$ rpki-client -vvf rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft File: VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft (raw, json) Hash identifier: 8LUSxaPD3TzYpQm+pmjaBR50KoQGhjGvPJILvIMX1e4= Subject key identifier: 3B:81:EF:6A:95:31:BE:1D:DB:EE:63:29:16:01:A4:3B:CD:9C:A4:5A Authority key identifier: 55:E4:85:18:8C:5C:9D:2E:24:C8:34:5C:97:BC:34:62:72:1C:98:CE Certificate issuer: /CN=A912FBD2/serialNumber=55E485188C5C9D2E24C8345C97BC3462721C98CE Certificate serial: 0354 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft Manifest number: 0351 Signing time: Fri 31 May 2024 03:30:18 +0000 Manifest this update: Fri 31 May 2024 03:30:17 +0000 Manifest next update: Fri 07 Jun 2024 03:30:17 +0000 Files and hashes: 1: VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl (hash: A3PFYApyOlsbau0uantzVE0uPs9Tt7zDKTuGjKSsc9M=) 2: 8A7E8D5C6F5511ECB5FAA20FC4F9AE02.roa (hash: lpgIVVU0cv+cmcURAn8z405VuRQu+P37Bg9Ma7ssqFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 03:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 852 (0x354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FBD2/serialNumber=55E485188C5C9D2E24C8345C97BC3462721C98CE Validity Not Before: May 31 03:30:17 2024 GMT Not After : Jun 7 03:30:17 2024 GMT Subject: CN=66594449-a86f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:33:2f:6a:a5:74:54:fb:ea:17:95:f4:28:26: 0a:d3:b2:85:43:3b:5e:bb:10:7b:4b:37:36:33:1a: 8b:fb:01:d5:a4:27:36:75:3f:87:7b:cf:8c:ee:86: 01:91:da:d3:c2:3e:77:31:a0:a3:6f:83:6d:e5:29: ef:89:2b:ca:80:7c:62:b1:8a:de:87:9b:1b:c9:f7: 75:1a:77:07:ce:a0:e7:7d:d2:ce:47:6a:7f:7e:d9: 03:d2:6e:b3:b9:27:f4:2a:63:1e:f4:4c:51:e4:f2: 43:06:f2:c0:03:e2:f6:1a:d6:01:ff:4d:3f:14:51: 83:cd:66:9d:a1:ab:b7:7e:60:df:51:37:54:d6:88: b7:45:1b:45:bf:4d:8b:37:3a:06:3f:e1:7d:1e:6d: f1:72:53:29:36:57:22:f7:de:e4:bd:92:ff:0a:ef: 92:71:25:ac:e9:16:60:ce:59:18:16:a2:dc:6f:da: 2b:39:24:16:00:ec:22:cd:80:a0:e8:d9:a2:b8:2f: 4f:a2:cb:e7:bf:88:20:81:bd:96:8c:ec:6d:07:d9: 96:27:50:26:06:8f:14:6e:86:11:cf:60:e4:e2:f5: bf:20:85:09:1d:39:be:b7:56:48:09:52:4e:6e:1c: 26:94:2e:b9:e7:ab:34:4d:b9:29:99:f5:80:88:d8: 03:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:81:EF:6A:95:31:BE:1D:DB:EE:63:29:16:01:A4:3B:CD:9C:A4:5A X509v3 Authority Key Identifier: keyid:55:E4:85:18:8C:5C:9D:2E:24:C8:34:5C:97:BC:34:62:72:1C:98:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:13:61:40:db:11:2b:74:94:cf:38:69:95:0a:03:1f:6f:e2: 12:ad:02:c4:3f:72:f9:a4:83:f3:33:b4:98:9a:6c:b9:47:5e: 75:6e:4d:f2:78:80:77:24:45:9c:f4:7f:7d:06:01:4e:85:38: ce:8f:ae:d5:68:be:2f:a4:2b:ec:b2:75:3d:01:dc:ed:0c:48: 63:8e:7d:bd:00:bf:bd:fb:d1:e9:8e:bd:35:86:51:98:4e:49: d5:8f:41:08:46:ac:a0:ef:f7:c6:84:02:45:d0:2d:8a:73:9e: bd:e5:23:f6:79:5c:d8:4b:23:1d:70:82:f9:60:74:c5:76:e4: 1d:5e:37:36:01:65:c9:63:cf:3d:91:76:ce:9f:ae:97:6d:51: 42:9f:71:d4:e4:83:cc:f8:2e:a0:a1:10:d5:b8:df:ca:fe:61: 2b:40:a0:d0:44:fd:47:61:5c:ba:8e:54:b8:5b:d3:17:d6:c5: a8:0b:7c:05:af:bc:fa:0d:0d:9f:81:97:9a:e0:da:c7:6e:b7: 8c:6e:8d:6e:62:33:22:4a:37:6e:5d:88:d1:0a:0f:99:c1:5b: e6:83:79:01:0b:80:04:b0:d1:68:78:cf:40:b8:79:90:24:75: d4:43:e5:4a:c4:cc:f4:d2:5b:c1:70:91:11:92:ce:8e:2f:41: 30:63:8f:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCRDIxMTAvBgNVBAUTKDU1RTQ4NTE4OEM1QzlEMkUyNEM4MzQ1Qzk3QkMzNDYy NzIxQzk4Q0UwHhcNMjQwNTMxMDMzMDE3WhcNMjQwNjA3MDMzMDE3WjAYMRYwFAYD VQQDEw02NjU5NDQ0OS1hODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDMvaqV0VPvqF5X0KCYK07KFQzteuxB7Szc2MxqL+wHVpCc2dT+He8+M7oYB kdrTwj53MaCjb4Nt5SnviSvKgHxisYreh5sbyfd1GncHzqDnfdLOR2p/ftkD0m6z uSf0KmMe9ExR5PJDBvLAA+L2GtYB/00/FFGDzWadoau3fmDfUTdU1oi3RRtFv02L NzoGP+F9Hm3xclMpNlci997kvZL/Cu+ScSWs6RZgzlkYFqLcb9orOSQWAOwizYCg 6NmiuC9Posvnv4gggb2WjOxtB9mWJ1AmBo8UboYRz2Dk4vW/IIUJHTm+t1ZICVJO bhwmlC6556s0TbkpmfWAiNgDKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDuB72qV Mb4d2+5jKRYBpDvNnKRaMB8GA1UdIwQYMBaAFFXkhRiMXJ0uJMg0XJe8NGJyHJjO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkJEMi82RDc0OTc4QzZG NTExMUVDOTY1MURBMDlDNEY5QUUwMi9WZVNGR0l4Y25TNGt5RFJjbDd3MFluSWNt TTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZlU0ZHSXhjblM0a3lEUmNsN3cwWW5JY21NNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkJEMi82RDc0OTc4QzZGNTExMUVDOTY1MURBMDlDNEY5QUUwMi9WZVNGR0l4Y25T NGt5RFJjbDd3MFluSWNtTTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPE2FA2xErdJTPOGmVCgMfb+ISrQLEP3L5pIPzM7SYmmy5R151bk3y eIB3JEWc9H99BgFOhTjOj67VaL4vpCvssnU9AdztDEhjjn29AL+9+9Hpjr01hlGY TknVj0EIRqyg7/fGhAJF0C2Kc5695SP2eVzYSyMdcIL5YHTFduQdXjc2AWXJY889 kXbOn66XbVFCn3HU5IPM+C6goRDVuN/K/mErQKDQRP1HYVy6jlS4W9MX1sWoC3wF r7z6DQ2fgZea4NrHbreMbo1uYjMiSjduXYjRCg+ZwVvmg3kBC4AEsNFoeM9AuHmQ JHXUQ+VKxMz00lvBcJERks6OL0EwY4/v -----END CERTIFICATE-----Generated at Fri May 31 06:49:07 2024 by rpki-client on console-ams.rpki-client.org