$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft File: Vj8ylI68GzkPMqCqPzYUeFr858I.mft (raw, json) Hash identifier: hkQgfQyjU4JbacozQorAQu8ZpG9UiJCRwErqG3OXdZk= Subject key identifier: 8D:03:EF:AA:5F:7D:76:DA:D2:AE:AC:8A:27:29:2C:A3:AF:9A:0F:61 Authority key identifier: 56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 Certificate issuer: /CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft Manifest number: 0214 Signing time: Sat 01 Jun 2024 05:18:08 +0000 Manifest this update: Sat 01 Jun 2024 05:18:08 +0000 Manifest next update: Sat 08 Jun 2024 05:18:08 +0000 Files and hashes: 1: Vj8ylI68GzkPMqCqPzYUeFr858I.crl (hash: A8w/Arxrozvkc4GpfiQSPE16I27cvcBpVOiD2EAVU8U=) 2: EA5EB99CEBBD11ECB3DAFE39C4F9AE02.roa (hash: XsI+H2iX+joME12HEVFtFHRSawgtuL/DuDA3GYGWlm0=) 3: EB756434EBBD11ECB3DAFE39C4F9AE02.roa (hash: p7DfcJLtfReLVrBGXB4FbSfycVhB9b+HJk7nBadO6Xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Validity Not Before: Jun 1 05:18:08 2024 GMT Not After : Jun 8 05:18:08 2024 GMT Subject: CN=665aaf10-7e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7d:ad:19:62:9e:82:c8:d7:6d:cb:bb:5c:c7: d6:a0:1c:b0:04:0c:52:48:0b:3a:52:38:09:a5:e1: e2:c8:f8:56:99:18:19:1f:e2:ae:84:54:47:55:dd: 62:24:74:76:2c:54:c1:39:e0:73:81:ff:8a:f3:ed: 4d:80:2b:9f:cf:b5:34:ee:d6:c4:50:ed:d1:6d:a2: 6b:4a:0b:5b:5f:a4:92:be:d3:97:73:05:21:0b:9c: a3:19:bd:15:5e:c8:7d:83:09:3b:84:a5:1f:2c:4b: e5:8d:53:0c:d5:98:cb:c8:f4:f4:c0:bb:82:7a:7d: e7:1a:22:08:24:03:bf:64:71:17:1b:a0:ec:36:bd: 68:64:cd:17:af:de:d5:59:f8:0d:1f:ff:f4:78:37: f7:f2:cc:71:d4:a7:bf:92:80:63:35:e0:bf:9a:3f: bb:15:df:68:a6:d1:f7:2e:f7:10:8a:1c:10:cf:f5: fa:d3:98:43:1b:a0:92:d8:1e:88:5e:b4:98:9e:66: 1c:95:46:73:54:72:2e:17:25:ac:31:46:2c:8d:21: 47:b0:1a:7d:d8:3b:13:18:df:f6:37:6e:bb:73:78: 03:ea:45:d3:f5:fc:b3:61:a4:3c:f6:fa:a9:4f:86: 14:b9:21:c4:95:9e:71:be:3b:f4:89:c0:f1:e7:3d: d5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:03:EF:AA:5F:7D:76:DA:D2:AE:AC:8A:27:29:2C:A3:AF:9A:0F:61 X509v3 Authority Key Identifier: keyid:56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:17:e0:27:b7:bb:8e:e4:9f:8d:52:1a:8e:34:a6:38:04:bb: 44:9e:c1:05:5f:00:2e:db:5d:a9:39:92:8e:d7:8e:2c:2d:ae: f7:45:a2:bf:e9:97:0d:67:39:e6:82:da:95:f1:2a:38:c2:cc: 14:ba:d0:39:80:19:42:b9:4a:95:45:df:ef:e1:62:d3:1f:ed: ed:9d:5d:42:6a:d8:62:be:87:a6:d2:7c:bd:2f:74:b1:54:93: f4:fd:54:3c:db:0f:91:ee:45:ce:36:9c:70:b7:d1:d6:cb:ba: 6f:1d:43:ab:17:05:46:f4:c4:0c:1c:e1:f6:1a:2d:0b:65:db: 3e:27:cf:22:d8:43:05:e0:bb:7d:1f:de:36:3d:9a:ba:44:77: 38:95:0e:51:8a:81:3b:64:2e:44:5c:9c:d4:73:81:56:8d:18: 5d:2d:3a:36:84:e7:61:76:3a:3b:3a:b6:2e:cc:a9:0e:81:c4: 0c:9c:f1:37:fa:99:c9:5c:87:2b:2d:b9:eb:63:2f:43:32:e5: 7e:7a:e5:f3:83:fe:14:b4:29:ef:41:62:99:f7:d2:d4:e9:3d: 20:ff:12:ff:d5:ea:6a:0f:73:0a:67:d8:99:b0:de:31:63:86: 97:2c:22:1a:de:65:30:1b:9f:10:7d:36:3f:c9:22:06:bd:7f: a0:c0:70:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDOEMxMTAvBgNVBAUTKDU2M0YzMjk0OEVCQzFCMzkwRjMyQTBBQTNGMzYxNDc4 NUFGQ0U3QzIwHhcNMjQwNjAxMDUxODA4WhcNMjQwNjA4MDUxODA4WjAYMRYwFAYD VQQDEw02NjVhYWYxMC03ZTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuX2tGWKegsjXbcu7XMfWoBywBAxSSAs6UjgJpeHiyPhWmRgZH+KuhFRHVd1i JHR2LFTBOeBzgf+K8+1NgCufz7U07tbEUO3RbaJrSgtbX6SSvtOXcwUhC5yjGb0V Xsh9gwk7hKUfLEvljVMM1ZjLyPT0wLuCen3nGiIIJAO/ZHEXG6DsNr1oZM0Xr97V WfgNH//0eDf38sxx1Ke/koBjNeC/mj+7Fd9optH3LvcQihwQz/X605hDG6CS2B6I XrSYnmYclUZzVHIuFyWsMUYsjSFHsBp92DsTGN/2N267c3gD6kXT9fyzYaQ89vqp T4YUuSHElZ5xvjv0icDx5z3VQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0D76pf fXba0q6siicpLKOvmg9hMB8GA1UdIwQYMBaAFFY/MpSOvBs5DzKgqj82FHha/OfC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUM4Qy84OTk2NkRDQUVC QjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6a1BNcUNxUHpZVWVGcjg1 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqOHlsSTY4R3prUE1xQ3FQellVZUZyODU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUM4Qy84OTk2NkRDQUVCQjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6 a1BNcUNxUHpZVWVGcjg1OEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrF+Ant7uO5J+NUhqONKY4BLtEnsEFXwAu212pOZKO144sLa73RaK/ 6ZcNZznmgtqV8So4wswUutA5gBlCuUqVRd/v4WLTH+3tnV1Cathivoem0ny9L3Sx VJP0/VQ82w+R7kXONpxwt9HWy7pvHUOrFwVG9MQMHOH2Gi0LZds+J88i2EMF4Lt9 H942PZq6RHc4lQ5RioE7ZC5EXJzUc4FWjRhdLTo2hOdhdjo7OrYuzKkOgcQMnPE3 +pnJXIcrLbnrYy9DMuV+euXzg/4UtCnvQWKZ99LU6T0g/xL/1epqD3MKZ9iZsN4x Y4aXLCIa3mUwG58QfTY/ySIGvX+gwHC8 -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:43 2024 by rpki-client on console-fra.rpki-client.org