$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: +nuRkoeqbmwLoFUFSqQiv9aUFiqoPY1a4+BlKAMR1bE= Subject key identifier: 4D:53:BC:26:F3:B5:C0:4D:1A:49:55:86:37:95:A6:5A:71:8E:BC:DE Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 05B9 Signing time: Fri 26 Jul 2024 17:24:35 +0000 Manifest this update: Fri 26 Jul 2024 17:24:34 +0000 Manifest next update: Fri 02 Aug 2024 17:24:34 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: h1ytC7Wzgv4uILRaqQk16pPSne61WJMjxj6PiSx7HPg=) 2: 5BE68D46CF7611ED85A2E84EC4F9AE02.roa (hash: A8T7YjH39HJyHv4+0kwSd5uPkQBOd5K3P7X281GuTgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Aug 2024 14:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Jul 26 17:24:34 2024 GMT Not After : Aug 2 17:24:34 2024 GMT Subject: CN=66a3dbd2-694f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:4b:48:be:cb:6c:7f:c3:0a:2d:40:5f:15: 7b:6d:6c:e7:65:4e:ca:b1:fd:d9:b6:ab:69:07:38: e7:8e:16:13:b5:63:24:73:1d:1a:b4:f2:1a:89:f3: d1:89:6a:26:19:25:83:3e:ec:fe:c0:f5:b3:19:c7: 9f:57:08:f8:32:1d:b8:47:9a:51:92:35:2a:77:f3: 1b:a3:26:7a:2d:80:e1:aa:d2:8a:76:6f:4e:69:fa: 5e:35:69:e0:65:0e:97:4e:ad:fd:7f:e8:d0:e1:fb: 76:73:05:87:25:78:6f:4f:9a:42:fa:f8:7c:92:d1: 13:a6:f7:c2:a9:69:d7:3c:21:35:39:3a:34:9a:11: 35:50:8e:98:a9:3e:e4:a4:0f:00:53:d8:da:68:88: bc:bf:14:df:91:ed:44:47:43:de:47:a1:b3:95:69: 92:16:45:63:87:b7:2d:b0:3b:fb:d9:1b:8a:f6:f7: 8f:6f:bd:07:94:47:3b:0c:c0:0b:98:9f:c1:98:cb: d1:c2:5d:39:cf:25:da:e2:ec:83:d4:ec:58:dc:54: 71:25:90:77:23:24:e3:9e:d9:ec:96:fb:1a:e0:88: d4:69:e8:40:fb:17:14:7e:84:67:af:f8:57:7a:2c: ac:a0:cd:e1:ee:0d:50:c0:24:62:6f:8a:ed:67:84: a0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:53:BC:26:F3:B5:C0:4D:1A:49:55:86:37:95:A6:5A:71:8E:BC:DE X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:04:7b:81:96:cc:49:51:d4:09:26:93:bf:84:a2:c5:9f:07: a0:03:b3:d4:09:a8:66:c4:24:0e:9a:69:6b:0b:ec:71:d3:25: 82:27:3f:9b:d5:1d:8f:c6:87:2f:8e:54:8c:55:9e:e3:01:9c: 5a:d4:34:ec:a3:02:27:72:21:70:30:26:37:0c:5d:a0:dc:b4: 5a:f1:66:71:18:17:61:1d:12:b5:31:60:89:0c:fc:b4:bf:3c: 5d:63:9c:dd:02:da:96:4e:7c:0a:e1:1b:77:a5:1f:90:67:1d: 79:05:a7:a2:8e:80:c0:cd:53:a4:f6:43:89:22:2d:42:43:8c: 4a:e8:57:17:3f:5a:d3:d1:4b:76:89:4b:a1:72:b7:e5:94:72: 67:70:55:1a:86:66:65:45:d3:e1:88:20:00:fa:e8:87:86:30: ee:2a:07:75:50:9b:9e:cb:2c:80:e9:94:80:ea:b7:f5:4d:a7: b4:07:96:26:9e:2f:9b:10:15:5f:c8:13:d9:17:24:00:c0:5b: 04:f7:2c:61:6c:58:fc:0a:a3:9c:59:90:2e:f6:71:0d:c9:d3: b7:cc:45:bf:59:3f:9c:65:96:84:be:47:36:c2:37:4a:e1:98: 2d:e7:58:9e:d5:ab:93:61:5f:51:88:f6:9a:50:80:c2:9b:8a: 40:7b:0f:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjQwNzI2MTcyNDM0WhcNMjQwODAyMTcyNDM0WjAYMRYwFAYD VQQDEw02NmEzZGJkMi02OTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc9LSL7LbH/DCi1AXxV7bWznZU7Ksf3ZtqtpBzjnjhYTtWMkcx0atPIaifPR iWomGSWDPuz+wPWzGcefVwj4Mh24R5pRkjUqd/MboyZ6LYDhqtKKdm9OafpeNWng ZQ6XTq39f+jQ4ft2cwWHJXhvT5pC+vh8ktETpvfCqWnXPCE1OTo0mhE1UI6YqT7k pA8AU9jaaIi8vxTfke1ER0PeR6GzlWmSFkVjh7ctsDv72RuK9vePb70HlEc7DMAL mJ/BmMvRwl05zyXa4uyD1OxY3FRxJZB3IyTjntnslvsa4IjUaehA+xcUfoRnr/hX eiysoM3h7g1QwCRib4rtZ4SgrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1TvCbz tcBNGklVhjeVplpxjrzeMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4BHuBlsxJUdQJJpO/hKLFnwegA7PUCahmxCQOmmlrC+xx0yWCJz+b 1R2PxocvjlSMVZ7jAZxa1DTsowInciFwMCY3DF2g3LRa8WZxGBdhHRK1MWCJDPy0 vzxdY5zdAtqWTnwK4Rt3pR+QZx15BaeijoDAzVOk9kOJIi1CQ4xK6FcXP1rT0Ut2 iUuhcrfllHJncFUahmZlRdPhiCAA+uiHhjDuKgd1UJueyyyA6ZSA6rf1Tae0B5Ym ni+bEBVfyBPZFyQAwFsE9yxhbFj8CqOcWZAu9nENydO3zEW/WT+cZZaEvkc2wjdK 4Zgt51ie1auTYV9RiPaaUIDCm4pAew/l -----END CERTIFICATE-----Generated at Fri Jul 26 19:30:41 2024 by rpki-client on console-fra.rpki-client.org