$ rpki-client -vvf rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft File: FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft (raw, json) Hash identifier: kV2k/xgTzEYLrrkwmjr/TGqwjQMgcFQH1cmwNY6GgXo= Subject key identifier: 6A:A2:73:E0:64:AF:21:DB:6C:46:D2:0E:21:C5:27:1C:D5:91:7F:D8 Authority key identifier: 15:2A:3B:43:22:5C:FA:2C:5F:8D:E2:7A:9A:68:93:D3:B2:3F:5D:E3 Certificate issuer: /CN=A91468A1/serialNumber=152A3B43225CFA2C5F8DE27A9A6893D3B23F5DE3 Certificate serial: 0A03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft Manifest number: 09FC Signing time: Sat 18 May 2024 20:38:58 +0000 Manifest this update: Sat 18 May 2024 20:38:57 +0000 Manifest next update: Sat 25 May 2024 20:38:57 +0000 Files and hashes: 1: FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl (hash: be7iVh4k94x1vkU9o/EXoMwirXta/NQdvU4vjk8EZpQ=) 2: F0520A385DD611EAA4AD4767C4F9AE02.roa (hash: lmF/e5IG5EpeViX3RQEVWvmsb2v09JOH6dxA1kV5Fos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2563 (0xa03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91468A1/serialNumber=152A3B43225CFA2C5F8DE27A9A6893D3B23F5DE3 Validity Not Before: May 18 20:38:57 2024 GMT Not After : May 25 20:38:57 2024 GMT Subject: CN=664911e1-9ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:60:d4:c6:b6:53:fa:ce:0b:6f:dc:57:8f: 1e:fa:82:53:a7:ff:25:58:74:51:b8:17:1d:8f:ab: af:f7:99:1f:9a:23:61:0b:5b:42:7f:b4:b2:c7:0e: fe:0c:89:5f:a8:ca:e4:b4:f2:76:ab:1a:7a:94:ae: 66:86:9c:cc:cc:80:6d:d0:15:96:48:ad:a4:df:4f: 64:3e:3b:2e:4b:da:88:a2:61:57:f1:56:96:83:0a: 17:09:79:a4:d7:1a:9b:2d:37:7f:92:aa:b9:52:50: 68:e8:56:3c:62:7a:63:f7:e6:ee:a9:80:4f:8d:7f: ad:92:34:f4:4c:71:17:f1:5e:c0:19:47:34:09:6a: a6:cc:ab:1e:67:fc:fd:2b:40:79:db:a4:c4:6a:58: 40:5e:ce:7d:92:d6:b9:96:29:19:b7:cc:b3:10:cd: ca:f5:24:63:92:e8:bf:ec:07:11:86:02:94:96:85: 2a:8d:8f:54:f5:31:72:5f:e9:78:97:7f:f1:ec:02: 2c:c1:8d:5e:2e:fb:25:9a:7c:c6:b7:7a:72:d8:fb: 6f:a4:ff:da:e7:b5:fc:e4:2d:ad:3a:41:9b:75:43: dc:f1:2a:cd:a5:4e:2d:bc:72:5e:e4:fd:05:4b:9f: 80:64:93:2e:92:e8:80:1c:18:28:9f:a7:fb:a7:38: c5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A2:73:E0:64:AF:21:DB:6C:46:D2:0E:21:C5:27:1C:D5:91:7F:D8 X509v3 Authority Key Identifier: keyid:15:2A:3B:43:22:5C:FA:2C:5F:8D:E2:7A:9A:68:93:D3:B2:3F:5D:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:99:82:b9:0d:57:24:75:5e:c8:48:7e:f9:4d:c4:9d:cd:7e: 44:68:b5:49:7b:f8:76:98:a7:ef:01:b5:09:27:84:da:61:c3: 33:47:82:e1:de:04:3a:0b:22:71:0b:e9:17:34:1a:9c:c9:e4: d1:f8:0d:b2:73:be:72:0f:4d:62:2d:4c:10:93:27:f0:77:12: e1:7d:f2:9a:f8:62:d3:03:8c:66:13:d4:a3:5f:c4:62:71:4b: bc:a0:7c:14:2c:8b:94:b6:e4:b7:7a:d8:d2:21:7f:1c:bf:3c: e2:0f:9a:b7:ae:50:a8:af:61:74:78:dd:15:82:98:ee:38:d7: 5b:36:05:aa:06:17:c9:e2:07:a5:80:25:a6:9d:2d:20:3d:86: c4:3b:c6:bc:5d:d7:dd:ec:d2:a3:98:3e:c8:c4:bb:44:17:41: b6:84:3f:06:70:80:eb:08:b6:ed:33:02:3d:f5:2d:25:a5:e3: b3:3c:78:69:01:6b:b2:c7:0c:da:6b:85:6a:03:ac:88:5b:d0: 21:2e:7a:29:50:fd:f7:a1:f9:26:18:c5:9d:e3:bc:c4:f1:9e: 17:b5:19:1e:11:a5:31:87:74:79:0d:4f:02:34:db:36:30:f2: 4d:0c:b4:99:41:ab:88:9e:0a:a2:0b:73:f0:99:ec:d3:0e:34: 4c:55:da:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY4QTExMTAvBgNVBAUTKDE1MkEzQjQzMjI1Q0ZBMkM1RjhERTI3QTlBNjg5M0Qz QjIzRjVERTMwHhcNMjQwNTE4MjAzODU3WhcNMjQwNTI1MjAzODU3WjAYMRYwFAYD VQQDEw02NjQ5MTFlMS05YWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg1g1Ma2U/rOC2/cV48e+oJTp/8lWHRRuBcdj6uv95kfmiNhC1tCf7Syxw7+ DIlfqMrktPJ2qxp6lK5mhpzMzIBt0BWWSK2k309kPjsuS9qIomFX8VaWgwoXCXmk 1xqbLTd/kqq5UlBo6FY8Ynpj9+buqYBPjX+tkjT0THEX8V7AGUc0CWqmzKseZ/z9 K0B526TEalhAXs59kta5likZt8yzEM3K9SRjkui/7AcRhgKUloUqjY9U9TFyX+l4 l3/x7AIswY1eLvslmnzGt3py2PtvpP/a57X85C2tOkGbdUPc8SrNpU4tvHJe5P0F S5+AZJMukuiAHBgon6f7pzjF/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqic+Bk ryHbbEbSDiHFJxzVkX/YMB8GA1UdIwQYMBaAFBUqO0MiXPosX43ieppok9OyP13j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjhBMS8yRTFDQzY0NDUx MTgxMUVBOTM4N0M2NkJDNEY5QUUwMi9GU283UXlKYy1peGZqZUo2bW1pVDA3SV9Y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTbzdReUpjLWl4ZmplSjZtbWlUMDdJX1hlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjhBMS8yRTFDQzY0NDUxMTgxMUVBOTM4N0M2NkJDNEY5QUUwMi9GU283UXlKYy1p eGZqZUo2bW1pVDA3SV9YZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3mYK5DVckdV7ISH75TcSdzX5EaLVJe/h2mKfvAbUJJ4TaYcMzR4Lh 3gQ6CyJxC+kXNBqcyeTR+A2yc75yD01iLUwQkyfwdxLhffKa+GLTA4xmE9SjX8Ri cUu8oHwULIuUtuS3etjSIX8cvzziD5q3rlCor2F0eN0VgpjuONdbNgWqBhfJ4gel gCWmnS0gPYbEO8a8Xdfd7NKjmD7IxLtEF0G2hD8GcIDrCLbtMwI99S0lpeOzPHhp AWuyxwzaa4VqA6yIW9AhLnopUP33ofkmGMWd47zE8Z4XtRkeEaUxh3R5DU8CNNs2 MPJNDLSZQauIngqiC3PwmezTDjRMVdqO -----END CERTIFICATE-----Generated at Sat May 18 21:31:27 2024 by rpki-client on console-ams.rpki-client.org