$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: jXJyOK1YeaGooTCo/JuLI/+WC/ulAirJJZW90GPyV1Q= Subject key identifier: AF:15:91:9C:98:74:DF:FB:4A:29:60:50:B8:4D:BC:52:7A:41:D7:B4 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0BE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0BDB Signing time: Sat 18 May 2024 19:04:49 +0000 Manifest this update: Sat 18 May 2024 19:04:49 +0000 Manifest next update: Sat 25 May 2024 19:04:49 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: s4cW0THvO9ALM+BQVmTP5+4291SNy+bdqUgJ8eVn1bQ=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: nywMJxp/QJRl/o51GroDZJBHV9bKbvCW1DrYRvKUn9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3043 (0xbe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: May 18 19:04:49 2024 GMT Not After : May 25 19:04:49 2024 GMT Subject: CN=6648fbd1-3e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:41:ec:a1:f2:8d:b5:b4:1c:c6:ab:8e:19:6d: f4:8f:a3:ea:cb:63:5b:19:bd:9a:43:ca:a5:dd:20: ce:f3:b7:e2:eb:f4:2b:2d:ee:be:25:fa:02:ac:b8: 61:90:b1:05:f7:bf:2d:c9:26:6f:34:59:c2:5c:48: 6d:57:5f:47:6f:92:40:f3:96:a3:ee:c5:4c:2b:02: 8d:17:ad:70:2c:c0:57:0f:6f:a1:49:b6:f4:6d:78: f8:a3:c0:41:1d:f2:8a:29:fa:e7:03:46:9f:de:1d: a5:1b:6b:5f:3b:71:a7:e6:2a:5d:0f:60:64:59:4b: 4d:b5:a2:77:5e:9f:47:59:ee:07:82:ab:c4:e5:79: 27:78:c4:b3:a6:6a:9e:6d:03:52:d0:4f:ba:f3:4c: ad:31:c7:8f:d1:db:1c:ca:bd:04:32:93:8a:c0:00: da:c8:f5:59:b8:2a:5f:23:58:f9:0a:ca:5f:9b:bf: 1c:ba:22:74:ac:97:ee:18:95:92:d6:48:3d:fc:ec: b5:2c:19:6d:e4:68:7e:40:db:29:3a:ef:1e:57:97: f0:87:0b:b7:e4:38:f4:55:31:e3:7b:d7:e9:f8:e8: 64:32:cb:15:86:46:62:0c:d6:c0:93:b9:81:7f:f8: e7:de:20:c5:69:bb:a2:c0:17:07:7b:19:6c:83:26: 90:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:15:91:9C:98:74:DF:FB:4A:29:60:50:B8:4D:BC:52:7A:41:D7:B4 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:58:0d:e7:66:1e:2b:4a:27:1d:3f:fc:ea:ee:b4:65:07:91: 7b:eb:23:d8:e1:74:6d:03:79:ad:f9:0a:88:9e:3a:b8:5e:cc: 82:bf:d3:17:23:3f:7f:b0:b8:b4:ad:15:15:af:91:ee:1e:ac: 3c:b6:3f:5a:52:b2:51:74:ef:93:53:95:d1:5f:c5:a7:b3:21: 56:c7:ed:84:2c:dd:1f:94:e9:aa:e9:26:ed:22:47:b1:07:ed: 47:e6:a3:4d:da:41:22:f3:63:04:4e:21:2c:44:98:5f:18:0b: ff:c4:9e:a9:b5:17:87:0b:99:91:89:d0:9c:e2:d3:d4:a2:7b: ee:60:7e:a4:1b:d5:48:e9:25:35:73:38:f9:20:f4:4d:c2:e1: 4d:36:d6:dc:5b:9d:c4:45:ac:ec:50:a7:44:02:86:4f:40:1b: cf:6c:55:ab:08:3f:3c:7d:e0:7f:10:99:29:e1:ac:92:fb:2c: 3d:f3:4c:25:d4:b4:69:d3:01:6e:e6:6b:82:60:b6:32:75:83: 3c:37:3a:1e:78:03:71:11:3c:fb:e6:b9:23:8b:9b:f5:de:ff: ab:8f:20:42:b1:0e:d1:59:20:ec:3d:79:bf:b4:03:60:55:2b: bf:99:4f:9c:c4:10:db:e2:87:fc:23:e2:ab:d4:fb:24:b2:e0: 2f:41:e9:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjQwNTE4MTkwNDQ5WhcNMjQwNTI1MTkwNDQ5WjAYMRYwFAYD VQQDEw02NjQ4ZmJkMS0zZTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0HsofKNtbQcxquOGW30j6Pqy2NbGb2aQ8ql3SDO87fi6/QrLe6+JfoCrLhh kLEF978tySZvNFnCXEhtV19Hb5JA85aj7sVMKwKNF61wLMBXD2+hSbb0bXj4o8BB HfKKKfrnA0af3h2lG2tfO3Gn5ipdD2BkWUtNtaJ3Xp9HWe4HgqvE5XkneMSzpmqe bQNS0E+680ytMceP0dscyr0EMpOKwADayPVZuCpfI1j5Cspfm78cuiJ0rJfuGJWS 1kg9/Oy1LBlt5Gh+QNspOu8eV5fwhwu35Dj0VTHje9fp+OhkMssVhkZiDNbAk7mB f/jn3iDFabuiwBcHexlsgyaQSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8VkZyY dN/7SilgULhNvFJ6Qde0MB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZWA3nZh4rSicdP/zq7rRlB5F76yPY4XRtA3mt+QqInjq4XsyCv9MX Iz9/sLi0rRUVr5HuHqw8tj9aUrJRdO+TU5XRX8WnsyFWx+2ELN0flOmq6SbtIkex B+1H5qNN2kEi82METiEsRJhfGAv/xJ6ptReHC5mRidCc4tPUonvuYH6kG9VI6SU1 czj5IPRNwuFNNtbcW53ERazsUKdEAoZPQBvPbFWrCD88feB/EJkp4ayS+yw980wl 1LRp0wFu5muCYLYydYM8NzoeeANxETz75rkji5v13v+rjyBCsQ7RWSDsPXm/tANg VSu/mU+cxBDb4of8I+Kr1PsksuAvQekT -----END CERTIFICATE-----Generated at Sat May 18 19:56:06 2024 by rpki-client on console-fra.rpki-client.org