$ rpki-client -vvf rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft File: kEojXLR0fghgD8HSa5P1HEZ066o.mft (raw, json) Hash identifier: SNEuT3BPCVMR3RFqXAWkg94BamZv5enl+764c4D1SUw= Subject key identifier: C8:A7:EE:54:C2:90:C4:05:6C:37:FB:1F:D9:AD:42:2C:09:3B:4A:78 Authority key identifier: 90:4A:23:5C:B4:74:7E:08:60:0F:C1:D2:6B:93:F5:1C:46:74:EB:AA Certificate issuer: /CN=A917F247/serialNumber=904A235CB4747E08600FC1D26B93F51C4674EBAA Certificate serial: 0315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft Manifest number: 0303 Signing time: Sun 19 May 2024 03:13:46 +0000 Manifest this update: Sun 19 May 2024 03:13:46 +0000 Manifest next update: Sun 26 May 2024 03:13:45 +0000 Files and hashes: 1: kEojXLR0fghgD8HSa5P1HEZ066o.crl (hash: MXBPU06t0yoN6X2AMvoKtMKXcX9rVlGzKpA/v03coXM=) 2: CA2F11AE8F0511ECB2497B14C4F9AE02.roa (hash: X4rrrwyNxTqsuGYOFQJqdYKkuFCqgMWYgfh9t7Pa35U=) 3: 9AE9EDA80C8511ED84E8033BC4F9AE02.roa (hash: ftOJ78LkZwN0jBa3uD0IuWstrwm6/OGoDA7ca2HEaoc=) 4: C99952B88F0511ECB2497B14C4F9AE02.roa (hash: rsVTsLLajNF40hbwHBajJlxkytqJ8aqbnJpNWJXFGeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.crl rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F247/serialNumber=904A235CB4747E08600FC1D26B93F51C4674EBAA Validity Not Before: May 19 03:13:46 2024 GMT Not After : May 26 03:13:45 2024 GMT Subject: CN=66496e6a-408c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9c:df:00:37:2a:0b:d3:3e:d9:18:45:cd:75: 2f:71:00:4e:ce:d3:02:e9:19:a1:14:65:b3:ce:c5: 0e:d8:c1:08:25:b3:db:28:05:ef:43:fc:aa:79:27: 88:d5:e8:45:08:5a:4a:77:da:74:e8:52:51:a6:04: d6:35:5d:2e:64:68:09:d6:e2:51:5f:5e:49:9b:e6: 98:d6:f4:ce:51:ff:5e:82:61:27:0b:df:fe:85:72: 55:68:70:da:d6:17:75:32:75:ff:01:2d:ad:d1:6a: b5:de:e6:51:f7:2a:89:83:0c:c5:0a:2f:53:08:50: ff:99:03:e9:43:1a:9c:ec:f2:44:30:c3:7d:e8:a9: 12:18:03:49:fe:4f:9b:87:95:98:c8:53:eb:ec:14: b8:24:45:d0:fe:06:d2:5f:12:53:46:99:ad:28:98: 6d:b9:e0:d2:fe:33:3e:45:d3:77:f3:48:c0:7d:d3: 4e:6c:47:f0:77:a4:36:68:68:4a:b0:ef:af:49:0c: 16:3a:ed:a5:c1:28:3e:51:33:3e:d4:d4:fd:54:73: b8:64:1a:83:29:d2:72:5e:f7:a4:5d:85:17:23:d4: 48:70:25:33:12:09:19:57:8e:9d:53:4b:59:37:4d: e3:fe:a3:8b:43:e4:3a:39:f1:1a:b5:20:75:b2:20: 59:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A7:EE:54:C2:90:C4:05:6C:37:FB:1F:D9:AD:42:2C:09:3B:4A:78 X509v3 Authority Key Identifier: keyid:90:4A:23:5C:B4:74:7E:08:60:0F:C1:D2:6B:93:F5:1C:46:74:EB:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kEojXLR0fghgD8HSa5P1HEZ066o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F247/6D22EAF08F0311ECA5C9FE12C4F9AE02/kEojXLR0fghgD8HSa5P1HEZ066o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:da:6a:64:87:cc:0c:d5:cb:31:57:03:b9:41:97:78:df:42: 25:dc:1c:5a:53:59:3d:b1:dd:17:7a:45:3f:ec:b7:3a:cf:ad: 48:6f:a0:b9:77:d0:32:8c:d2:32:11:58:ee:97:c3:00:c2:65: 5f:19:b7:6a:ca:8d:f1:7e:85:b1:47:05:1c:f6:3a:56:07:b7: e5:3f:48:42:45:d7:69:87:ab:0c:9c:52:9c:c3:f1:6b:45:a4: 2e:5f:63:21:f8:b0:3d:ed:76:6a:3b:44:55:78:e9:89:b7:0a: 95:63:10:54:75:ef:e7:85:70:80:77:a7:b5:d6:b5:a0:d9:b8: 48:e2:c7:a9:4d:88:6f:ef:5e:8c:94:2c:cf:a0:23:12:38:19: 16:5d:2b:d3:c5:d3:8d:de:94:d1:40:ce:14:93:bb:85:38:ea: d2:90:1b:7d:51:74:b6:d0:fd:ee:22:9a:13:d4:5b:8b:1c:e7: 37:0f:d8:fd:fd:a2:e3:92:16:54:da:72:5f:3e:d4:7b:c2:6b: 4f:31:e0:1e:1a:8c:a0:94:89:f7:54:32:72:cc:e6:b8:6a:0e: 6d:b5:51:b0:2d:8d:e7:20:07:54:76:7b:1d:a9:30:01:51:4f: 1d:ce:68:7a:b1:7f:37:56:62:22:ba:6b:76:0e:d8:b3:f9:67: 25:bd:1b:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyNDcxMTAvBgNVBAUTKDkwNEEyMzVDQjQ3NDdFMDg2MDBGQzFEMjZCOTNGNTFD NDY3NEVCQUEwHhcNMjQwNTE5MDMxMzQ2WhcNMjQwNTI2MDMxMzQ1WjAYMRYwFAYD VQQDEw02NjQ5NmU2YS00MDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZzfADcqC9M+2RhFzXUvcQBOztMC6RmhFGWzzsUO2MEIJbPbKAXvQ/yqeSeI 1ehFCFpKd9p06FJRpgTWNV0uZGgJ1uJRX15Jm+aY1vTOUf9egmEnC9/+hXJVaHDa 1hd1MnX/AS2t0Wq13uZR9yqJgwzFCi9TCFD/mQPpQxqc7PJEMMN96KkSGANJ/k+b h5WYyFPr7BS4JEXQ/gbSXxJTRpmtKJhtueDS/jM+RdN380jAfdNObEfwd6Q2aGhK sO+vSQwWOu2lwSg+UTM+1NT9VHO4ZBqDKdJyXvekXYUXI9RIcCUzEgkZV46dU0tZ N03j/qOLQ+Q6OfEatSB1siBZIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMin7lTC kMQFbDf7H9mtQiwJO0p4MB8GA1UdIwQYMBaAFJBKI1y0dH4IYA/B0muT9RxGdOuq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjI0Ny82RDIyRUFGMDhG MDMxMUVDQTVDOUZFMTJDNEY5QUUwMi9rRW9qWExSMGZnaGdEOEhTYTVQMUhFWjA2 Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tFb2pYTFIwZmdoZ0Q4SFNhNVAxSEVaMDY2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjI0Ny82RDIyRUFGMDhGMDMxMUVDQTVDOUZFMTJDNEY5QUUwMi9rRW9qWExSMGZn aGdEOEhTYTVQMUhFWjA2Nm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn2mpkh8wM1csxVwO5QZd430Il3BxaU1k9sd0XekU/7Lc6z61Ib6C5 d9AyjNIyEVjul8MAwmVfGbdqyo3xfoWxRwUc9jpWB7flP0hCRddph6sMnFKcw/Fr RaQuX2Mh+LA97XZqO0RVeOmJtwqVYxBUde/nhXCAd6e11rWg2bhI4sepTYhv716M lCzPoCMSOBkWXSvTxdON3pTRQM4Uk7uFOOrSkBt9UXS20P3uIpoT1FuLHOc3D9j9 /aLjkhZU2nJfPtR7wmtPMeAeGoyglIn3VDJyzOa4ag5ttVGwLY3nIAdUdnsdqTAB UU8dzmh6sX83VmIiumt2Dtiz+WclvRv+ -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org