$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: V0ZquBXJQkiK/3lPJSogavgBuFOSgiHPurzip5H++lQ= Subject key identifier: 70:05:BA:CC:1E:DC:0C:13:90:B6:8D:9D:2C:A1:31:85:B2:AE:25:AE Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 2308 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 22DB Signing time: Fri 31 May 2024 16:19:33 +0000 Manifest this update: Fri 31 May 2024 16:19:32 +0000 Manifest next update: Fri 07 Jun 2024 16:19:32 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: ofW62r0VjSAqXVwH032gfMOU3Q5ylYkOQ1hOjUVc9ZA=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: vb5cHcm55U7pljjzoO4g9FNB1flb1KgvWDDtM0SHGvU=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: SI+LLofCjizJ4ADDiYbKrAg1//cncoxs2Ga5Zj0MMu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8968 (0x2308) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: May 31 16:19:32 2024 GMT Not After : Jun 7 16:19:32 2024 GMT Subject: CN=6659f894-a693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d6:34:42:b3:cb:77:7e:82:0e:8a:c3:08:79: 62:68:c3:23:95:fa:f6:ab:5b:39:d8:ec:18:85:1b: 2e:14:aa:c8:05:1f:0b:7e:46:c6:93:2b:ad:7a:81: 18:54:03:a7:23:5b:ad:55:54:fc:02:5b:09:56:64: 81:cb:ef:5f:f7:cc:69:6f:94:c0:16:e6:f1:19:72: a0:4c:04:00:e2:bf:93:10:9d:39:db:fb:fc:fe:66: 02:65:5c:50:f6:2c:52:9c:a5:c8:c3:72:8b:ed:a4: 90:41:71:13:1c:d3:2a:29:92:3a:91:22:3a:e4:78: ef:8f:19:ed:3a:9b:72:32:b4:d7:fc:84:27:4d:0a: b7:c2:72:58:24:c4:db:46:1f:10:bb:ce:1d:ae:a1: 4e:1c:82:67:8e:91:47:9f:55:e3:16:19:82:5a:97: 74:5a:78:9b:31:75:da:54:94:75:89:07:19:47:45: 87:9d:16:85:cd:4b:3e:b0:fd:5f:b8:6a:42:7f:78: 10:94:dd:37:47:57:dd:a6:d8:d6:f7:4c:e2:52:de: b9:bf:e5:c4:cd:58:b4:7c:a6:9c:28:cc:c8:90:a9: d8:3c:79:4b:f3:d7:c0:90:ef:ae:aa:99:df:47:b6: 2f:02:89:f4:ae:73:3b:3d:bf:ac:f6:10:a6:3e:20: 1f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:05:BA:CC:1E:DC:0C:13:90:B6:8D:9D:2C:A1:31:85:B2:AE:25:AE X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:52:05:21:01:0d:ac:c0:1d:de:60:29:d2:ff:db:58:53:22: de:11:a5:e1:b8:ef:ec:13:d6:03:6f:b0:e7:bd:a9:5d:7f:46: 02:f3:bb:b2:6c:42:a4:5f:00:aa:07:ce:86:55:d6:ab:a4:9d: 48:f0:ce:85:5e:09:27:e6:24:ea:4e:dc:13:4b:6f:91:cc:c3: 7b:6f:fc:b6:09:f5:93:fb:96:a8:ef:31:69:18:4b:46:b5:27: fc:14:29:1e:cb:61:9a:35:18:9a:40:7f:a1:c5:f3:39:a4:fb: 9c:81:58:77:18:ad:13:59:45:0f:e8:e3:1b:3c:c9:d2:e1:39: 8f:59:7a:f4:fa:f1:cc:0e:f2:6f:a5:b5:0b:69:02:cf:2c:18: 75:57:e7:b6:96:e7:5a:34:55:19:89:af:ce:cc:69:00:c8:f2: ad:81:b1:b4:55:c3:22:75:01:a8:52:9e:7b:5a:9a:8c:5e:5b: 8c:66:08:d4:53:0d:a0:c3:21:93:83:47:8f:11:61:82:2d:6d: 64:52:9b:bc:37:ce:44:16:da:e1:86:03:9f:98:27:38:d1:25: 03:6c:91:ee:52:5f:27:68:81:37:c6:25:b6:6b:ae:0e:35:eb: bf:c7:b7:ce:ac:fc:29:9f:cc:76:1f:27:d1:7b:2a:d2:c4:4f: be:81:83:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjQwNTMxMTYxOTMyWhcNMjQwNjA3MTYxOTMyWjAYMRYwFAYD VQQDEw02NjU5Zjg5NC1hNjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNY0QrPLd36CDorDCHliaMMjlfr2q1s52OwYhRsuFKrIBR8LfkbGkyuteoEY VAOnI1utVVT8AlsJVmSBy+9f98xpb5TAFubxGXKgTAQA4r+TEJ052/v8/mYCZVxQ 9ixSnKXIw3KL7aSQQXETHNMqKZI6kSI65HjvjxntOptyMrTX/IQnTQq3wnJYJMTb Rh8Qu84drqFOHIJnjpFHn1XjFhmCWpd0WnibMXXaVJR1iQcZR0WHnRaFzUs+sP1f uGpCf3gQlN03R1fdptjW90ziUt65v+XEzVi0fKacKMzIkKnYPHlL89fAkO+uqpnf R7YvAon0rnM7Pb+s9hCmPiAfHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAFuswe 3AwTkLaNnSyhMYWyriWuMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWUgUhAQ2swB3eYCnS/9tYUyLeEaXhuO/sE9YDb7Dnvaldf0YC87uy bEKkXwCqB86GVdarpJ1I8M6FXgkn5iTqTtwTS2+RzMN7b/y2CfWT+5ao7zFpGEtG tSf8FCkey2GaNRiaQH+hxfM5pPucgVh3GK0TWUUP6OMbPMnS4TmPWXr0+vHMDvJv pbULaQLPLBh1V+e2ludaNFUZia/OzGkAyPKtgbG0VcMidQGoUp57WpqMXluMZgjU Uw2gwyGTg0ePEWGCLW1kUpu8N85EFtrhhgOfmCc40SUDbJHuUl8naIE3xiW2a64O Neu/x7fOrPwpn8x2HyfReyrSxE++gYMI -----END CERTIFICATE-----Generated at Fri May 31 17:44:25 2024 by rpki-client on console-fra.rpki-client.org