$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: uxyweBeb40E0sEKL0buVSvZYQNL6crsu9qPhZcaUpGs= Subject key identifier: FA:B5:28:C7:3C:63:06:CB:7B:92:63:6F:F8:51:D9:3E:EA:30:23:53 Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: E6 Signing time: Sat 01 Jun 2024 07:20:46 +0000 Manifest this update: Sat 01 Jun 2024 07:20:45 +0000 Manifest next update: Sat 08 Jun 2024 07:20:45 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: 5niYSoBsFnsTLHS6Q5Y2CMMl5NDflGVoPJje7SUHXT4=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: YuiwbgR3zXrhn6atY6Svsl1gSuOdJzz2sPUCmfCfO0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Jun 1 07:20:45 2024 GMT Not After : Jun 8 07:20:45 2024 GMT Subject: CN=665acbcd-7295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c6:5a:85:d1:30:7f:a8:fb:f8:b1:45:02:73: 62:7a:83:3e:bf:53:f2:13:43:84:c5:32:f9:2b:30: bb:d9:27:31:de:36:d7:64:03:ce:1a:a0:4b:1e:a9: 34:1d:9a:39:53:d6:ea:f3:3a:87:ac:b6:6d:1b:1d: 8e:6e:7c:20:a7:0d:e0:ad:4e:f7:59:9a:83:2a:65: 13:3f:90:55:76:7f:67:be:7d:c9:60:79:3d:ad:88: 32:31:b9:1c:e1:ba:12:9b:8c:05:33:0b:60:b1:d3: df:f7:3b:73:a6:91:ea:da:62:8a:24:0d:a6:21:42: 04:ff:86:98:52:d0:51:16:88:0d:05:8f:60:b0:45: 74:bf:fa:7c:f4:d8:80:b5:ec:ee:27:15:ef:7b:d0: f7:25:d0:4d:4b:a0:79:6b:fc:4c:2c:dd:dd:65:ca: af:b9:8f:29:4e:90:b5:43:f3:8d:ee:72:dd:bf:3d: 31:47:90:3a:df:95:d1:1c:11:6c:88:69:83:16:bd: 0e:fc:1c:c0:0d:ef:f8:fc:24:9f:00:d9:d0:a5:97: 85:97:c3:90:85:a2:2d:b2:ff:14:03:d1:44:6f:27: 0c:77:0c:9b:96:0c:cb:ac:06:8d:dc:41:b7:3a:f8: 2f:ef:2c:cd:3e:b8:7b:f6:9e:a7:29:c1:73:5b:44: d9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B5:28:C7:3C:63:06:CB:7B:92:63:6F:F8:51:D9:3E:EA:30:23:53 X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b6:09:71:74:cc:e5:dc:2e:f4:d8:63:c8:31:29:9e:db:6a: f5:dd:74:21:e8:d8:4e:74:94:45:eb:de:a0:1b:31:54:f9:39: a4:b1:de:89:9d:55:26:21:96:cc:9f:e2:94:1a:51:ec:66:3f: fc:68:d9:7c:96:0f:46:42:15:98:3f:89:f1:98:9e:f5:1c:8d: fa:3b:74:e7:c9:06:68:94:f2:cc:ac:03:51:5c:6d:63:86:bd: 2e:fa:c6:75:31:98:0b:14:54:34:0e:7a:83:b2:3c:bb:94:64: 3c:b6:e2:97:53:d4:6f:57:1d:4c:81:7e:4f:79:83:15:68:e5: 14:fd:3f:cf:82:65:03:9b:04:89:fb:2b:9b:18:f4:a2:54:7a: 74:5d:4e:97:8b:6f:66:72:34:c9:b7:c6:89:3a:23:a9:9c:b5: 10:08:b2:d6:2d:fd:c1:44:a0:e3:a7:06:ad:39:86:9f:25:ce: 5e:03:a8:e5:78:30:ca:ca:a3:fc:86:c0:97:59:12:0d:2f:98: 1a:05:19:24:57:26:c6:79:ad:8c:f3:b5:c7:ea:50:0a:d5:a6: 4f:83:b4:1e:12:a6:c8:08:ea:5b:35:61:36:7d:4b:cb:06:13: 9b:36:77:40:f7:d9:1e:43:77:7b:10:37:4d:39:e9:b6:f4:d7: 10:ae:7f:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjQwNjAxMDcyMDQ1WhcNMjQwNjA4MDcyMDQ1WjAYMRYwFAYD VQQDEw02NjVhY2JjZC03Mjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8ZahdEwf6j7+LFFAnNieoM+v1PyE0OExTL5KzC72Scx3jbXZAPOGqBLHqk0 HZo5U9bq8zqHrLZtGx2Obnwgpw3grU73WZqDKmUTP5BVdn9nvn3JYHk9rYgyMbkc 4boSm4wFMwtgsdPf9ztzppHq2mKKJA2mIUIE/4aYUtBRFogNBY9gsEV0v/p89NiA tezuJxXve9D3JdBNS6B5a/xMLN3dZcqvuY8pTpC1Q/ON7nLdvz0xR5A635XRHBFs iGmDFr0O/BzADe/4/CSfANnQpZeFl8OQhaItsv8UA9FEbycMdwyblgzLrAaN3EG3 Ovgv7yzNPrh79p6nKcFzW0TZpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPq1KMc8 YwbLe5Jjb/hR2T7qMCNTMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHtglxdMzl3C702GPIMSme22r13XQh6NhOdJRF696gGzFU+Tmksd6J nVUmIZbMn+KUGlHsZj/8aNl8lg9GQhWYP4nxmJ71HI36O3TnyQZolPLMrANRXG1j hr0u+sZ1MZgLFFQ0DnqDsjy7lGQ8tuKXU9RvVx1MgX5PeYMVaOUU/T/PgmUDmwSJ +yubGPSiVHp0XU6Xi29mcjTJt8aJOiOpnLUQCLLWLf3BRKDjpwatOYafJc5eA6jl eDDKyqP8hsCXWRINL5gaBRkkVybGea2M87XH6lAK1aZPg7QeEqbICOpbNWE2fUvL BhObNndA99keQ3d7EDdNOem29NcQrn+L -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:29 2024 by rpki-client on console-fra.rpki-client.org