$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: B9tQPP5LR+mdyDl4Khy7DRWCUX56o8k3lkViFflOKyA= Subject key identifier: DC:F5:F5:7C:08:77:B5:E9:5B:7A:EA:A5:AE:B4:C8:82:6A:34:C8:60 Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: 15 Signing time: Sun 19 May 2024 08:51:26 +0000 Manifest this update: Sun 19 May 2024 08:51:26 +0000 Manifest next update: Sun 26 May 2024 08:51:25 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: ybDnngzksywnsPJhsPPMUJEicvssNwJTJmSQW7TCNzc=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: qeKpax6tWFd6dXRCCgHpRrEIFHUWf08cbXJ0Npcf3Z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: May 19 08:51:26 2024 GMT Not After : May 26 08:51:25 2024 GMT Subject: CN=6649bd8e-a19a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6e:ca:f0:e7:bb:df:3b:b0:36:76:c7:b8:a3: 31:b9:8e:74:03:b4:e0:1b:e8:ff:bd:83:86:b6:13: 33:f3:8a:c3:ff:39:75:0d:f6:8d:49:fe:6f:b9:14: 86:12:64:7e:52:29:3e:e2:2e:c7:f2:86:31:d5:f0: 32:67:df:d0:fd:cd:2d:51:5f:a6:c5:91:be:0a:38: 4b:1a:94:49:38:dc:7e:3a:d4:eb:38:90:af:af:90: 90:7b:5b:4b:1a:8b:1a:71:05:15:0f:ae:67:d5:02: f1:fd:04:21:82:80:f8:28:f4:29:6b:a1:4e:25:e8: f7:93:13:fe:52:e0:28:de:5b:f9:a2:c4:f4:bb:a9: 29:1e:59:70:52:60:af:e3:f8:2c:60:d7:1f:ce:52: 04:f2:5c:8c:a0:24:53:35:ba:99:bb:92:17:cc:14: 5b:83:5c:90:d7:bc:d8:30:35:00:d1:fc:25:6d:3b: f5:29:35:aa:61:cc:86:79:73:f2:b5:13:76:3a:22: f1:dd:4a:a2:9b:3f:be:e2:44:12:e3:2a:65:67:28: c7:05:c4:e9:8c:c7:83:60:e5:68:3e:c7:ed:86:96: 19:74:11:79:d4:8d:67:5a:5f:a8:f1:35:f1:32:39: 0d:5d:34:05:27:ee:a5:b5:22:31:2e:f3:bc:2e:95: 24:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F5:F5:7C:08:77:B5:E9:5B:7A:EA:A5:AE:B4:C8:82:6A:34:C8:60 X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:83:a2:09:99:bb:97:64:d0:01:da:72:59:72:ea:f4:58:6f: 4f:30:7a:5a:ff:7d:52:f2:9c:03:e0:6e:ec:17:01:fb:00:de: 77:68:db:06:0e:58:60:56:a4:5e:81:53:8c:39:37:b5:0d:c6: c9:13:9c:e5:49:69:c8:14:75:35:3e:bb:7c:79:57:65:39:06: 12:a2:75:c9:7a:6f:c8:d4:74:b0:4c:ee:9a:a3:5e:cb:6b:66: 2b:ce:a5:ca:7d:50:df:cb:37:30:c6:ed:57:3d:5d:7a:b5:57: 68:b4:6a:1b:fd:7e:ce:d4:ef:71:a5:02:09:84:48:e4:b5:8e: 4e:90:e8:d3:f4:b8:4e:11:8e:76:6d:cb:99:1b:40:fb:b9:5d: 6b:55:d8:ea:17:69:b9:45:06:18:97:ab:14:80:2a:12:c1:9b: 08:e2:8c:c4:a6:e8:23:2c:4c:3a:6e:37:1b:67:d7:d8:97:47: 74:79:b7:85:e8:85:79:b1:40:a3:06:4a:a7:a1:c0:86:54:e7: a2:cd:78:33:2e:9e:b4:09:33:7a:ff:b0:82:7c:25:0c:a3:f3: 57:c0:20:c2:6e:a8:4b:1f:89:d3:4f:03:90:60:ff:2d:20:77: b7:a7:1e:f6:f0:0a:35:f5:e0:29:99:c3:c5:ae:1f:71:70:94: 06:69:a1:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTU1NjExMC8GA1UEBRMoNTRBQTRGMjExM0EwRDFBMUI3RUU1NTEyQkVBRTUzNzFF QzZEQTQyMTAeFw0yNDA1MTkwODUxMjZaFw0yNDA1MjYwODUxMjVaMBgxFjAUBgNV BAMTDTY2NDliZDhlLWExOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAbsrw57vfO7A2dse4ozG5jnQDtOAb6P+9g4a2EzPzisP/OXUN9o1J/m+5FIYS ZH5SKT7iLsfyhjHV8DJn39D9zS1RX6bFkb4KOEsalEk43H461Os4kK+vkJB7W0sa ixpxBRUPrmfVAvH9BCGCgPgo9ClroU4l6PeTE/5S4CjeW/mixPS7qSkeWXBSYK/j +Cxg1x/OUgTyXIygJFM1upm7khfMFFuDXJDXvNgwNQDR/CVtO/UpNaphzIZ5c/K1 E3Y6IvHdSqKbP77iRBLjKmVnKMcFxOmMx4Ng5Wg+x+2Glhl0EXnUjWdaX6jxNfEy OQ1dNAUn7qW1IjEu87wulSRdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3PX1fAh3 telbeuqlrrTIgmo0yGAwHwYDVR0jBBgwFoAUVKpPIROg0aG37lUSvq5TcextpCEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NTU2L0IxNDVEMDJFMDE3 QzExRUZCODY0MzI1QUM0RjlBRTAyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBD RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVktwUElST2cwYUczN2xVU3ZxNVRjZXh0cENFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 NTU2L0IxNDVEMDJFMDE3QzExRUZCODY0MzI1QUM0RjlBRTAyL1ZLcFBJUk9nMGFH MzdsVVN2cTVUY2V4dHBDRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ+DogmZu5dk0AHaclly6vRYb08welr/fVLynAPgbuwXAfsA3ndo2wYO WGBWpF6BU4w5N7UNxskTnOVJacgUdTU+u3x5V2U5BhKidcl6b8jUdLBM7pqjXstr ZivOpcp9UN/LNzDG7Vc9XXq1V2i0ahv9fs7U73GlAgmESOS1jk6Q6NP0uE4RjnZt y5kbQPu5XWtV2OoXablFBhiXqxSAKhLBmwjijMSm6CMsTDpuNxtn19iXR3R5t4Xo hXmxQKMGSqehwIZU56LNeDMunrQJM3r/sIJ8JQyj81fAIMJuqEsfidNPA5Bg/y0g d7enHvbwCjX14CmZw8WuH3FwlAZpoRk= -----END CERTIFICATE-----Generated at Sun May 19 09:38:26 2024 by rpki-client on console-fra.rpki-client.org