$ rpki-client -vvf rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft File: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft (raw, json) Hash identifier: t/8y+8mOGPGXX+gUoTVWviH5rMgzjr/lzIoNdd5lqYE= Subject key identifier: FA:D4:88:29:90:EF:FD:E8:D2:5F:CB:53:9F:EC:AB:9F:94:97:D4:3B Authority key identifier: EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 Certificate issuer: /CN=A918D7D0/serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Certificate serial: 0B89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft Manifest number: 12B2 Signing time: Tue 30 Apr 2024 19:34:33 +0000 Manifest this update: Tue 30 Apr 2024 19:34:33 +0000 Manifest next update: Tue 07 May 2024 19:34:33 +0000 Files and hashes: 1: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl (hash: +mh00YBC6zu6pTmrN5rcSOra5HUeA7x4GGPvyQaCccQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:34:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2953 (0xb89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D7D0/serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Validity Not Before: Apr 30 19:34:33 2024 GMT Not After : May 7 19:34:33 2024 GMT Subject: CN=663147c9-8ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:85:4d:79:51:3c:4c:9c:3e:3b:1e:22:71:30: 80:3f:ac:a4:83:0e:20:b3:71:f8:2c:f5:40:65:39: 56:80:e2:dd:dc:c9:fa:f0:4b:08:6e:9f:df:de:b3: 6c:67:e7:99:b5:5b:44:11:f2:13:a5:83:af:d1:cf: fc:20:eb:3f:6d:5f:2b:c7:62:f1:55:fb:e0:bd:1c: f2:ca:33:ec:eb:2e:5a:83:70:d1:4d:8b:24:cc:56: 96:ec:f1:a4:8d:91:44:04:92:7e:2d:dc:69:4e:3d: da:5b:bb:68:ff:e3:b9:d4:01:fe:83:3b:1f:23:d6: 3d:65:b6:57:43:32:6c:6c:11:de:91:80:2a:4f:66: b5:a4:84:59:68:b6:86:7b:f2:1b:9b:dd:fe:16:20: c8:33:a7:ec:60:9f:d7:21:95:46:11:21:bd:a3:61: 30:8f:e4:3d:22:8f:4b:93:bc:a7:5a:6b:42:b3:7c: d5:8f:57:0f:68:88:66:e5:a7:59:17:81:2a:c4:d3: d9:0b:bc:7c:7d:03:f0:9d:08:a5:b8:87:b2:79:5d: 84:dc:04:5f:76:dc:c8:a9:f3:6a:51:60:5d:9f:3c: fa:06:25:47:2a:b6:a9:df:da:d7:92:fa:e3:8f:06: 01:0f:7e:00:a0:73:7d:f5:87:8e:50:6e:0a:f0:5c: 0f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D4:88:29:90:EF:FD:E8:D2:5F:CB:53:9F:EC:AB:9F:94:97:D4:3B X509v3 Authority Key Identifier: keyid:EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:49:24:5f:7e:32:3e:1b:d4:e9:05:bb:b5:87:37:f4:09:95: bd:90:b3:ff:c0:f9:f5:6f:a3:88:4f:cc:98:f8:ac:a8:cd:79: 17:07:f8:5e:6b:5f:dc:41:fa:94:00:14:11:f6:c4:a6:35:82: a2:df:e3:31:a1:01:cc:e1:6b:c9:ed:9e:87:61:c9:ea:e4:03: 00:df:00:d5:dd:63:84:c4:37:b6:0a:1d:c8:fd:df:75:d9:53: d7:e5:39:d4:72:b6:db:c2:81:80:37:20:22:5e:59:4f:e4:a5: 5c:58:b7:55:c4:dc:67:59:b2:b6:9f:8f:42:f8:33:db:8d:7d: e6:8d:fd:0f:b9:eb:27:29:53:4e:f4:20:4e:12:75:0a:f4:e1: 66:e1:f6:f3:75:06:f2:84:27:87:b9:a9:ac:99:7a:06:51:31: 53:ee:5b:8a:50:77:7b:7d:e9:20:ec:17:26:0c:ec:06:32:8b: c3:07:c2:8b:60:2d:5a:11:e1:76:f7:2c:bb:59:39:4e:c8:5b: cf:97:05:f1:0c:0a:a2:12:34:30:8b:ce:93:4b:ff:fa:04:0a: f6:b4:33:be:41:c9:e6:92:cc:fe:30:7e:7a:63:8e:b0:64:ea: 6a:8b:34:8b:0d:16:d7:78:c9:26:0e:72:5f:7d:98:59:cb:35: c7:82:b2:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3RDAxMTAvBgNVBAUTKEVDM0I5MEMzNDg4NkZEMDkyOEUzMTI1NDYxRkJCNDE1 MkJFOTkxMzcwHhcNMjQwNDMwMTkzNDMzWhcNMjQwNTA3MTkzNDMzWjAYMRYwFAYD VQQDEw02NjMxNDdjOS04YWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIVNeVE8TJw+Ox4icTCAP6ykgw4gs3H4LPVAZTlWgOLd3Mn68EsIbp/f3rNs Z+eZtVtEEfITpYOv0c/8IOs/bV8rx2LxVfvgvRzyyjPs6y5ag3DRTYskzFaW7PGk jZFEBJJ+LdxpTj3aW7to/+O51AH+gzsfI9Y9ZbZXQzJsbBHekYAqT2a1pIRZaLaG e/Ibm93+FiDIM6fsYJ/XIZVGESG9o2Ewj+Q9Io9Lk7ynWmtCs3zVj1cPaIhm5adZ F4EqxNPZC7x8fQPwnQiluIeyeV2E3ARfdtzIqfNqUWBdnzz6BiVHKrap39rXkvrj jwYBD34AoHN99YeOUG4K8FwPFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrUiCmQ 7/3o0l/LU5/sq5+Ul9Q7MB8GA1UdIwQYMBaAFOw7kMNIhv0JKOMSVGH7tBUr6ZE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDdEMC85ODJCMkQ1QTAw ODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19Ra280eEpVWWZ1MEZTdnBr VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEdVF3MGlHX1FrbzR4SlVZZnUwRlN2cGtUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDdEMC85ODJCMkQ1QTAwODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19R a280eEpVWWZ1MEZTdnBrVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6SSRffjI+G9TpBbu1hzf0CZW9kLP/wPn1b6OIT8yY+KyozXkXB/he a1/cQfqUABQR9sSmNYKi3+MxoQHM4WvJ7Z6HYcnq5AMA3wDV3WOExDe2Ch3I/d91 2VPX5TnUcrbbwoGANyAiXllP5KVcWLdVxNxnWbK2n49C+DPbjX3mjf0PuesnKVNO 9CBOEnUK9OFm4fbzdQbyhCeHuamsmXoGUTFT7luKUHd7fekg7BcmDOwGMovDB8KL YC1aEeF29yy7WTlOyFvPlwXxDAqiEjQwi86TS//6BAr2tDO+Qcnmksz+MH56Y46w ZOpqizSLDRbXeMkmDnJffZhZyzXHgrKy -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:01 2024 by rpki-client on console-fra.rpki-client.org