$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: Jz6E7hT1HprOVayoXoZMDjwMsyGwjs81rci7KJjq2hE= Subject key identifier: 00:F5:53:60:E2:D9:FD:BB:0C:CC:08:F6:EB:BF:A8:68:25:F9:C1:C6 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 08B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest Number: 08AB Signing time: Wed 22 Mar 2023 21:37:03 +0000 Manifest this update: Wed 22 Mar 2023 21:37:03 +0000 Manifest next update: Wed 29 Mar 2023 21:37:03 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: jrF9RDHF6hxPru0OH+WZLoCfATLO9uXq35PdRCzeUTk=) 2: DD057E30C32F11ED82655C36C4F9AE02.roa (hash: w/sJ3faEDfbcENeUZ21pDjqrR0eoJ16WZEL19vxq2+k=) 3: DBD3D778C32F11ED82655C36C4F9AE02.roa (hash: fhQU0wP6cEwLVmakFy+sRsHL3PHSe89bJ7g7IFQ7o9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Mar 2023 20:07:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2232 (0x8b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Mar 22 21:37:03 2023 GMT Not After : Mar 29 21:37:03 2023 GMT Subject: CN=641b74ff-6faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a0:c9:b3:9a:67:b9:87:83:ad:7c:a2:87:75: f6:ec:01:80:ae:ac:39:14:5e:6e:b9:64:3d:9f:43: 78:cb:63:85:23:25:61:2d:5b:8c:3a:2b:76:59:4b: 94:e3:d2:95:b9:b6:ea:4a:7d:60:27:f2:dd:bf:01: 6c:94:e1:7b:2f:49:a5:3c:03:8c:0b:1f:e2:9a:8d: 27:ce:70:0c:50:9f:5c:64:fc:8e:76:d4:70:09:81: 45:0d:9d:fb:9b:f1:f4:c5:e8:8d:8d:db:c8:6c:90: 91:26:a8:16:20:af:53:7d:4f:a8:14:1d:b8:77:6d: 7c:22:f2:68:e9:42:32:92:13:f3:bb:dc:a9:2a:b7: 69:e6:e6:a0:b5:83:6a:f6:e7:5f:b1:63:d5:4b:69: 34:b7:13:18:5e:ee:23:53:96:50:9b:ba:67:dd:3b: 9e:4c:7d:98:05:0a:72:15:b5:07:01:0e:7d:8a:34: f0:12:d6:d2:01:d7:21:1c:77:5c:34:3f:a4:00:b4: a1:c6:0e:ee:ba:65:f2:7f:51:2a:15:e4:77:8d:da: 2f:91:d1:35:17:4f:90:81:e8:c6:84:ef:e3:a9:6b: 52:26:e8:33:08:2f:65:33:a6:8f:e5:c4:99:54:e7: 00:47:3f:d7:2d:da:8a:a0:83:e7:a1:b2:d9:fa:e2: 80:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F5:53:60:E2:D9:FD:BB:0C:CC:08:F6:EB:BF:A8:68:25:F9:C1:C6 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:96:2d:68:a1:d6:8d:48:0a:25:4d:d4:de:72:61:82:4d:dd: 1e:a6:9e:5b:8a:44:a3:46:02:b9:52:3b:99:6a:f4:68:c0:3e: 26:b9:58:f7:94:6c:d5:d8:24:fa:ba:01:21:50:45:8a:22:69: c0:52:cb:26:0d:55:57:31:2f:a6:08:73:a9:34:65:42:3d:0a: 94:6f:18:55:27:b1:34:e5:69:cc:00:f3:4f:61:5b:1a:f6:4c: 7f:0f:d4:05:ed:c0:59:4e:6a:f6:ca:f7:f0:42:23:e3:dc:c7: cf:f1:1e:f7:ac:35:8f:31:f0:65:c4:2c:97:cf:b7:69:fc:b9: b2:df:cc:dd:eb:1c:46:1d:da:4b:61:e5:38:c9:db:4b:34:a3: 64:f6:ba:7c:d5:03:fd:ff:44:1d:bd:ca:31:22:e5:e2:95:af: 40:54:68:78:06:66:06:d0:ef:6a:47:68:84:6f:15:a8:ca:18: f1:91:ae:a0:38:b5:16:3e:56:56:93:77:7e:54:33:e5:24:82: d5:09:44:e0:19:6c:0a:3b:d2:28:ac:6e:15:bb:95:3b:57:a9: 7b:d1:1b:93:78:05:50:e5:db:1c:25:87:a9:5d:8e:1d:da:dc: 56:66:0e:46:a4:a2:83:7e:23:02:e9:ad:17:6a:51:3a:1d:50: 8e:89:2c:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjMwMzIyMjEzNzAzWhcNMjMwMzI5MjEzNzAzWjAYMRYwFAYD VQQDEw02NDFiNzRmZi02ZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qDJs5pnuYeDrXyih3X27AGArqw5FF5uuWQ9n0N4y2OFIyVhLVuMOit2WUuU 49KVubbqSn1gJ/LdvwFslOF7L0mlPAOMCx/imo0nznAMUJ9cZPyOdtRwCYFFDZ37 m/H0xeiNjdvIbJCRJqgWIK9TfU+oFB24d218IvJo6UIykhPzu9ypKrdp5uagtYNq 9udfsWPVS2k0txMYXu4jU5ZQm7pn3TueTH2YBQpyFbUHAQ59ijTwEtbSAdchHHdc ND+kALShxg7uumXyf1EqFeR3jdovkdE1F0+QgejGhO/jqWtSJugzCC9lM6aP5cSZ VOcARz/XLdqKoIPnobLZ+uKARQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAD1U2Di 2f27DMwI9uu/qGgl+cHGMB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7li1oodaNSAolTdTecmGCTd0epp5bikSjRgK5UjuZavRowD4muVj3 lGzV2CT6ugEhUEWKImnAUssmDVVXMS+mCHOpNGVCPQqUbxhVJ7E05WnMAPNPYVsa 9kx/D9QF7cBZTmr2yvfwQiPj3MfP8R73rDWPMfBlxCyXz7dp/Lmy38zd6xxGHdpL YeU4ydtLNKNk9rp81QP9/0QdvcoxIuXila9AVGh4BmYG0O9qR2iEbxWoyhjxka6g OLUWPlZWk3d+VDPlJILVCUTgGWwKO9IorG4Vu5U7V6l70RuTeAVQ5dscJYepXY4d 2txWZg5GpKKDfiMC6a0XalE6HVCOiSyB -----END CERTIFICATE-----Generated at Wed Mar 22 22:12:42 2023 by rpki-client on console-fra.rpki-client.org