$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: AWPUR1QvyiTVFlXiKM3r6kmxqsqyg27FGDCJZzEKgrw= Subject key identifier: 33:AE:AB:85:86:0D:70:09:DB:AF:F5:58:24:20:26:E5:13:93:F7:8C Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 0623 Signing time: Sat 01 Jun 2024 00:36:35 +0000 Manifest this update: Sat 01 Jun 2024 00:36:35 +0000 Manifest next update: Sat 08 Jun 2024 00:36:35 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: 262ZSwnyt5+SrEhMkNYgEMXdbNSucDGNher/6spP4tg=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: IGp9m0I02TJLhAdlVsf0KHi4zQC5JAuBW0+B+EgeGqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Jun 1 00:36:35 2024 GMT Not After : Jun 8 00:36:35 2024 GMT Subject: CN=665a6d13-0491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c8:f6:28:ce:ad:b6:3a:b4:7b:0c:1b:c1:bb: 0a:ce:b2:99:f6:14:47:36:be:d2:08:4f:e8:69:b9: 1a:33:e5:86:c3:5a:1c:77:3b:57:83:a4:df:7c:1b: 2a:6c:ac:09:6d:ec:71:95:82:68:09:66:3a:87:10: 41:af:f9:fa:da:1f:61:49:e7:a1:fc:dc:8b:e0:6f: 07:4e:e4:5b:e3:0c:ed:f4:24:2f:2e:42:d8:51:89: 47:80:24:21:bb:34:37:a5:05:64:ce:c7:a6:6c:c2: 26:34:32:05:7c:30:ea:f6:74:fd:a7:69:02:57:93: 73:41:4d:0a:0b:6e:9e:51:f8:ac:dc:d6:ac:0e:f0: 01:2f:05:07:84:57:72:6e:da:fc:f9:51:96:d8:ca: 89:ef:34:dd:8f:c2:96:7c:65:95:b7:1e:84:6b:e7: 2a:6d:35:61:d9:f3:4d:dd:d1:1f:46:5b:d3:b1:86: 61:1d:0a:6c:b9:ec:80:12:36:1f:d3:43:7f:4f:8d: 4c:18:05:d9:1f:16:0c:cb:4e:73:f1:85:4d:ef:a3: 7a:13:ea:97:13:18:3b:f8:52:a9:ca:15:ae:6a:47: 0b:ac:ba:44:da:93:f4:91:b8:ba:9a:14:bb:88:a4: 88:3d:2b:9a:03:42:ef:68:72:2b:72:64:d6:a1:08: dd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AE:AB:85:86:0D:70:09:DB:AF:F5:58:24:20:26:E5:13:93:F7:8C X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:61:be:be:93:88:48:31:7c:f9:d8:83:32:fb:ab:0b:73:67: dd:4b:44:25:a1:58:8a:47:bc:7e:af:42:97:25:82:f8:c8:19: c3:f4:6e:62:52:e9:66:82:0b:90:47:cd:47:03:52:14:ac:6c: d9:37:0d:94:f0:ea:88:00:2e:46:86:f6:6b:b3:66:4c:fb:66: 7f:ad:08:6d:e3:6c:17:1f:b6:9b:dc:df:92:ae:01:7a:2c:81: 8f:c9:91:bb:d7:98:97:63:fb:ea:03:a8:3d:0b:e0:d8:42:35: 6f:c2:49:bd:f6:0b:53:30:1f:fa:4d:7f:03:6f:11:ad:8a:42: 8e:71:06:ed:bf:19:e0:74:c4:0b:f1:73:a5:85:77:19:44:7f: 30:fe:94:0a:6e:4d:c4:9f:4e:21:e4:4e:b9:91:e8:1b:22:f4: 13:b9:53:5b:4d:01:f6:64:f4:42:f7:53:0b:a1:66:5c:75:9e: e2:5b:26:36:57:48:c0:63:ac:5a:1b:56:87:a4:6b:a0:64:ef: da:35:1f:ef:72:ad:41:ef:29:c4:e3:a9:d9:b6:2b:6f:c1:c9: 8f:35:ce:9b:4a:85:30:18:c6:b8:51:09:ff:6c:6c:99:0c:2a: fd:51:d8:82:42:6e:94:a4:29:dc:4c:de:8c:f7:9d:2a:69:ce: 5f:5e:6b:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjQwNjAxMDAzNjM1WhcNMjQwNjA4MDAzNjM1WjAYMRYwFAYD VQQDEw02NjVhNmQxMy0wNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcj2KM6ttjq0ewwbwbsKzrKZ9hRHNr7SCE/oabkaM+WGw1ocdztXg6TffBsq bKwJbexxlYJoCWY6hxBBr/n62h9hSeeh/NyL4G8HTuRb4wzt9CQvLkLYUYlHgCQh uzQ3pQVkzsembMImNDIFfDDq9nT9p2kCV5NzQU0KC26eUfis3NasDvABLwUHhFdy btr8+VGW2MqJ7zTdj8KWfGWVtx6Ea+cqbTVh2fNN3dEfRlvTsYZhHQpsueyAEjYf 00N/T41MGAXZHxYMy05z8YVN76N6E+qXExg7+FKpyhWuakcLrLpE2pP0kbi6mhS7 iKSIPSuaA0LvaHIrcmTWoQjdJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOuq4WG DXAJ26/1WCQgJuUTk/eMMB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDYb6+k4hIMXz52IMy+6sLc2fdS0QloViKR7x+r0KXJYL4yBnD9G5i UulmgguQR81HA1IUrGzZNw2U8OqIAC5GhvZrs2ZM+2Z/rQht42wXH7ab3N+SrgF6 LIGPyZG715iXY/vqA6g9C+DYQjVvwkm99gtTMB/6TX8DbxGtikKOcQbtvxngdMQL 8XOlhXcZRH8w/pQKbk3En04h5E65kegbIvQTuVNbTQH2ZPRC91MLoWZcdZ7iWyY2 V0jAY6xaG1aHpGugZO/aNR/vcq1B7ynE46nZtitvwcmPNc6bSoUwGMa4UQn/bGyZ DCr9UdiCQm6UpCncTN6M950qac5fXmt2 -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:44 2024 by rpki-client on console-fra.rpki-client.org