$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: yfomnI39yDe+TqaYhXsVFq///u0Jbt75GP7h2KNp4wQ= Subject key identifier: 97:2B:B1:59:9A:7D:F9:32:48:53:44:A0:15:0C:D6:87:ED:39:65:9C Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 0629 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 0622 Signing time: Sat 18 May 2024 23:46:13 +0000 Manifest this update: Sat 18 May 2024 23:46:12 +0000 Manifest next update: Sat 25 May 2024 23:46:12 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: Pf9t/h+3cbHEhYqYiqsBoXs30py3PLrXWWx7kg39yF4=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: umfOmYx1C1o3wC/2Ke3RN9zKbrXOV6GEbkjUeV3fdUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: May 18 23:46:12 2024 GMT Not After : May 25 23:46:12 2024 GMT Subject: CN=66493dc4-0d65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:77:c8:b7:05:65:0c:c4:62:77:62:32:93:9a: 69:c0:f5:bd:b0:8c:88:34:2f:40:56:46:85:0f:72: 8b:7a:e1:0f:f2:65:82:40:9a:e2:1a:81:b4:47:5c: 80:94:0e:a4:7c:6b:9e:b6:9b:68:d1:7d:ce:36:f2: 2e:0e:7b:a7:87:87:53:b3:c0:c7:27:bb:d2:70:b5: db:84:b2:e3:fb:87:6f:32:2c:95:3c:86:0b:b2:25: 3e:b9:94:26:37:ac:fe:51:7b:02:e7:bb:7f:52:fd: 28:70:e5:8d:b4:0d:84:4d:a9:fd:f7:45:fa:b7:92: ab:b0:1b:5d:1a:8e:35:65:00:a1:07:0e:31:07:76: 82:df:ce:70:ab:e5:de:03:76:38:ec:af:6b:d7:9f: 59:3d:f1:66:c7:00:8b:b4:d4:b8:d1:45:c8:3a:7a: c6:a7:f4:3e:60:03:15:13:6c:82:65:8d:0a:52:fc: da:24:b4:4d:e1:59:db:4c:98:94:32:d3:71:ab:5c: f1:a9:89:72:f2:6e:a7:58:be:b7:66:a5:b4:d0:81: f4:3c:36:b9:57:b6:c4:87:a4:76:cc:5b:e3:4b:29: a8:9d:00:9e:60:12:9a:15:13:92:88:a9:9d:f0:2e: e2:88:c4:0f:96:1c:00:cf:b3:a4:db:27:21:e8:c7: cd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:2B:B1:59:9A:7D:F9:32:48:53:44:A0:15:0C:D6:87:ED:39:65:9C X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:af:72:66:22:e7:1a:f4:d3:23:00:a8:17:c4:5f:ba:5b:58: 0f:5c:a7:03:64:6d:dc:44:18:c8:61:b5:42:a3:fb:21:2b:22: d4:51:99:ad:11:f7:d3:e8:db:f6:61:0e:57:96:83:25:7c:00: 25:b9:7f:2d:2c:89:09:d1:b2:03:10:09:65:18:0c:ef:64:14: fc:54:d7:de:cf:ca:b4:35:09:cb:a4:48:e8:65:63:65:fe:ab: c7:2c:ba:70:13:22:48:92:05:fc:35:73:3a:80:61:42:7a:1a: ff:03:52:7c:5b:65:41:b1:f3:6d:6e:15:a7:b2:5e:bc:07:5c: c5:1d:a5:4d:97:e2:fa:ff:5e:39:4a:41:5f:ea:d8:2d:9a:2e: 17:6e:61:99:7e:1f:f9:0b:f1:90:e5:9c:ac:c1:59:b9:6e:9d: c5:64:18:7b:3a:81:ec:ef:78:33:04:68:12:49:22:79:b5:b9: d0:94:47:36:73:63:da:d0:99:62:a5:7a:ef:b1:32:b6:38:61: f5:3a:fe:90:dc:0d:ea:3c:1f:6b:05:fd:0e:b5:30:09:c0:97: ae:b5:b1:97:e5:8f:52:4a:bd:22:dc:54:39:f5:40:96:27:bf: 8c:f3:58:c7:a2:b1:52:2b:4d:92:4c:fd:5a:07:be:ea:43:2d: 1c:03:33:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjQwNTE4MjM0NjEyWhcNMjQwNTI1MjM0NjEyWjAYMRYwFAYD VQQDEw02NjQ5M2RjNC0wZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3fItwVlDMRid2Iyk5ppwPW9sIyINC9AVkaFD3KLeuEP8mWCQJriGoG0R1yA lA6kfGuetpto0X3ONvIuDnunh4dTs8DHJ7vScLXbhLLj+4dvMiyVPIYLsiU+uZQm N6z+UXsC57t/Uv0ocOWNtA2ETan990X6t5KrsBtdGo41ZQChBw4xB3aC385wq+Xe A3Y47K9r159ZPfFmxwCLtNS40UXIOnrGp/Q+YAMVE2yCZY0KUvzaJLRN4VnbTJiU MtNxq1zxqYly8m6nWL63ZqW00IH0PDa5V7bEh6R2zFvjSymonQCeYBKaFROSiKmd 8C7iiMQPlhwAz7Ok2ych6MfNCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcrsVma ffkySFNEoBUM1oftOWWcMB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApr3JmIuca9NMjAKgXxF+6W1gPXKcDZG3cRBjIYbVCo/shKyLUUZmt EffT6Nv2YQ5XloMlfAAluX8tLIkJ0bIDEAllGAzvZBT8VNfez8q0NQnLpEjoZWNl /qvHLLpwEyJIkgX8NXM6gGFCehr/A1J8W2VBsfNtbhWnsl68B1zFHaVNl+L6/145 SkFf6tgtmi4XbmGZfh/5C/GQ5ZyswVm5bp3FZBh7OoHs73gzBGgSSSJ5tbnQlEc2 c2Pa0JlipXrvsTK2OGH1Ov6Q3A3qPB9rBf0OtTAJwJeutbGX5Y9SSr0i3FQ59UCW J7+M81jHorFSK02STP1aB77qQy0cAzOk -----END CERTIFICATE-----Generated at Sun May 19 00:59:42 2024 by rpki-client on console-fra.rpki-client.org