$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: GoHAJoQQHTQMVBCbgfLZ1z1/gIUzG/bMC07MiCmw0ms= Subject key identifier: 39:46:81:BB:7B:E4:35:B8:47:26:5F:D9:3F:F7:8A:6A:A6:93:04:71 Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 03CF Signing time: Sat 01 Jun 2024 03:29:18 +0000 Manifest this update: Sat 01 Jun 2024 03:29:17 +0000 Manifest next update: Sat 08 Jun 2024 03:29:17 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: t4AIUxTgmRHWK7b/1SOU7uBWih3tRKwo4yAJtQKHQdg=) 2: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: O2wCYnsWMsNh26QO49KbMD5OdQ0wQy2zxz9/0Bjc24k=) 3: 2E971452411311EC88F4A813C4F9AE02.roa (hash: BJkoemMT/+xpo5406DrYJzR7xcCQChxSufm253c8Bjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Jun 1 03:29:17 2024 GMT Not After : Jun 8 03:29:17 2024 GMT Subject: CN=665a958e-936e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:38:6f:a7:dc:6e:0c:d7:b5:e2:22:65:21:f4: 5c:50:0e:97:e9:30:a0:f2:e5:4e:91:75:ee:e7:d9: 2c:96:dd:2a:0c:77:50:01:8d:52:c9:59:57:4a:14: cb:1e:11:a8:fe:d4:b3:9c:dd:74:25:75:fb:d9:b8: d7:3f:20:4c:75:33:10:d2:ad:02:cc:14:a0:9a:d1: 72:48:42:2a:5f:ca:ce:af:18:09:ba:ed:2a:63:22: 31:49:79:aa:46:cf:56:ca:a4:ac:a8:19:6c:d1:2b: fb:36:ca:b6:51:74:e5:a5:8e:d5:42:aa:2c:03:05: 87:6f:f2:44:ed:5b:69:39:11:c5:c2:54:54:1e:ad: 72:ec:8d:97:d7:01:c3:e4:73:6e:bb:63:21:cb:ff: cf:d2:bd:5b:72:94:3f:7a:45:74:a3:9e:7d:05:db: 95:e0:4d:0c:b0:25:d4:ad:bf:90:47:b2:9c:03:08: be:61:6d:3e:ae:3d:c9:f2:e2:f0:8a:46:cd:5d:3c: ec:2d:ff:43:e1:65:94:71:e4:5f:d8:29:fe:d6:ef: c1:d2:2e:b2:6e:99:bf:a9:6b:8d:cf:83:94:b9:17: 0d:42:ee:78:d4:ad:8b:42:1c:0c:fc:4c:cd:45:96: 12:65:a2:a8:af:eb:c1:d7:d8:60:34:7b:fd:e8:8b: 33:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:46:81:BB:7B:E4:35:B8:47:26:5F:D9:3F:F7:8A:6A:A6:93:04:71 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:6d:d1:7b:dc:8b:85:4f:65:79:b9:5c:5c:03:64:89:8a:50: 9a:68:39:84:8b:2a:f3:96:25:43:8a:b4:6e:f8:2b:51:7e:86: f8:14:ba:50:0b:f7:12:21:10:71:9a:e6:f1:db:da:d9:88:11: 27:7c:ac:b6:89:24:bf:70:73:cd:25:99:16:3b:f5:03:0b:54: c3:48:1c:7c:0a:e3:73:7a:c3:2e:e9:fc:0f:b6:e3:2e:29:7a: ab:61:3b:33:46:a3:6c:39:b2:51:96:3b:57:5d:3c:0e:3c:fc: 79:bf:e5:ce:8c:9b:b2:6a:3e:eb:08:1e:80:98:ac:c4:ab:d5: c5:b4:ef:e2:a8:6f:74:29:03:69:3e:4c:70:80:42:d7:49:47: 5d:f9:93:68:97:7e:0c:de:15:c2:67:f1:f4:4f:6d:b7:13:11: 39:90:5e:b3:be:21:09:a7:b2:30:19:2d:31:d8:47:42:fc:2e: 6c:a3:65:3c:d1:22:1d:60:44:15:6a:7a:78:37:53:14:f9:7e: 94:17:4a:a5:b7:d6:d4:2f:f0:b5:da:01:b6:42:9e:8c:e6:73: 77:77:c5:bc:a9:0e:8a:31:ea:88:ae:a3:4f:6f:df:91:d4:f0: b1:ac:c7:fc:36:09:8b:b0:bc:3e:e3:30:e5:39:68:ea:00:f5: 06:dc:90:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjQwNjAxMDMyOTE3WhcNMjQwNjA4MDMyOTE3WjAYMRYwFAYD VQQDEw02NjVhOTU4ZS05MzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDhvp9xuDNe14iJlIfRcUA6X6TCg8uVOkXXu59kslt0qDHdQAY1SyVlXShTL HhGo/tSznN10JXX72bjXPyBMdTMQ0q0CzBSgmtFySEIqX8rOrxgJuu0qYyIxSXmq Rs9WyqSsqBls0Sv7Nsq2UXTlpY7VQqosAwWHb/JE7VtpORHFwlRUHq1y7I2X1wHD 5HNuu2Mhy//P0r1bcpQ/ekV0o559BduV4E0MsCXUrb+QR7KcAwi+YW0+rj3J8uLw ikbNXTzsLf9D4WWUceRf2Cn+1u/B0i6ybpm/qWuNz4OUuRcNQu541K2LQhwM/EzN RZYSZaKor+vB19hgNHv96Isz7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlGgbt7 5DW4RyZf2T/3imqmkwRxMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAObdF73IuFT2V5uVxcA2SJilCaaDmEiyrzliVDirRu+CtRfob4FLpQ C/cSIRBxmubx29rZiBEnfKy2iSS/cHPNJZkWO/UDC1TDSBx8CuNzesMu6fwPtuMu KXqrYTszRqNsObJRljtXXTwOPPx5v+XOjJuyaj7rCB6AmKzEq9XFtO/iqG90KQNp PkxwgELXSUdd+ZNol34M3hXCZ/H0T223ExE5kF6zviEJp7IwGS0x2EdC/C5so2U8 0SIdYEQVanp4N1MU+X6UF0qlt9bUL/C12gG2Qp6M5nN3d8W8qQ6KMeqIrqNPb9+R 1PCxrMf8NgmLsLw+4zDlOWjqAPUG3JBr -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:20 2024 by rpki-client on console-ams.rpki-client.org