$ rpki-client -vvf rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft File: c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft (raw, json) Hash identifier: QypJh/5byE9dZjZuEKZyE5ZuiwYrNMQ4wrth1jeu/aQ= Subject key identifier: DF:00:4D:E4:A5:CA:36:E2:80:4F:5A:02:C4:81:71:E6:60:FD:FB:44 Authority key identifier: 73:FB:B5:8F:55:71:F3:F4:C6:2A:63:FD:F5:AF:EF:9C:B7:0E:74:03 Certificate issuer: /CN=A911C3BB/serialNumber=73FBB58F5571F3F4C62A63FDF5AFEF9CB70E7403 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft Manifest number: E8 Signing time: Fri 03 May 2024 05:55:41 +0000 Manifest this update: Fri 03 May 2024 05:55:40 +0000 Manifest next update: Fri 10 May 2024 05:55:40 +0000 Files and hashes: 1: c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl (hash: QkqI35r3rrOmO+kltQj4XCUPqyz+vMBV5FO4h1OjAdQ=) 2: CB2788CAAB4C11EDB3DC7336C4F9AE02.roa (hash: y9v0FSsT+mxiOFAaAJ7M5RjFM0To/dNcbG/XdZ3DuW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C3BB/serialNumber=73FBB58F5571F3F4C62A63FDF5AFEF9CB70E7403 Validity Not Before: May 3 05:55:40 2024 GMT Not After : May 10 05:55:40 2024 GMT Subject: CN=66347c5c-ee94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:35:35:c3:da:17:ef:be:16:0a:16:1f:5d:58: e3:dd:af:62:37:b7:2f:8d:30:67:45:6d:13:0f:1b: bf:5a:dc:91:6d:f4:c6:db:31:0d:d7:15:09:ff:da: 63:43:e9:f6:ef:67:8a:34:0b:41:a9:45:bc:e1:de: 41:ad:a5:64:86:55:e3:5e:c7:64:73:07:5b:81:7e: 1d:50:0a:57:f4:2f:b7:4e:c2:f0:09:71:9f:d6:48: 6b:c7:00:47:b2:a2:ec:5a:d1:3d:23:5b:06:5f:50: 1a:7e:eb:78:a5:59:35:de:19:9c:68:66:7a:6f:32: 5a:fd:8c:e2:d6:f2:61:ec:d4:9e:da:ad:ec:e4:6f: 87:bf:1b:6c:e2:74:66:c7:c6:90:22:16:fd:ad:93: f8:b7:87:fe:33:8a:a3:20:61:8d:20:d4:ee:7c:1b: d2:74:0b:d6:12:e3:e2:86:d8:3f:19:ec:34:17:8b: 8e:75:9f:bd:65:71:cf:f5:2b:bf:be:a0:76:94:a0: a3:4a:6f:14:55:e3:73:0e:f5:98:dc:70:21:20:f6: 01:db:0d:cb:9f:75:a2:b9:74:e3:2d:af:0e:0e:eb: f4:27:3b:09:04:fa:49:a3:53:ce:31:35:d5:19:37: c6:44:e3:36:97:c1:ef:9f:34:c5:02:27:ab:b3:80: ca:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:00:4D:E4:A5:CA:36:E2:80:4F:5A:02:C4:81:71:E6:60:FD:FB:44 X509v3 Authority Key Identifier: keyid:73:FB:B5:8F:55:71:F3:F4:C6:2A:63:FD:F5:AF:EF:9C:B7:0E:74:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:c4:37:6e:03:39:70:8c:6e:f8:83:20:5a:42:e9:92:fa:d7: 62:19:6c:9b:48:fb:80:ba:27:c8:6f:00:2f:fd:72:45:26:94: 09:38:e0:34:36:cd:04:b0:3f:66:9f:30:27:e9:4c:4a:d6:a0: dc:b3:1e:0b:2d:3e:c9:49:55:52:1c:47:9d:7f:06:de:e9:4d: c9:c4:04:b6:e1:4f:99:b3:5c:9c:a1:3d:d0:f7:4f:c6:40:17: f1:18:2b:dc:ac:a7:2f:89:47:ee:33:8a:f6:68:2c:a1:e7:03: 46:52:09:5f:de:ce:95:55:d2:b8:32:28:cc:33:da:90:ea:f4: c9:74:4b:d6:54:e0:f7:b3:75:36:3a:2d:72:b1:74:49:2b:29: 99:95:e6:77:dd:ec:63:40:0b:96:60:95:fb:13:8d:2e:f5:04: 34:c4:6c:5f:94:0d:91:e5:ab:1b:11:0b:16:db:1e:ed:81:59: 23:24:d4:d8:f8:8e:d7:68:44:f4:6d:0f:8a:2c:5b:22:5d:ed: 26:f6:72:96:38:ad:d3:9b:63:f7:73:ae:9d:d0:d9:cf:93:72: 33:09:a9:2f:52:79:ac:66:a4:27:a2:70:5d:53:e7:51:96:26: 3f:d1:8c:7a:fe:55:92:0b:13:77:da:41:0c:2e:d9:fa:ed:bb: 04:c5:e8:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzQkIxMTAvBgNVBAUTKDczRkJCNThGNTU3MUYzRjRDNjJBNjNGREY1QUZFRjlD QjcwRTc0MDMwHhcNMjQwNTAzMDU1NTQwWhcNMjQwNTEwMDU1NTQwWjAYMRYwFAYD VQQDEw02NjM0N2M1Yy1lZTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDU1w9oX774WChYfXVjj3a9iN7cvjTBnRW0TDxu/WtyRbfTG2zEN1xUJ/9pj Q+n272eKNAtBqUW84d5BraVkhlXjXsdkcwdbgX4dUApX9C+3TsLwCXGf1khrxwBH sqLsWtE9I1sGX1Aafut4pVk13hmcaGZ6bzJa/Yzi1vJh7NSe2q3s5G+Hvxts4nRm x8aQIhb9rZP4t4f+M4qjIGGNINTufBvSdAvWEuPihtg/Gew0F4uOdZ+9ZXHP9Su/ vqB2lKCjSm8UVeNzDvWY3HAhIPYB2w3Ln3WiuXTjLa8ODuv0JzsJBPpJo1POMTXV GTfGROM2l8HvnzTFAiers4DKPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8ATeSl yjbigE9aAsSBceZg/ftEMB8GA1UdIwQYMBaAFHP7tY9VcfP0xipj/fWv75y3DnQD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzNCQi9DOTA4ODc5QUFC NDkxMUVEOUZCNDBCMzVDNEY5QUUwMi9jX3UxajFWeDhfVEdLbVA5OWFfdm5MY09k QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NfdTFqMVZ4OF9UR0ttUDk5YV92bkxjT2RBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzNCQi9DOTA4ODc5QUFCNDkxMUVEOUZCNDBCMzVDNEY5QUUwMi9jX3UxajFWeDhf VEdLbVA5OWFfdm5MY09kQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZxDduAzlwjG74gyBaQumS+tdiGWybSPuAuifIbwAv/XJFJpQJOOA0 Ns0EsD9mnzAn6UxK1qDcsx4LLT7JSVVSHEedfwbe6U3JxAS24U+Zs1ycoT3Q90/G QBfxGCvcrKcviUfuM4r2aCyh5wNGUglf3s6VVdK4MijMM9qQ6vTJdEvWVOD3s3U2 Oi1ysXRJKymZleZ33exjQAuWYJX7E40u9QQ0xGxflA2R5asbEQsW2x7tgVkjJNTY +I7XaET0bQ+KLFsiXe0m9nKWOK3Tm2P3c66d0NnPk3IzCakvUnmsZqQnonBdU+dR liY/0Yx6/lWSCxN32kEMLtn67bsExej8 -----END CERTIFICATE-----Generated at Fri May 3 06:28:36 2024 by rpki-client on console-fra.rpki-client.org