$ rpki-client -vvf rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft File: vJfyb7J4ln3TyjnFndCMaiwjBvk.mft (raw, json) Hash identifier: fQQJ2ckaTEc4mapWVjYppAsht9XCetWpTwbNUzYny5I= Subject key identifier: B1:DF:9A:9E:B2:27:AE:0F:6E:01:92:AE:A2:B4:64:99:EF:FA:77:B6 Authority key identifier: BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 Certificate issuer: /CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Certificate serial: 0415 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft Manifest number: 040E Signing time: Mon 29 Apr 2024 02:04:10 +0000 Manifest this update: Mon 29 Apr 2024 02:04:09 +0000 Manifest next update: Mon 06 May 2024 02:04:09 +0000 Files and hashes: 1: vJfyb7J4ln3TyjnFndCMaiwjBvk.crl (hash: 2zJl37ok/B7GfizjGFo1GOaC1yiJZiKl/Spy7CuSZuw=) 2: 8B91EDB420CD11EC97292B78C4F9AE02.roa (hash: mmPt4wQLultM2OvVI1CN32676LjiZTsieo822V9xFE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 02:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1045 (0x415) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Validity Not Before: Apr 29 02:04:09 2024 GMT Not After : May 6 02:04:09 2024 GMT Subject: CN=662f0019-a027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b0:41:09:d0:0b:04:4f:e4:79:c0:cd:a6:9a: 88:d6:fb:d9:94:10:bf:33:14:81:8c:89:d9:c4:34: 8b:e1:1f:5d:ab:3a:1e:81:12:26:99:b3:ca:53:74: f7:59:a5:b1:d3:cf:2b:fb:8d:94:a9:7b:6b:7c:d7: fd:8a:c9:86:94:9a:69:83:50:e7:ec:cc:31:98:a1: a3:0e:6f:86:5e:a3:7b:7f:5c:b0:db:e5:85:d1:9a: 83:c6:b0:0c:c5:d8:ad:6d:26:fd:b5:04:f7:5b:65: 90:31:93:ac:48:dc:96:2f:7b:4b:19:85:74:59:b7: 01:f7:79:14:7c:f1:a4:e4:41:a0:cf:c5:f1:be:93: 24:d3:03:88:2d:8b:6e:e4:f2:e8:4d:2b:49:38:ad: f9:95:09:94:c7:1e:b8:01:a1:a2:81:8d:43:4f:7d: 5b:ab:fd:89:34:e4:6a:37:c4:1c:18:ea:39:12:58: c3:43:5a:ac:14:fa:cb:07:20:ce:2d:42:74:b7:92: 01:8b:18:ec:d9:5f:47:4e:5c:01:7f:68:5b:ab:9b: 53:4f:91:3a:79:3b:28:b3:cd:12:2e:ea:68:46:13: d6:53:91:55:50:37:c5:94:60:36:a7:bb:8a:89:b5: 45:7a:40:6c:99:4d:bd:42:d1:24:c1:4b:be:8e:a1: 01:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:DF:9A:9E:B2:27:AE:0F:6E:01:92:AE:A2:B4:64:99:EF:FA:77:B6 X509v3 Authority Key Identifier: keyid:BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:9c:b3:fc:f2:e8:07:07:13:4f:18:a3:db:8a:56:fb:db:d3: c3:0a:61:ed:e7:aa:a7:71:d9:a4:77:79:bc:24:eb:ad:f4:09: d4:bc:2d:92:ba:51:1b:4f:54:af:37:e6:f8:2f:79:12:59:d7: 85:bd:9f:0d:42:c0:99:d9:9a:2d:91:d5:52:f0:d2:f2:cf:1f: b7:05:4f:4b:0f:07:a6:a4:7a:ff:5b:e4:34:41:ae:f6:ca:de: 97:77:a8:1f:55:f8:46:1d:90:d8:a3:6e:8f:da:a5:62:d0:02: 1d:b5:08:83:7a:2e:16:4c:bb:17:2d:7f:5f:3d:dc:e6:d8:3f: 43:0e:0a:15:1e:49:76:8a:d1:96:c1:8b:5e:03:0a:f0:b5:5e: 14:c6:7e:01:e0:87:c3:e0:ee:8b:5d:de:4c:b7:eb:74:cb:8f: d9:b8:68:06:85:db:82:f1:84:e0:f5:db:06:5a:ed:8b:32:e3: 86:0c:0f:a7:60:fc:a7:56:e0:d5:3d:58:68:76:53:7b:78:8e: c4:2d:9f:65:ef:48:e0:e5:64:b5:a4:07:25:5b:11:08:50:e3: e0:6c:70:a5:f1:b1:67:1a:b6:75:8f:ac:96:9a:c3:fc:49:ca: 80:0d:33:f2:60:b4:a0:35:a9:a7:8a:83:42:11:46:6d:ab:a4: d8:7d:7f:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4NDUxMTAvBgNVBAUTKEJDOTdGMjZGQjI3ODk2N0REM0NBMzlDNTlERDA4QzZB MkMyMzA2RjkwHhcNMjQwNDI5MDIwNDA5WhcNMjQwNTA2MDIwNDA5WjAYMRYwFAYD VQQDEw02NjJmMDAxOS1hMDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7BBCdALBE/kecDNppqI1vvZlBC/MxSBjInZxDSL4R9dqzoegRImmbPKU3T3 WaWx088r+42UqXtrfNf9ismGlJppg1Dn7MwxmKGjDm+GXqN7f1yw2+WF0ZqDxrAM xditbSb9tQT3W2WQMZOsSNyWL3tLGYV0WbcB93kUfPGk5EGgz8XxvpMk0wOILYtu 5PLoTStJOK35lQmUxx64AaGigY1DT31bq/2JNORqN8QcGOo5EljDQ1qsFPrLByDO LUJ0t5IBixjs2V9HTlwBf2hbq5tTT5E6eTsos80SLupoRhPWU5FVUDfFlGA2p7uK ibVFekBsmU29QtEkwUu+jqEB7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHfmp6y J64PbgGSrqK0ZJnv+ne2MB8GA1UdIwQYMBaAFLyX8m+yeJZ908o5xZ3QjGosIwb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg0NS83QjYyQzgwODIw Q0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxuM1R5am5GbmRDTWFpd2pC dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZKZnliN0o0bG4zVHlqbkZuZENNYWl3akJ2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg0NS83QjYyQzgwODIwQ0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxu M1R5am5GbmRDTWFpd2pCdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHnLP88ugHBxNPGKPbilb729PDCmHt56qncdmkd3m8JOut9AnUvC2S ulEbT1SvN+b4L3kSWdeFvZ8NQsCZ2ZotkdVS8NLyzx+3BU9LDwempHr/W+Q0Qa72 yt6Xd6gfVfhGHZDYo26P2qVi0AIdtQiDei4WTLsXLX9fPdzm2D9DDgoVHkl2itGW wYteAwrwtV4Uxn4B4IfD4O6LXd5Mt+t0y4/ZuGgGhduC8YTg9dsGWu2LMuOGDA+n YPynVuDVPVhodlN7eI7ELZ9l70jg5WS1pAclWxEIUOPgbHCl8bFnGrZ1j6yWmsP8 ScqADTPyYLSgNamnioNCEUZtq6TYfX/T -----END CERTIFICATE-----Generated at Mon Apr 29 03:34:58 2024 by rpki-client on console-fra.rpki-client.org