$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft File: ifWWEQAwvcmzutds_QXDEkYXyVI.mft (raw, json) Hash identifier: Lss/I8BeV7fuJl9vZlytImE2P9aqdXsN/gCRFuFT5uc= Subject key identifier: 86:85:22:35:5F:32:0B:B4:C5:4A:3B:3C:F4:61:FC:F8:67:CA:00:93 Authority key identifier: 89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 Certificate issuer: /CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft Manifest number: 0328 Signing time: Sun 05 May 2024 03:14:17 +0000 Manifest this update: Sun 05 May 2024 03:14:17 +0000 Manifest next update: Sun 12 May 2024 03:14:17 +0000 Files and hashes: 1: ifWWEQAwvcmzutds_QXDEkYXyVI.crl (hash: Yr7ttIOJdOIEXHardtgDwgmugKemsxepdHT8rIldnL4=) 2: 969AE080A14211EC8C49D660C4F9AE02.roa (hash: TeNDnRuuYAnbCLS3WXII+1iDKTVyNVShsBnh2Tnr5KY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Validity Not Before: May 5 03:14:17 2024 GMT Not After : May 12 03:14:17 2024 GMT Subject: CN=6636f989-b41b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:64:60:c4:84:16:74:27:04:5d:55:3a:d6:8e: b5:9a:b3:49:8f:cd:8a:34:00:92:2c:a9:27:4a:45: 18:62:01:8e:fc:06:ab:11:27:b6:04:df:67:63:01: 61:85:36:2f:9a:25:1b:22:1c:ee:dd:5e:df:14:76: e4:3d:9f:8e:2f:7d:49:32:69:42:26:83:92:6e:70: 43:03:de:2d:73:d8:b1:b8:e2:c6:d7:90:42:b2:9b: 33:95:5b:9d:37:48:f7:c7:ac:99:fc:d6:fa:79:c0: 21:42:5e:77:46:73:ab:27:56:33:13:48:4a:c9:ae: 61:19:cc:59:9b:56:05:dd:b3:ee:4d:0c:5b:a0:c1: 84:a0:98:9c:14:a3:63:d1:46:ca:00:c7:77:6e:ce: 3e:0d:26:d3:88:fe:7d:61:09:05:54:a2:bf:f0:4a: 13:38:76:f0:05:6f:36:46:8d:95:4f:7b:c5:1e:bb: 03:0a:7c:3f:40:7a:3b:28:87:b9:db:5f:00:eb:5a: c1:74:aa:dd:d0:db:75:b9:80:c6:10:7c:32:88:67: 42:5b:66:2d:1d:4b:d2:1b:b5:ac:06:35:4e:17:e1: 6f:09:d5:47:c3:66:4f:00:04:71:e6:95:79:c5:bf: e0:d6:41:7d:ff:b7:c3:8e:f4:94:a7:f2:c7:ec:77: a7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:85:22:35:5F:32:0B:B4:C5:4A:3B:3C:F4:61:FC:F8:67:CA:00:93 X509v3 Authority Key Identifier: keyid:89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:b5:5e:13:72:b3:b3:28:cd:db:a3:2c:1a:c5:4d:b9:6a:fe: fd:ec:89:6e:90:ca:16:0e:97:12:0b:73:b9:15:e2:1f:0e:e1: 5c:ff:66:c3:2f:1f:d7:97:01:14:2e:15:a2:0d:d7:4a:0d:0a: 40:1d:14:dd:80:5f:43:5e:9d:47:75:c8:9a:98:4a:f6:e7:5a: 6f:99:25:29:a8:e4:50:2f:84:8b:2f:cf:85:08:67:db:ec:d1: 18:64:8b:90:d2:c9:ac:ae:70:51:88:86:0f:9c:e0:9b:6d:08: e0:ee:6a:cf:92:cb:e8:f5:37:9d:dd:23:cb:23:04:c9:85:fa: 5d:ba:6b:77:2b:c6:e6:4d:a8:ff:61:c4:17:49:9b:99:17:e5: af:70:c4:ad:68:04:fa:a6:06:46:41:1b:c3:13:61:0d:7d:59: 20:01:b9:30:2a:85:a4:a5:74:12:55:e4:81:99:40:0b:44:a4: 43:20:ff:a8:0b:27:74:2a:d9:c8:80:a0:a5:0c:ce:d6:18:34: 8a:7a:3a:08:0a:0f:3a:e5:d1:8a:5c:ea:f7:f6:b0:56:5b:d1: 50:88:2d:cc:a7:38:3b:2f:c4:0c:73:93:78:bd:9e:5a:9a:5d: c7:3e:14:6a:e6:19:50:96:41:f4:63:dc:6a:f6:3c:0c:a4:e2: bd:dd:06:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBNjIxMTAvBgNVBAUTKDg5RjU5NjExMDAzMEJEQzlCM0JBRDc2Q0ZEMDVDMzEy NDYxN0M5NTIwHhcNMjQwNTA1MDMxNDE3WhcNMjQwNTEyMDMxNDE3WjAYMRYwFAYD VQQDEw02NjM2Zjk4OS1iNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GRgxIQWdCcEXVU61o61mrNJj82KNACSLKknSkUYYgGO/AarESe2BN9nYwFh hTYvmiUbIhzu3V7fFHbkPZ+OL31JMmlCJoOSbnBDA94tc9ixuOLG15BCspszlVud N0j3x6yZ/Nb6ecAhQl53RnOrJ1YzE0hKya5hGcxZm1YF3bPuTQxboMGEoJicFKNj 0UbKAMd3bs4+DSbTiP59YQkFVKK/8EoTOHbwBW82Ro2VT3vFHrsDCnw/QHo7KIe5 218A61rBdKrd0Nt1uYDGEHwyiGdCW2YtHUvSG7WsBjVOF+FvCdVHw2ZPAARx5pV5 xb/g1kF9/7fDjvSUp/LH7HenRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaFIjVf Mgu0xUo7PPRh/PhnygCTMB8GA1UdIwQYMBaAFIn1lhEAML3Js7rXbP0FwxJGF8lS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE2Mi8xMTY4MjExQzgw NkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3ZjbXp1dGRzX1FYREVrWVh5 VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmV1dFUUF3dmNtenV0ZHNfUVhERWtZWHlWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUE2Mi8xMTY4MjExQzgwNkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3Zj bXp1dGRzX1FYREVrWVh5VkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWtV4TcrOzKM3boywaxU25av797IlukMoWDpcSC3O5FeIfDuFc/2bD Lx/XlwEULhWiDddKDQpAHRTdgF9DXp1HdciamEr251pvmSUpqORQL4SLL8+FCGfb 7NEYZIuQ0smsrnBRiIYPnOCbbQjg7mrPksvo9Ted3SPLIwTJhfpdumt3K8bmTaj/ YcQXSZuZF+WvcMStaAT6pgZGQRvDE2ENfVkgAbkwKoWkpXQSVeSBmUALRKRDIP+o Cyd0KtnIgKClDM7WGDSKejoICg865dGKXOr39rBWW9FQiC3Mpzg7L8QMc5N4vZ5a ml3HPhRq5hlQlkH0Y9xq9jwMpOK93Qa1 -----END CERTIFICATE-----Generated at Sun May 5 03:47:41 2024 by rpki-client on console-fra.rpki-client.org