6f:f6:cb:82:cf:1a:a6:56: e8:e4:2a:c4:f5:5c:12:18:3d:e4:65:28:d6:48:83: 0d:fb:ae:62:70:2b:cf:94:74:6e:78:4b:1b:d4:d5: 19:f3:78:8c:02:87:a3:a6:08:dd:ae:e1:ac:c5:81: 28:66:24:45:eb:8b:18:29:ef:11:6a:40:b6:d3:67: 50:ef:4b:3c:d5:ff:95:6d:ea:b6:b1:f9:da:ca:9b: c6:3f:be:ac:53:cd:a8:01:de:46:a7:b5:a7:80:9f: 9c:cb:d0:d5:28:a2:1f:ff:41:35:fc:67:27:f3:d7: 78:88:27:fa:e8:5e:75:82:cc:89:0c:1f:11:45:d1: a7:62:a6:86:b7:fd:ea:dc:a2:2d:32:4f:7f:24:ef: b2:77:ca:2d:d5:fd:d8:2f:f2:a0:33:b0:a2:ca:11: e8:09:b7:60:85:9f:b8:6b:45:e2:f0:51:ea:45:c5: 74:d2:8d:a9:1b:f6:2b:c8:fa:bf:6f:6d:51:1d:ce: 2f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:34:BD:32:58:31:EA:60:85:01:EA:AF:18:50:3B:81:38:9B:90:6D X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:13:e8:04:c3:bb:f2:e0:70:74:a6:ed:44:39:f2:27:64:5d: 8b:6d:90:67:a4:77:aa:24:9f:67:79:b7:49:82:60:cb:58:e9: 9f:f4:a3:6e:65:b7:e0:ef:81:eb:2d:e9:82:86:d9:29:fe:ab: f2:aa:7b:5d:ee:73:cb:df:74:22:35:3a:76:84:60:55:6e:13: 76:c9:6f:57:49:d2:bb:d6:86:51:b0:ab:5d:0f:a9:2c:1e:19: 42:8a:49:ca:76:5a:4f:3f:5f:68:36:cd:89:f9:2f:97:e7:93: e8:a3:90:fc:52:02:5a:b1:19:99:56:61:d4:82:5d:70:a6:88: 6b:3c:65:34:9b:f2:f2:5d:d8:18:b8:2b:82:40:50:ab:03:13: 25:4f:30:ce:90:90:69:ef:d2:6e:41:1b:94:a3:89:b0:21:ae: 6e:76:19:95:ee:9b:7b:d2:d6:47:0f:79:b1:ac:80:59:ab:2f: f7:19:db:09:6a:81:42:ea:64:72:6d:14:37:73:50:45:38:6d: 6e:2f:82:79:39:3f:7c:d1:fb:99:db:c2:1d:6b:61:27:8f:0d: bf:4d:90:55:08:ff:2a:a3:b4:aa:6c:c2:b6:31:c6:ac:0c:49: 28:2b:7c:ca:44:81:46:52:34:60:dc:ff:2d:f9:fe:12:79:26: 26:d9:d2:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjQwNTE5MDUyMTIzWhcNMjQwNTI2MDUyMTIzWjAYMRYwFAYD VQQDEw02NjQ5OGM1My00Mjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOn1+U/YUMwB2FqjKNuGjf1Mv8rXhM5cEAlz2Fum3pUXJaVzrVlJQn8LqVhD s+CDq9kCL4MS1TKNDf8nesm8dSh2b/bLgs8aplbo5CrE9VwSGD3kZSjWSIMN+65i cCvPlHRueEsb1NUZ83iMAoejpgjdruGsxYEoZiRF64sYKe8RakC202dQ70s81f+V beq2sfnaypvGP76sU82oAd5Gp7WngJ+cy9DVKKIf/0E1/Gcn89d4iCf66F51gsyJ DB8RRdGnYqaGt/3q3KItMk9/JO+yd8ot1f3YL/KgM7CiyhHoCbdghZ+4a0Xi8FHq RcV00o2pG/YryPq/b21RHc4viQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO40vTJY MepghQHqrxhQO4E4m5BtMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxE+gEw7vy4HB0pu1EOfInZF2LbZBnpHeqJJ9nebdJgmDLWOmf9KNu Zbfg74HrLemChtkp/qvyqntd7nPL33QiNTp2hGBVbhN2yW9XSdK71oZRsKtdD6ks HhlCiknKdlpPP19oNs2J+S+X55Poo5D8UgJasRmZVmHUgl1wpohrPGU0m/LyXdgY uCuCQFCrAxMlTzDOkJBp79JuQRuUo4mwIa5udhmV7pt70tZHD3mxrIBZqy/3GdsJ aoFC6mRybRQ3c1BFOG1uL4J5OT980fuZ28Ida2Enjw2/TZBVCP8qo7SqbMK2Mcas DEkoK3zKRIFGUjRg3P8t+f4SeSYm2dIG -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org