$ rpki-client -vvf rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft File: 4TxHTdRFcajO9AZpTgStasYbJWY.mft (raw, json) Hash identifier: NeDxoPR4eDZomEJ2bz/8L7ZoLI8UOqowmOdSisuae8Q= Subject key identifier: D5:EC:F4:6C:41:AB:00:C5:AB:7E:26:C7:D5:BC:13:66:75:3A:4E:23 Authority key identifier: E1:3C:47:4D:D4:45:71:A8:CE:F4:06:69:4E:04:AD:6A:C6:1B:25:66 Certificate issuer: /CN=A919D313/serialNumber=E13C474DD44571A8CEF406694E04AD6AC61B2566 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft Manifest number: 76 Signing time: Fri 31 May 2024 08:19:33 +0000 Manifest this update: Fri 31 May 2024 08:19:32 +0000 Manifest next update: Fri 07 Jun 2024 08:19:32 +0000 Files and hashes: 1: 4TxHTdRFcajO9AZpTgStasYbJWY.crl (hash: HdhgBKOMCbZQfr7KgUjEPY0jrD6Q27oKZ5QE9YvHREk=) 2: 658CF9F2721411EEAC707910C4F9AE02.roa (hash: ZZDUXnqWBktvzLbgCqaw7CbFJvjtpkfDVEMt//M7XVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.crl rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D313/serialNumber=E13C474DD44571A8CEF406694E04AD6AC61B2566 Validity Not Before: May 31 08:19:32 2024 GMT Not After : Jun 7 08:19:32 2024 GMT Subject: CN=66598814-8bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f3:6d:c9:38:a2:a8:8a:12:73:73:8f:27:d0: fd:9a:1d:75:12:f0:89:9b:3b:dd:b2:af:83:92:7e: bb:d2:c6:38:ea:6f:5a:b7:31:f7:56:91:d4:b5:ec: 0c:80:f5:7e:7c:42:57:24:d5:51:0b:8a:c6:f0:8a: 52:b4:e5:fc:f5:a2:38:eb:e1:25:15:2e:13:66:bc: 20:86:12:22:4d:8b:3f:5a:b6:33:3a:bd:7b:f7:e6: 10:27:c8:03:9d:b9:62:33:95:3b:39:c2:87:c9:cc: 73:b4:dc:05:2d:b1:23:aa:2a:48:bd:ca:2c:50:dd: 34:10:86:29:d7:07:b8:82:98:b9:d8:e4:8e:da:d9: 99:57:66:49:9f:e0:46:77:37:0b:91:53:63:5d:e2: d9:0c:65:44:86:34:61:5e:cb:ad:56:da:90:d0:9f: 27:f0:1e:6c:2d:dd:70:95:05:30:c8:eb:8b:08:df: db:04:7e:34:3a:12:67:85:16:7f:7a:71:4e:3a:1b: ca:7e:63:3a:a5:98:47:75:f9:eb:ad:27:58:4b:d4: 7f:b0:b0:c4:82:e1:61:8d:99:7c:7f:fc:4d:6c:9c: f6:ec:1c:5d:2c:54:c8:c2:ff:ad:49:ee:09:06:ce: 51:64:e5:0f:14:56:c0:50:7c:d9:cb:7c:59:31:8e: 20:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EC:F4:6C:41:AB:00:C5:AB:7E:26:C7:D5:BC:13:66:75:3A:4E:23 X509v3 Authority Key Identifier: keyid:E1:3C:47:4D:D4:45:71:A8:CE:F4:06:69:4E:04:AD:6A:C6:1B:25:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:21:75:f4:92:d1:a9:45:e1:e8:eb:bc:e1:a4:25:81:d4:74: 6f:08:ab:87:54:8c:a7:47:4d:aa:65:b2:ab:ff:27:a0:bb:9f: ef:d0:66:65:29:b4:89:f2:84:64:5d:f2:c5:b0:ef:12:2e:81: f8:07:b6:eb:18:d5:d2:ec:77:f9:f5:f1:05:6d:ed:ed:7d:3f: cd:8f:30:d7:fa:11:e1:86:42:99:20:36:f3:d7:e4:10:6d:00: f4:44:37:2d:f1:c7:ac:c0:03:d8:12:56:1e:62:ef:de:58:97: 18:2f:ec:8f:7d:2c:3b:da:dd:9d:5a:ad:a2:5e:e6:c2:25:d9: ad:47:62:69:b6:7f:1e:c9:d2:a2:c9:4e:5f:0b:64:c8:c9:9d: 77:9c:e0:e9:97:b7:f1:86:13:67:a6:d3:5e:08:f2:69:19:b9: f0:5e:fa:99:c3:ea:02:05:55:53:2d:8c:e6:de:c9:ac:99:5f: d9:c2:7e:3a:2f:b9:73:9f:08:24:85:70:02:62:48:bb:49:63: 2b:7d:f6:6f:49:96:20:d5:1a:ff:1d:96:bb:24:7e:7d:fb:b9: 1e:64:be:3f:58:ea:83:e1:bb:46:4d:b0:74:c2:aa:6f:0a:49: 25:2a:c5:39:a4:7f:52:f4:24:90:0f:25:0b:a0:31:7a:e3:b7: 01:33:dc:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDMxMzExMC8GA1UEBRMoRTEzQzQ3NERENDQ1NzFBOENFRjQwNjY5NEUwNEFENkFD NjFCMjU2NjAeFw0yNDA1MzEwODE5MzJaFw0yNDA2MDcwODE5MzJaMBgxFjAUBgNV BAMTDTY2NTk4ODE0LThiYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu823JOKKoihJzc48n0P2aHXUS8ImbO92yr4OSfrvSxjjqb1q3MfdWkdS17AyA 9X58Qlck1VELisbwilK05fz1ojjr4SUVLhNmvCCGEiJNiz9atjM6vXv35hAnyAOd uWIzlTs5wofJzHO03AUtsSOqKki9yixQ3TQQhinXB7iCmLnY5I7a2ZlXZkmf4EZ3 NwuRU2Nd4tkMZUSGNGFey61W2pDQnyfwHmwt3XCVBTDI64sI39sEfjQ6EmeFFn96 cU46G8p+YzqlmEd1+eutJ1hL1H+wsMSC4WGNmXx//E1snPbsHF0sVMjC/61J7gkG zlFk5Q8UVsBQfNnLfFkxjiALAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1ez0bEGr AMWrfibH1bwTZnU6TiMwHwYDVR0jBBgwFoAU4TxHTdRFcajO9AZpTgStasYbJWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEMzEzLzBGMjA3OTc2NkVG NTExRUU4NERBNjk4MkM0RjlBRTAyLzRUeEhUZFJGY2FqTzlBWnBUZ1N0YXNZYkpX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFR4SFRkUkZjYWpPOUFacFRnU3Rhc1liSldZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE MzEzLzBGMjA3OTc2NkVGNTExRUU4NERBNjk4MkM0RjlBRTAyLzRUeEhUZFJGY2Fq TzlBWnBUZ1N0YXNZYkpXWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACghdfSS0alF4ejrvOGkJYHUdG8Iq4dUjKdHTaplsqv/J6C7n+/QZmUp tInyhGRd8sWw7xIugfgHtusY1dLsd/n18QVt7e19P82PMNf6EeGGQpkgNvPX5BBt APRENy3xx6zAA9gSVh5i795Ylxgv7I99LDva3Z1araJe5sIl2a1HYmm2fx7J0qLJ Tl8LZMjJnXec4OmXt/GGE2em014I8mkZufBe+pnD6gIFVVMtjObeyayZX9nCfjov uXOfCCSFcAJiSLtJYyt99m9JliDVGv8dlrskfn37uR5kvj9Y6oPhu0ZNsHTCqm8K SSUqxTmkf1L0JJAPJQugMXrjtwEz3Is= -----END CERTIFICATE-----Generated at Fri May 31 10:42:50 2024 by rpki-client on console-fra.rpki-client.org