$ rpki-client -vvf rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft File: f99iGPoBXQoAdKhEJFGAaij53fU.mft (raw, json) Hash identifier: yYorZKKhhauQHFpzaciiGDSf6OeIAp6DlRqF0mWY4DM= Subject key identifier: 6D:CA:76:61:CF:15:7D:8D:39:F3:29:13:87:EA:89:FB:CE:49:20:ED Authority key identifier: 7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 Certificate issuer: /CN=A9173060/serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Certificate serial: 06DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft Manifest number: 06D7 Signing time: Wed 24 Apr 2024 22:53:16 +0000 Manifest this update: Wed 24 Apr 2024 22:53:16 +0000 Manifest next update: Wed 01 May 2024 22:53:16 +0000 Files and hashes: 1: f99iGPoBXQoAdKhEJFGAaij53fU.crl (hash: dbqevv0qhnlI1TB2bT2cSnE6myKd70uA5I/fukmVXeE=) 2: 7FAEDE3A03B411EBBB548A5EC4F9AE02.roa (hash: TtjAATul/BwWbDMljn8pHb/aUdIUJNUI4C0odUASJ6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1756 (0x6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173060/serialNumber=7FDF6218FA015D0A0074A8442451806A28F9DDF5 Validity Not Before: Apr 24 22:53:16 2024 GMT Not After : May 1 22:53:16 2024 GMT Subject: CN=66298d5c-d62c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:22:23:fc:34:94:85:ea:6e:17:11:70:7b:a4: cf:2b:9d:43:a3:83:ab:dd:d4:de:a6:38:d7:6f:cc: 3e:94:dc:f7:f2:2e:20:54:1d:d8:a5:18:38:5f:31: 0e:22:87:a0:06:bf:11:9a:5c:c8:d9:1c:7a:38:4a: 69:eb:fc:34:27:92:17:25:bc:39:94:6d:a6:7b:7a: a0:ae:47:e4:b7:ab:96:69:81:ee:73:a5:5d:b2:82: 56:37:99:b9:37:39:76:b2:7e:88:86:63:a7:d3:dc: 05:b3:db:a6:2c:4a:62:52:8f:59:8e:02:c3:f1:02: e7:31:c9:70:22:e5:4a:c5:8c:0e:fc:8b:a6:a7:9f: ba:51:5c:05:60:54:b7:63:fe:87:4a:38:61:cb:69: f1:a1:84:40:e6:30:07:1a:16:59:0c:34:c8:97:27: 06:81:db:ff:e0:79:e6:5a:d9:c9:ae:e2:3d:b9:0e: d3:93:5f:31:26:a3:cb:a5:25:2e:f7:4e:a4:1c:ce: 77:6b:06:4a:0f:aa:d6:e6:b9:cf:e3:23:8b:e2:76: 77:ad:c2:64:89:31:4a:7e:e1:d1:96:08:bd:6f:4c: 0b:f1:36:16:6a:9e:c8:dd:25:ea:12:aa:6f:9a:0f: 2f:cf:a9:e4:72:13:57:79:50:92:c3:ec:d6:fe:69: b5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:CA:76:61:CF:15:7D:8D:39:F3:29:13:87:EA:89:FB:CE:49:20:ED X509v3 Authority Key Identifier: keyid:7F:DF:62:18:FA:01:5D:0A:00:74:A8:44:24:51:80:6A:28:F9:DD:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f99iGPoBXQoAdKhEJFGAaij53fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173060/A72586B003B111EB843A7756C4F9AE02/f99iGPoBXQoAdKhEJFGAaij53fU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:f4:76:bd:c4:0d:bc:14:f6:be:0e:68:a5:6d:a5:0a:f2:0f: 0d:d4:20:e0:cd:52:54:7a:81:2c:cb:91:e0:22:44:3f:de:4c: 82:e3:43:3f:f0:39:67:aa:ad:fb:f2:5e:8d:86:23:c7:a9:78: 34:64:69:2c:aa:e2:cd:18:cc:03:3c:ea:cf:30:3a:8b:35:93: 8e:3d:77:2c:75:d7:da:24:3d:d9:b0:4b:e7:99:80:f4:5c:6d: b9:ec:b1:99:54:3e:05:62:95:62:6b:86:47:04:77:d5:14:51: a7:ce:b2:1a:b5:7f:07:9d:ac:ae:fa:83:35:d4:2a:47:16:f4: 25:76:b5:a6:8f:97:17:7e:bc:d4:1b:ec:26:74:d5:4a:e3:93: 84:24:8b:5d:ff:a8:90:85:52:00:7f:83:17:d4:57:b5:57:c7: 86:65:4c:60:1b:1a:14:c1:61:b8:bc:b2:59:53:f0:22:61:42: f2:eb:74:a4:55:8c:02:07:47:d5:a2:d3:bc:24:97:4b:c7:5a: b0:f4:69:13:48:94:da:5d:fc:79:c2:ba:82:b5:31:f7:b8:42: b7:22:bc:ea:c7:82:b6:71:26:13:3a:b5:fe:54:41:8e:ef:0b: ea:ed:fd:45:46:ec:72:46:65:a2:94:3f:35:96:bb:89:aa:22: c6:c6:f7:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMwNjAxMTAvBgNVBAUTKDdGREY2MjE4RkEwMTVEMEEwMDc0QTg0NDI0NTE4MDZB MjhGOURERjUwHhcNMjQwNDI0MjI1MzE2WhcNMjQwNTAxMjI1MzE2WjAYMRYwFAYD VQQDEw02NjI5OGQ1Yy1kNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yIj/DSUhepuFxFwe6TPK51Do4Or3dTepjjXb8w+lNz38i4gVB3YpRg4XzEO IoegBr8RmlzI2Rx6OEpp6/w0J5IXJbw5lG2me3qgrkfkt6uWaYHuc6VdsoJWN5m5 Nzl2sn6IhmOn09wFs9umLEpiUo9ZjgLD8QLnMclwIuVKxYwO/Iump5+6UVwFYFS3 Y/6HSjhhy2nxoYRA5jAHGhZZDDTIlycGgdv/4HnmWtnJruI9uQ7Tk18xJqPLpSUu 906kHM53awZKD6rW5rnP4yOL4nZ3rcJkiTFKfuHRlgi9b0wL8TYWap7I3SXqEqpv mg8vz6nkchNXeVCSw+zW/mm1dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3KdmHP FX2NOfMpE4fqifvOSSDtMB8GA1UdIwQYMBaAFH/fYhj6AV0KAHSoRCRRgGoo+d31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzA2MC9BNzI1ODZCMDAz QjExMUVCODQzQTc3NTZDNEY5QUUwMi9mOTlpR1BvQlhRb0FkS2hFSkZHQWFpajUz ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y5OWlHUG9CWFFvQWRLaEVKRkdBYWlqNTNmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzA2MC9BNzI1ODZCMDAzQjExMUVCODQzQTc3NTZDNEY5QUUwMi9mOTlpR1BvQlhR b0FkS2hFSkZHQWFpajUzZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC9Ha9xA28FPa+DmilbaUK8g8N1CDgzVJUeoEsy5HgIkQ/3kyC40M/ 8Dlnqq378l6NhiPHqXg0ZGksquLNGMwDPOrPMDqLNZOOPXcsddfaJD3ZsEvnmYD0 XG257LGZVD4FYpVia4ZHBHfVFFGnzrIatX8Hnayu+oM11CpHFvQldrWmj5cXfrzU G+wmdNVK45OEJItd/6iQhVIAf4MX1Fe1V8eGZUxgGxoUwWG4vLJZU/AiYULy63Sk VYwCB0fVotO8JJdLx1qw9GkTSJTaXfx5wrqCtTH3uEK3Irzqx4K2cSYTOrX+VEGO 7wvq7f1FRuxyRmWilD81lruJqiLGxvd6 -----END CERTIFICATE-----Generated at Thu Apr 25 00:31:18 2024 by rpki-client on console-fra.rpki-client.org