$ rpki-client -vvf rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/a7IptQZEL6BIpPedPLRPoOAEeUE.mft File: a7IptQZEL6BIpPedPLRPoOAEeUE.mft (raw, json) Hash identifier: 0zwORQdyzmO5xevXlXg56TeDC04FHe9y4LflTIGeHtE= Subject key identifier: E0:55:65:2E:13:53:44:B2:FA:47:5C:7F:6A:76:DC:3A:A5:CE:98:AB Authority key identifier: 6B:B2:29:B5:06:44:2F:A0:48:A4:F7:9D:3C:B4:4F:A0:E0:04:79:41 Certificate issuer: /CN=A913C928/serialNumber=6BB229B506442FA048A4F79D3CB44FA0E0047941 Certificate serial: 0686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a7IptQZEL6BIpPedPLRPoOAEeUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/a7IptQZEL6BIpPedPLRPoOAEeUE.mft Manifest number: 0681 Signing time: Sat 18 May 2024 23:25:36 +0000 Manifest this update: Sat 18 May 2024 23:25:36 +0000 Manifest next update: Sat 25 May 2024 23:25:36 +0000 Files and hashes: 1: a7IptQZEL6BIpPedPLRPoOAEeUE.crl (hash: D0aLfOxDSqGj/EdBm0a7BnzLud8Wi3TyDGyjXG1Bu08=) 2: 08D6D5122A4511EBA2903755C4F9AE02.roa (hash: +HMl7Jwr99xlhs1LDIF8vmMtZlmMQpAibI4QXW01B9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/a7IptQZEL6BIpPedPLRPoOAEeUE.crl rsync://rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/a7IptQZEL6BIpPedPLRPoOAEeUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a7IptQZEL6BIpPedPLRPoOAEeUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C928/serialNumber=6BB229B506442FA048A4F79D3CB44FA0E0047941 Validity Not Before: May 18 23:25:36 2024 GMT Not After : May 25 23:25:36 2024 GMT Subject: CN=664938f0-6f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e9:f1:2c:f7:04:84:3c:4a:94:33:b5:ae:b6: e9:39:3c:0f:58:eb:49:37:4d:b5:06:6d:4f:d3:1d: 84:21:fb:fa:b8:ca:8b:e3:d5:26:6b:b9:16:9b:d1: c9:42:8f:7f:93:03:e0:88:f5:4a:b0:9f:be:3a:09: eb:4a:f5:95:ba:ca:88:0d:37:c9:c1:b5:b2:c5:c7: 46:2f:16:f8:95:a9:c0:1f:63:be:fc:30:f9:ea:08: e7:36:64:a5:e6:65:b3:ee:38:a9:86:51:1e:08:ae: 2a:86:5c:c8:48:a7:47:33:c5:b6:52:63:b9:44:d5: 5b:6d:41:a9:8d:a3:9a:8c:ff:b5:4a:40:f5:e7:de: 8d:b6:cf:a3:c8:e5:d4:9f:c4:99:08:d7:f0:85:b8: 5a:18:15:00:7b:8d:90:b2:1b:92:6d:7e:35:3d:91: 16:9c:c7:6b:47:ad:7b:d9:39:b1:46:84:45:db:17: 4f:09:c2:28:14:a1:8b:38:1c:d4:a4:7a:47:4c:cd: 9b:4f:dd:38:a7:aa:81:a8:0d:4f:1b:3c:34:8d:62: 72:21:d8:0a:e7:10:4d:83:84:54:d0:d8:65:61:a6: 14:61:90:c2:bd:97:01:fb:f7:d5:00:e2:14:a8:fa: 53:c8:3a:74:67:7d:cf:48:29:4c:f5:17:c3:97:9a: 74:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:55:65:2E:13:53:44:B2:FA:47:5C:7F:6A:76:DC:3A:A5:CE:98:AB X509v3 Authority Key Identifier: keyid:6B:B2:29:B5:06:44:2F:A0:48:A4:F7:9D:3C:B4:4F:A0:E0:04:79:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/a7IptQZEL6BIpPedPLRPoOAEeUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a7IptQZEL6BIpPedPLRPoOAEeUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C928/77F546EC2A4311EB89923753C4F9AE02/a7IptQZEL6BIpPedPLRPoOAEeUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:01:b0:27:3e:19:c2:e9:a8:95:77:9a:5e:85:92:b0:47:e7: 14:5b:f3:af:c1:99:8c:c7:2b:56:4b:93:f8:dd:c6:25:9a:d8: c5:c1:ff:99:bf:92:54:e6:6e:98:8f:93:14:19:90:9d:28:1d: 5b:cf:28:4e:a4:d0:5c:ea:d7:1b:87:97:8b:e1:5d:a5:35:23: 34:41:e5:60:4f:33:99:e9:0c:94:8f:ac:93:7d:4b:91:ab:1d: cf:94:1d:21:d6:34:e8:ec:b5:9e:cd:5c:1f:38:5b:95:6a:0a: 2d:15:6f:e7:ed:67:cb:d4:ba:47:36:c5:56:cd:fe:ac:a2:d6: 0c:15:8b:62:3b:e5:cb:92:ed:46:cc:d6:cf:ae:e0:1d:83:a5: df:d2:18:8b:fc:92:b3:e3:71:ca:56:53:85:61:f1:08:b4:a7: 87:14:1f:8d:63:82:4c:7f:56:a9:cf:f8:ad:7c:b9:d4:97:e5: 53:91:de:2c:5d:84:b8:fd:fb:cb:f6:fc:aa:10:6b:1e:1f:de: 85:fa:fa:4a:40:1c:eb:dd:44:fb:32:26:c8:03:d5:8e:48:8a: 4f:32:bb:e2:9b:16:46:33:cf:1c:4a:3e:e3:eb:f6:08:a6:0b: a7:65:5a:27:29:2a:09:c0:82:26:12:37:61:01:92:87:6d:2f: 66:5e:f0:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MjgxMTAvBgNVBAUTKDZCQjIyOUI1MDY0NDJGQTA0OEE0Rjc5RDNDQjQ0RkEw RTAwNDc5NDEwHhcNMjQwNTE4MjMyNTM2WhcNMjQwNTI1MjMyNTM2WjAYMRYwFAYD VQQDEw02NjQ5MzhmMC02ZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+nxLPcEhDxKlDO1rrbpOTwPWOtJN021Bm1P0x2EIfv6uMqL49Uma7kWm9HJ Qo9/kwPgiPVKsJ++OgnrSvWVusqIDTfJwbWyxcdGLxb4lanAH2O+/DD56gjnNmSl 5mWz7jiphlEeCK4qhlzISKdHM8W2UmO5RNVbbUGpjaOajP+1SkD1596Nts+jyOXU n8SZCNfwhbhaGBUAe42QshuSbX41PZEWnMdrR6172TmxRoRF2xdPCcIoFKGLOBzU pHpHTM2bT904p6qBqA1PGzw0jWJyIdgK5xBNg4RU0NhlYaYUYZDCvZcB+/fVAOIU qPpTyDp0Z33PSClM9RfDl5p0LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBVZS4T U0Sy+kdcf2p23DqlzpirMB8GA1UdIwQYMBaAFGuyKbUGRC+gSKT3nTy0T6DgBHlB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkyOC83N0Y1NDZFQzJB NDMxMUVCODk5MjM3NTNDNEY5QUUwMi9hN0lwdFFaRUw2QklwUGVkUExSUG9PQUVl VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E3SXB0UVpFTDZCSXBQZWRQTFJQb09BRWVVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkyOC83N0Y1NDZFQzJBNDMxMUVCODk5MjM3NTNDNEY5QUUwMi9hN0lwdFFaRUw2 QklwUGVkUExSUG9PQUVlVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWAbAnPhnC6aiVd5pehZKwR+cUW/OvwZmMxytWS5P43cYlmtjFwf+Z v5JU5m6Yj5MUGZCdKB1bzyhOpNBc6tcbh5eL4V2lNSM0QeVgTzOZ6QyUj6yTfUuR qx3PlB0h1jTo7LWezVwfOFuVagotFW/n7WfL1LpHNsVWzf6sotYMFYtiO+XLku1G zNbPruAdg6Xf0hiL/JKz43HKVlOFYfEItKeHFB+NY4JMf1apz/itfLnUl+VTkd4s XYS4/fvL9vyqEGseH96F+vpKQBzr3UT7MibIA9WOSIpPMrvimxZGM88cSj7j6/YI pgunZVonKSoJwIImEjdhAZKHbS9mXvAu -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org