$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: pO7GA+/gHWzl3zOD5LTPyIGOtGNxinXMljgb92DbYI4= Subject key identifier: 7D:26:33:FA:97:9F:29:7D:31:6D:AA:BE:C9:12:2E:31:6D:62:22:C2 Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 12D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 12C4 Signing time: Sun 02 Jun 2024 17:49:25 +0000 Manifest this update: Sun 02 Jun 2024 17:49:25 +0000 Manifest next update: Sun 09 Jun 2024 17:49:25 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: 6gREk/M6dzLu0LfK0wS3uL0gvSYF55eEnA9XrlTZZAk=) 2: 4338FC5CFB5611EBB7032080C4F9AE02.roa (hash: yTrOtmywvW48OIc6HGH9ZHXytNnFplJFX28JD2SXZzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 17:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4825 (0x12d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Jun 2 17:49:25 2024 GMT Not After : Jun 9 17:49:25 2024 GMT Subject: CN=665cb0a5-e662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e1:47:8d:d2:41:f1:0f:c5:c5:6e:a5:cd:52: 71:0c:b3:78:58:d2:3d:46:fd:1a:34:29:93:6f:99: e0:e9:35:5c:7e:1f:05:7a:db:d2:6d:73:49:22:23: 55:fe:4a:9f:22:b7:b5:69:ef:ef:3d:44:24:cd:29: c2:d9:ee:69:e8:5a:94:43:5d:8b:dd:39:ed:e3:27: 69:6a:45:6e:e8:a1:df:45:89:9d:94:94:4e:87:f1: 29:df:55:c8:58:a2:f0:4b:23:9d:04:13:71:50:99: b7:d2:3f:7e:d1:08:d6:85:bd:c5:25:f4:9d:35:69: 5d:37:68:ef:70:81:d4:62:2e:69:e4:21:81:2f:68: 69:ee:8e:5c:75:c4:18:64:1f:e8:d2:0f:2a:45:40: 67:4a:a0:a6:d8:1e:a5:c0:1a:0b:60:31:97:25:5a: 0c:31:64:23:29:33:c7:ff:e6:b6:c4:11:2b:fc:72: a3:3c:09:b1:ba:81:95:c7:96:de:7c:11:e8:65:c7: 64:1f:d7:d5:82:b2:81:fd:4e:e5:03:5f:5d:a1:a2: 4d:33:72:a6:2e:cd:a6:ee:03:6b:ea:fb:69:a7:49: 5b:a4:88:8e:b7:bd:39:9e:e8:92:72:21:39:b8:ad: 09:0d:17:30:ed:cf:9b:ba:3f:84:f5:88:d4:d3:42: 5e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:26:33:FA:97:9F:29:7D:31:6D:AA:BE:C9:12:2E:31:6D:62:22:C2 X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:54:9f:98:00:14:be:ad:79:39:e1:06:21:56:9c:9c:d4:89: 70:3c:82:08:06:c9:6f:7a:d6:d8:bf:95:b1:de:59:2f:4d:bb: 97:c4:a4:9d:64:ed:4b:e0:9d:d9:be:96:1d:4f:ae:6e:88:d4: 2d:3d:51:e7:2b:66:ca:82:1c:50:d5:96:34:d8:57:8f:a1:0c: 2b:2f:53:19:15:61:30:c0:87:1d:f2:1e:9f:ad:e3:0d:87:52: 9d:fe:59:3d:ba:dd:30:c2:01:d5:f1:c0:38:ce:a1:dd:4e:0d: ed:22:3a:a1:fb:5b:5b:37:bb:97:94:a3:58:43:e8:72:8b:7a: ce:a2:1f:2d:28:58:07:90:50:71:17:64:6b:d0:da:39:fd:0d: 1e:94:3f:fd:f6:f7:e0:7d:66:4b:df:8d:8f:cf:10:18:62:5b: 9b:74:19:e8:d7:fb:53:76:3f:b4:12:a6:46:01:06:0b:01:8f: c6:ad:39:87:78:24:f0:22:22:41:2e:2f:19:4c:2b:e3:06:3e: f6:a6:21:8c:2c:a5:ce:e7:e6:e9:95:bf:bf:f3:d2:9a:06:ed: 2f:72:fe:90:b8:bf:ac:59:f3:1a:d7:ed:c2:cf:ce:dc:4b:8e: f4:a9:70:56:33:2a:9e:6b:37:30:f4:63:29:ca:34:83:c8:51: 13:e2:23:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjQwNjAyMTc0OTI1WhcNMjQwNjA5MTc0OTI1WjAYMRYwFAYD VQQDEw02NjVjYjBhNS1lNjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OFHjdJB8Q/FxW6lzVJxDLN4WNI9Rv0aNCmTb5ng6TVcfh8FetvSbXNJIiNV /kqfIre1ae/vPUQkzSnC2e5p6FqUQ12L3Tnt4ydpakVu6KHfRYmdlJROh/Ep31XI WKLwSyOdBBNxUJm30j9+0QjWhb3FJfSdNWldN2jvcIHUYi5p5CGBL2hp7o5cdcQY ZB/o0g8qRUBnSqCm2B6lwBoLYDGXJVoMMWQjKTPH/+a2xBEr/HKjPAmxuoGVx5be fBHoZcdkH9fVgrKB/U7lA19doaJNM3KmLs2m7gNr6vtpp0lbpIiOt705nuiSciE5 uK0JDRcw7c+buj+E9YjU00JeKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0mM/qX nyl9MW2qvskSLjFtYiLCMB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZVJ+YABS+rXk54QYhVpyc1IlwPIIIBslvetbYv5Wx3lkvTbuXxKSd ZO1L4J3ZvpYdT65uiNQtPVHnK2bKghxQ1ZY02FePoQwrL1MZFWEwwIcd8h6freMN h1Kd/lk9ut0wwgHV8cA4zqHdTg3tIjqh+1tbN7uXlKNYQ+hyi3rOoh8tKFgHkFBx F2Rr0No5/Q0elD/99vfgfWZL342PzxAYYlubdBno1/tTdj+0EqZGAQYLAY/GrTmH eCTwIiJBLi8ZTCvjBj72piGMLKXO5+bplb+/89KaBu0vcv6QuL+sWfMa1+3Cz87c S470qXBWMyqeazcw9GMpyjSDyFET4iMf -----END CERTIFICATE-----Generated at Sun Jun 2 18:40:06 2024 by rpki-client on console-fra.rpki-client.org