$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft File: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft (raw, json) Hash identifier: 5YHGIIFu5clIUNop474lYejrIdcfc8W6QOoTQ4SMLqg= Subject key identifier: A7:E6:1C:D1:49:61:5E:CD:0E:DF:CA:00:1C:8E:DB:5E:2C:6C:84:0E Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Certificate serial: 0688 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft Manifest number: 0680 Signing time: Thu 02 May 2024 23:32:32 +0000 Manifest this update: Thu 02 May 2024 23:32:32 +0000 Manifest next update: Thu 09 May 2024 23:32:32 +0000 Files and hashes: 1: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl (hash: /+8zuRlty+sRVVekFsdzhEB4lAfyU0AG7LaZvwnrH+M=) 2: 7EBB570A296C11EBB7D88147C4F9AE02.roa (hash: Z2l3oGv/nfXDALPGn15LKGvh23XHiWzTGaSb6NfX+J8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1672 (0x688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Validity Not Before: May 2 23:32:32 2024 GMT Not After : May 9 23:32:32 2024 GMT Subject: CN=66342290-e7ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:36:91:fd:a9:60:d5:b7:74:44:91:44:86:40: f5:82:6e:1f:51:d2:8f:21:f0:3a:c4:00:94:b3:7d: 62:ee:1c:c4:4f:de:23:17:42:60:c3:26:99:a1:d3: 3b:6d:80:72:84:a8:4a:a2:7e:b9:df:c8:7a:d2:88: db:eb:58:be:af:04:1d:27:36:90:46:5a:ef:0c:12: 82:71:d2:78:13:1d:57:0f:e9:42:20:7a:1a:18:fb: b2:ec:da:4b:51:62:3d:c1:57:ea:7f:6c:62:e3:78: 6d:3d:33:51:2a:d2:6c:48:64:9a:a4:04:f8:aa:66: b9:6d:d8:e4:b8:d8:9d:7d:fc:37:6c:cc:84:2f:61: fb:6f:8d:8e:8e:f1:3e:35:a2:f6:67:e2:29:a0:64: b5:e7:4f:af:b6:a6:97:7c:88:f3:e8:d2:57:06:0f: 1c:6a:b6:7a:f1:5d:3e:7c:fa:ce:09:af:a7:6b:c1: bf:c4:f0:a1:b2:1e:b0:15:9f:10:70:43:5f:cf:cc: 46:6d:4f:d8:9b:c8:bb:2a:36:45:4a:70:dc:1b:64: 79:4e:ca:01:c5:0c:50:7a:5d:bc:a1:79:db:c2:f7: 98:d6:c0:a1:cd:cf:62:e1:82:e6:48:e7:c4:9b:35: b2:48:2e:0a:e8:0d:b8:4b:a3:8e:36:be:18:69:39: 78:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E6:1C:D1:49:61:5E:CD:0E:DF:CA:00:1C:8E:DB:5E:2C:6C:84:0E X509v3 Authority Key Identifier: keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:35:9e:c8:ea:cb:17:1a:01:f2:75:b1:b5:71:94:ad:73:61: 4e:15:32:51:19:aa:be:41:bb:2e:64:e0:2a:f5:85:3e:cd:89: 6b:03:61:b0:d3:0f:01:9c:f4:0f:53:b4:93:15:6b:48:a2:9d: 93:81:cb:7f:89:a4:d9:ee:47:1f:02:f6:ce:66:e6:b6:65:04: ed:49:56:81:df:ce:74:08:ee:8c:d1:b4:b4:b7:b2:bb:1b:00: 65:59:50:3d:7f:bf:e1:cd:b4:9d:46:44:d3:1c:b9:2a:55:d9: 22:d7:96:30:45:32:b5:17:32:a8:0b:cd:bc:fe:b8:ae:fe:63: ad:58:68:6b:3f:e2:7d:28:b8:53:d5:86:df:be:bd:d9:dd:39: 3c:2f:1e:fd:40:95:bc:63:62:2f:7f:89:27:02:da:d2:c1:c7: 37:ec:7c:62:ec:7d:69:d2:eb:78:f4:05:43:fb:97:04:f9:85: ec:f8:3a:97:5e:a9:da:f2:1a:59:23:2c:7d:78:aa:99:c7:22: f0:45:be:71:e6:26:8c:4b:75:71:c9:57:ff:96:e6:87:29:4c: 8e:27:1c:bc:47:54:05:a2:86:e7:b0:6d:f4:17:9a:9a:1f:93: 4f:f5:68:3b:16:bf:cc:e3:65:77:bc:24:3f:b5:33:0d:01:43: 4a:ae:60:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyMjAxMTAvBgNVBAUTKEUyQ0ZDNDJCNkEwODE1MEFFRkVGRTcxODlCRTVBRjJC RTU2OEY4QzEwHhcNMjQwNTAyMjMzMjMyWhcNMjQwNTA5MjMzMjMyWjAYMRYwFAYD VQQDEw02NjM0MjI5MC1lN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzaR/alg1bd0RJFEhkD1gm4fUdKPIfA6xACUs31i7hzET94jF0JgwyaZodM7 bYByhKhKon6538h60ojb61i+rwQdJzaQRlrvDBKCcdJ4Ex1XD+lCIHoaGPuy7NpL UWI9wVfqf2xi43htPTNRKtJsSGSapAT4qma5bdjkuNidffw3bMyEL2H7b42OjvE+ NaL2Z+IpoGS150+vtqaXfIjz6NJXBg8carZ68V0+fPrOCa+na8G/xPChsh6wFZ8Q cENfz8xGbU/Ym8i7KjZFSnDcG2R5TsoBxQxQel28oXnbwveY1sChzc9i4YLmSOfE mzWySC4K6A24S6OONr4YaTl4UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfmHNFJ YV7NDt/KAByO214sbIQOMB8GA1UdIwQYMBaAFOLPxCtqCBUK7+/nGJvlryvlaPjB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTIyMC8xNUNEMUMyMjI4 QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZRcnY3LWNZbS1XdkstVm8t TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRzX0VLMm9JRlFydjctY1ltLVd2Sy1Wby1NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTIyMC8xNUNEMUMyMjI4QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZR cnY3LWNZbS1XdkstVm8tTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwNZ7I6ssXGgHydbG1cZStc2FOFTJRGaq+QbsuZOAq9YU+zYlrA2Gw 0w8BnPQPU7STFWtIop2Tgct/iaTZ7kcfAvbOZua2ZQTtSVaB3850CO6M0bS0t7K7 GwBlWVA9f7/hzbSdRkTTHLkqVdki15YwRTK1FzKoC828/riu/mOtWGhrP+J9KLhT 1Ybfvr3Z3Tk8Lx79QJW8Y2Ivf4knAtrSwcc37Hxi7H1p0ut49AVD+5cE+YXs+DqX Xqna8hpZIyx9eKqZxyLwRb5x5iaMS3VxyVf/luaHKUyOJxy8R1QFoobnsG30F5qa H5NP9Wg7Fr/M42V3vCQ/tTMNAUNKrmCY -----END CERTIFICATE-----Generated at Fri May 3 00:28:37 2024 by rpki-client on console-fra.rpki-client.org