$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft File: vsKCSG834xbxe1ILRVKHvDB_ieg.mft (raw, json) Hash identifier: ixhfOzqVUCKaWpHvUCl2B1IYiLAjU+XgPmPOzQKXS80= Subject key identifier: 57:BE:13:5B:DF:F4:63:A2:71:0A:87:71:EA:31:81:B4:79:34:8B:B7 Authority key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 Certificate issuer: /CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft Manifest number: 1A Signing time: Sat 01 Jun 2024 10:09:09 +0000 Manifest this update: Sat 01 Jun 2024 10:09:08 +0000 Manifest next update: Sat 08 Jun 2024 10:09:08 +0000 Files and hashes: 1: vsKCSG834xbxe1ILRVKHvDB_ieg.crl (hash: W0tON5PS3nKlbAldbedoacJ516kdI4Uyd9IZX1Di9VQ=) 2: 71403B04F7E511EEBC67981CC4F9AE02.roa (hash: S/qqaWINFZ4wDr+IpQ0U8AbkYGkGUpN2p85NrVAp8qE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Validity Not Before: Jun 1 10:09:08 2024 GMT Not After : Jun 8 10:09:08 2024 GMT Subject: CN=665af345-18a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8f:8f:8d:cd:b3:49:0b:3b:64:62:54:05:8c: 4a:b5:10:82:fd:c8:da:e9:d1:48:51:88:7b:b2:cc: 84:5c:37:ae:b5:fe:7a:df:f9:ea:41:81:b2:e6:1a: d0:7e:e1:e8:62:6a:0e:c4:85:7c:3d:2b:98:27:95: 9f:43:c0:37:6e:2a:52:67:f3:d4:19:0f:f5:20:c7: 20:14:1b:d3:b1:4d:7e:b5:0c:a6:af:af:d8:21:93: 42:36:8e:9a:18:79:ca:c6:bc:6f:e2:52:19:ca:cf: 42:6b:81:09:3c:3b:f1:f9:21:ce:89:1b:73:e1:d9: 3b:27:7e:12:0c:71:e0:32:bd:89:82:63:93:68:25: ec:0a:88:ca:ef:d6:ea:9f:e4:5c:72:e3:43:be:4c: 47:17:d7:35:27:c7:a7:81:eb:3b:ae:e6:d1:5b:8d: ec:6b:a5:b0:8f:4c:27:7a:c6:2d:7f:9c:cc:a7:7c: d7:4a:92:5a:27:13:6b:4d:29:45:12:e8:3f:66:7b: 1e:54:1a:f5:3e:d2:aa:65:1e:74:5e:f6:26:be:0a: 9d:67:78:95:0c:65:54:e4:13:f3:37:71:5c:fb:f4: 81:a2:b2:6a:e4:c0:4c:12:bc:b4:a1:9b:c5:bc:c8: f6:91:8a:4e:4e:e6:aa:d4:f2:37:3b:ba:04:6f:01: ea:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:BE:13:5B:DF:F4:63:A2:71:0A:87:71:EA:31:81:B4:79:34:8B:B7 X509v3 Authority Key Identifier: keyid:BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:3e:9a:01:ef:22:cf:ac:07:6d:49:00:16:e6:90:fc:23:57: 59:60:6c:f6:aa:d5:c8:96:a0:c0:81:05:73:b1:fa:20:8d:d9: 45:f5:d8:dd:b4:f1:12:5c:79:be:d2:4c:3f:59:2c:44:b4:05: 60:02:28:b8:13:79:86:c1:97:7f:4c:c7:1c:c7:a6:ac:1c:6d: 90:fb:8c:5a:b9:fd:f5:f1:8c:ce:c2:05:c1:75:be:2c:6a:80: 6b:e9:39:d2:e5:f2:02:18:07:bb:19:62:b2:29:f1:bb:c4:b0: f5:92:9c:c2:4c:71:6b:ff:09:f1:e8:f8:bf:e7:cf:56:61:52: e8:b1:77:bc:33:44:7d:62:c7:4d:75:a3:12:e5:90:04:91:2c: d5:e5:0e:c2:3a:71:8a:c2:5c:f8:47:60:f3:e2:19:20:17:c5: 26:93:75:df:26:f7:57:27:f6:5f:89:51:fe:8c:db:7f:c6:21: 13:60:64:09:76:d3:0d:28:d4:73:3f:d0:ab:39:a9:ea:87:ef: 8b:fe:cc:61:da:e8:14:8e:36:c4:b7:42:ad:71:6c:e8:84:43: 6b:98:42:d0:7d:41:0e:96:69:1e:66:36:6b:27:43:a3:84:ff: 49:6d:8c:f7:6c:bd:1e:8a:7b:cf:f4:84:dc:8e:de:b5:e5:a9: 6f:94:4d:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ2OTExMC8GA1UEBRMoQkVDMjgyNDg2RjM3RTMxNkYxN0I1MjBCNDU1Mjg3QkMz MDdGODlFODAeFw0yNDA2MDExMDA5MDhaFw0yNDA2MDgxMDA5MDhaMBgxFjAUBgNV BAMTDTY2NWFmMzQ1LTE4YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzj4+NzbNJCztkYlQFjEq1EIL9yNrp0UhRiHuyzIRcN661/nrf+epBgbLmGtB+ 4ehiag7EhXw9K5gnlZ9DwDduKlJn89QZD/UgxyAUG9OxTX61DKavr9ghk0I2jpoY ecrGvG/iUhnKz0JrgQk8O/H5Ic6JG3Ph2TsnfhIMceAyvYmCY5NoJewKiMrv1uqf 5Fxy40O+TEcX1zUnx6eB6zuu5tFbjexrpbCPTCd6xi1/nMynfNdKklonE2tNKUUS 6D9mex5UGvU+0qplHnRe9ia+Cp1neJUMZVTkE/M3cVz79IGismrkwEwSvLShm8W8 yPaRik5O5qrU8jc7ugRvAertAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV74TW9/0 Y6JxCodx6jGBtHk0i7cwHwYDVR0jBBgwFoAUvsKCSG834xbxe1ILRVKHvDB/iegw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDY5L0Y1ODQzOEZFRjdF MzExRUVCOUExMjkxQUM0RjlBRTAyL3ZzS0NTRzgzNHhieGUxSUxSVktIdkRCX2ll Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdnNLQ1NHODM0eGJ4ZTFJTFJWS0h2REJfaWVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDY5L0Y1ODQzOEZFRjdFMzExRUVCOUExMjkxQUM0RjlBRTAyL3ZzS0NTRzgzNHhi eGUxSUxSVktIdkRCX2llZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGk+mgHvIs+sB21JABbmkPwjV1lgbPaq1ciWoMCBBXOx+iCN2UX12N20 8RJceb7STD9ZLES0BWACKLgTeYbBl39MxxzHpqwcbZD7jFq5/fXxjM7CBcF1vixq gGvpOdLl8gIYB7sZYrIp8bvEsPWSnMJMcWv/CfHo+L/nz1ZhUuixd7wzRH1ix011 oxLlkASRLNXlDsI6cYrCXPhHYPPiGSAXxSaTdd8m91cn9l+JUf6M23/GIRNgZAl2 0w0o1HM/0Ks5qeqH74v+zGHa6BSONsS3Qq1xbOiEQ2uYQtB9QQ6WaR5mNmsnQ6OE /0ltjPdsvR6Ke8/0hNyO3rXlqW+UTQ4= -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:29 2024 by rpki-client on console-fra.rpki-client.org