$ rpki-client -vvf rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft File: C7BDH1UIA338kvd-BrSK7JVR9ls.mft (raw, json) Hash identifier: x25DcA8DsYpktM+Dyh+PJO1Lp4cLIXvFygyR+AH4xqY= Subject key identifier: E9:70:A7:79:8C:D7:E6:10:E7:EF:C2:AA:1A:99:8A:9F:C4:61:8A:F2 Authority key identifier: 0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B Certificate issuer: /CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Certificate serial: 1A2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft Manifest number: 1A24 Signing time: Mon 06 May 2024 16:51:09 +0000 Manifest this update: Mon 06 May 2024 16:51:08 +0000 Manifest next update: Mon 13 May 2024 16:51:08 +0000 Files and hashes: 1: C7BDH1UIA338kvd-BrSK7JVR9ls.crl (hash: JyICzqnLDhhHhDUpMAXn1Za979NwGrsGvO/enHmxF+A=) 2: 8E810FBCD46E11E9B37C0539C4F9AE02.roa (hash: IXW1+0fF2iCeRzSYzjKhJ4py4NiAw4UPgWTtuuz6Vxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6698 (0x1a2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Validity Not Before: May 6 16:51:08 2024 GMT Not After : May 13 16:51:08 2024 GMT Subject: CN=66390a7d-fc6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a7:cb:41:55:00:7e:d8:53:d5:95:a7:e2:29: 48:4e:0f:20:8b:a1:1c:d8:29:79:10:e4:d6:b5:7d: e5:19:3c:18:3a:fc:7f:ab:01:52:1a:a1:79:9f:6b: a4:3d:45:09:41:ce:62:db:35:72:96:4f:cd:50:aa: 0f:30:db:4e:02:b0:19:e3:62:80:bf:3d:d7:ad:c3: ac:a0:fd:2c:de:02:5a:8b:02:bd:34:44:15:51:e6: 0a:e2:8f:88:77:80:14:01:09:4d:62:97:ec:c7:44: b3:bf:05:6c:c5:26:d7:7d:40:3c:d8:6a:d1:32:21: 2d:97:d2:2e:33:3e:c1:11:e9:14:96:4e:06:88:bf: aa:a1:f9:63:26:0a:85:2c:37:4c:a3:b3:f2:33:e6: 32:cf:31:b8:fb:23:7e:2b:57:24:4c:be:1e:d3:b9: ac:49:b5:26:13:2c:0a:2c:29:23:fe:dc:58:6a:21: 5d:8f:c6:56:e7:9b:a3:c9:f1:5b:ab:bd:9a:57:dd: 20:5e:19:b7:12:84:24:8d:42:ac:84:59:3d:c2:c3: ba:ac:8e:5d:38:d8:92:c9:c5:e2:65:85:00:32:70: f9:22:e6:c4:ca:cd:91:2d:89:b8:51:4c:18:02:a9: f0:57:ec:96:52:fd:f7:63:fb:79:4e:65:70:c5:a1: 8c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:70:A7:79:8C:D7:E6:10:E7:EF:C2:AA:1A:99:8A:9F:C4:61:8A:F2 X509v3 Authority Key Identifier: keyid:0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:77:47:39:21:93:f8:13:52:62:76:f6:e8:18:5c:cd:0e:a8: 39:c4:f3:67:ff:d7:17:ec:3d:56:31:e1:bf:ff:8e:92:6a:ae: d7:34:21:c8:be:74:a0:46:ec:c9:95:68:ee:e0:9c:9f:d0:20: 54:b1:d0:10:1f:85:15:9f:9f:96:5f:7d:d5:1a:c7:c1:1a:ae: 79:6c:b1:1c:fc:29:ea:76:5d:34:46:d1:b1:60:20:95:f6:9d: 10:5d:1e:da:47:3a:c7:0a:74:36:05:99:80:25:ed:6b:72:88: ec:2f:fa:62:81:f7:2e:fd:54:fa:ce:06:1f:22:4d:05:c8:a8: 02:8c:2b:b4:c4:73:9e:46:44:6e:2e:6e:91:63:69:c2:16:94: be:84:c5:75:9f:68:91:f3:d0:f8:c7:80:7e:c5:1c:4d:58:a8: 16:4e:1c:07:95:ec:36:af:f0:e4:f2:43:24:a6:01:3c:70:06: 7e:24:d3:1a:4d:55:17:d4:67:2f:e8:4a:a0:86:a6:c9:4b:1c: 51:c1:f6:d5:f5:be:14:a2:f1:54:a0:45:2c:c3:8f:e9:3c:ca: 08:ae:8e:59:64:52:65:11:32:5b:f0:c5:c6:88:b6:4b:75:49: 4f:be:d1:68:30:99:ba:10:78:3e:3a:cb:6a:e1:e4:0f:b4:df: 31:77:ff:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyNTUxMTAvBgNVBAUTKDBCQjA0MzFGNTUwODAzN0RGQzkyRjc3RTA2QjQ4QUVD OTU1MUY2NUIwHhcNMjQwNTA2MTY1MTA4WhcNMjQwNTEzMTY1MTA4WjAYMRYwFAYD VQQDEw02NjM5MGE3ZC1mYzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36fLQVUAfthT1ZWn4ilITg8gi6Ec2Cl5EOTWtX3lGTwYOvx/qwFSGqF5n2uk PUUJQc5i2zVylk/NUKoPMNtOArAZ42KAvz3XrcOsoP0s3gJaiwK9NEQVUeYK4o+I d4AUAQlNYpfsx0SzvwVsxSbXfUA82GrRMiEtl9IuMz7BEekUlk4GiL+qofljJgqF LDdMo7PyM+YyzzG4+yN+K1ckTL4e07msSbUmEywKLCkj/txYaiFdj8ZW55ujyfFb q72aV90gXhm3EoQkjUKshFk9wsO6rI5dONiSycXiZYUAMnD5IubEys2RLYm4UUwY AqnwV+yWUv33Y/t5TmVwxaGMnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlwp3mM 1+YQ5+/CqhqZip/EYYryMB8GA1UdIwQYMBaAFAuwQx9VCAN9/JL3fga0iuyVUfZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI1NS9CRTYyREM5RTIz MkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEzMzhrdmQtQnJTSzdKVlI5 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QkRIMVVJQTMzOGt2ZC1CclNLN0pWUjlscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzI1NS9CRTYyREM5RTIzMkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEz MzhrdmQtQnJTSzdKVlI5bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALd0c5IZP4E1JidvboGFzNDqg5xPNn/9cX7D1WMeG//46Saq7XNCHI vnSgRuzJlWju4Jyf0CBUsdAQH4UVn5+WX33VGsfBGq55bLEc/Cnqdl00RtGxYCCV 9p0QXR7aRzrHCnQ2BZmAJe1rcojsL/pigfcu/VT6zgYfIk0FyKgCjCu0xHOeRkRu Lm6RY2nCFpS+hMV1n2iR89D4x4B+xRxNWKgWThwHlew2r/Dk8kMkpgE8cAZ+JNMa TVUX1Gcv6EqghqbJSxxRwfbV9b4UovFUoEUsw4/pPMoIro5ZZFJlETJb8MXGiLZL dUlPvtFoMJm6EHg+Ostq4eQPtN8xd/+k -----END CERTIFICATE-----Generated at Mon May 6 17:35:43 2024 by rpki-client on console-fra.rpki-client.org