$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: SqWsUCoKD+9G830dwdsVweWaCsB8Wz1Q0Ysu+mcKwcA= Subject key identifier: F1:7D:93:7E:85:F9:76:E8:7F:D8:1D:86:A3:5E:B5:4D:F2:9E:25:A4 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 039F Signing time: Sun 05 May 2024 02:42:51 +0000 Manifest this update: Sun 05 May 2024 02:42:50 +0000 Manifest next update: Sun 12 May 2024 02:42:50 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: 8DIV350+BhC0Vj60Aj1mwWPxLjijbgs2PYagQ5yZK7Y=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: bIUk6ZZ/A1xldg4HDw1gT54BgctTYwC/Te7zgetsISU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: May 5 02:42:50 2024 GMT Not After : May 12 02:42:50 2024 GMT Subject: CN=6636f22b-dbd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:48:4f:f4:70:0e:1b:95:e3:49:ae:9c:a3:83: 4c:42:af:81:0a:2b:29:db:45:f3:c6:d2:40:06:86: 6c:10:b6:85:62:15:8f:bd:46:a9:a2:1f:d9:92:f6: 4a:d5:21:4a:a9:c1:82:aa:c6:4f:d7:39:77:d9:9a: 76:da:d4:a1:01:2a:8a:8a:9a:5a:59:75:39:1b:47: df:2f:e3:03:92:9e:24:01:c6:36:5c:24:ab:d7:aa: 1b:65:24:43:f4:0a:4b:05:d5:be:77:dd:56:c0:2d: 44:58:86:61:49:56:ca:c8:50:f2:a1:35:c9:8e:9d: 1b:0e:e6:f0:4a:49:56:58:32:aa:cf:64:cd:88:31: ed:77:76:96:65:9e:8e:3d:3a:f7:c3:f3:33:a0:cd: 81:6a:a8:dc:19:f6:56:64:1c:16:41:7c:f1:e4:28: 87:05:e1:54:6e:2d:cf:28:3e:ca:a9:8d:9f:29:ed: 79:89:9d:c8:91:1b:b3:aa:2b:68:8d:1b:94:10:e1: c7:81:f3:0c:66:91:f8:f0:54:f7:cb:62:4d:7e:38: 98:2d:b9:4b:54:ea:90:d8:84:39:a3:bd:3d:ce:cd: da:b6:cd:ca:0c:45:3c:92:d9:f8:16:67:bf:c2:e0: 9e:5c:f8:95:6b:6b:be:9a:50:0f:af:0d:7f:27:30: b9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7D:93:7E:85:F9:76:E8:7F:D8:1D:86:A3:5E:B5:4D:F2:9E:25:A4 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:bc:cd:fb:c5:d5:62:af:f1:32:6b:87:9f:b4:8d:a9:43:d2: f6:2a:27:45:12:80:e2:f9:45:01:be:e8:54:ce:e3:07:eb:9a: 43:de:03:b1:2c:93:67:ac:c3:b1:0c:e0:6c:2e:b0:06:9a:e7: ff:96:5e:f9:af:1f:f7:7a:66:d5:b4:f1:2a:5c:4f:f4:74:1c: f2:7b:90:1e:bc:2d:45:9b:17:88:c8:12:9d:64:b3:b2:85:3b: 21:e5:a6:e8:12:7d:0e:fd:2d:06:7c:0c:8e:52:d7:44:95:ff: d6:90:62:7e:5e:1a:04:fc:11:c8:e3:e7:61:36:1d:35:0f:e5: 2f:0e:a4:d1:9c:b8:b6:9d:23:ea:6c:2d:19:4e:6b:1f:57:d3: 8c:03:22:b1:7a:cb:75:d6:b3:e8:62:2e:76:dc:41:7c:e0:a2: d2:f8:62:7f:66:0e:6d:64:32:df:14:f3:94:4c:47:d9:92:c1: 15:aa:aa:6c:71:9f:17:dd:a7:7e:3e:ce:e1:6b:59:bf:d6:51: ec:f8:c7:aa:04:f9:ab:3a:84:be:29:7a:e3:d9:0a:97:11:2f: c7:02:2b:dc:f5:c0:8e:33:5d:e7:3a:05:3a:ff:3f:6c:da:a9: 3b:75:83:c8:ac:99:5f:30:24:6d:af:12:72:ba:37:15:43:4f: d2:b6:41:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjQwNTA1MDI0MjUwWhcNMjQwNTEyMDI0MjUwWjAYMRYwFAYD VQQDEw02NjM2ZjIyYi1kYmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEhP9HAOG5XjSa6co4NMQq+BCisp20XzxtJABoZsELaFYhWPvUapoh/ZkvZK 1SFKqcGCqsZP1zl32Zp22tShASqKippaWXU5G0ffL+MDkp4kAcY2XCSr16obZSRD 9ApLBdW+d91WwC1EWIZhSVbKyFDyoTXJjp0bDubwSklWWDKqz2TNiDHtd3aWZZ6O PTr3w/MzoM2BaqjcGfZWZBwWQXzx5CiHBeFUbi3PKD7KqY2fKe15iZ3IkRuzqito jRuUEOHHgfMMZpH48FT3y2JNfjiYLblLVOqQ2IQ5o709zs3ats3KDEU8ktn4Fme/ wuCeXPiVa2u+mlAPrw1/JzC5XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF9k36F +Xbof9gdhqNetU3yniWkMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKvM37xdVir/Eya4eftI2pQ9L2KidFEoDi+UUBvuhUzuMH65pD3gOx LJNnrMOxDOBsLrAGmuf/ll75rx/3embVtPEqXE/0dBzye5AevC1FmxeIyBKdZLOy hTsh5aboEn0O/S0GfAyOUtdElf/WkGJ+XhoE/BHI4+dhNh01D+UvDqTRnLi2nSPq bC0ZTmsfV9OMAyKxest11rPoYi523EF84KLS+GJ/Zg5tZDLfFPOUTEfZksEVqqps cZ8X3ad+Ps7ha1m/1lHs+MeqBPmrOoS+KXrj2QqXES/HAivc9cCOM13nOgU6/z9s 2qk7dYPIrJlfMCRtrxJyujcVQ0/StkEt -----END CERTIFICATE-----Generated at Sun May 5 03:47:40 2024 by rpki-client on console-fra.rpki-client.org