$ rpki-client -vvf rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft File: 7LIDs03q4KEdAVCjDvK0opkdepg.mft (raw, json) Hash identifier: paWEkO444XlOhrvRTxDtcub2NmvdoEaZexat6VT3wS8= Subject key identifier: FB:56:54:F7:24:67:58:12:54:2C:99:8F:1C:D7:8A:31:42:61:78:AC Authority key identifier: EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98 Certificate issuer: /CN=A9189529/serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98 Certificate serial: 190D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft Manifest number: 190D Signing time: Fri 31 May 2024 17:04:21 +0000 Manifest this update: Fri 31 May 2024 17:04:20 +0000 Manifest next update: Fri 07 Jun 2024 17:04:20 +0000 Files and hashes: 1: 7LIDs03q4KEdAVCjDvK0opkdepg.crl (hash: bCCSdX7qSK7tUs5M0kmGfxMANRyJz5KSO3AArzgbLwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6413 (0x190d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189529/serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98 Validity Not Before: May 31 17:04:20 2024 GMT Not After : Jun 7 17:04:20 2024 GMT Subject: CN=665a0314-a012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:16:71:b2:4d:b9:b3:36:ed:dd:b8:90:27:36: b3:e9:cb:2b:a9:85:8e:8a:36:28:d3:da:fc:48:69: c3:c9:bd:87:00:3f:3e:58:59:fa:26:46:c8:7f:fc: 96:cf:38:39:e2:cb:d0:7d:25:ab:e9:bb:9f:b5:7d: 22:0a:f6:57:0f:8f:b5:57:33:f6:72:5a:22:3c:5a: fb:38:8c:5b:a0:85:0a:ea:6c:67:4d:ba:af:40:2b: 35:55:52:c0:d9:10:f1:01:be:6a:9e:88:31:8a:68: 7e:c1:8a:a1:47:01:ac:05:0e:27:d5:42:55:03:42: 45:28:82:fb:78:05:bf:ef:93:a7:54:7a:68:4a:9d: ef:01:6e:47:da:63:d5:a1:f0:04:50:91:05:28:5e: ed:09:15:d6:71:3c:3c:1c:57:28:fa:a2:26:43:a4: ff:36:52:74:50:11:01:a4:e8:1a:95:0b:b5:80:1c: a5:70:5e:83:33:39:bf:1f:e0:8f:be:ef:97:c8:5e: 43:b4:99:77:49:39:06:8c:41:f3:3a:95:6b:25:8a: 9a:c4:04:f6:3a:64:5f:f2:d0:bc:88:2c:30:94:f9: e8:37:31:e6:eb:72:8f:74:dc:bf:5d:6b:e8:1d:3f: b3:21:db:ee:cd:7b:cb:0c:76:61:7e:0b:5c:41:e9: e1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:56:54:F7:24:67:58:12:54:2C:99:8F:1C:D7:8A:31:42:61:78:AC X509v3 Authority Key Identifier: keyid:EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:0b:d1:fb:bb:50:4d:b9:d6:d6:ac:27:3d:b8:60:79:e7:54: a6:83:c2:56:6a:61:bc:e1:4d:c6:21:ad:b9:98:86:2b:6c:8f: c2:c6:a7:81:ac:fe:75:c2:12:8f:b6:4a:2a:a9:05:00:94:a8: 3c:99:59:bb:64:c1:d2:70:ef:2e:b2:22:85:1e:0a:ca:9d:a4: 05:6e:87:0c:5a:95:7e:97:d5:f7:66:04:ad:d0:5a:09:31:df: e1:09:95:a4:2c:af:0f:de:46:b6:05:06:cb:6c:d3:7f:e3:c6: 2a:59:aa:bb:5a:53:d0:dd:b5:e3:8a:4b:e3:39:50:11:b0:a8: 86:e0:8e:7b:6a:97:d3:09:12:c8:b5:23:ca:ae:82:46:89:a4: 18:85:7e:2a:f2:4d:6b:5d:21:33:95:1f:80:ac:f6:4b:67:4a: b5:98:d3:34:61:af:ba:44:65:5a:2f:92:14:85:cb:d6:84:ce: 0a:47:6d:7a:cb:c7:6c:15:49:40:b0:7c:70:c0:4d:49:ee:c3: 69:af:5e:9b:63:d0:8a:b3:5e:f1:5f:98:0c:87:4b:c3:9b:0c: cc:53:74:66:dd:cb:71:1a:b6:a5:14:9a:46:0f:f1:bd:23:3b: 75:c2:7c:65:0b:5c:6e:29:a4:69:24:6c:bc:32:cf:e0:60:f3: c3:5c:07:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk1MjkxMTAvBgNVBAUTKEVDQjIwM0IzNERFQUUwQTExRDAxNTBBMzBFRjJCNEEy OTkxRDdBOTgwHhcNMjQwNTMxMTcwNDIwWhcNMjQwNjA3MTcwNDIwWjAYMRYwFAYD VQQDEw02NjVhMDMxNC1hMDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxZxsk25szbt3biQJzaz6csrqYWOijYo09r8SGnDyb2HAD8+WFn6JkbIf/yW zzg54svQfSWr6buftX0iCvZXD4+1VzP2cloiPFr7OIxboIUK6mxnTbqvQCs1VVLA 2RDxAb5qnogximh+wYqhRwGsBQ4n1UJVA0JFKIL7eAW/75OnVHpoSp3vAW5H2mPV ofAEUJEFKF7tCRXWcTw8HFco+qImQ6T/NlJ0UBEBpOgalQu1gBylcF6DMzm/H+CP vu+XyF5DtJl3STkGjEHzOpVrJYqaxAT2OmRf8tC8iCwwlPnoNzHm63KPdNy/XWvo HT+zIdvuzXvLDHZhfgtcQenh8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtWVPck Z1gSVCyZjxzXijFCYXisMB8GA1UdIwQYMBaAFOyyA7NN6uChHQFQow7ytKKZHXqY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTUyOS82OTI5RjJDMjVC QkUxMUU3ODk3N0UwMjNDNEY5QUUwMi83TElEczAzcTRLRWRBVkNqRHZLMG9wa2Rl cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMSURzMDNxNEtFZEFWQ2pEdkswb3BrZGVwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTUyOS82OTI5RjJDMjVCQkUxMUU3ODk3N0UwMjNDNEY5QUUwMi83TElEczAzcTRL RWRBVkNqRHZLMG9wa2RlcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6C9H7u1BNudbWrCc9uGB551Smg8JWamG84U3GIa25mIYrbI/CxqeB rP51whKPtkoqqQUAlKg8mVm7ZMHScO8usiKFHgrKnaQFbocMWpV+l9X3ZgSt0FoJ Md/hCZWkLK8P3ka2BQbLbNN/48YqWaq7WlPQ3bXjikvjOVARsKiG4I57apfTCRLI tSPKroJGiaQYhX4q8k1rXSEzlR+ArPZLZ0q1mNM0Ya+6RGVaL5IUhcvWhM4KR216 y8dsFUlAsHxwwE1J7sNpr16bY9CKs17xX5gMh0vDmwzMU3Rm3ctxGralFJpGD/G9 Izt1wnxlC1xuKaRpJGy8Ms/gYPPDXAfC -----END CERTIFICATE-----Generated at Fri May 31 17:44:25 2024 by rpki-client on console-fra.rpki-client.org