$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft File: 2v3gvG4K06iVvHVtbDGh5httODs.mft (raw, json) Hash identifier: V97FRi7mMB4dvy7K5wSUMRlOaI48RAncXZnw9TQTKS4= Subject key identifier: 74:B8:C6:91:31:FC:92:7E:1C:1B:5D:CB:DF:6F:0E:27:75:5A:4D:BA Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Certificate serial: 0772 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft Manifest number: 076E Signing time: Wed 24 Apr 2024 22:16:49 +0000 Manifest this update: Wed 24 Apr 2024 22:16:49 +0000 Manifest next update: Wed 01 May 2024 22:16:49 +0000 Files and hashes: 1: 2v3gvG4K06iVvHVtbDGh5httODs.crl (hash: SnEUqhreCLV+0Ed0US/QWD1w4FbVXTR6VrOAfiScRz0=) 2: E0A68C80CD7011EAA2547645C4F9AE02.roa (hash: 3E/3EoiVzQaio1L59JzhTViVOPaVRO4AbjM/EjmRSUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1906 (0x772) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Validity Not Before: Apr 24 22:16:49 2024 GMT Not After : May 1 22:16:49 2024 GMT Subject: CN=662984d1-8d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c5:fe:ec:46:a0:a3:d6:2c:d1:da:08:72:24: 6f:f3:59:86:f6:01:19:b9:7e:43:85:24:61:a4:05: 0c:f2:2d:b9:8f:f7:1f:0b:9a:86:55:ac:cc:04:4e: bf:34:8d:15:b0:68:e5:cc:8d:5b:16:76:1a:6b:06: 11:14:e4:c1:b8:29:9f:2f:c4:31:4f:f2:a3:a5:f6: 4f:c6:75:94:0c:e4:7d:97:06:3b:63:3e:16:e2:ae: 78:f0:20:73:46:36:27:04:ba:73:03:34:f8:94:32: f4:17:0f:4d:62:b6:e4:08:e2:5e:08:55:ed:4d:93: ee:d8:ca:70:e1:94:65:b5:92:e0:cd:b2:ec:c4:b2: b2:4c:38:f7:de:fa:b7:22:84:b1:30:65:7c:9b:93: 0e:e6:af:07:cf:5d:e1:1d:9e:2a:1e:cc:24:32:4b: 4f:d6:03:7c:0b:3a:f7:39:37:df:6e:48:11:34:02: 5d:4d:c1:7c:40:7e:17:ae:13:84:5f:a2:fc:7e:e5: 01:18:31:a3:66:46:59:d1:43:d7:21:46:d0:82:28: 9d:e9:22:0c:55:f4:d5:ad:b4:ad:5e:9d:3e:b5:2c: 41:20:73:cb:d3:cf:98:a9:78:73:51:0a:d5:2b:4b: 17:0c:4a:e4:37:10:b1:0a:94:50:7e:62:27:6d:56: 1d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B8:C6:91:31:FC:92:7E:1C:1B:5D:CB:DF:6F:0E:27:75:5A:4D:BA X509v3 Authority Key Identifier: keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:0c:5c:a6:60:4c:54:5d:9a:04:c3:61:ce:a9:6d:51:37:2c: b4:7e:ea:0a:00:78:0a:ae:27:96:dc:f1:a8:75:0f:ea:a5:62: 44:e6:52:20:5a:80:86:40:7e:1b:d4:bb:3e:df:fc:ab:28:63: 0e:bf:b2:74:ce:9a:f0:51:be:fc:7f:05:97:4a:59:c1:85:39: 87:c5:eb:b2:ed:24:a1:d4:d4:84:f8:17:a3:a7:3e:86:87:50: 13:94:95:8a:4a:2d:14:5a:a6:c4:c6:03:00:29:2c:53:2e:02: 10:81:54:cc:fe:bd:4f:84:6d:66:b9:3b:a9:73:0b:9c:c5:01: be:24:28:26:67:6d:27:80:b0:45:4b:58:bf:1d:5c:7b:97:7c: 1e:cb:93:62:2b:0f:33:cd:22:cd:99:a0:5f:d8:68:8f:58:41: ed:78:e0:35:cd:6c:67:5b:6b:72:99:4b:4e:11:c5:aa:df:0d: f9:e5:b2:24:c4:fb:c9:e9:8c:68:82:b7:84:17:1e:14:c4:d7: 71:3a:0a:59:5a:f4:d3:80:a5:ed:b4:9f:60:81:7e:87:90:f7: 6c:73:25:f1:35:41:9f:c2:53:79:b3:6b:26:13:2a:db:f1:c8: ca:ad:4b:8f:25:6b:e0:2d:f9:c0:b6:cc:b3:2a:5e:99:e2:23: c0:86:0d:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2 MUI2RDM4M0IwHhcNMjQwNDI0MjIxNjQ5WhcNMjQwNTAxMjIxNjQ5WjAYMRYwFAYD VQQDEw02NjI5ODRkMS04ZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsX+7Eago9Ys0doIciRv81mG9gEZuX5DhSRhpAUM8i25j/cfC5qGVazMBE6/ NI0VsGjlzI1bFnYaawYRFOTBuCmfL8QxT/KjpfZPxnWUDOR9lwY7Yz4W4q548CBz RjYnBLpzAzT4lDL0Fw9NYrbkCOJeCFXtTZPu2Mpw4ZRltZLgzbLsxLKyTDj33vq3 IoSxMGV8m5MO5q8Hz13hHZ4qHswkMktP1gN8Czr3OTffbkgRNAJdTcF8QH4XrhOE X6L8fuUBGDGjZkZZ0UPXIUbQgiid6SIMVfTVrbStXp0+tSxBIHPL08+YqXhzUQrV K0sXDErkNxCxCpRQfmInbVYdfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHS4xpEx /JJ+HBtdy99vDid1Wk26MB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkNFMi82MTgwQzBBMkNENkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2 aVZ2SFZ0YkRHaDVodHRPRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgDFymYExUXZoEw2HOqW1RNyy0fuoKAHgKrieW3PGodQ/qpWJE5lIg WoCGQH4b1Ls+3/yrKGMOv7J0zprwUb78fwWXSlnBhTmHxeuy7SSh1NSE+Bejpz6G h1ATlJWKSi0UWqbExgMAKSxTLgIQgVTM/r1PhG1muTupcwucxQG+JCgmZ20ngLBF S1i/HVx7l3wey5NiKw8zzSLNmaBf2GiPWEHteOA1zWxnW2tymUtOEcWq3w355bIk xPvJ6YxogreEFx4UxNdxOgpZWvTTgKXttJ9ggX6HkPdscyXxNUGfwlN5s2smEyrb 8cjKrUuPJWvgLfnAtsyzKl6Z4iPAhg3P -----END CERTIFICATE-----Generated at Thu Apr 25 00:31:19 2024 by rpki-client on console-fra.rpki-client.org