$ rpki-client -vvf rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft File: jGz7q86HuhmiCnuH8oZS21tKfVI.mft (raw, json) Hash identifier: xMKjU8goW28ns0opzeDtANmV3DAfTZN6jtJyN0WZIeE= Subject key identifier: 77:CF:6E:12:D3:E7:70:21:BC:22:09:99:22:74:46:95:75:DF:29:EE Authority key identifier: 8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 Certificate issuer: /CN=A912A39C/serialNumber=8C6CFBABCE87BA19A20A7B87F28652DB5B4A7D52 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft Manifest number: 20 Signing time: Wed 15 May 2024 08:45:38 +0000 Manifest this update: Wed 15 May 2024 08:45:37 +0000 Manifest next update: Wed 22 May 2024 08:45:37 +0000 Files and hashes: 1: jGz7q86HuhmiCnuH8oZS21tKfVI.crl (hash: LrFFw1qT5q8dkLyZNpPrqN0sbFyP9UZn94EDw8gghzU=) 2: F2F9933AE1FF11EE9A5D8C25C4F9AE02.roa (hash: xbHnwlsEfntbRIZRWTOcVT7U6zL7m6x1cvw0eilA3qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A39C/serialNumber=8C6CFBABCE87BA19A20A7B87F28652DB5B4A7D52 Validity Not Before: May 15 08:45:37 2024 GMT Not After : May 22 08:45:37 2024 GMT Subject: CN=66447632-267c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:35:ad:3d:b8:ea:32:5e:9b:49:4b:d2:ab:61: 63:9f:65:94:e3:45:2d:86:b1:7b:ef:b4:ff:b2:0a: 53:e8:4a:b8:3a:50:08:8e:6d:9c:0a:85:34:d8:26: 16:9d:5f:6d:16:5d:42:bb:c1:61:10:e7:f2:a5:71: 2b:3b:db:4e:03:db:23:97:74:32:a3:06:a0:e4:5d: 5f:63:a2:00:68:38:00:d6:c5:e4:a6:31:23:ce:98: 52:55:57:1b:9d:cd:67:4a:d7:83:6e:5d:75:3c:22: f5:92:fa:91:7a:db:8d:72:42:e1:a4:10:9e:16:d0: a6:ab:b8:dc:31:2a:b0:b2:5f:6b:88:7a:24:b2:4c: 6d:d9:27:0d:be:63:c2:10:a3:ac:34:0c:52:d7:6b: 8b:fd:c7:85:b2:0c:ea:70:9b:40:60:7e:e5:17:a4: 6f:3e:f2:8b:fb:43:6a:90:ce:36:3a:89:d3:02:c9: 17:36:59:fa:33:7e:1b:b4:75:04:8f:ca:42:1c:5a: 6c:b4:c5:c2:02:0c:17:06:60:c4:f0:4c:ad:e1:91: c9:a6:3f:cf:7b:fb:c8:75:4d:8e:0c:68:a4:80:08: 61:1c:d3:e2:f1:a1:13:0d:d5:b9:0d:88:34:61:44: 6f:1a:a6:a6:d8:25:16:ed:ab:60:fe:bd:7a:ee:01: d4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:CF:6E:12:D3:E7:70:21:BC:22:09:99:22:74:46:95:75:DF:29:EE X509v3 Authority Key Identifier: keyid:8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:09:98:79:79:76:0e:d5:03:52:bd:d2:c5:27:ac:c9:ed:ef: 49:2d:15:71:5d:0e:e1:50:72:e1:57:46:18:f8:b0:5b:2a:a0: 43:14:3d:d7:12:88:f7:46:3a:c9:3c:7d:d6:95:76:c3:a5:42: fc:3f:cf:d8:49:22:0b:e6:9b:e2:8a:32:14:f4:2b:01:00:e4: 5c:6f:03:d2:4b:0e:c2:80:6d:5e:4d:65:20:87:1d:28:f8:29: 56:57:35:ab:1c:19:41:e8:f4:fc:c0:36:53:b9:aa:76:6b:44: 85:dc:b2:5b:c5:27:97:90:9f:52:eb:b6:33:ca:ae:05:ff:ef: 66:2d:b9:0b:85:e7:f0:23:e9:0d:f1:04:bc:8d:36:cb:65:23: 6f:34:4b:10:39:c4:80:27:9f:c7:1f:b5:91:e4:46:c3:3b:2c: 24:86:b8:cf:40:24:65:55:dd:1c:60:9c:5c:48:39:8d:95:2d: eb:45:bb:45:81:9d:69:a9:e6:37:0e:3e:af:86:4c:c8:1f:ec: 7d:e1:ec:1b:8d:e4:81:48:84:be:56:04:e3:ee:18:9f:8c:12: 7d:24:f3:71:d3:94:22:1a:0f:e9:3b:35:54:64:3c:48:62:c8: 8e:c8:b2:66:9e:e1:66:21:64:7f:23:3b:13:69:bd:9b:28:c2: cc:37:9b:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTM5QzExMC8GA1UEBRMoOEM2Q0ZCQUJDRTg3QkExOUEyMEE3Qjg3RjI4NjUyREI1 QjRBN0Q1MjAeFw0yNDA1MTUwODQ1MzdaFw0yNDA1MjIwODQ1MzdaMBgxFjAUBgNV BAMTDTY2NDQ3NjMyLTI2N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPNa09uOoyXptJS9KrYWOfZZTjRS2GsXvvtP+yClPoSrg6UAiObZwKhTTYJhad X20WXUK7wWEQ5/KlcSs7204D2yOXdDKjBqDkXV9jogBoOADWxeSmMSPOmFJVVxud zWdK14NuXXU8IvWS+pF6241yQuGkEJ4W0KaruNwxKrCyX2uIeiSyTG3ZJw2+Y8IQ o6w0DFLXa4v9x4WyDOpwm0BgfuUXpG8+8ov7Q2qQzjY6idMCyRc2Wfozfhu0dQSP ykIcWmy0xcICDBcGYMTwTK3hkcmmP897+8h1TY4MaKSACGEc0+LxoRMN1bkNiDRh RG8apqbYJRbtq2D+vXruAdRtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd89uEtPn cCG8IgmZInRGlXXfKe4wHwYDVR0jBBgwFoAUjGz7q86HuhmiCnuH8oZS21tKfVIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBMzlDLzlENTg0RDY4RTFG RjExRUVCMkExQ0UyNEM0RjlBRTAyL2pHejdxODZIdWhtaUNudUg4b1pTMjF0S2ZW SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvakd6N3E4Nkh1aG1pQ251SDhvWlMyMXRLZlZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJB MzlDLzlENTg0RDY4RTFGRjExRUVCMkExQ0UyNEM0RjlBRTAyL2pHejdxODZIdWht aUNudUg4b1pTMjF0S2ZWSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKYJmHl5dg7VA1K90sUnrMnt70ktFXFdDuFQcuFXRhj4sFsqoEMUPdcS iPdGOsk8fdaVdsOlQvw/z9hJIgvmm+KKMhT0KwEA5FxvA9JLDsKAbV5NZSCHHSj4 KVZXNascGUHo9PzANlO5qnZrRIXcslvFJ5eQn1LrtjPKrgX/72YtuQuF5/Aj6Q3x BLyNNstlI280SxA5xIAnn8cftZHkRsM7LCSGuM9AJGVV3RxgnFxIOY2VLetFu0WB nWmp5jcOPq+GTMgf7H3h7BuN5IFIhL5WBOPuGJ+MEn0k83HTlCIaD+k7NVRkPEhi yI7Ismae4WYhZH8jOxNpvZsowsw3m9Y= -----END CERTIFICATE-----Generated at Wed May 15 09:27:29 2024 by rpki-client on console-fra.rpki-client.org