$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: jYEZSIwnle/ePvxmHosMMo4R4VBbXJcRTL+/WgH8hDo= Subject key identifier: D1:B2:B9:D5:41:38:B2:F3:C4:19:48:B2:15:1F:5F:8B:5E:50:32:FC Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 071D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0717 Signing time: Tue 30 Apr 2024 22:52:41 +0000 Manifest this update: Tue 30 Apr 2024 22:52:40 +0000 Manifest next update: Tue 07 May 2024 22:52:40 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: cM0gUpNzZDcBZ/pVaIUBEcJJ6s2pUNuWSD31U4G5HGU=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: AbTa3FvqHZw2c+ID7EYHnElRVbhMiY1lE0h/9V7vHn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Apr 30 22:52:40 2024 GMT Not After : May 7 22:52:40 2024 GMT Subject: CN=66317639-14f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c9:6d:6c:10:16:a0:c4:c3:ac:87:cc:4a:00: 85:58:2c:4d:33:20:8a:5f:65:86:72:cf:a7:cd:73: c9:a0:82:b2:44:9f:f4:6a:e3:00:9e:8e:59:de:63: da:a4:26:f8:58:64:29:aa:34:7e:1c:f6:43:da:72: d5:57:51:f9:18:86:74:d8:9e:6d:5c:57:e2:59:21: b7:10:5a:09:f9:74:94:d0:da:7d:72:3b:69:bb:05: 2e:38:b6:e8:a2:dd:7e:89:99:f5:52:f6:9d:74:ce: 87:36:bc:7c:d8:46:a8:bd:8c:b3:df:00:ae:38:12: ea:aa:cf:3f:c9:f8:ac:8c:6d:3a:97:e8:e7:cd:bc: cd:b4:71:92:78:aa:15:6a:65:f8:3b:af:f9:83:87: d9:a6:cd:dd:7b:53:b7:d9:ad:36:3e:ef:71:f7:d0: 95:f5:72:1d:fc:72:02:48:d4:6b:da:5c:94:23:3b: f4:04:3b:08:25:60:a6:bb:ef:52:66:d2:e6:0a:ff: 94:5f:f6:60:4b:7c:c9:60:b9:d0:91:8f:63:7f:80: e5:74:22:65:93:2a:1c:78:83:76:dd:3a:f2:50:7f: 49:90:13:51:61:8e:e4:92:fd:f5:94:6d:fc:9e:86: 30:34:07:7f:5a:76:27:eb:9b:d2:eb:3f:a9:6f:00: 59:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B2:B9:D5:41:38:B2:F3:C4:19:48:B2:15:1F:5F:8B:5E:50:32:FC X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:52:4f:92:2c:36:bb:ba:a8:f7:d2:85:d5:09:fe:fb:b8:69: 78:26:94:4d:33:b4:fa:f0:2c:de:55:03:a8:62:e9:9e:e3:80: 5e:e1:83:52:ab:fe:9a:fc:1f:0a:74:7a:38:90:4b:75:e2:f2: 5c:6e:65:b0:5c:57:95:8f:84:4e:43:26:0b:85:cb:cf:fa:c8: 68:68:34:23:35:4e:a9:1e:83:a8:ac:79:f2:bb:5c:97:2a:82: f3:62:90:47:37:1a:b4:e9:c9:c5:fc:a2:33:58:40:81:17:f4: 32:42:60:62:5f:f7:5c:6b:cc:7c:4d:8b:33:b3:75:10:9c:75: db:f3:b4:3b:ed:53:1d:b4:e8:96:24:3a:c3:79:12:69:cb:ea: a5:52:b5:71:b9:11:ac:23:12:17:e8:91:6b:7c:55:a7:3a:8e: 1b:8b:d0:8b:db:64:9f:d5:36:0f:72:c4:aa:f0:6c:a5:29:ff: 82:2d:fd:68:f0:1a:0e:40:7f:83:db:e8:a9:8f:d0:8a:d5:92: 7b:e3:05:13:5e:47:37:45:08:98:68:be:5a:7d:ff:7b:7a:4b: 8d:05:11:06:8f:e1:da:43:89:7c:73:8d:4d:65:af:6e:8f:2d: c1:43:82:65:11:54:19:4f:2f:9e:d8:6d:d8:2f:91:54:46:c2: ce:f6:2d:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjQwNDMwMjI1MjQwWhcNMjQwNTA3MjI1MjQwWjAYMRYwFAYD VQQDEw02NjMxNzYzOS0xNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucltbBAWoMTDrIfMSgCFWCxNMyCKX2WGcs+nzXPJoIKyRJ/0auMAno5Z3mPa pCb4WGQpqjR+HPZD2nLVV1H5GIZ02J5tXFfiWSG3EFoJ+XSU0Np9cjtpuwUuOLbo ot1+iZn1UvaddM6HNrx82EaovYyz3wCuOBLqqs8/yfisjG06l+jnzbzNtHGSeKoV amX4O6/5g4fZps3de1O32a02Pu9x99CV9XId/HICSNRr2lyUIzv0BDsIJWCmu+9S ZtLmCv+UX/ZgS3zJYLnQkY9jf4DldCJlkyoceIN23TryUH9JkBNRYY7kkv31lG38 noYwNAd/WnYn65vS6z+pbwBZfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGyudVB OLLzxBlIshUfX4teUDL8MB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgUk+SLDa7uqj30oXVCf77uGl4JpRNM7T68CzeVQOoYume44Be4YNS q/6a/B8KdHo4kEt14vJcbmWwXFeVj4ROQyYLhcvP+shoaDQjNU6pHoOorHnyu1yX KoLzYpBHNxq06cnF/KIzWECBF/QyQmBiX/dca8x8TYszs3UQnHXb87Q77VMdtOiW JDrDeRJpy+qlUrVxuRGsIxIX6JFrfFWnOo4bi9CL22Sf1TYPcsSq8GylKf+CLf1o 8BoOQH+D2+ipj9CK1ZJ74wUTXkc3RQiYaL5aff97ekuNBREGj+HaQ4l8c41NZa9u jy3BQ4JlEVQZTy+e2G3YL5FURsLO9i3+ -----END CERTIFICATE-----Generated at Tue Apr 30 23:40:14 2024 by rpki-client on console-fra.rpki-client.org