$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: 0DxtRhyKc06FPuz7ayvEcpiQ49+II9v+sxkisv1omGc= Subject key identifier: 23:B9:0A:CC:32:C6:94:F1:1A:62:30:C0:EE:D2:58:B9:F5:32:BD:85 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0201 Signing time: Tue 07 May 2024 04:15:07 +0000 Manifest this update: Tue 07 May 2024 04:15:06 +0000 Manifest next update: Tue 14 May 2024 04:15:06 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: kfvPHc6LUw2oCF8Tyw0bdl8/jI5jrHyzdrolgBY0rAA=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: XUM4zyewzp+dSX8qEqQi2V3V08D5i4DwBZ7GbcwoUPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:15:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: May 7 04:15:06 2024 GMT Not After : May 14 04:15:06 2024 GMT Subject: CN=6639aaca-292f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:27:54:b3:a5:af:d9:d1:a5:e2:40:0c:1e:d3: 6c:1b:41:c6:9c:53:f8:2b:19:c3:38:bc:5e:72:55: 9e:6d:18:a6:7f:6d:c9:58:61:c7:3d:91:70:62:e3: 16:1d:3b:a5:8f:7a:cf:5e:fc:61:db:4f:85:b5:fb: 22:29:8b:a1:83:c3:2a:ef:a3:1a:54:31:ae:14:ce: 1e:a5:0e:3e:d4:c8:ce:42:cf:55:34:87:1c:fb:d2: 58:37:b9:10:3a:78:6e:c4:18:e9:43:a4:f8:7d:c8: ec:36:95:36:32:71:9d:1b:e9:a4:22:18:bb:eb:1e: 12:3a:8a:21:a4:e9:96:42:f5:80:a3:fe:f4:03:69: 66:8e:6a:2b:75:dd:f6:82:44:de:7b:7d:a5:28:a7: f6:35:e1:62:c7:b9:3b:16:ed:c7:4b:72:34:6b:25: ed:e3:a1:8d:54:91:04:96:5d:8b:fd:3e:ee:31:a9: d5:08:fe:ff:09:69:fa:fc:fb:2e:43:2b:8e:8c:35: 55:d8:ae:35:2a:51:6d:d0:40:f3:2f:53:9b:49:f9: f0:7e:c9:f8:6b:36:96:83:9b:91:46:89:c2:c3:26: 02:ef:7d:05:11:c5:d2:e3:fd:2f:8c:22:c6:89:a5: 25:f9:13:2c:14:7f:3b:ce:5c:dc:ef:fd:31:c5:28: f1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B9:0A:CC:32:C6:94:F1:1A:62:30:C0:EE:D2:58:B9:F5:32:BD:85 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:c4:9a:c0:af:c0:80:cf:58:9d:b8:65:6c:dc:72:22:12:f7: a0:03:95:3a:52:16:18:25:8b:d5:35:f2:15:83:e4:81:4a:9a: 29:4c:08:1e:73:ca:3e:40:cd:d2:4a:cd:f1:4a:dd:24:90:95: 8c:75:b0:70:10:dd:56:29:39:fd:b6:8d:85:d1:7c:be:98:ca: b5:bd:48:58:66:9b:4b:5d:3c:ff:56:bf:a6:f9:2b:f9:b8:e2: df:80:3e:cd:db:4a:76:f7:04:b0:4c:c7:7a:78:a2:63:fb:eb: 28:70:ca:04:d0:11:c8:7c:f0:32:c8:1a:d6:77:fd:a4:e6:d2: 80:42:ec:cf:c3:4d:8e:bf:e7:78:81:e3:ca:2a:76:05:1f:e2: c7:d3:c7:44:0b:95:0e:c5:6e:de:56:aa:1e:89:65:1b:ae:ce: 56:27:b5:e2:6d:d2:a9:4c:7f:ab:ed:00:de:13:20:63:96:85: 39:cc:c5:89:fd:47:6f:6b:33:cc:50:fa:7f:f4:73:82:75:f0: d4:66:df:df:d5:00:1b:db:ec:cd:88:e0:05:56:49:25:bd:17: dc:44:d5:fb:74:db:00:1f:3b:2f:b3:aa:1b:f5:30:69:2f:bc: 61:c5:17:83:cf:b0:68:b5:dd:ef:d2:c2:8b:62:02:6a:2e:52: 19:5b:b8:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjQwNTA3MDQxNTA2WhcNMjQwNTE0MDQxNTA2WjAYMRYwFAYD VQQDEw02NjM5YWFjYS0yOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7idUs6Wv2dGl4kAMHtNsG0HGnFP4KxnDOLxeclWebRimf23JWGHHPZFwYuMW HTulj3rPXvxh20+FtfsiKYuhg8Mq76MaVDGuFM4epQ4+1MjOQs9VNIcc+9JYN7kQ OnhuxBjpQ6T4fcjsNpU2MnGdG+mkIhi76x4SOoohpOmWQvWAo/70A2lmjmordd32 gkTee32lKKf2NeFix7k7Fu3HS3I0ayXt46GNVJEEll2L/T7uManVCP7/CWn6/Psu QyuOjDVV2K41KlFt0EDzL1ObSfnwfsn4azaWg5uRRonCwyYC730FEcXS4/0vjCLG iaUl+RMsFH87zlzc7/0xxSjxDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCO5Cswy xpTxGmIwwO7SWLn1Mr2FMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABxJrAr8CAz1iduGVs3HIiEvegA5U6UhYYJYvVNfIVg+SBSpopTAge c8o+QM3SSs3xSt0kkJWMdbBwEN1WKTn9to2F0Xy+mMq1vUhYZptLXTz/Vr+m+Sv5 uOLfgD7N20p29wSwTMd6eKJj++socMoE0BHIfPAyyBrWd/2k5tKAQuzPw02Ov+d4 gePKKnYFH+LH08dEC5UOxW7eVqoeiWUbrs5WJ7XibdKpTH+r7QDeEyBjloU5zMWJ /UdvazPMUPp/9HOCdfDUZt/f1QAb2+zNiOAFVkklvRfcRNX7dNsAHzsvs6ob9TBp L7xhxReDz7Botd3v0sKLYgJqLlIZW7jO -----END CERTIFICATE-----Generated at Tue May 7 05:40:29 2024 by rpki-client on console-fra.rpki-client.org