$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft File: 07chXhZgoZ79Lncvm6envcbuDSg.mft (raw, json) Hash identifier: wLqpOwTFa05UW4/jRx9NOEqk5P+XnpegVre6cyUrt5A= Subject key identifier: 21:4D:A2:B3:B2:6D:9E:B7:C9:B9:5F:C9:1F:0A:22:F4:C0:63:62:32 Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 0866 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft Manifest number: 084C Signing time: Thu 02 May 2024 21:54:17 +0000 Manifest this update: Thu 02 May 2024 21:54:16 +0000 Manifest next update: Thu 09 May 2024 21:54:16 +0000 Files and hashes: 1: 07chXhZgoZ79Lncvm6envcbuDSg.crl (hash: U88fKNmD0Z6FmWVuW6vJdeMlhZ6UO6oYAOKRoJLa8KU=) 2: 42B13940C3C011EE86C2C317C4F9AE02.roa (hash: 0EIE+vDWHFaoFPA2AVIORwfIn3x496ZZBHkxZt3nDRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2150 (0x866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: May 2 21:54:16 2024 GMT Not After : May 9 21:54:16 2024 GMT Subject: CN=66340b89-e2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5b:f4:7f:26:9a:0e:53:aa:f1:f5:64:16:5c: 76:75:c6:6d:9d:ed:0f:64:f2:58:ba:a7:e8:26:ce: 69:a4:c4:84:d1:ce:2b:81:11:bd:f9:79:13:a6:6e: e3:14:df:0e:8c:7c:23:e4:2f:3e:85:2f:ae:71:e6: 49:7f:74:d9:10:7f:94:48:3b:d6:4a:10:76:23:06: 1a:d8:db:05:71:97:be:96:67:36:17:02:1d:af:b6: 21:87:a1:39:6d:36:e4:7f:51:9e:87:52:58:6b:cd: bc:da:1c:5b:aa:79:2f:b8:4d:dd:48:d2:b4:f9:44: 7a:05:49:80:94:4a:f2:b3:17:42:06:7b:89:d9:94: 9e:15:1b:d7:03:2d:7e:75:9c:8c:5e:0d:a5:4c:75: 59:35:ad:d5:8c:cf:6d:29:eb:68:4f:f2:72:4e:3d: 39:a2:19:51:98:57:f1:00:ff:05:d8:bf:bd:99:c9: cc:e1:98:5a:90:c5:a1:b2:ec:6c:97:19:3c:b9:1f: 0e:fc:e3:3a:3e:f2:91:a7:df:fd:ce:37:c3:3b:ae: c1:13:17:f9:06:ac:a1:92:8d:2d:de:22:da:b0:8d: c7:cf:0e:31:a4:e5:8f:1c:f8:8c:0a:2f:f5:89:12: 58:d0:ec:d1:c8:5e:d0:de:11:c4:93:05:b6:00:64: 69:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:4D:A2:B3:B2:6D:9E:B7:C9:B9:5F:C9:1F:0A:22:F4:C0:63:62:32 X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:17:5a:ce:9a:b3:c4:ed:43:16:61:4d:03:1f:44:58:2f:6c: b8:9a:59:2d:5f:a9:bd:0b:c8:53:06:3d:9c:31:89:09:16:c4: 96:83:10:01:d4:be:1e:7f:f2:28:80:f4:ca:ec:f2:94:c9:6e: 5b:42:f4:45:ee:72:cb:41:ba:6e:fd:35:09:39:f1:7a:ab:03: 0f:71:29:0c:91:09:22:d6:3b:f7:6d:da:4a:2a:2d:f3:14:63: bb:af:bf:53:8f:30:b6:2d:57:80:4b:29:2f:5e:36:da:ea:dc: 0a:7d:cc:79:63:aa:fd:ed:21:4c:36:d9:7c:d3:18:d5:6d:f8: 2f:d8:49:d9:5f:38:87:89:ee:fa:04:28:48:11:fd:68:2b:6e: 7d:5c:a1:99:d6:be:65:c1:2e:a3:df:6a:29:95:8d:97:dd:b2: 21:3a:bc:23:27:b1:24:8f:0c:a6:ab:ee:ac:f0:bf:c2:91:f7: c7:d0:d8:80:3a:96:06:2d:db:d5:cc:46:23:4d:f4:50:f7:ad: 28:fe:3d:30:4d:f4:6f:af:d7:62:cf:7b:6c:2b:4a:5e:fd:36: 8c:ad:98:13:2b:dc:12:fa:c1:88:c2:a7:d6:c5:d8:26:bf:51: 87:01:a4:09:90:bc:08:2f:35:c2:6b:35:60:b5:10:59:bd:06: dc:09:c5:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjQwNTAyMjE1NDE2WhcNMjQwNTA5MjE1NDE2WjAYMRYwFAYD VQQDEw02NjM0MGI4OS1lMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFv0fyaaDlOq8fVkFlx2dcZtne0PZPJYuqfoJs5ppMSE0c4rgRG9+XkTpm7j FN8OjHwj5C8+hS+uceZJf3TZEH+USDvWShB2IwYa2NsFcZe+lmc2FwIdr7Yhh6E5 bTbkf1Geh1JYa8282hxbqnkvuE3dSNK0+UR6BUmAlErysxdCBnuJ2ZSeFRvXAy1+ dZyMXg2lTHVZNa3VjM9tKetoT/JyTj05ohlRmFfxAP8F2L+9mcnM4ZhakMWhsuxs lxk8uR8O/OM6PvKRp9/9zjfDO67BExf5Bqyhko0t3iLasI3Hzw4xpOWPHPiMCi/1 iRJY0OzRyF7Q3hHEkwW2AGRpFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFNorOy bZ63yblfyR8KIvTAY2IyMB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkJDOS84M0ZGOUZFQ0FBODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29a NzlMbmN2bTZlbnZjYnVEU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrF1rOmrPE7UMWYU0DH0RYL2y4mlktX6m9C8hTBj2cMYkJFsSWgxAB 1L4ef/IogPTK7PKUyW5bQvRF7nLLQbpu/TUJOfF6qwMPcSkMkQki1jv3bdpKKi3z FGO7r79TjzC2LVeASykvXjba6twKfcx5Y6r97SFMNtl80xjVbfgv2EnZXziHie76 BChIEf1oK259XKGZ1r5lwS6j32oplY2X3bIhOrwjJ7Ekjwymq+6s8L/CkffH0NiA OpYGLdvVzEYjTfRQ960o/j0wTfRvr9diz3tsK0pe/TaMrZgTK9wS+sGIwqfWxdgm v1GHAaQJkLwILzXCazVgtRBZvQbcCcWp -----END CERTIFICATE-----Generated at Thu May 2 23:03:10 2024 by rpki-client on console-fra.rpki-client.org