$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: dRYpJIOwKDrDwawCpieE1NsLzBCArKO+fLr1g43YU+U= Subject key identifier: 92:9B:4D:D3:BA:9D:03:2D:37:C7:20:5F:1F:9F:4F:27:AF:A8:49:E8 Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 04CF Signing time: Sun 19 May 2024 01:36:17 +0000 Manifest this update: Sun 19 May 2024 01:36:17 +0000 Manifest next update: Sun 26 May 2024 01:36:17 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: eOHpgKKJimow6za0jbrMq3Dd6ubtbgzjbf8fzxNXe9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: May 19 01:36:17 2024 GMT Not After : May 26 01:36:17 2024 GMT Subject: CN=66495791-c20e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:71:e3:2e:5c:d5:06:6e:e7:57:ff:2d:cd:9d: 4f:90:e5:a1:60:e1:8f:ae:7e:e7:57:23:42:12:b2: b2:75:da:ff:8e:03:25:68:2e:74:4f:a4:a7:64:79: 8d:45:ac:f7:76:75:df:95:e2:f1:f4:2f:b2:0c:fd: 6b:e4:09:9d:21:a7:38:76:a2:df:3d:5f:6b:fa:a6: 3d:bc:bb:67:a1:eb:01:3c:53:94:84:a8:7c:b3:a3: 37:2c:90:ef:60:fc:e2:6a:70:54:76:23:1c:4a:84: f6:de:27:10:4e:ce:49:3c:49:7b:44:6b:24:e1:ca: 5f:50:8b:00:a0:84:8d:3d:9d:3e:e9:7e:64:fd:19: 3d:5c:21:ab:dc:53:95:b2:0c:96:4a:cb:38:f0:9e: d0:e9:80:ec:20:21:9d:37:f9:bb:c8:82:12:fe:4f: 7d:fe:fd:a2:67:5c:ad:4b:82:61:75:8a:e7:1b:d1: 6a:d7:13:25:b6:6b:93:b9:5b:31:82:d5:f6:1f:ec: 9a:5d:6c:a4:be:48:6d:c7:4f:ae:95:07:1c:14:f9: 52:59:96:51:8b:91:16:8e:91:ca:f0:9b:6e:59:d5: 77:d9:9f:b4:00:67:29:00:72:21:b2:9b:f6:06:34: a7:fa:2b:a1:ad:6a:66:8c:b1:1b:55:93:d6:59:14: 13:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:9B:4D:D3:BA:9D:03:2D:37:C7:20:5F:1F:9F:4F:27:AF:A8:49:E8 X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:9a:d8:0d:4b:fa:ea:fd:8f:35:2a:fe:fe:4a:a7:b4:26:6a: 68:c0:81:1f:09:48:0d:e4:7f:f9:a1:a5:08:b9:72:bf:23:ba: 68:d6:ee:1c:2c:4a:80:3e:4d:2f:27:71:e7:86:95:9c:2c:b1: a3:ea:ef:a4:9d:32:8f:82:4b:c8:5d:1f:19:20:e7:60:bb:1f: 8f:ee:da:e6:b0:fc:14:03:42:4a:0f:45:84:11:c2:aa:a2:bd: 50:c6:d0:bf:9e:85:cf:3f:6e:f4:7d:b6:e1:31:02:b7:39:81: 75:66:b2:eb:e6:04:58:d6:30:db:b2:1a:d5:c1:58:97:c2:93: 14:c5:4b:86:d2:a9:3e:60:34:ce:3e:2e:d1:87:6b:cf:da:99: e3:67:48:ed:78:e6:72:2e:b8:3a:53:48:bf:cb:d1:29:c7:6d: 87:a3:d2:08:7a:8a:12:83:69:ae:d0:72:62:67:be:7d:ea:fe: 22:b9:db:e6:27:d8:c6:b3:30:d5:01:c4:d3:ab:7f:ff:7a:84: 5b:49:2c:b7:1d:b8:58:47:c9:64:c3:8b:7d:01:9d:fd:79:6a: c0:d8:39:fa:75:92:be:bf:a7:5b:27:bd:78:6e:16:cc:38:7f: 29:9a:91:ed:ec:05:9f:75:a6:5a:a1:7c:b5:70:1c:2b:06:02: be:c4:fa:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjQwNTE5MDEzNjE3WhcNMjQwNTI2MDEzNjE3WjAYMRYwFAYD VQQDEw02NjQ5NTc5MS1jMjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXHjLlzVBm7nV/8tzZ1PkOWhYOGPrn7nVyNCErKyddr/jgMlaC50T6SnZHmN Raz3dnXfleLx9C+yDP1r5AmdIac4dqLfPV9r+qY9vLtnoesBPFOUhKh8s6M3LJDv YPzianBUdiMcSoT23icQTs5JPEl7RGsk4cpfUIsAoISNPZ0+6X5k/Rk9XCGr3FOV sgyWSss48J7Q6YDsICGdN/m7yIIS/k99/v2iZ1ytS4JhdYrnG9Fq1xMltmuTuVsx gtX2H+yaXWykvkhtx0+ulQccFPlSWZZRi5EWjpHK8JtuWdV32Z+0AGcpAHIhspv2 BjSn+iuhrWpmjLEbVZPWWRQTUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKbTdO6 nQMtN8cgXx+fTyevqEnoMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBmtgNS/rq/Y81Kv7+Sqe0JmpowIEfCUgN5H/5oaUIuXK/I7po1u4c LEqAPk0vJ3HnhpWcLLGj6u+knTKPgkvIXR8ZIOdgux+P7trmsPwUA0JKD0WEEcKq or1QxtC/noXPP270fbbhMQK3OYF1ZrLr5gRY1jDbshrVwViXwpMUxUuG0qk+YDTO Pi7Rh2vP2pnjZ0jteOZyLrg6U0i/y9Epx22Ho9IIeooSg2mu0HJiZ7596v4iudvm J9jGszDVAcTTq3//eoRbSSy3HbhYR8lkw4t9AZ39eWrA2Dn6dZK+v6dbJ714bhbM OH8pmpHt7AWfdaZaoXy1cBwrBgK+xPrr -----END CERTIFICATE-----Generated at Sun May 19 02:39:36 2024 by rpki-client on console-fra.rpki-client.org