$ rpki-client -vvf rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft File: xGfLLMucIacHtd-86roFTBkFI64.mft (raw, json) Hash identifier: o3RTNZjCo7IkMvt/xu4GAw6hxRAopkb47BuE1u5QPVU= Subject key identifier: BF:D6:28:F2:89:F5:C0:B0:27:CF:A9:24:45:D2:12:82:80:9B:A1:2B Authority key identifier: C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE Certificate issuer: /CN=A919C3BE/serialNumber=C467CB2CCB9C21A707B5DFBCEABA054C190523AE Certificate serial: 0B98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft Manifest number: 0B7D Signing time: Sat 18 May 2024 19:32:21 +0000 Manifest this update: Sat 18 May 2024 19:32:21 +0000 Manifest next update: Sat 25 May 2024 19:32:21 +0000 Files and hashes: 1: xGfLLMucIacHtd-86roFTBkFI64.crl (hash: sUmb/NIUNhCiD1dW8uXClFBFFTmv6GBsZHdGZ4kJ35w=) 2: AED60FB8889911EE93725C70C4F9AE02.roa (hash: fmDHpP1NTfYOMqbPO6SjQP1Zz2EI1D8Nlv1HBcJ/gMI=) 3: D74998AC889911EE83929070C4F9AE02.roa (hash: LcRUWMp5ylCBuhjZGpu+Gkyj7S0VtZ4hzyMMM+ZG2m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.crl rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2968 (0xb98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C3BE/serialNumber=C467CB2CCB9C21A707B5DFBCEABA054C190523AE Validity Not Before: May 18 19:32:21 2024 GMT Not After : May 25 19:32:21 2024 GMT Subject: CN=66490245-c07e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6b:59:71:5e:49:cf:11:f5:38:27:dc:1d:0f: 66:10:91:35:0e:06:8e:65:26:aa:09:63:62:d4:4b: b2:5a:5e:ad:a2:19:02:ea:e1:61:3b:23:36:02:e2: 0f:6e:43:b9:cf:e6:97:d5:e6:e1:8c:da:7c:c1:93: ca:de:c6:e2:12:92:08:31:2e:2c:05:c7:ac:56:df: ef:2e:5d:da:1c:4b:43:7a:05:25:ff:b9:93:54:ac: 94:d1:58:d8:f2:68:3e:a1:f0:0c:f0:b5:1c:4b:55: e0:24:fe:0e:59:6c:ce:c4:6f:cb:3c:b9:ab:fd:52: f7:6b:43:8d:73:82:3a:e9:b7:2c:6f:ec:5f:25:c1: 61:14:c9:b6:a4:9a:77:6c:a6:9e:81:92:c6:bc:5c: 91:3d:88:40:5a:2c:7e:59:08:07:fa:ab:00:13:bd: 7e:29:48:ef:48:96:cf:79:10:fb:e5:b0:f7:a1:16: f0:c7:2c:79:91:8f:9d:94:7b:dc:83:1a:a8:76:d7: 2a:37:46:53:2d:bd:f4:c8:48:bb:39:d1:c6:f9:cf: b1:c7:93:99:74:5d:0a:b6:46:0d:10:d3:f9:6e:c9: 34:93:c7:a2:8b:7c:b5:38:37:ed:f2:e2:18:51:1d: b8:2b:16:b4:cc:c4:fa:0e:10:24:1d:f5:e5:e1:59: f3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D6:28:F2:89:F5:C0:B0:27:CF:A9:24:45:D2:12:82:80:9B:A1:2B X509v3 Authority Key Identifier: keyid:C4:67:CB:2C:CB:9C:21:A7:07:B5:DF:BC:EA:BA:05:4C:19:05:23:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGfLLMucIacHtd-86roFTBkFI64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C3BE/947B3506093811EA95CA3129C4F9AE02/xGfLLMucIacHtd-86roFTBkFI64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:06:0f:1f:e9:09:8a:33:f5:97:0f:aa:ee:17:3f:97:7c:a4: 7a:e7:eb:b4:b0:aa:11:7b:95:0b:71:01:f7:1c:36:17:06:60: 8d:62:e6:db:1e:9c:de:3e:ab:37:e9:b7:cd:5b:2e:17:66:df: a8:0d:99:f9:6a:d6:88:6c:85:d2:c3:38:8f:43:f7:6c:a5:ec: ab:94:5c:f7:7f:8c:9c:e2:af:1e:f3:6e:5d:98:d4:6d:05:b5: f4:d0:72:8a:ae:6f:5a:49:94:e3:70:37:30:74:89:c2:15:bc: d6:80:f9:9b:be:f4:08:1d:c9:27:63:fa:ac:49:d4:f1:17:1b: 2b:d4:a0:1b:a4:a4:5e:f9:6c:61:cf:04:f5:96:d4:04:88:53: 62:67:dd:07:f5:bb:2a:7a:42:62:45:08:d4:72:19:74:d9:9f: ca:a5:cf:6a:5d:e4:8b:ee:56:97:a0:39:a4:ab:9c:fd:e3:fa: 43:81:4f:ef:78:b7:05:f6:14:4a:dd:05:5d:86:5f:5f:04:5d: 0a:23:6d:32:c0:bc:84:f2:40:ad:5e:87:73:3d:b2:ae:c3:3c: b2:d7:45:13:ea:e2:5c:1b:bb:98:29:23:34:e3:e5:d2:af:15: 7a:1d:98:e8:03:7e:8e:e0:25:bc:57:1c:b2:a9:8b:f0:45:df: 62:55:c8:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzQkUxMTAvBgNVBAUTKEM0NjdDQjJDQ0I5QzIxQTcwN0I1REZCQ0VBQkEwNTRD MTkwNTIzQUUwHhcNMjQwNTE4MTkzMjIxWhcNMjQwNTI1MTkzMjIxWjAYMRYwFAYD VQQDEw02NjQ5MDI0NS1jMDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2tZcV5JzxH1OCfcHQ9mEJE1DgaOZSaqCWNi1EuyWl6tohkC6uFhOyM2AuIP bkO5z+aX1ebhjNp8wZPK3sbiEpIIMS4sBcesVt/vLl3aHEtDegUl/7mTVKyU0VjY 8mg+ofAM8LUcS1XgJP4OWWzOxG/LPLmr/VL3a0ONc4I66bcsb+xfJcFhFMm2pJp3 bKaegZLGvFyRPYhAWix+WQgH+qsAE71+KUjvSJbPeRD75bD3oRbwxyx5kY+dlHvc gxqodtcqN0ZTLb30yEi7OdHG+c+xx5OZdF0KtkYNENP5bsk0k8eii3y1ODft8uIY UR24Kxa0zMT6DhAkHfXl4VnzyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/WKPKJ 9cCwJ8+pJEXSEoKAm6ErMB8GA1UdIwQYMBaAFMRnyyzLnCGnB7XfvOq6BUwZBSOu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzNCRS85NDdCMzUwNjA5 MzgxMUVBOTVDQTMxMjlDNEY5QUUwMi94R2ZMTE11Y0lhY0h0ZC04NnJvRlRCa0ZJ NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHZkxMTXVjSWFjSHRkLTg2cm9GVEJrRkk2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzNCRS85NDdCMzUwNjA5MzgxMUVBOTVDQTMxMjlDNEY5QUUwMi94R2ZMTE11Y0lh Y0h0ZC04NnJvRlRCa0ZJNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyBg8f6QmKM/WXD6ruFz+XfKR65+u0sKoRe5ULcQH3HDYXBmCNYubb HpzePqs36bfNWy4XZt+oDZn5ataIbIXSwziPQ/dspeyrlFz3f4yc4q8e825dmNRt BbX00HKKrm9aSZTjcDcwdInCFbzWgPmbvvQIHcknY/qsSdTxFxsr1KAbpKRe+Wxh zwT1ltQEiFNiZ90H9bsqekJiRQjUchl02Z/Kpc9qXeSL7laXoDmkq5z94/pDgU/v eLcF9hRK3QVdhl9fBF0KI20ywLyE8kCtXodzPbKuwzyy10UT6uJcG7uYKSM04+XS rxV6HZjoA36O4CW8VxyyqYvwRd9iVcjP -----END CERTIFICATE-----Generated at Sat May 18 19:56:06 2024 by rpki-client on console-fra.rpki-client.org