$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: Qz0ZsuT57TC5EcaaFKdmozc/oWBVFRvUhIOMjd6DKyM= Subject key identifier: D3:83:7F:3B:D7:F8:E3:D1:6A:7F:A2:78:43:8E:99:66:B1:49:B8:D1 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 68 Signing time: Wed 15 May 2024 07:41:50 +0000 Manifest this update: Wed 15 May 2024 07:41:50 +0000 Manifest next update: Wed 22 May 2024 07:41:50 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: xxO8Dkpo0delj90sbYsHLPWXkyE0GGGvE/j5rGBN6CU=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: 8xFUYP8CysuOSr+JhXC7vja6PLPsWt9zigT7v//9EFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: May 15 07:41:50 2024 GMT Not After : May 22 07:41:50 2024 GMT Subject: CN=6644673e-318f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1c:77:23:84:10:b7:f4:13:18:d2:37:25:25: a6:b2:f7:d0:3e:c5:8d:3e:0d:21:10:e2:76:26:1c: 01:b8:30:d1:54:32:8c:73:c7:95:42:2f:02:ea:63: df:fb:f7:42:62:39:31:4e:d9:24:0b:24:37:98:48: c3:a6:bd:45:01:22:1c:8b:aa:65:90:d5:58:f0:29: 17:83:7b:cd:e1:4a:0c:0c:e6:b2:ed:72:13:23:c4: 77:d5:8f:f0:aa:0a:1f:88:05:f6:7d:93:79:43:65: 10:2d:e6:d1:09:bc:53:10:3d:7c:90:ff:d9:e4:09: a7:a9:37:ec:3c:a4:07:cf:dd:1d:20:8d:77:0f:81: 70:4b:14:e1:8a:38:af:23:8c:59:94:89:cd:24:5f: 53:9b:26:bb:28:5d:a8:52:28:9b:a3:96:18:fe:f5: f5:9d:6a:23:c9:a0:8c:e7:2d:85:a8:a7:ae:0b:d7: 28:4a:b3:0a:3d:78:13:de:56:04:01:36:86:c7:c1: de:8d:c1:f7:45:1f:c6:9e:93:05:49:a8:bd:fc:28: ba:23:ac:fb:b8:c1:c5:e4:b6:32:b1:20:c1:85:2e: 54:e4:1d:3d:a5:bf:b0:fb:48:a4:b4:d7:93:72:7c: ff:4e:98:db:b7:35:ec:7f:d3:2e:14:92:29:a2:5d: 77:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:83:7F:3B:D7:F8:E3:D1:6A:7F:A2:78:43:8E:99:66:B1:49:B8:D1 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:91:5e:3d:8a:d0:dd:24:26:d1:f9:c4:f2:d6:72:a4:02:03: 9d:45:50:ea:45:53:78:c0:ea:41:7d:8f:45:c5:c8:ee:e5:da: db:11:d4:8f:bb:62:33:51:56:81:f2:34:9d:b4:d6:1e:27:f1: 79:40:36:e8:78:39:76:70:af:20:fe:17:9f:3f:51:57:7c:c3: 97:c5:f3:a2:cc:f0:af:ae:6f:3e:76:fd:6c:9c:6e:75:94:02: 58:8e:67:f6:aa:b2:a0:02:d2:2a:52:5b:e2:4d:40:d4:3a:08: 05:66:fb:01:78:f9:86:56:27:b8:2f:27:69:9e:a4:3a:8f:31: ce:48:28:41:fc:dc:e0:b5:19:f9:25:32:f1:07:2c:e9:5f:41: 6b:42:c2:78:41:2d:ce:76:f8:dc:ba:59:b3:44:b3:75:40:75: 7b:ac:82:44:6a:c9:13:df:d2:28:0c:47:b6:4c:3c:c0:3c:95: dc:9b:97:a8:73:59:8c:79:b5:d2:18:b4:45:d5:5b:b6:2a:c7: 31:84:06:7b:45:bf:9e:f2:01:dd:2f:98:0d:ed:72:7f:51:e5: 02:b0:81:52:32:50:23:f0:26:2d:a6:95:0f:df:76:55:9a:53: 0b:b2:d6:97:d4:76:c3:15:9f:c9:a9:6f:85:46:cb:fb:15:26: e1:51:2a:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUFBMzExMC8GA1UEBRMoNTRBNUQ4RkJGODRFM0VERjMxRkEyNEU0NUM2QzY3MkE5 M0I2NUFEMDAeFw0yNDA1MTUwNzQxNTBaFw0yNDA1MjIwNzQxNTBaMBgxFjAUBgNV BAMTDTY2NDQ2NzNlLTMxOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfHHcjhBC39BMY0jclJaay99A+xY0+DSEQ4nYmHAG4MNFUMoxzx5VCLwLqY9/7 90JiOTFO2SQLJDeYSMOmvUUBIhyLqmWQ1VjwKReDe83hSgwM5rLtchMjxHfVj/Cq Ch+IBfZ9k3lDZRAt5tEJvFMQPXyQ/9nkCaepN+w8pAfP3R0gjXcPgXBLFOGKOK8j jFmUic0kX1ObJrsoXahSKJujlhj+9fWdaiPJoIznLYWop64L1yhKswo9eBPeVgQB NobHwd6NwfdFH8aekwVJqL38KLojrPu4wcXktjKxIMGFLlTkHT2lv7D7SKS015Ny fP9OmNu3Nex/0y4UkimiXXe1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU04N/O9f4 49Fqf6J4Q46ZZrFJuNEwHwYDVR0jBBgwFoAUVKXY+/hOPt8x+iTkXGxnKpO2WtAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QUEzLzBBMkNCNzg2Nzg0 QjExRUVBNEQ3REI3N0M0RjlBRTAyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVktYWS1faE9QdDh4LWlUa1hHeG5LcE8yV3RBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QUEzLzBBMkNCNzg2Nzg0QjExRUVBNEQ3REI3N0M0RjlBRTAyL1ZLWFktX2hPUHQ4 eC1pVGtYR3huS3BPMld0QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJyRXj2K0N0kJtH5xPLWcqQCA51FUOpFU3jA6kF9j0XFyO7l2tsR1I+7 YjNRVoHyNJ201h4n8XlANuh4OXZwryD+F58/UVd8w5fF86LM8K+ubz52/WycbnWU AliOZ/aqsqAC0ipSW+JNQNQ6CAVm+wF4+YZWJ7gvJ2mepDqPMc5IKEH83OC1Gfkl MvEHLOlfQWtCwnhBLc52+Ny6WbNEs3VAdXusgkRqyRPf0igMR7ZMPMA8ldybl6hz WYx5tdIYtEXVW7YqxzGEBntFv57yAd0vmA3tcn9R5QKwgVIyUCPwJi2mlQ/fdlWa Uwuy1pfUdsMVn8mpb4VGy/sVJuFRKto= -----END CERTIFICATE-----Generated at Wed May 15 09:04:14 2024 by rpki-client on console-ams.rpki-client.org