$ rpki-client -vvf rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft File: FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft (raw, json) Hash identifier: neKb/zQi+moyt34shkGStaxgeE0JJFsSLpEMLiqxcKg= Subject key identifier: 80:3B:0B:AC:0A:E0:52:91:C3:5F:6D:0B:91:4E:74:CD:01:C1:59:07 Authority key identifier: 16:75:DB:D9:EC:39:CE:ED:81:BB:BB:DE:42:CC:78:CF:7A:16:27:C5 Certificate issuer: /CN=A918259F/serialNumber=1675DBD9EC39CEED81BBBBDE42CC78CF7A1627C5 Certificate serial: 0786 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft Manifest number: 0781 Signing time: Fri 31 May 2024 23:01:27 +0000 Manifest this update: Fri 31 May 2024 23:01:27 +0000 Manifest next update: Fri 07 Jun 2024 23:01:27 +0000 Files and hashes: 1: FnXb2ew5zu2Bu7veQsx4z3oWJ8U.crl (hash: cZ1N99eCKZqmmV6gXIw7f43ppzmCoXjexCml93T3GRw=) 2: 760B9414D50911EB81567986C4F9AE02.roa (hash: v3kxajDctLeZNDmvGYwP8Mc2vFeXO+tVOMCadIC7cwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.crl rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1926 (0x786) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918259F/serialNumber=1675DBD9EC39CEED81BBBBDE42CC78CF7A1627C5 Validity Not Before: May 31 23:01:27 2024 GMT Not After : Jun 7 23:01:27 2024 GMT Subject: CN=665a56c7-3047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:e4:2c:cd:40:af:10:68:58:14:45:5b:a5: dd:ec:4c:f4:d0:20:27:35:c6:a5:23:b4:b9:99:ed: 83:9a:06:6c:73:8e:61:67:69:32:a2:e3:ff:21:b0: 91:81:1e:13:e7:f3:2b:2b:5f:c4:c2:65:49:1d:82: 72:b8:30:97:6b:74:c9:59:41:04:8f:33:de:6f:85: 9d:2d:3a:28:31:78:c6:8a:77:1b:4e:fa:45:2f:05: 64:c3:6b:fa:a8:74:ed:1d:c0:1f:2c:9d:75:76:e7: 3f:9b:d4:1e:47:22:b4:29:ea:24:36:63:bc:18:2c: 2d:ae:ca:be:40:0e:17:3a:1f:68:f0:62:eb:7f:94: 1d:d2:0c:df:c7:47:44:8a:8a:8c:f5:b5:90:be:00: 93:54:b2:6f:d5:ff:c6:4c:e7:28:6f:17:5a:98:da: 50:e9:3d:e8:93:4e:51:d0:c3:60:00:94:5e:c5:9a: 8e:30:5b:e1:3b:e7:d9:ab:f8:0c:75:bd:28:b4:a0: 2e:1b:b7:ea:85:1b:89:80:1f:8c:25:da:ab:e4:52: 74:6f:c6:6b:5f:d1:f8:5e:18:07:d0:ba:62:ae:9b: f9:77:c7:23:fa:f9:05:17:92:25:41:52:22:66:56: f4:3b:3c:d1:f4:95:04:78:53:00:76:df:80:7e:41: 2c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3B:0B:AC:0A:E0:52:91:C3:5F:6D:0B:91:4E:74:CD:01:C1:59:07 X509v3 Authority Key Identifier: keyid:16:75:DB:D9:EC:39:CE:ED:81:BB:BB:DE:42:CC:78:CF:7A:16:27:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918259F/0F8B5910CDAB11EA8837520CC4F9AE02/FnXb2ew5zu2Bu7veQsx4z3oWJ8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ba:ba:26:c0:93:f0:bc:68:5e:43:56:fd:91:80:04:09:02: 1d:08:08:6e:72:6f:f2:81:4e:bd:20:f2:a2:4d:c2:d4:a9:5a: c0:e8:fa:dc:e7:b1:0c:e8:64:ee:c4:5e:27:2c:9a:2b:80:29: b2:e8:2c:b6:39:87:3e:ef:39:0f:0b:ab:9c:8d:56:12:a5:ea: 6a:28:18:b8:77:8a:b5:0e:14:43:15:53:b1:f8:7a:8a:d7:2b: 0e:18:d4:bd:33:88:40:a8:fa:9d:e4:c3:cd:89:5e:c9:69:bf: d9:a6:29:df:5b:af:88:69:ce:3a:04:ce:e5:a1:da:3d:21:5f: de:9d:d7:a9:f1:5f:83:32:e2:71:eb:35:47:61:26:c2:5c:bf: d8:e3:5c:82:45:f9:05:14:af:e7:e3:30:e9:d0:fc:11:bb:06: 00:70:c4:12:89:6b:ba:eb:93:4c:05:2d:10:0b:fc:fd:11:16: b2:f9:9c:b0:b0:3b:d3:7f:3b:bd:72:5d:b1:ba:bb:9f:d2:81: 39:ee:c0:81:1b:1b:a3:35:7f:a0:f1:6f:fd:15:5b:f3:d1:b0: a3:7b:f8:35:aa:d0:8d:20:11:21:91:31:17:e6:21:70:5e:4a: 9b:57:55:a2:e2:9f:56:df:71:b3:a8:bb:8d:f5:d2:c6:5e:46: c3:e1:6f:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI1OUYxMTAvBgNVBAUTKDE2NzVEQkQ5RUMzOUNFRUQ4MUJCQkJERTQyQ0M3OENG N0ExNjI3QzUwHhcNMjQwNTMxMjMwMTI3WhcNMjQwNjA3MjMwMTI3WjAYMRYwFAYD VQQDEw02NjVhNTZjNy0zMDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEbkLM1ArxBoWBRFW6Xd7Ez00CAnNcalI7S5me2DmgZsc45hZ2kyouP/IbCR gR4T5/MrK1/EwmVJHYJyuDCXa3TJWUEEjzPeb4WdLTooMXjGincbTvpFLwVkw2v6 qHTtHcAfLJ11duc/m9QeRyK0KeokNmO8GCwtrsq+QA4XOh9o8GLrf5Qd0gzfx0dE ioqM9bWQvgCTVLJv1f/GTOcobxdamNpQ6T3ok05R0MNgAJRexZqOMFvhO+fZq/gM db0otKAuG7fqhRuJgB+MJdqr5FJ0b8ZrX9H4XhgH0Lpirpv5d8cj+vkFF5IlQVIi Zlb0OzzR9JUEeFMAdt+AfkEsXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIA7C6wK 4FKRw19tC5FOdM0BwVkHMB8GA1UdIwQYMBaAFBZ129nsOc7tgbu73kLMeM96FifF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjU5Ri8wRjhCNTkxMENE QUIxMUVBODgzNzUyMENDNEY5QUUwMi9GblhiMmV3NXp1MkJ1N3ZlUXN4NHozb1dK OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZuWGIyZXc1enUyQnU3dmVRc3g0ejNvV0o4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjU5Ri8wRjhCNTkxMENEQUIxMUVBODgzNzUyMENDNEY5QUUwMi9GblhiMmV3NXp1 MkJ1N3ZlUXN4NHozb1dKOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUuromwJPwvGheQ1b9kYAECQIdCAhucm/ygU69IPKiTcLUqVrA6Prc 57EM6GTuxF4nLJorgCmy6Cy2OYc+7zkPC6ucjVYSpepqKBi4d4q1DhRDFVOx+HqK 1ysOGNS9M4hAqPqd5MPNiV7Jab/ZpinfW6+Iac46BM7lodo9IV/endep8V+DMuJx 6zVHYSbCXL/Y41yCRfkFFK/n4zDp0PwRuwYAcMQSiWu665NMBS0QC/z9ERay+Zyw sDvTfzu9cl2xuruf0oE57sCBGxujNX+g8W/9FVvz0bCje/g1qtCNIBEhkTEX5iFw XkqbV1Wi4p9W33GzqLuN9dLGXkbD4W+e -----END CERTIFICATE-----Generated at Fri May 31 23:53:06 2024 by rpki-client on console-fra.rpki-client.org