$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft File: 7TaUIY3LHq89GvXGq8Axptt-bOU.mft (raw, json) Hash identifier: CVL1G+FXqdr8WJReMHruZVOY3mPsnH6Mc4919uBqQ08= Subject key identifier: 7B:45:89:29:83:17:61:C6:1E:C4:1C:E2:0A:74:B7:62:E2:99:B6:C4 Authority key identifier: ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 Certificate issuer: /CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Certificate serial: 18BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft Manifest number: 18B4 Signing time: Sat 18 May 2024 16:52:35 +0000 Manifest this update: Sat 18 May 2024 16:52:34 +0000 Manifest next update: Sat 25 May 2024 16:52:34 +0000 Files and hashes: 1: 7TaUIY3LHq89GvXGq8Axptt-bOU.crl (hash: fVmanwG7eOpxt/UCh4QLl742ZMdrVoELdgQUHj24bg8=) 2: 545743246D1911E7A4448D81C4F9AE02.roa (hash: OnvtK5lSr6pRvpSbhh6BxoIOFbnQbsNqWIc62+qe+8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6332 (0x18bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Validity Not Before: May 18 16:52:34 2024 GMT Not After : May 25 16:52:34 2024 GMT Subject: CN=6648dcd2-0ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:02:2f:e4:47:6d:be:cc:f0:83:ec:0d:74:5a: d3:15:a8:13:ad:c1:9d:1d:b9:a3:08:0e:af:93:fa: d3:26:7b:b6:35:f7:ba:6a:f8:d4:ed:d7:61:34:2f: bf:21:85:5f:67:85:5c:bb:fc:33:47:fd:d5:0e:eb: 56:98:81:74:4c:d9:24:45:33:d1:b2:26:b1:8c:a1: 05:4b:03:28:ff:09:66:e3:a3:49:75:dd:9b:2c:a9: fb:e9:bd:3e:c5:71:1c:b1:3d:36:ce:f5:68:1c:cb: 57:4b:6b:df:25:f5:4e:39:d2:5a:d0:0b:34:04:30: 73:1d:88:72:c8:74:1f:d4:63:1b:f4:2b:f6:d1:9a: f0:3c:53:c6:88:d5:00:fc:9b:0f:a9:ae:14:17:3d: 06:4c:4b:6c:03:48:0a:ec:2a:ad:4e:29:eb:2e:3b: ea:16:6c:6b:3a:a6:27:b6:ab:98:dc:4b:eb:4f:38: ef:e6:59:19:39:38:4b:6f:70:ad:ca:85:7d:c4:85: e3:07:18:ee:56:bd:3e:82:52:d4:bf:89:3e:38:53: 1e:1a:b2:00:36:20:f5:67:5b:3e:83:ca:99:e1:c4: f3:93:3b:0e:0b:3b:37:bb:0a:ce:2d:f0:c8:35:85: 5d:1d:bb:fb:b1:ab:35:2d:47:ab:b7:80:ce:38:92: c1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:45:89:29:83:17:61:C6:1E:C4:1C:E2:0A:74:B7:62:E2:99:B6:C4 X509v3 Authority Key Identifier: keyid:ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:11:5f:2f:64:ec:a2:02:18:e9:08:78:60:83:c9:d5:bb:24: 01:5d:37:34:6e:d0:24:15:46:44:bc:9e:fd:c6:67:c0:e3:cf: 74:af:84:a8:bf:9e:1f:c1:03:7c:10:71:b7:6e:57:1d:31:00: 64:7f:56:33:36:cc:c3:ca:81:78:51:36:f5:43:9b:93:ce:b1: 51:de:b3:57:bd:82:62:89:ef:34:1c:7c:15:e8:8d:71:30:7b: 19:7b:fe:62:e8:b8:5a:38:2c:db:70:d7:65:c1:68:22:65:8d: bd:58:a9:97:c4:19:96:8a:d6:2c:e7:85:9d:ab:4d:11:90:cf: d6:e6:3f:15:71:c5:ff:34:c7:cb:93:35:e4:bf:f8:6c:41:50: 5b:37:ff:8f:56:cb:51:09:37:de:75:3b:6a:ff:9c:ae:d9:b1: 1f:91:02:c8:77:cc:37:a2:be:fe:22:6d:a9:54:03:63:48:ef: 26:9b:ec:d6:48:82:d2:df:12:38:5a:20:72:dc:24:56:5d:0d: c9:e6:20:d0:b1:a6:d6:85:36:9c:ed:82:65:86:d4:93:c9:76: 61:94:b9:46:8d:01:23:49:d8:9c:56:35:e5:eb:c7:f2:64:5a: 17:68:1e:f3:27:03:b2:b3:c0:c7:07:df:f1:1c:87:57:40:80: 98:65:d6:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKEVEMzY5NDIxOERDQjFFQUYzRDFBRjVDNkFCQzAzMUE2 REI3RTZDRTUwHhcNMjQwNTE4MTY1MjM0WhcNMjQwNTI1MTY1MjM0WjAYMRYwFAYD VQQDEw02NjQ4ZGNkMi0wY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgIv5Edtvszwg+wNdFrTFagTrcGdHbmjCA6vk/rTJnu2Nfe6avjU7ddhNC+/ IYVfZ4Vcu/wzR/3VDutWmIF0TNkkRTPRsiaxjKEFSwMo/wlm46NJdd2bLKn76b0+ xXEcsT02zvVoHMtXS2vfJfVOOdJa0As0BDBzHYhyyHQf1GMb9Cv20ZrwPFPGiNUA /JsPqa4UFz0GTEtsA0gK7CqtTinrLjvqFmxrOqYntquY3EvrTzjv5lkZOThLb3Ct yoV9xIXjBxjuVr0+glLUv4k+OFMeGrIANiD1Z1s+g8qZ4cTzkzsOCzs3uwrOLfDI NYVdHbv7sas1LUert4DOOJLBXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtFiSmD F2HGHsQc4gp0t2LimbbEMB8GA1UdIwQYMBaAFO02lCGNyx6vPRr1xqvAMabbfmzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85RDIwMERCQzZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi83VGFVSVkzTEhxODlHdlhHcThBeHB0dC1i T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUYVVJWTNMSHE4OUd2WEdxOEF4cHR0LWJPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85RDIwMERCQzZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi83VGFVSVkzTEhx ODlHdlhHcThBeHB0dC1iT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6EV8vZOyiAhjpCHhgg8nVuyQBXTc0btAkFUZEvJ79xmfA4890r4So v54fwQN8EHG3blcdMQBkf1YzNszDyoF4UTb1Q5uTzrFR3rNXvYJiie80HHwV6I1x MHsZe/5i6LhaOCzbcNdlwWgiZY29WKmXxBmWitYs54Wdq00RkM/W5j8VccX/NMfL kzXkv/hsQVBbN/+PVstRCTfedTtq/5yu2bEfkQLId8w3or7+Im2pVANjSO8mm+zW SILS3xI4WiBy3CRWXQ3J5iDQsabWhTac7YJlhtSTyXZhlLlGjQEjSdicVjXl68fy ZFoXaB7zJwOys8DHB9/xHIdXQICYZdZB -----END CERTIFICATE-----Generated at Sat May 18 18:21:38 2024 by rpki-client on console-ams.rpki-client.org