$ rpki-client -vvf rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft File: 0N7PEI0mgBt8l-NJAprx_PkKhV4.mft (raw, json) Hash identifier: DPhBnEJzUIsl6GWkL8gDr9Ecae80jAg0Z0omqrpp2LA= Subject key identifier: 8F:20:85:AB:F6:DF:04:3A:27:07:58:B3:89:79:A5:A1:8D:50:28:B1 Authority key identifier: D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E Certificate issuer: /CN=A915408A/serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft Manifest number: 1B Signing time: Mon 01 Jul 2024 08:08:11 +0000 Manifest this update: Mon 01 Jul 2024 08:08:10 +0000 Manifest next update: Mon 08 Jul 2024 08:08:10 +0000 Files and hashes: 1: 0N7PEI0mgBt8l-NJAprx_PkKhV4.crl (hash: /urByeYoWHa7U9Ntg7zM32r4ax9USX8lpMkHp9rlerk=) 2: 421FF25E18AD11EF99EAA661C4F9AE02.roa (hash: nArjp1EJ9Qh1GSnet/WM1j0sEl6S9LUtwKPDMLMbAas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jul 2024 07:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915408A/serialNumber=D0DECF108D26801B7C97E349029AF1FCF90A855E Validity Not Before: Jul 1 08:08:10 2024 GMT Not After : Jul 8 08:08:10 2024 GMT Subject: CN=668263ea-15b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ab:dc:b8:c3:a1:e8:62:65:44:84:5f:5f:58: 40:57:f5:ac:e7:4e:74:f7:9d:6a:a2:d3:33:d2:ff: 9a:9f:73:5a:61:7f:96:87:a4:01:47:db:de:c2:de: 11:b2:34:3f:15:78:e5:ba:a8:cd:80:45:0b:94:75: e7:54:d8:8c:6f:4c:4c:06:a4:fc:db:40:ef:55:a7: ce:12:ef:d6:1a:be:93:c6:5d:01:88:7a:aa:53:25: d8:93:a3:fd:b7:88:93:47:7a:cb:19:3a:10:95:60: 3a:83:fc:21:3c:bf:d5:81:6c:8a:e0:ce:c3:2f:6f: f5:e9:42:5e:4f:bc:26:07:29:f2:d4:85:79:a4:d3: e7:22:63:61:23:2e:1a:0f:d8:b5:5a:a8:90:42:d9: a4:f0:1c:54:3a:81:e9:8b:dd:b1:de:25:e3:74:61: 83:5b:49:72:36:e1:f0:25:a0:b3:85:b0:15:81:cf: 86:08:86:88:7d:40:2d:e9:27:5b:a6:0a:e6:91:c6: 94:80:27:b7:29:60:07:1f:3c:af:8d:d1:db:a9:1e: f6:ae:2c:d2:96:45:a7:9f:e5:4a:e7:74:e4:c2:25: e6:59:f9:14:ec:b8:dc:12:6c:03:00:e0:a8:b8:99: 97:92:0f:37:1a:e4:7b:98:e5:3d:a5:39:b2:a8:e0: bd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:20:85:AB:F6:DF:04:3A:27:07:58:B3:89:79:A5:A1:8D:50:28:B1 X509v3 Authority Key Identifier: keyid:D0:DE:CF:10:8D:26:80:1B:7C:97:E3:49:02:9A:F1:FC:F9:0A:85:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0N7PEI0mgBt8l-NJAprx_PkKhV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915408A/18845F6C18AC11EFB6F48137C4F9AE02/0N7PEI0mgBt8l-NJAprx_PkKhV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:7a:bf:a0:ed:cd:a9:8a:d1:59:7c:c7:b9:08:92:e6:da:c8: 49:6f:e4:86:cb:e1:7c:db:10:3f:a7:e9:a9:3e:a2:6d:ae:1e: 5b:12:10:5d:e7:80:a0:12:99:eb:ab:8d:bb:e3:69:eb:c0:00: 10:cc:e7:e2:37:40:41:38:5e:32:2d:dd:6b:00:da:47:51:9c: b4:5f:13:60:c7:90:0a:11:9f:31:d7:cf:e7:22:77:5a:e7:f7: a9:1a:c5:cd:ab:60:b5:4e:01:92:bd:a7:db:c9:22:72:6e:19: f0:3a:50:d7:32:58:b8:c6:cc:48:da:b3:4e:bf:fc:21:56:fc: e0:3c:48:90:d1:25:fe:64:70:f0:01:b2:11:04:8e:17:c0:b7: a8:1a:77:36:d1:f3:f4:81:bd:42:f5:16:ec:b0:6d:d0:76:95: eb:62:9f:0b:4f:c7:75:72:08:af:dd:37:3f:79:da:ed:05:03: 47:c2:34:db:65:b1:82:44:82:22:3c:a6:dd:db:da:15:59:54: 88:0c:51:64:37:26:44:90:c6:08:f8:20:db:76:9c:67:f8:55: c2:61:22:c6:f4:74:64:47:1f:e3:9d:4b:0c:fd:e2:60:0a:cf: 61:b0:01:08:51:92:51:43:06:6c:c1:84:ee:43:8b:2f:8c:84: f6:65:ca:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NDA4QTExMC8GA1UEBRMoRDBERUNGMTA4RDI2ODAxQjdDOTdFMzQ5MDI5QUYxRkNG OTBBODU1RTAeFw0yNDA3MDEwODA4MTBaFw0yNDA3MDgwODA4MTBaMBgxFjAUBgNV BAMTDTY2ODI2M2VhLTE1YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCq9y4w6HoYmVEhF9fWEBX9aznTnT3nWqi0zPS/5qfc1phf5aHpAFH297C3hGy ND8VeOW6qM2ARQuUdedU2IxvTEwGpPzbQO9Vp84S79YavpPGXQGIeqpTJdiTo/23 iJNHessZOhCVYDqD/CE8v9WBbIrgzsMvb/XpQl5PvCYHKfLUhXmk0+ciY2EjLhoP 2LVaqJBC2aTwHFQ6gemL3bHeJeN0YYNbSXI24fAloLOFsBWBz4YIhoh9QC3pJ1um CuaRxpSAJ7cpYAcfPK+N0dupHvauLNKWRaef5UrndOTCJeZZ+RTsuNwSbAMA4Ki4 mZeSDzca5HuY5T2lObKo4L0fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjyCFq/bf BDonB1iziXmloY1QKLEwHwYDVR0jBBgwFoAU0N7PEI0mgBt8l+NJAprx/PkKhV4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0MDhBLzE4ODQ1RjZDMThB QzExRUZCNkY0ODEzN0M0RjlBRTAyLzBON1BFSTBtZ0J0OGwtTkpBcHJ4X1BrS2hW NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvME43UEVJMG1nQnQ4bC1OSkFwcnhfUGtLaFY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0 MDhBLzE4ODQ1RjZDMThBQzExRUZCNkY0ODEzN0M0RjlBRTAyLzBON1BFSTBtZ0J0 OGwtTkpBcHJ4X1BrS2hWNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABR6v6DtzamK0Vl8x7kIkubayElv5IbL4XzbED+n6ak+om2uHlsSEF3n gKASmeurjbvjaevAABDM5+I3QEE4XjIt3WsA2kdRnLRfE2DHkAoRnzHXz+cid1rn 96kaxc2rYLVOAZK9p9vJInJuGfA6UNcyWLjGzEjas06//CFW/OA8SJDRJf5kcPAB shEEjhfAt6gadzbR8/SBvUL1FuywbdB2letinwtPx3VyCK/dNz952u0FA0fCNNtl sYJEgiI8pt3b2hVZVIgMUWQ3JkSQxgj4INt2nGf4VcJhIsb0dGRHH+OdSwz94mAK z2GwAQhRklFDBmzBhO5Diy+MhPZlyjU= -----END CERTIFICATE-----Generated at Mon Jul 1 08:51:03 2024 by rpki-client on console-ams.rpki-client.org