$ rpki-client -vvf rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft File: aAYK77v8wH1z211yeLyPJJxX9RU.mft (raw, json) Hash identifier: jof5xPl7dH5gW8ClfPPbDo+ty428uqeFBQeYwKFfDWs= Subject key identifier: 42:CB:86:6D:16:DA:D9:7B:49:3C:0D:5B:C4:6C:2B:DE:B6:32:B6:A7 Authority key identifier: 68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 Certificate issuer: /CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Certificate serial: 02D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft Manifest number: 02CF Signing time: Sun 05 May 2024 03:32:23 +0000 Manifest this update: Sun 05 May 2024 03:32:22 +0000 Manifest next update: Sun 12 May 2024 03:32:22 +0000 Files and hashes: 1: aAYK77v8wH1z211yeLyPJJxX9RU.crl (hash: sZc2VWtujW3doUJzYqOP/eeHw5h5EaQefG6Tku3jAY8=) 2: 5B639C667CEB11EDA3D10364C4F9AE02.roa (hash: hlLA7G3gFRFclavtLC4AtgAOjrl5PBGQnMSlvQ5iLZk=) 3: ADBB651E043411ED9F02B325C4F9AE02.roa (hash: cddNE6Chf1nZGt0cOcCcSrNF4VTM1nV8tD0C7wKaK+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 726 (0x2d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Validity Not Before: May 5 03:32:22 2024 GMT Not After : May 12 03:32:22 2024 GMT Subject: CN=6636fdc7-b394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:57:74:16:a5:61:6a:3d:d3:b1:0a:7e:e5:14: ed:e6:78:d2:c8:3a:76:a1:1b:3e:a7:b2:c2:5b:33: 99:bc:2e:2e:0b:6c:aa:22:9e:5f:c1:f2:8c:86:6a: 2c:8a:d7:29:8f:7d:43:52:7c:c5:91:44:4d:48:a1: ec:5d:50:8c:5c:18:1e:ac:65:0c:97:5a:8d:4f:87: af:2a:be:47:f3:fa:5a:1d:78:68:d2:7d:0e:b2:5c: 65:1c:99:b0:9d:9e:68:1f:cf:5d:a7:ba:75:3b:ef: 95:3d:0e:dc:4c:32:80:79:41:23:a0:3f:0a:3b:f2: 7c:e1:dd:be:7f:91:4c:a6:8a:06:cc:3b:b8:28:02: f3:a7:35:0d:57:2b:1a:cb:46:0d:73:3e:70:9a:f8: c0:50:eb:aa:64:aa:a6:fa:95:be:b6:d0:b9:89:74: 3b:00:df:b6:bf:e7:05:14:11:26:6f:2f:b5:54:ed: 27:1e:cb:41:11:85:5c:71:18:8a:20:16:89:0b:c5: 00:53:0b:b5:f1:c2:f7:5d:ed:61:17:ef:10:3a:6a: 75:72:d5:3f:ac:ad:f5:ee:07:ce:7c:77:b8:4a:27: 50:59:d1:92:bd:33:dd:b0:f0:58:ce:cd:10:0c:91: 03:94:d2:b7:50:66:fc:a8:9b:8e:61:03:54:ff:29: ad:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CB:86:6D:16:DA:D9:7B:49:3C:0D:5B:C4:6C:2B:DE:B6:32:B6:A7 X509v3 Authority Key Identifier: keyid:68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:1e:28:43:99:94:f9:4a:36:52:7f:cd:cf:0f:5c:fc:ad:1a: f3:12:ab:33:c5:3d:98:ec:dc:53:7c:7d:5a:7c:cd:11:5e:13: 22:22:c8:67:3b:e9:31:08:85:96:c5:d9:94:42:62:63:92:75: a1:21:75:a0:92:ad:59:59:6a:4a:57:62:bf:e6:18:ce:d1:2d: 00:bd:a9:6e:73:0f:9b:1c:17:df:df:08:70:a5:6e:78:43:13: b3:8d:62:17:a9:1b:3e:73:4f:59:30:9e:6d:75:e8:fa:ef:18: 04:5e:c1:20:a3:26:87:58:6a:2a:2d:90:d6:1e:fc:7b:dd:d4: 61:be:4f:69:f5:5b:22:03:7c:a2:82:d1:61:3b:a3:e4:55:1f: 18:1a:b6:02:f9:bc:78:1b:e1:02:d8:54:45:1e:da:25:14:f8: d7:63:46:1e:c7:ef:c7:55:d3:8f:e7:6a:55:f4:b0:66:5a:13: da:03:b8:ae:d9:e0:dc:c5:6c:d6:5c:6d:0c:b3:5c:6d:3a:39: 9f:97:50:6e:67:21:c5:1b:e1:08:bb:49:cf:ba:f5:bb:7b:3a: 1b:90:32:92:1c:20:96:4a:ea:30:a1:f0:1a:76:22:f8:f7:30: 11:ff:77:53:f9:4a:6c:11:bd:9e:bf:1a:31:37:58:3f:c1:9c: c7:11:6f:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1OUExMTAvBgNVBAUTKDY4MDYwQUVGQkJGQ0MwN0Q3M0RCNUQ3Mjc4QkM4RjI0 OUM1N0Y1MTUwHhcNMjQwNTA1MDMzMjIyWhcNMjQwNTEyMDMzMjIyWjAYMRYwFAYD VQQDEw02NjM2ZmRjNy1iMzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFd0FqVhaj3TsQp+5RTt5njSyDp2oRs+p7LCWzOZvC4uC2yqIp5fwfKMhmos itcpj31DUnzFkURNSKHsXVCMXBgerGUMl1qNT4evKr5H8/paHXho0n0OslxlHJmw nZ5oH89dp7p1O++VPQ7cTDKAeUEjoD8KO/J84d2+f5FMpooGzDu4KALzpzUNVysa y0YNcz5wmvjAUOuqZKqm+pW+ttC5iXQ7AN+2v+cFFBEmby+1VO0nHstBEYVccRiK IBaJC8UAUwu18cL3Xe1hF+8QOmp1ctU/rK317gfOfHe4SidQWdGSvTPdsPBYzs0Q DJEDlNK3UGb8qJuOYQNU/ymtgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELLhm0W 2tl7STwNW8RsK962MranMB8GA1UdIwQYMBaAFGgGCu+7/MB9c9tdcni8jyScV/UV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU5QS9CQUNBQjdFQzlE RkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdIMXoyMTF5ZUx5UEpKeFg5 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FBWUs3N3Y4d0gxejIxMXllTHlQSkp4WDlSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU5QS9CQUNBQjdFQzlERkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdI MXoyMTF5ZUx5UEpKeFg5UlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkHihDmZT5SjZSf83PD1z8rRrzEqszxT2Y7NxTfH1afM0RXhMiIshn O+kxCIWWxdmUQmJjknWhIXWgkq1ZWWpKV2K/5hjO0S0Avalucw+bHBff3whwpW54 QxOzjWIXqRs+c09ZMJ5tdej67xgEXsEgoyaHWGoqLZDWHvx73dRhvk9p9VsiA3yi gtFhO6PkVR8YGrYC+bx4G+EC2FRFHtolFPjXY0Yex+/HVdOP52pV9LBmWhPaA7iu 2eDcxWzWXG0Ms1xtOjmfl1BuZyHFG+EIu0nPuvW7ezobkDKSHCCWSuowofAadiL4 9zAR/3dT+UpsEb2evxoxN1g/wZzHEW9I -----END CERTIFICATE-----Generated at Sun May 5 04:34:53 2024 by rpki-client on console-fra.rpki-client.org