$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft File: 7FY9v-LzmMjp-xn590IytrVKpuo.mft (raw, json) Hash identifier: wfRIHOND+VHnaY4tZO6Euk5nA8dguY0gG3Cx9OaDnps= Subject key identifier: 84:82:82:A4:84:50:8F:17:A2:8E:BB:31:15:C4:E8:C8:12:FD:61:08 Authority key identifier: EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA Certificate issuer: /CN=A91E8632/serialNumber=EC563DBFE2F398C8E9FB19F9F74232B6B54AA6EA Certificate serial: 1A42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft Manifest number: 1A1D Signing time: Fri 31 May 2024 16:59:25 +0000 Manifest this update: Fri 31 May 2024 16:59:24 +0000 Manifest next update: Fri 07 Jun 2024 16:59:24 +0000 Files and hashes: 1: 7FY9v-LzmMjp-xn590IytrVKpuo.crl (hash: Gxr54mkJ7Rjm5lzKiZ6FlsqCyfquNl3rLrbDp+i8yCU=) 2: DC3B90E4520011ECA6088714C4F9AE02.roa (hash: K5vX3/pfInzYJQMjnl6onnxbmvYpmQCUe18iHRzsIMI=) 3: F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa (hash: 4zbXGA1HyqHDY7edoWPP/N+Qt3x+ZxhB3yodtRRSg98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6722 (0x1a42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8632/serialNumber=EC563DBFE2F398C8E9FB19F9F74232B6B54AA6EA Validity Not Before: May 31 16:59:24 2024 GMT Not After : Jun 7 16:59:24 2024 GMT Subject: CN=665a01ec-9de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c7:5f:49:a9:aa:29:9f:1b:22:c2:dc:a4:96: 70:28:c4:72:3a:c6:ff:85:c0:95:4e:81:00:d6:12: e3:97:f1:44:d2:fc:43:de:c5:70:23:3b:a9:98:12: 94:0f:a2:88:78:b3:c0:1d:30:88:c0:50:1a:5b:84: 2f:80:28:db:3b:eb:0a:bb:2a:6a:27:39:aa:70:90: 07:49:6e:6b:46:eb:6d:0c:04:65:34:ed:bd:c1:ca: f6:01:a6:17:5f:61:1a:67:b3:81:b7:3f:bc:87:40: df:53:fa:6a:1a:68:bc:78:f6:40:60:b4:5c:b8:1f: 57:8e:cc:8a:a8:45:08:1c:60:f8:fa:07:70:57:35: 80:99:c7:b1:7b:95:64:39:a3:9a:22:93:ba:24:ff: 6c:dd:65:18:8b:48:f4:83:ce:c7:78:65:8d:e3:d1: a8:be:e8:50:db:d9:2c:3c:48:f9:41:9c:fa:d9:62: 96:c4:9b:c8:1f:30:4e:9b:00:c8:fb:6e:9d:89:13: 99:75:10:95:34:93:9a:3a:bb:21:7d:06:de:c8:6a: 82:95:15:69:e2:2e:3b:2c:a4:38:75:c1:34:87:bd: 63:64:05:0e:ef:e7:00:16:72:3c:70:7b:7a:47:30: b1:7c:05:81:f2:41:72:d4:b9:81:1b:4a:97:71:6e: 8f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:82:82:A4:84:50:8F:17:A2:8E:BB:31:15:C4:E8:C8:12:FD:61:08 X509v3 Authority Key Identifier: keyid:EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:6e:2b:e2:88:c1:87:be:f5:15:48:c2:0d:9e:ea:f7:51:98: 1d:be:7f:cb:41:d4:1e:5b:e5:f6:21:72:16:b8:c1:98:21:c7: 59:fb:50:a3:61:01:74:d6:01:6a:98:b7:42:da:67:8b:34:e5: d9:6b:df:f2:5f:88:80:91:68:d8:d1:67:0c:81:64:1f:c8:99: 4a:06:fe:af:bf:23:26:d6:8e:2a:66:21:1e:0d:32:cb:b8:ed: 1e:da:65:10:d6:8e:af:8a:fa:c1:08:a7:d2:72:e2:81:68:9e: 9e:18:ce:23:62:dc:0c:f3:57:52:aa:ad:9a:0a:80:d1:a0:30: 7a:4e:cb:87:80:75:55:7a:04:1e:2b:f6:ec:06:c4:a8:13:ae: b3:40:6e:65:6c:8f:56:69:89:a3:19:2d:49:62:f6:c7:7a:30: af:95:43:65:42:b9:b6:ef:0c:21:ff:40:19:ed:16:8f:de:27: e4:7b:52:54:b0:92:6f:d9:37:e9:6a:4e:6f:e6:ca:08:a0:5b: 89:f6:7a:80:05:44:17:37:66:29:0c:23:2a:82:b1:d7:61:33: 6b:41:75:c5:e3:0d:40:12:da:3c:8e:f0:23:ef:c8:e0:a5:5f: 3b:67:62:2b:96:25:7a:ab:c2:54:c9:0c:83:c8:bd:d1:f9:e0: 2f:16:5e:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2MzIxMTAvBgNVBAUTKEVDNTYzREJGRTJGMzk4QzhFOUZCMTlGOUY3NDIzMkI2 QjU0QUE2RUEwHhcNMjQwNTMxMTY1OTI0WhcNMjQwNjA3MTY1OTI0WjAYMRYwFAYD VQQDEw02NjVhMDFlYy05ZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsdfSamqKZ8bIsLcpJZwKMRyOsb/hcCVToEA1hLjl/FE0vxD3sVwIzupmBKU D6KIeLPAHTCIwFAaW4QvgCjbO+sKuypqJzmqcJAHSW5rRuttDARlNO29wcr2AaYX X2EaZ7OBtz+8h0DfU/pqGmi8ePZAYLRcuB9XjsyKqEUIHGD4+gdwVzWAmcexe5Vk OaOaIpO6JP9s3WUYi0j0g87HeGWN49GovuhQ29ksPEj5QZz62WKWxJvIHzBOmwDI +26diROZdRCVNJOaOrshfQbeyGqClRVp4i47LKQ4dcE0h71jZAUO7+cAFnI8cHt6 RzCxfAWB8kFy1LmBG0qXcW6PjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISCgqSE UI8Xoo67MRXE6MgS/WEIMB8GA1UdIwQYMBaAFOxWPb/i85jI6fsZ+fdCMra1Sqbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODYzMi8wNUNFNDRFQTJF NUUxMUU3QkFDODhCNjlDNEY5QUUwMi83Rlk5di1Mem1NanAteG41OTBJeXRyVktw dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGWTl2LUx6bU1qcC14bjU5MEl5dHJWS3B1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODYzMi8wNUNFNDRFQTJFNUUxMUU3QkFDODhCNjlDNEY5QUUwMi83Rlk5di1Mem1N anAteG41OTBJeXRyVktwdW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdbiviiMGHvvUVSMINnur3UZgdvn/LQdQeW+X2IXIWuMGYIcdZ+1Cj YQF01gFqmLdC2meLNOXZa9/yX4iAkWjY0WcMgWQfyJlKBv6vvyMm1o4qZiEeDTLL uO0e2mUQ1o6vivrBCKfScuKBaJ6eGM4jYtwM81dSqq2aCoDRoDB6TsuHgHVVegQe K/bsBsSoE66zQG5lbI9WaYmjGS1JYvbHejCvlUNlQrm27wwh/0AZ7RaP3ifke1JU sJJv2Tfpak5v5soIoFuJ9nqABUQXN2YpDCMqgrHXYTNrQXXF4w1AEto8jvAj78jg pV87Z2IrliV6q8JUyQyDyL3R+eAvFl7V -----END CERTIFICATE-----Generated at Fri May 31 17:44:53 2024 by rpki-client on console-fra.rpki-client.org