$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: DfPV2nZPsx36PvIT4Mx3buy8bqGB7qUxDSou0aJWzgY= Subject key identifier: FD:93:B0:88:39:3B:18:14:3A:37:74:2F:AA:79:B4:3F:B9:7D:49:6F Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 77 Signing time: Sun 02 Jun 2024 20:05:08 +0000 Manifest this update: Sun 02 Jun 2024 20:05:07 +0000 Manifest next update: Sun 09 Jun 2024 20:05:07 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: 8K7sxzE12s+//jEbT4kWejTynZrGYt6Q6yUJIYwqbao=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: bl0GHKiC7T7tXaNRCpxkPx+K/rr5owVX0QnJL/3VOow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 14:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Jun 2 20:05:07 2024 GMT Not After : Jun 9 20:05:07 2024 GMT Subject: CN=665cd074-e2b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ee:e3:12:5d:27:a8:61:25:d6:78:ab:dc:32: 2f:ac:ab:cd:9d:36:d0:86:8b:30:86:a8:3f:f5:dc: c7:63:ce:56:43:93:75:de:d7:a0:5c:f9:d0:1e:6e: 1c:47:8d:65:60:26:88:fc:1d:32:15:6a:dc:fd:2b: 03:95:3b:68:cd:e8:53:e1:1e:f7:6f:d2:89:5e:08: a5:44:fc:af:04:96:09:8a:23:79:5b:7f:c6:60:00: ff:77:96:84:59:4b:07:b9:3c:a6:db:40:c6:ca:8d: b1:3d:11:64:c3:28:f1:63:ae:5d:90:ac:f1:0e:88: 04:5a:63:44:31:c5:fc:cd:62:eb:f3:60:8f:11:d4: c6:1c:84:5f:51:00:38:7c:78:e3:5e:2a:67:3e:9e: 6d:b4:b6:f4:83:31:0d:f3:c3:96:86:bc:58:e2:6f: 98:e5:49:1a:d3:4b:be:b0:15:f5:46:83:91:61:28: 8b:6c:56:8f:9e:22:cf:cf:31:72:35:6a:76:cc:52: 2d:70:9c:19:82:80:f7:90:f5:5d:ed:c7:cb:47:11: 34:e2:27:37:6f:b5:a0:e8:3f:a5:ea:51:74:f1:01: 68:a7:d9:f5:00:be:8b:0e:3a:66:d8:c0:96:03:85: 99:d5:0b:7f:89:a9:4d:bd:22:7a:49:27:f7:14:71: 91:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:93:B0:88:39:3B:18:14:3A:37:74:2F:AA:79:B4:3F:B9:7D:49:6F X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:68:ee:c9:ed:57:73:5b:06:27:c3:6d:b0:38:22:13:d0:62: 3d:ad:4f:0b:b6:c4:e5:76:cc:83:42:21:28:b1:30:98:06:40: 41:bc:9b:24:f8:76:db:4c:b5:a0:36:d0:7b:63:79:2d:3e:b1: e1:1c:33:bf:a0:07:24:ff:5e:23:36:b9:9e:2a:ec:8d:d3:f9: 1e:69:c9:58:c4:b6:5e:62:43:61:6b:08:03:5d:5c:19:40:99: 99:33:ec:4c:0e:df:d5:ad:63:8f:c0:35:5b:a2:7f:e6:c0:d1: 97:70:19:77:2e:50:36:86:c6:be:b3:d3:3a:ac:f0:bf:97:0b: f4:14:c0:a2:57:21:08:9a:f7:ff:91:ed:e7:9e:6f:ed:88:ba: 9c:b2:c4:70:f9:f1:d5:b0:b8:e6:3f:f5:4c:a4:68:0c:94:8e: 25:3a:db:4f:8a:0c:e1:89:18:10:33:65:03:7f:9e:9b:c6:d3: 0d:d1:ab:c3:8a:57:11:17:e9:07:2e:54:9d:03:86:f6:27:4d: a2:93:05:26:95:83:1f:e8:3e:9c:50:4e:78:da:3c:ef:68:ac: d6:f1:50:30:a1:c6:25:12:9c:d4:6c:22:ef:43:31:23:ef:c6: 59:39:41:9e:64:6f:a0:fd:c6:86:6b:d5:3b:f6:ca:4c:c9:95: d1:08:15:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODU2ODExMC8GA1UEBRMoOTQzQUQ5QkM2MTc3QUI4QzJGOEU4MTMxQzE0QTU0NjVF QzQyOTU0RjAeFw0yNDA2MDIyMDA1MDdaFw0yNDA2MDkyMDA1MDdaMBgxFjAUBgNV BAMTDTY2NWNkMDc0LWUyYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx7uMSXSeoYSXWeKvcMi+sq82dNtCGizCGqD/13MdjzlZDk3Xe16Bc+dAebhxH jWVgJoj8HTIVatz9KwOVO2jN6FPhHvdv0oleCKVE/K8ElgmKI3lbf8ZgAP93loRZ Swe5PKbbQMbKjbE9EWTDKPFjrl2QrPEOiARaY0QxxfzNYuvzYI8R1MYchF9RADh8 eONeKmc+nm20tvSDMQ3zw5aGvFjib5jlSRrTS76wFfVGg5FhKItsVo+eIs/PMXI1 anbMUi1wnBmCgPeQ9V3tx8tHETTiJzdvtaDoP6XqUXTxAWin2fUAvosOOmbYwJYD hZnVC3+JqU29InpJJ/cUcZG7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/ZOwiDk7 GBQ6N3Qvqnm0P7l9SW8wHwYDVR0jBBgwFoAUlDrZvGF3q4wvjoExwUpUZexClU8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NTY4LzM2MThBQjZFNzJB MzExRUU5NDU1NzIxMUM0RjlBRTAyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xV OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbERyWnZHRjNxNHd2am9FeHdVcFVaZXhDbFU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 NTY4LzM2MThBQjZFNzJBMzExRUU5NDU1NzIxMUM0RjlBRTAyL2xEclp2R0YzcTR3 dmpvRXh3VXBVWmV4Q2xVOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFJo7sntV3NbBifDbbA4IhPQYj2tTwu2xOV2zINCISixMJgGQEG8myT4 dttMtaA20HtjeS0+seEcM7+gByT/XiM2uZ4q7I3T+R5pyVjEtl5iQ2FrCANdXBlA mZkz7EwO39WtY4/ANVuif+bA0ZdwGXcuUDaGxr6z0zqs8L+XC/QUwKJXIQia9/+R 7eeeb+2IupyyxHD58dWwuOY/9UykaAyUjiU620+KDOGJGBAzZQN/npvG0w3Rq8OK VxEX6QcuVJ0DhvYnTaKTBSaVgx/oPpxQTnjaPO9orNbxUDChxiUSnNRsIu9DMSPv xlk5QZ5kb6D9xoZr1Tv2ykzJldEIFR8= -----END CERTIFICATE-----Generated at Sun Jun 2 20:59:16 2024 by rpki-client on console-fra.rpki-client.org