$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft File: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft (raw, json) Hash identifier: ga4d3h9RU51uR8TX8cxJgR6C5W8Et9PJqsmbNI/Mni0= Subject key identifier: 7E:C3:26:64:24:F9:DB:60:EB:EA:03:85:B7:0E:DD:42:03:6B:9C:D0 Authority key identifier: EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 Certificate issuer: /CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Certificate serial: 0713 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft Manifest number: 070D Signing time: Sat 18 May 2024 22:38:54 +0000 Manifest this update: Sat 18 May 2024 22:38:54 +0000 Manifest next update: Sat 25 May 2024 22:38:54 +0000 Files and hashes: 1: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl (hash: VtqyLmxDIXFi6FZHonvgwWVlur867ysQoiEavnuk8o4=) 2: D3EE2024F42211EA8FE7AE53C4F9AE02.roa (hash: lRCubr7EYku0VIB1rDtAT6Aai84rlwXyTT83KuJ/9/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1811 (0x713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Validity Not Before: May 18 22:38:54 2024 GMT Not After : May 25 22:38:54 2024 GMT Subject: CN=66492dfe-0b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:90:46:a5:72:be:38:15:71:32:ad:99:ee:81: 2e:e1:3d:09:67:0c:c7:15:43:87:d9:91:09:e4:a2: ca:19:86:e8:6d:a7:00:f4:bc:23:f4:82:6b:be:64: af:ce:92:c1:1f:9c:83:a4:fe:8d:3b:88:a8:ce:57: b0:88:8a:82:08:86:92:5e:b0:85:6d:7a:7d:d0:80: 53:76:d1:57:62:1d:36:6d:90:be:ac:e5:0e:9e:ed: 10:3a:31:73:f4:30:fa:de:f5:6e:ff:a2:a1:4e:f0: 7e:9e:9d:31:4c:73:71:b8:88:25:e4:7e:66:3e:b6: 2b:aa:1b:45:5d:5b:5f:30:a0:34:42:11:a1:7a:50: b6:7e:82:61:b3:72:be:3e:03:0e:35:96:dd:70:81: 02:6a:b3:e1:88:b2:6f:dd:9e:83:f3:87:7d:56:99: 34:d7:fd:b6:8f:8c:bd:d2:e7:ff:f2:92:17:8f:d6: 55:25:da:49:34:d1:19:a4:59:47:72:99:46:8b:74: 8a:80:70:83:53:d7:a9:07:46:b1:ec:3f:31:22:b6: 08:8c:e0:be:c1:16:cb:cb:b2:e4:0c:ab:b0:b0:7a: 83:68:65:a9:5b:15:b5:ce:31:d5:da:1a:79:f5:48: 18:ef:2a:66:fe:96:0d:c7:e9:5d:53:e5:0b:70:c0: fc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C3:26:64:24:F9:DB:60:EB:EA:03:85:B7:0E:DD:42:03:6B:9C:D0 X509v3 Authority Key Identifier: keyid:EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:21:09:8a:4d:7b:39:15:c6:9c:26:79:8c:79:cc:ba:e2:50: fe:cb:52:bf:ae:e4:f3:bb:ae:0a:e0:ef:fb:ce:76:9a:48:bd: 14:4a:e2:49:b7:be:05:4f:5d:e5:46:7b:2c:c2:ac:78:af:bc: d9:36:81:9c:d7:00:65:9f:2c:06:8f:53:a9:91:70:b1:8f:bb: 20:58:50:a5:63:69:79:b6:ce:2f:05:c5:69:52:a5:25:55:9f: 7a:da:27:7a:81:69:76:c9:76:3c:ba:2d:92:9f:74:01:a1:df: b9:8a:c4:1a:29:95:e5:bf:13:89:4c:c9:47:05:a0:d5:89:f1: 37:0d:c8:5b:91:b2:42:2b:e4:88:27:6b:27:6c:a8:83:2a:3c: 99:6c:2b:e7:3b:c6:f4:5b:a6:24:0b:74:11:ef:87:53:c9:c8: b8:71:00:2d:31:d1:65:ec:55:d7:7c:97:d1:fe:ff:c9:a2:9d: e9:27:4d:6b:d2:33:13:c8:b9:86:94:54:e8:40:16:91:88:6e: 45:24:62:13:ac:18:26:cf:4a:da:a0:41:20:e5:ad:3c:55:f6: 8b:55:65:f0:b3:ff:04:f5:f4:26:ef:9a:59:d5:f5:29:75:56: ab:ed:69:d6:71:23:2f:c1:f1:bd:0e:26:8e:74:cb:88:53:37: 51:e1:3e:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEOEIxMTAvBgNVBAUTKEVGMUE5NkQxMTJERTE2MjJCMTFDOEM3RTk0QUVCMDQw RURENkFCMDAwHhcNMjQwNTE4MjIzODU0WhcNMjQwNTI1MjIzODU0WjAYMRYwFAYD VQQDEw02NjQ5MmRmZS0wYjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpBGpXK+OBVxMq2Z7oEu4T0JZwzHFUOH2ZEJ5KLKGYbobacA9Lwj9IJrvmSv zpLBH5yDpP6NO4iozlewiIqCCIaSXrCFbXp90IBTdtFXYh02bZC+rOUOnu0QOjFz 9DD63vVu/6KhTvB+np0xTHNxuIgl5H5mPrYrqhtFXVtfMKA0QhGhelC2foJhs3K+ PgMONZbdcIECarPhiLJv3Z6D84d9Vpk01/22j4y90uf/8pIXj9ZVJdpJNNEZpFlH cplGi3SKgHCDU9epB0ax7D8xIrYIjOC+wRbLy7LkDKuwsHqDaGWpWxW1zjHV2hp5 9UgY7ypm/pYNx+ldU+ULcMD8uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7DJmQk +dtg6+oDhbcO3UIDa5zQMB8GA1UdIwQYMBaAFO8altES3hYisRyMfpSusEDt1qsA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ4Qi9EMDBBQTg1Q0Y0 MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZpS3hISXgtbEs2d1FPM1dx d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd4cVcwUkxlRmlLeEhJeC1sSzZ3UU8zV3F3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ4Qi9EMDBBQTg1Q0Y0MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZp S3hISXgtbEs2d1FPM1dxd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPIQmKTXs5FcacJnmMecy64lD+y1K/ruTzu64K4O/7znaaSL0USuJJ t74FT13lRnsswqx4r7zZNoGc1wBlnywGj1OpkXCxj7sgWFClY2l5ts4vBcVpUqUl VZ962id6gWl2yXY8ui2Sn3QBod+5isQaKZXlvxOJTMlHBaDVifE3DchbkbJCK+SI J2snbKiDKjyZbCvnO8b0W6YkC3QR74dTyci4cQAtMdFl7FXXfJfR/v/Jop3pJ01r 0jMTyLmGlFToQBaRiG5FJGITrBgmz0raoEEg5a08VfaLVWXws/8E9fQm75pZ1fUp dVar7WnWcSMvwfG9DiaOdMuIUzdR4T7T -----END CERTIFICATE-----Generated at Sun May 19 00:16:12 2024 by rpki-client on console-fra.rpki-client.org