$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: euOOeOytTRxvoPASFNfTtppGzWeFGzctekamh2tpLMs= Subject key identifier: 9D:EF:7F:FB:6A:E1:5B:9A:7F:57:51:C3:B1:E0:77:79:71:F7:8B:03 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1229 Signing time: Tue 30 Apr 2024 17:55:37 +0000 Manifest this update: Tue 30 Apr 2024 17:55:37 +0000 Manifest next update: Tue 07 May 2024 17:55:37 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: xcbsVtkkQBn3D+Q4MIT/2lQY9iJ86a/U9XKHJrJAb1Y=) 2: 2CA287743ADF11EC85EB255FC4F9AE02.roa (hash: TZjO81aS/h4B7x/ukG4VIgMY+fAoOJHYI3fEtTL1AgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4662 (0x1236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Apr 30 17:55:37 2024 GMT Not After : May 7 17:55:37 2024 GMT Subject: CN=66313099-5408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c1:f0:30:89:4b:87:9a:f5:44:13:37:ec:2d: cf:7a:43:ff:d2:e3:e1:11:f1:12:63:20:37:69:28: 01:60:41:9c:03:f4:73:64:59:d8:dd:0d:91:aa:b4: f3:7f:84:f6:5f:36:c5:a2:61:ca:31:bc:80:6d:0a: 4f:86:c5:0a:ce:b1:d8:76:9e:72:f6:52:98:10:50: 7f:99:8b:d1:36:a7:ad:1f:b2:3c:f7:91:97:ff:80: 56:8b:3e:38:a8:4a:53:28:57:f5:86:c1:67:6d:d5: 7c:23:a7:38:ef:50:e2:7c:90:8a:c3:ed:1c:0c:0a: 1c:bd:90:83:5d:a7:34:6e:3b:fc:ea:76:e1:4b:11: ce:af:b6:f8:89:22:cd:68:70:ed:78:48:58:92:ba: 8e:99:14:3c:4d:20:35:04:b1:f8:b0:07:36:9f:49: 39:3f:a8:5e:bc:8f:82:04:4d:d6:b3:c8:5e:20:83: 02:78:86:f5:94:0d:f3:88:4d:13:3a:4c:bf:38:df: b0:31:8b:17:7e:49:b8:22:85:42:9e:97:11:ba:aa: f2:23:6b:4a:90:4a:33:91:7b:8d:62:65:3e:f2:04: 94:bf:3b:60:0c:b7:52:7b:36:ad:9e:ea:1b:fb:71: 36:61:db:b7:06:fb:7d:c3:dc:b6:74:6c:72:e9:cc: 83:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:EF:7F:FB:6A:E1:5B:9A:7F:57:51:C3:B1:E0:77:79:71:F7:8B:03 X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:2b:d8:ef:b8:db:86:6b:a9:f5:b2:de:13:0b:5f:a8:6b:ff: b5:b4:f6:3e:d0:9f:78:54:47:bf:b2:d5:11:9f:65:e8:dd:3d: d3:07:2c:4c:07:ea:30:53:5b:fc:2c:fc:9c:26:12:37:27:a2: 3f:f7:54:f1:13:69:d9:55:fd:5e:3c:45:7e:0f:fa:20:c2:b2: c2:69:76:78:ee:5c:aa:a6:a6:6b:49:a0:02:f2:a2:67:6d:1b: be:2e:81:75:ca:95:29:a6:e3:45:83:01:17:26:d6:c1:b9:6b: 3d:3e:58:30:f8:b5:f8:46:5e:9e:cf:d1:00:34:af:fb:76:41: 38:a0:84:5b:37:5e:f8:4e:f3:89:bc:22:1a:da:fc:8e:e5:eb: 9a:24:32:57:1f:6e:1f:26:0c:ae:ad:fa:64:03:f6:e7:35:bb: 04:1e:bf:87:e9:a7:1c:9f:0e:4b:c0:f3:7c:da:94:62:41:9f: a0:63:b7:77:f8:71:d8:ed:94:0e:08:f7:d9:30:b1:7e:0d:96: c7:ab:2c:bf:c1:73:a8:75:17:e8:ca:54:2e:bd:8e:c3:33:dc: 05:56:f7:32:b7:45:4a:9f:8d:39:ac:97:2c:61:2d:89:a1:68: f4:01:5e:8d:c7:4c:b2:07:e9:b0:e3:9e:14:b6:30:3d:09:51: 8f:2c:01:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjQwNDMwMTc1NTM3WhcNMjQwNTA3MTc1NTM3WjAYMRYwFAYD VQQDEw02NjMxMzA5OS01NDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MHwMIlLh5r1RBM37C3PekP/0uPhEfESYyA3aSgBYEGcA/RzZFnY3Q2RqrTz f4T2XzbFomHKMbyAbQpPhsUKzrHYdp5y9lKYEFB/mYvRNqetH7I895GX/4BWiz44 qEpTKFf1hsFnbdV8I6c471DifJCKw+0cDAocvZCDXac0bjv86nbhSxHOr7b4iSLN aHDteEhYkrqOmRQ8TSA1BLH4sAc2n0k5P6hevI+CBE3Ws8heIIMCeIb1lA3ziE0T Oky/ON+wMYsXfkm4IoVCnpcRuqryI2tKkEozkXuNYmU+8gSUvztgDLdSezatnuob +3E2Ydu3Bvt9w9y2dGxy6cyDNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3vf/tq 4Vuaf1dRw7Hgd3lx94sDMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZK9jvuNuGa6n1st4TC1+oa/+1tPY+0J94VEe/stURn2Xo3T3TByxM B+owU1v8LPycJhI3J6I/91TxE2nZVf1ePEV+D/ogwrLCaXZ47lyqpqZrSaAC8qJn bRu+LoF1ypUppuNFgwEXJtbBuWs9Plgw+LX4Rl6ez9EANK/7dkE4oIRbN174TvOJ vCIa2vyO5euaJDJXH24fJgyurfpkA/bnNbsEHr+H6accnw5LwPN82pRiQZ+gY7d3 +HHY7ZQOCPfZMLF+DZbHqyy/wXOodRfoylQuvY7DM9wFVvcyt0VKn405rJcsYS2J oWj0AV6Nx0yyB+mw454UtjA9CVGPLAEh -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:36 2024 by rpki-client on console-fra.rpki-client.org