$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft File: vrCjIjTRl23j3iJaVReALbYTqLY.mft (raw, json) Hash identifier: neSX2cEomF6/ps1qnV3IU+D4IGIcwkR0XiFVrUE8hIA= Subject key identifier: DB:BF:F7:26:2E:DC:23:2B:37:58:64:39:66:F0:9F:06:F4:0D:1D:05 Authority key identifier: BE:B0:A3:22:34:D1:97:6D:E3:DE:22:5A:55:17:80:2D:B6:13:A8:B6 Certificate issuer: /CN=A91AF17B/serialNumber=BEB0A32234D1976DE3DE225A5517802DB613A8B6 Certificate serial: 04F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft Manifest number: 04F0 Signing time: Sun 19 May 2024 01:14:07 +0000 Manifest this update: Sun 19 May 2024 01:14:06 +0000 Manifest next update: Sun 26 May 2024 01:14:06 +0000 Files and hashes: 1: vrCjIjTRl23j3iJaVReALbYTqLY.crl (hash: 1KgDUpd8jCQVkIdl1234zMPeGtJo+1dybj/paCpbR50=) 2: 9C955450C77E11EB9DF68B6AC4F9AE02.roa (hash: TGz9Zh5FefNnMbYn4rta3QSulEPlsh/QObNxboqxsnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.crl rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1268 (0x4f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF17B/serialNumber=BEB0A32234D1976DE3DE225A5517802DB613A8B6 Validity Not Before: May 19 01:14:06 2024 GMT Not After : May 26 01:14:06 2024 GMT Subject: CN=6649525e-7a0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4e:b0:21:06:8f:05:24:99:e0:2f:f5:22:50: 5b:2c:6f:bc:ea:0c:10:70:d1:9c:62:91:28:e3:4d: aa:85:83:6a:5c:83:d9:34:d0:1d:f7:e1:e5:38:a4: 2f:34:8f:63:2b:ec:08:7d:e2:37:6e:03:37:29:24: 22:63:93:b8:99:73:57:ef:79:e7:bd:0d:3b:20:cc: fd:f5:95:24:30:b1:29:96:25:7f:dd:43:58:37:fc: 97:65:de:7a:58:af:6b:36:b3:93:19:15:5e:a7:b5: 60:f4:78:f6:56:da:75:44:8e:e4:22:80:73:13:25: c2:b3:e1:e1:de:dd:3e:93:dc:51:75:ba:3e:e1:a0: a9:28:7b:5e:85:cf:08:0f:2e:08:f5:cc:14:17:3d: 07:c2:3a:e4:6d:27:28:2c:9c:1b:6f:cc:d7:a2:12: af:95:61:d2:2b:13:20:48:43:46:d4:49:14:f5:d0: 17:54:85:49:3e:67:16:4f:a2:b6:d5:de:ba:f9:87: 35:58:62:1f:33:20:9f:59:77:a1:84:a4:85:06:25: 67:7b:0b:bb:af:8b:18:8f:43:7f:38:c5:6d:73:04: b0:47:76:04:d0:ea:5a:95:2d:f0:54:c5:3d:1d:f5: 63:41:4c:22:52:cf:dc:10:8a:a5:68:6d:f0:69:e0: 4f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:BF:F7:26:2E:DC:23:2B:37:58:64:39:66:F0:9F:06:F4:0D:1D:05 X509v3 Authority Key Identifier: keyid:BE:B0:A3:22:34:D1:97:6D:E3:DE:22:5A:55:17:80:2D:B6:13:A8:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:15:3d:43:c4:77:a0:5a:06:a8:12:af:93:9a:90:a9:09:0a: 6d:f1:ce:85:6a:f6:df:50:0b:da:01:b8:ae:af:c5:dd:94:cc: c9:f9:51:d2:c6:19:0c:05:c5:32:6b:0d:64:b4:3c:4b:5b:22: 49:c8:9d:28:47:45:26:3b:21:9f:8a:84:b9:63:e0:f7:af:9a: 47:09:99:d6:b6:ec:b8:87:ce:ab:95:76:c2:ab:31:39:d1:38: 05:f5:04:01:42:c3:ee:3f:9c:2b:24:97:cd:fe:e9:4f:a4:36: 98:2c:f0:2a:8c:67:92:1e:dc:8a:a8:4d:0a:d1:11:e8:b3:1f: dd:a6:77:7a:5e:86:15:50:ce:db:c9:ee:3c:2e:7c:29:3e:98: ee:90:6c:c2:d3:33:67:4b:ad:a3:c6:ee:42:57:42:e0:9a:24: f5:71:bd:a4:bc:f8:5a:2c:a2:25:11:ca:45:d9:c8:ce:9d:f5: 99:11:d5:60:b3:cd:8a:8b:b5:10:50:41:42:8a:c5:5b:0d:ca: cc:9c:6d:01:b2:2e:8f:09:b0:66:44:fe:46:2e:73:3e:11:ee: 90:63:75:51:45:92:09:07:d0:ae:2d:ea:aa:ad:dc:74:f7:fc: de:6a:e1:6a:d6:23:a1:90:10:3f:c9:cf:ab:72:78:22:a3:ff: 8f:8d:53:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxN0IxMTAvBgNVBAUTKEJFQjBBMzIyMzREMTk3NkRFM0RFMjI1QTU1MTc4MDJE QjYxM0E4QjYwHhcNMjQwNTE5MDExNDA2WhcNMjQwNTI2MDExNDA2WjAYMRYwFAYD VQQDEw02NjQ5NTI1ZS03YTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE6wIQaPBSSZ4C/1IlBbLG+86gwQcNGcYpEo402qhYNqXIPZNNAd9+HlOKQv NI9jK+wIfeI3bgM3KSQiY5O4mXNX73nnvQ07IMz99ZUkMLEpliV/3UNYN/yXZd56 WK9rNrOTGRVep7Vg9Hj2Vtp1RI7kIoBzEyXCs+Hh3t0+k9xRdbo+4aCpKHtehc8I Dy4I9cwUFz0HwjrkbScoLJwbb8zXohKvlWHSKxMgSENG1EkU9dAXVIVJPmcWT6K2 1d66+Yc1WGIfMyCfWXehhKSFBiVnewu7r4sYj0N/OMVtcwSwR3YE0OpalS3wVMU9 HfVjQUwiUs/cEIqlaG3waeBPSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNu/9yYu 3CMrN1hkOWbwnwb0DR0FMB8GA1UdIwQYMBaAFL6woyI00Zdt494iWlUXgC22E6i2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE3Qi9FQjAyNzdGQ0M3 N0ExMUVCQkI4MEI4NzhDNEY5QUUwMi92ckNqSWpUUmwyM2ozaUphVlJlQUxiWVRx TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZyQ2pJalRSbDIzajNpSmFWUmVBTGJZVHFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE3Qi9FQjAyNzdGQ0M3N0ExMUVCQkI4MEI4NzhDNEY5QUUwMi92ckNqSWpUUmwy M2ozaUphVlJlQUxiWVRxTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoFT1DxHegWgaoEq+TmpCpCQpt8c6FavbfUAvaAbiur8XdlMzJ+VHS xhkMBcUyaw1ktDxLWyJJyJ0oR0UmOyGfioS5Y+D3r5pHCZnWtuy4h86rlXbCqzE5 0TgF9QQBQsPuP5wrJJfN/ulPpDaYLPAqjGeSHtyKqE0K0RHosx/dpnd6XoYVUM7b ye48LnwpPpjukGzC0zNnS62jxu5CV0LgmiT1cb2kvPhaLKIlEcpF2cjOnfWZEdVg s82Ki7UQUEFCisVbDcrMnG0Bsi6PCbBmRP5GLnM+Ee6QY3VRRZIJB9CuLeqqrdx0 9/zeauFq1iOhkBA/yc+rcngio/+PjVOu -----END CERTIFICATE-----Generated at Sun May 19 01:47:14 2024 by rpki-client on console-fra.rpki-client.org