$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft File: u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft (raw, json) Hash identifier: ti0N1s0tdFCHiDRWgiiTIEmJWvGLDgohiGT+bSDr5BE= Subject key identifier: 71:7B:E8:25:EF:A4:62:4A:CA:95:73:83:E2:B1:9A:4F:AB:3E:EE:30 Authority key identifier: BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 Certificate issuer: /CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Certificate serial: 05D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft Manifest number: 05D5 Signing time: Sat 01 Jun 2024 00:55:51 +0000 Manifest this update: Sat 01 Jun 2024 00:55:50 +0000 Manifest next update: Sat 08 Jun 2024 00:55:50 +0000 Files and hashes: 1: u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl (hash: Q8gNXL+jiSIQf7sk5hifOcHFnifp2zpdADd48DPWeaw=) 2: 58B04DD46F3C11EB924C4E2AC4F9AE02.roa (hash: D49IVGBetrELlZp6KsvwowY1vvGfTkWRv87/BEpy9oc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1497 (0x5d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Validity Not Before: Jun 1 00:55:50 2024 GMT Not After : Jun 8 00:55:50 2024 GMT Subject: CN=665a7196-d2f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8d:05:98:e5:f6:6c:3e:47:23:a5:7d:e7:6e: 3a:24:2d:f2:c5:4a:ed:fc:e8:e2:c7:07:33:29:91: e4:e3:04:90:28:26:bb:9c:4f:e5:c8:fa:6b:70:a7: 9a:a6:20:c4:0b:50:a5:21:ee:57:15:20:26:2b:69: a3:4a:54:96:24:44:ef:9c:75:1a:0e:c3:98:93:e3: 38:dd:34:ce:30:1b:90:ea:48:db:1a:1f:05:8d:5e: 41:c9:53:2d:46:8d:64:08:1b:5f:af:96:8f:de:e8: e7:52:82:2a:89:fa:94:0f:b5:88:4d:6f:8c:0e:df: 2a:9c:50:83:5c:6c:db:55:01:15:f2:ea:1b:ba:d5: fb:c3:7f:ea:e9:f1:a6:0b:28:88:63:f4:bf:10:ed: 9f:1b:c6:bc:1d:c7:99:8c:74:b3:8e:39:be:f4:90: d6:b9:22:6c:be:f5:7f:fc:92:9c:27:b4:ae:49:b8: ba:9e:29:68:0b:40:2f:ef:ee:e4:94:5d:e8:a4:ee: bc:51:b1:08:92:f7:cd:03:31:44:10:a4:ea:95:14: e0:03:1c:3c:f5:bf:17:30:2e:ac:d2:05:97:dc:c5: 44:c1:e3:0e:25:a4:43:d0:68:b2:f5:c8:a9:2e:4f: 2c:17:a2:6a:14:d1:90:6e:95:e3:eb:9d:e9:03:82: ab:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:7B:E8:25:EF:A4:62:4A:CA:95:73:83:E2:B1:9A:4F:AB:3E:EE:30 X509v3 Authority Key Identifier: keyid:BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:69:20:6b:5e:97:91:c5:ec:42:4e:4c:0b:8b:72:03:8a:ad: 86:e4:e4:f7:60:6d:43:70:0e:60:ff:26:9c:87:05:ed:b5:5a: 66:5b:cd:17:f9:4b:5d:e2:21:39:6c:3c:5f:05:e7:f7:00:35: 13:fe:b2:26:06:94:50:3f:ed:d1:74:02:25:87:8e:15:c4:e4: 8f:9b:68:a9:57:2d:21:b9:5f:49:a0:5a:8f:28:86:4e:67:09: e8:13:57:fb:0a:98:91:da:b8:8a:d1:9d:a2:7a:17:b0:cc:d5: 65:64:36:fa:a2:35:8e:90:78:41:0a:c4:a9:44:5b:7b:dd:13: 8f:17:45:cf:af:23:dd:24:5c:23:e6:b2:b2:f9:96:d1:f5:64: dc:29:ad:ac:e2:f0:5c:f4:4a:f6:23:7f:f6:bf:61:69:ef:93: b7:ea:00:37:d5:8b:22:91:71:c0:00:c0:96:4b:5c:0b:1a:e6: fe:ad:17:ea:44:e8:12:e7:d5:a8:61:58:17:a7:86:f7:c9:56: 47:44:ff:3f:92:c2:37:ea:c8:b5:2f:c8:38:0e:bc:bf:6b:e5: e7:83:45:32:14:f8:1b:ca:ea:9e:ba:cf:59:53:2a:dd:b4:aa: d9:72:82:24:5b:a6:92:8c:be:1f:d5:b7:a7:48:cd:a4:a5:77: 52:c2:31:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRTMxMTAvBgNVBAUTKEJCQ0M3NjBBRkUzRTlGMEE5Qjg4QzhFQzdBNDlFRDdD REQwMzk2RjcwHhcNMjQwNjAxMDA1NTUwWhcNMjQwNjA4MDA1NTUwWjAYMRYwFAYD VQQDEw02NjVhNzE5Ni1kMmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvo0FmOX2bD5HI6V95246JC3yxUrt/OjixwczKZHk4wSQKCa7nE/lyPprcKea piDEC1ClIe5XFSAmK2mjSlSWJETvnHUaDsOYk+M43TTOMBuQ6kjbGh8FjV5ByVMt Ro1kCBtfr5aP3ujnUoIqifqUD7WITW+MDt8qnFCDXGzbVQEV8uobutX7w3/q6fGm CyiIY/S/EO2fG8a8HceZjHSzjjm+9JDWuSJsvvV//JKcJ7SuSbi6niloC0Av7+7k lF3opO68UbEIkvfNAzFEEKTqlRTgAxw89b8XMC6s0gWX3MVEweMOJaRD0Giy9cip Lk8sF6JqFNGQbpXj653pA4Kr+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHF76CXv pGJKypVzg+Kxmk+rPu4wMB8GA1UdIwQYMBaAFLvMdgr+Pp8Km4jI7HpJ7XzdA5b3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNFMy8wOEI4RDBEMjZG M0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53cWJpTWpzZWtudGZOMERs dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U4eDJDdjQtbndxYmlNanNla250Zk4wRGx2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNFMy8wOEI4RDBEMjZGM0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53 cWJpTWpzZWtudGZOMERsdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXaSBrXpeRxexCTkwLi3IDiq2G5OT3YG1DcA5g/yachwXttVpmW80X +Utd4iE5bDxfBef3ADUT/rImBpRQP+3RdAIlh44VxOSPm2ipVy0huV9JoFqPKIZO ZwnoE1f7CpiR2riK0Z2iehewzNVlZDb6ojWOkHhBCsSpRFt73ROPF0XPryPdJFwj 5rKy+ZbR9WTcKa2s4vBc9Er2I3/2v2Fp75O36gA31YsikXHAAMCWS1wLGub+rRfq ROgS59WoYVgXp4b3yVZHRP8/ksI36si1L8g4Dry/a+Xng0UyFPgbyuqeus9ZUyrd tKrZcoIkW6aSjL4f1benSM2kpXdSwjG2 -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:45 2024 by rpki-client on console-fra.rpki-client.org