$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: vMAXpcsdlla39qeALgdMVs5+QH7CBV/FMUoQPs/HW/k= Subject key identifier: 11:98:C3:4B:D3:8E:77:70:AD:C8:E5:52:95:3B:40:C5:13:6C:C4:81 Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 03D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 03C8 Signing time: Sun 19 May 2024 02:25:40 +0000 Manifest this update: Sun 19 May 2024 02:25:40 +0000 Manifest next update: Sun 26 May 2024 02:25:40 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: +9qZGPY851AqYD02l/vaRKq/U8m81ScCg0NZcJdbRk4=) 2: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: O2wCYnsWMsNh26QO49KbMD5OdQ0wQy2zxz9/0Bjc24k=) 3: 2E971452411311EC88F4A813C4F9AE02.roa (hash: BJkoemMT/+xpo5406DrYJzR7xcCQChxSufm253c8Bjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 979 (0x3d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: May 19 02:25:40 2024 GMT Not After : May 26 02:25:40 2024 GMT Subject: CN=66496324-abe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c4:0f:47:5b:0c:a6:d1:69:86:1a:68:3f:ce: 6b:f9:59:10:96:11:27:c8:9f:99:4a:be:8f:b9:69: 39:0e:c4:b8:e3:4d:70:d6:13:c9:1b:bc:62:17:d7: 4a:98:ec:6f:74:f8:5a:06:6e:5b:7c:76:05:c5:5e: 15:01:f1:99:75:8b:65:69:b0:eb:5f:7c:10:43:c7: e6:6d:ca:36:c2:2e:1f:2b:93:5e:d3:6d:a0:ca:c4: ff:f5:1e:67:73:6a:cb:a4:64:12:bc:78:aa:d8:6e: df:65:89:78:cf:b8:74:43:4a:df:13:2e:83:1e:c7: 2e:3e:c2:ac:81:fa:a1:ed:6a:f5:89:f0:29:a3:c2: 1f:81:5c:da:d2:1b:a2:df:15:78:76:b9:4b:ce:12: af:8e:02:cf:36:67:59:84:91:db:f5:57:b9:3d:cd: 5e:bc:5a:67:f6:89:ca:79:e6:ed:24:02:d7:92:fe: cc:4c:e6:7f:6b:ce:f8:54:72:ea:fa:ee:84:10:83: b3:99:c5:aa:48:fc:c4:1f:63:ce:5e:aa:c9:ba:cb: c2:d4:c9:8a:10:3e:e6:f5:3f:b1:8b:31:ae:e5:7c: 07:ea:b7:01:3b:3c:55:38:d3:84:9c:0f:14:48:d1: 0b:a6:ee:46:90:88:96:06:b6:72:72:42:98:a8:f8: d0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:98:C3:4B:D3:8E:77:70:AD:C8:E5:52:95:3B:40:C5:13:6C:C4:81 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:60:31:b3:1a:ab:16:a3:46:d2:89:fa:83:7e:4f:94:0d:3f: 78:ef:70:61:6d:b5:3f:b8:04:2f:15:47:0d:c3:c5:ed:75:a6: 80:e1:0b:76:d9:cc:60:cc:4c:9d:73:1c:49:09:96:72:de:e8: 43:61:21:3e:b2:4f:12:1b:28:61:fa:92:54:20:f6:eb:11:65: e4:5d:0f:07:33:cf:7d:56:09:95:1d:f5:f1:6e:a8:4c:86:b0: d6:0b:9d:ce:b5:c0:c4:4b:8a:7a:d5:d6:16:7c:20:72:3b:4e: a7:14:65:8b:60:f2:78:3a:b9:41:49:5c:ea:71:18:9a:7c:8c: a9:10:a1:5d:1e:5a:c0:0d:48:51:ed:99:49:79:e0:02:f5:be: eb:5e:a4:4f:a9:10:73:86:94:57:84:a9:4f:23:b5:2b:4a:e4: 3a:76:4f:c6:ee:8b:94:c2:c3:f9:c2:ee:28:9f:02:84:e5:4e: c9:87:91:86:1f:a1:9a:a0:42:d1:0b:c9:22:69:63:c2:dc:b6: 41:61:eb:fc:40:7e:a8:dc:eb:16:0b:13:77:e8:f2:4f:b6:c0: c9:1b:87:8a:ed:74:00:92:b2:8f:1a:fc:eb:b3:3d:65:23:56: 10:ca:1b:64:74:2a:05:fe:9a:40:f0:57:e6:9d:af:f5:f6:18: 8f:04:28:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjQwNTE5MDIyNTQwWhcNMjQwNTI2MDIyNTQwWjAYMRYwFAYD VQQDEw02NjQ5NjMyNC1hYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6sQPR1sMptFphhpoP85r+VkQlhEnyJ+ZSr6PuWk5DsS4401w1hPJG7xiF9dK mOxvdPhaBm5bfHYFxV4VAfGZdYtlabDrX3wQQ8fmbco2wi4fK5Ne022gysT/9R5n c2rLpGQSvHiq2G7fZYl4z7h0Q0rfEy6DHscuPsKsgfqh7Wr1ifApo8IfgVza0hui 3xV4drlLzhKvjgLPNmdZhJHb9Ve5Pc1evFpn9onKeebtJALXkv7MTOZ/a874VHLq +u6EEIOzmcWqSPzEH2POXqrJusvC1MmKED7m9T+xizGu5XwH6rcBOzxVONOEnA8U SNELpu5GkIiWBrZyckKYqPjQHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGYw0vT jndwrcjlUpU7QMUTbMSBMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvYDGzGqsWo0bSifqDfk+UDT9473BhbbU/uAQvFUcNw8XtdaaA4Qt2 2cxgzEydcxxJCZZy3uhDYSE+sk8SGyhh+pJUIPbrEWXkXQ8HM899VgmVHfXxbqhM hrDWC53OtcDES4p61dYWfCByO06nFGWLYPJ4OrlBSVzqcRiafIypEKFdHlrADUhR 7ZlJeeAC9b7rXqRPqRBzhpRXhKlPI7UrSuQ6dk/G7ouUwsP5wu4onwKE5U7Jh5GG H6GaoELRC8kiaWPC3LZBYev8QH6o3OsWCxN36PJPtsDJG4eK7XQAkrKPGvzrsz1l I1YQyhtkdCoF/ppA8Ffmna/19hiPBCgT -----END CERTIFICATE-----Generated at Sun May 19 03:14:49 2024 by rpki-client on console-fra.rpki-client.org