$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: GAUsLbDtExVX8TNIonOzGFU0WYlcJ5b/ozfHpMwwZ64= Subject key identifier: 0F:B9:4E:87:DE:94:07:C8:02:41:96:41:78:1C:06:E8:22:84:DB:1F Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 6A Signing time: Sun 19 May 2024 07:35:26 +0000 Manifest this update: Sun 19 May 2024 07:35:26 +0000 Manifest next update: Sun 26 May 2024 07:35:26 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: 6llEe/e9HPNH/V2ppXC+I5MqQvrBQL4BsR+6mSuGcoU=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: 8xFUYP8CysuOSr+JhXC7vja6PLPsWt9zigT7v//9EFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: May 19 07:35:26 2024 GMT Not After : May 26 07:35:26 2024 GMT Subject: CN=6649abbe-79a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:b3:45:f1:7e:96:04:ff:db:2e:4f:c9:77:20: 0b:bf:11:c2:1e:0b:8c:91:8a:92:1e:4a:08:7c:14: 84:96:68:c3:ce:c3:3c:b1:f3:3d:0f:3c:88:c8:d2: b0:85:50:af:96:a2:b3:b1:fb:06:2a:5b:5e:30:77: a0:44:12:3d:b7:b0:61:e1:d2:0a:a5:65:40:6f:dd: 2f:0e:c3:30:b9:85:a5:5a:e6:23:cc:6d:f3:4f:c1: b1:cd:cc:ec:0b:2e:f9:5f:35:5a:a5:77:3a:17:a6: 2b:9a:56:57:c7:7e:bc:df:1f:e2:7e:36:b1:6e:75: 44:6d:f7:8c:60:3c:2f:94:2a:00:93:22:69:ac:54: d4:9f:0c:4d:6b:5a:23:5c:d5:55:00:99:61:54:fa: 5d:0e:bc:59:e7:2a:21:81:00:cc:1a:c5:1b:30:f7: 4c:3b:a7:7f:e6:b0:4e:76:55:34:24:68:92:2d:19: 3e:4f:2f:ce:72:45:7b:ee:8f:d7:40:c8:5e:71:3f: 1e:e2:8b:7f:92:f2:b0:d3:c6:c0:28:35:b6:2c:3a: cf:4f:e0:62:29:56:45:2d:10:23:c6:f0:38:17:95: 45:6d:92:1b:40:d7:c8:45:88:9c:d7:be:99:b4:e1: 62:ca:94:a6:de:7d:f1:58:65:ac:62:69:91:17:1f: 08:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B9:4E:87:DE:94:07:C8:02:41:96:41:78:1C:06:E8:22:84:DB:1F X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:aa:7e:54:08:4b:53:84:1c:1e:a4:dd:1f:90:34:f5:7d:3a: 76:f7:fa:8d:c4:e5:6f:57:b6:ff:07:9c:ef:84:14:bd:7f:9d: 0b:84:38:50:90:1c:a8:b8:63:da:66:cc:69:18:e0:0e:95:09: db:47:8d:8b:3e:d1:31:12:67:9b:74:ad:b3:ed:57:26:40:e9: 73:13:84:61:ee:0e:34:08:7e:b5:93:42:de:42:59:43:3b:57: b1:2d:ea:7c:0e:4f:11:92:d4:df:60:e5:a8:32:1a:6c:ac:a2: 8e:cb:f5:47:a0:06:9d:6c:c0:50:50:52:25:08:57:f2:73:fc: b7:57:f3:2a:fe:e7:40:bd:03:1a:b8:27:bd:2e:29:a3:67:6e: 69:b4:f0:7d:67:a7:a4:21:73:a5:d4:3c:36:c8:57:c3:97:3c: b1:e0:b9:a1:75:9f:42:e8:a0:dd:bf:60:10:ee:c6:40:99:74: 3b:9c:9d:41:6c:f3:dd:14:a3:c5:b6:fe:7f:f1:6d:09:07:41: a9:45:82:7d:a0:cb:31:0c:6d:e5:95:de:c3:9b:c7:3a:b6:ff: 44:35:76:4c:2d:0e:c2:df:60:6e:88:9b:69:48:4f:a3:30:ef: 1c:b3:f8:56:80:fd:4a:15:34:c7:6b:25:0d:68:32:d9:23:10: af:00:06:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUFBMzExMC8GA1UEBRMoNTRBNUQ4RkJGODRFM0VERjMxRkEyNEU0NUM2QzY3MkE5 M0I2NUFEMDAeFw0yNDA1MTkwNzM1MjZaFw0yNDA1MjYwNzM1MjZaMBgxFjAUBgNV BAMTDTY2NDlhYmJlLTc5YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD5s0XxfpYE/9suT8l3IAu/EcIeC4yRipIeSgh8FISWaMPOwzyx8z0PPIjI0rCF UK+WorOx+wYqW14wd6BEEj23sGHh0gqlZUBv3S8OwzC5haVa5iPMbfNPwbHNzOwL LvlfNVqldzoXpiuaVlfHfrzfH+J+NrFudURt94xgPC+UKgCTImmsVNSfDE1rWiNc 1VUAmWFU+l0OvFnnKiGBAMwaxRsw90w7p3/msE52VTQkaJItGT5PL85yRXvuj9dA yF5xPx7ii3+S8rDTxsAoNbYsOs9P4GIpVkUtECPG8DgXlUVtkhtA18hFiJzXvpm0 4WLKlKbeffFYZaxiaZEXHwgLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUD7lOh96U B8gCQZZBeBwG6CKE2x8wHwYDVR0jBBgwFoAUVKXY+/hOPt8x+iTkXGxnKpO2WtAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QUEzLzBBMkNCNzg2Nzg0 QjExRUVBNEQ3REI3N0M0RjlBRTAyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVktYWS1faE9QdDh4LWlUa1hHeG5LcE8yV3RBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QUEzLzBBMkNCNzg2Nzg0QjExRUVBNEQ3REI3N0M0RjlBRTAyL1ZLWFktX2hPUHQ4 eC1pVGtYR3huS3BPMld0QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE2qflQIS1OEHB6k3R+QNPV9Onb3+o3E5W9Xtv8HnO+EFL1/nQuEOFCQ HKi4Y9pmzGkY4A6VCdtHjYs+0TESZ5t0rbPtVyZA6XMThGHuDjQIfrWTQt5CWUM7 V7Et6nwOTxGS1N9g5agyGmysoo7L9UegBp1swFBQUiUIV/Jz/LdX8yr+50C9Axq4 J70uKaNnbmm08H1np6Qhc6XUPDbIV8OXPLHguaF1n0LooN2/YBDuxkCZdDucnUFs 890Uo8W2/n/xbQkHQalFgn2gyzEMbeWV3sObxzq2/0Q1dkwtDsLfYG6Im2lIT6Mw 7xyz+FaA/UoVNMdrJQ1oMtkjEK8ABk4= -----END CERTIFICATE-----Generated at Sun May 19 08:26:43 2024 by rpki-client on console-fra.rpki-client.org