$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft File: Epbn674wET_h0_KXMDOkyzEUSB0.mft (raw, json) Hash identifier: f6OCj+y9bNXxoWq1wNoxG+dSGXYWK1YgTh2nHP/zrUY= Subject key identifier: 96:7D:52:D4:81:68:C6:B2:11:15:37:4C:56:90:AF:10:2D:C7:AA:5F Authority key identifier: 12:96:E7:EB:BE:30:11:3F:E1:D3:F2:97:30:33:A4:CB:31:14:48:1D Certificate issuer: /CN=A9160DEB/serialNumber=1296E7EBBE30113FE1D3F2973033A4CB3114481D Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft Manifest number: 6D Signing time: Sun 19 May 2024 07:31:41 +0000 Manifest this update: Sun 19 May 2024 07:31:40 +0000 Manifest next update: Sun 26 May 2024 07:31:40 +0000 Files and hashes: 1: Epbn674wET_h0_KXMDOkyzEUSB0.crl (hash: 8xds7SrdHq8OjoZS1cd4j4ZUiIQXhdh7eMfgTTLbCcU=) 2: F0E06498748B11EE92D55F6AC4F9AE02.roa (hash: G4RtexKo9ny4TbYwCN/1w5r6cBVLkFOvhnsprKO6E3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.crl rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DEB/serialNumber=1296E7EBBE30113FE1D3F2973033A4CB3114481D Validity Not Before: May 19 07:31:40 2024 GMT Not After : May 26 07:31:40 2024 GMT Subject: CN=6649aadc-1990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:cb:58:a1:8d:4c:98:93:d7:8a:5c:30:49:e2: 64:66:f3:42:68:eb:52:a3:c3:bf:76:86:46:4d:9d: 33:ec:5e:a8:03:86:f0:be:dc:d3:ce:18:0d:d8:e5: c3:15:fe:1e:61:b1:f2:cc:e4:ea:b5:a5:15:08:17: bb:e0:40:4f:81:bc:86:40:7f:c5:38:f4:38:01:65: 08:3e:32:f4:0c:fb:d7:e3:df:3f:89:4b:fc:6d:15: 18:89:33:21:fc:11:2d:8a:06:24:90:0d:e9:de:77: 75:c9:dc:9c:be:ef:b2:79:2d:d6:01:0c:4b:0c:07: 9d:d9:94:cc:c0:2c:59:03:2b:11:74:6f:bf:ab:d4: f5:bf:9e:56:a1:88:81:1a:a4:e1:e5:58:af:77:d2: b4:c0:bd:b9:c0:36:3f:42:5f:16:72:6e:ca:cc:b6: 47:e2:23:05:f6:0b:ad:20:f6:cc:c6:36:63:fe:74: 62:2d:0b:41:1c:61:a3:ae:b0:67:8d:e0:88:fc:d5: c8:27:f2:ff:e4:e4:24:66:05:a5:40:85:8c:bd:20: 7d:cd:7d:a5:6c:d7:51:94:cc:fa:7d:fe:91:f6:d9: 76:73:7a:75:18:7e:49:aa:02:de:ae:44:69:9e:c6: 70:2c:a6:f4:d4:a5:b2:d2:b8:c1:3a:b7:07:c7:26: 41:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7D:52:D4:81:68:C6:B2:11:15:37:4C:56:90:AF:10:2D:C7:AA:5F X509v3 Authority Key Identifier: keyid:12:96:E7:EB:BE:30:11:3F:E1:D3:F2:97:30:33:A4:CB:31:14:48:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Epbn674wET_h0_KXMDOkyzEUSB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DEB/A331F474726911EEA3F8E757C4F9AE02/Epbn674wET_h0_KXMDOkyzEUSB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:ee:79:ce:0c:64:6a:0a:95:8c:35:fc:53:a0:17:62:72:22: b3:d5:e2:e4:c8:3b:7e:6a:da:34:46:1b:c2:5b:78:ca:ae:ce: 95:d4:a5:fd:64:84:bd:30:2f:33:2b:8e:47:06:b6:0b:91:76: bb:d0:5d:6b:94:92:00:c7:db:c9:67:03:d9:d5:a7:7f:3b:6f: 9c:2a:43:57:f2:a1:93:15:00:5f:9e:74:4f:80:9b:0c:20:a1: 02:bb:db:78:ff:4d:e3:2e:00:9b:ce:66:b5:8a:dd:5f:e7:93: af:1f:de:50:58:3e:00:6f:92:fd:04:d6:ca:20:98:ab:aa:92: c3:ff:13:dc:03:37:95:ba:dd:10:73:79:1f:48:aa:de:cf:74: 10:50:a9:89:3d:93:16:39:0f:b2:fa:5d:97:60:77:17:fd:f6: 9c:ca:50:1d:23:89:9b:c1:0b:8c:e2:78:6a:de:5f:92:0a:a7: 71:cc:82:d4:8b:73:7b:e0:6b:f9:06:83:d9:1b:81:01:b0:7d: 7c:58:a5:29:80:9d:63:01:ec:e0:f4:f6:c5:f0:8c:71:03:38: 95:75:68:86:8c:69:31:fc:11:7e:95:ff:a8:84:4e:83:90:1b: de:b9:99:11:98:35:63:a4:bf:68:03:bd:ad:96:39:aa:16:4f: 04:92:1f:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MERFQjExMC8GA1UEBRMoMTI5NkU3RUJCRTMwMTEzRkUxRDNGMjk3MzAzM0E0Q0Iz MTE0NDgxRDAeFw0yNDA1MTkwNzMxNDBaFw0yNDA1MjYwNzMxNDBaMBgxFjAUBgNV BAMTDTY2NDlhYWRjLTE5OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCby1ihjUyYk9eKXDBJ4mRm80Jo61Kjw792hkZNnTPsXqgDhvC+3NPOGA3Y5cMV /h5hsfLM5Oq1pRUIF7vgQE+BvIZAf8U49DgBZQg+MvQM+9fj3z+JS/xtFRiJMyH8 ES2KBiSQDened3XJ3Jy+77J5LdYBDEsMB53ZlMzALFkDKxF0b7+r1PW/nlahiIEa pOHlWK930rTAvbnANj9CXxZybsrMtkfiIwX2C60g9szGNmP+dGItC0EcYaOusGeN 4Ij81cgn8v/k5CRmBaVAhYy9IH3NfaVs11GUzPp9/pH22XZzenUYfkmqAt6uRGme xnAspvTUpbLSuME6twfHJkHtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUln1S1IFo xrIRFTdMVpCvEC3Hql8wHwYDVR0jBBgwFoAUEpbn674wET/h0/KXMDOkyzEUSB0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwREVCL0EzMzFGNDc0NzI2 OTExRUVBM0Y4RTc1N0M0RjlBRTAyL0VwYm42NzR3RVRfaDBfS1hNRE9reXpFVVNC MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRXBibjY3NHdFVF9oMF9LWE1ET2t5ekVVU0IwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw REVCL0EzMzFGNDc0NzI2OTExRUVBM0Y4RTc1N0M0RjlBRTAyL0VwYm42NzR3RVRf aDBfS1hNRE9reXpFVVNCMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEbuec4MZGoKlYw1/FOgF2JyIrPV4uTIO35q2jRGG8JbeMquzpXUpf1k hL0wLzMrjkcGtguRdrvQXWuUkgDH28lnA9nVp387b5wqQ1fyoZMVAF+edE+Amwwg oQK723j/TeMuAJvOZrWK3V/nk68f3lBYPgBvkv0E1sogmKuqksP/E9wDN5W63RBz eR9Iqt7PdBBQqYk9kxY5D7L6XZdgdxf99pzKUB0jiZvBC4zieGreX5IKp3HMgtSL c3vga/kGg9kbgQGwfXxYpSmAnWMB7OD09sXwjHEDOJV1aIaMaTH8EX6V/6iEToOQ G965mRGYNWOkv2gDva2WOaoWTwSSH38= -----END CERTIFICATE-----Generated at Sun May 19 08:26:43 2024 by rpki-client on console-fra.rpki-client.org