$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: N2D+jRF9K0qbVOSPf9TlEnAwANZX5bBw0K/ttR0tamY= Subject key identifier: 03:32:84:97:85:65:76:D6:3E:18:9F:09:30:E8:7B:8F:4A:2A:1A:EB Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 78 Signing time: Wed 15 May 2024 07:26:26 +0000 Manifest this update: Wed 15 May 2024 07:26:26 +0000 Manifest next update: Wed 22 May 2024 07:26:26 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: ODZtdO7rcC6C7/rwmW1Im6xK13Nx0zl3wCuNsGoV9bQ=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: 7eEZBAm1RPGk1OcmIQskJIwX17dD4YtWqRHE4WyQ4kk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: May 15 07:26:26 2024 GMT Not After : May 22 07:26:26 2024 GMT Subject: CN=664463a2-8ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:66:4b:31:f2:0e:44:b9:ae:2f:8c:e2:3e:88: 10:35:52:6a:04:62:f1:dd:a2:24:4c:14:53:f7:82: 42:83:15:8b:f6:ab:8b:19:25:75:80:f2:a1:66:13: d7:3a:15:1d:00:99:89:cb:d9:69:c0:b0:f7:ea:67: 2e:ba:32:22:a5:25:ff:8a:c2:8e:92:25:8e:c1:66: 94:8e:ee:f2:89:8f:84:0a:0b:ed:24:29:b1:0a:f7: b0:c6:72:e9:d7:2b:5a:ef:6d:1c:84:98:35:ea:28: c7:69:86:5c:c9:f7:64:c3:8b:1e:9b:4a:82:ac:57: 5c:e9:89:12:57:8a:2b:23:96:a3:87:ff:c6:49:8d: 0d:46:43:aa:b9:93:bc:ec:81:bb:2f:1e:0d:14:0b: 19:fe:98:fb:68:83:16:6b:8c:3c:4f:7d:f0:06:36: 6a:43:a8:46:b4:a7:c5:b6:37:f7:95:dd:49:8e:76: e8:04:9b:63:9a:75:4f:e3:e2:61:7f:d4:9f:58:2e: 60:4c:a3:06:bf:6d:ef:d3:e3:30:ef:7c:b4:08:eb: aa:97:fa:7c:8c:a0:7a:a3:cb:32:21:d1:fe:f8:3d: 2e:1b:7b:0c:3d:b9:5f:47:a5:d9:bc:8a:5c:70:d9: 03:2f:10:e3:47:3e:f2:34:1c:e3:8f:9d:dc:7e:ca: 91:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:32:84:97:85:65:76:D6:3E:18:9F:09:30:E8:7B:8F:4A:2A:1A:EB X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:17:53:b6:03:e1:71:6e:30:c9:67:d3:70:c4:98:2a:ce:0a: c7:da:eb:95:90:95:de:24:23:17:a3:e8:f8:24:4d:48:39:30: ad:cb:5a:6b:51:28:01:d1:7a:85:0c:36:84:11:c7:50:31:98: 49:c6:a0:89:c5:fd:1d:f3:51:05:f2:0d:cc:8d:b3:f3:67:15: fe:d6:51:d6:27:fd:d5:11:a6:62:c4:ec:fc:7e:d1:b4:de:a1: 3a:dd:d7:c7:2b:a4:dc:22:c8:f2:7b:f5:69:52:9e:f2:56:73: 98:67:7e:ad:d1:1c:fa:f9:65:2a:b6:dc:4c:6d:30:cd:e5:10: dc:3a:1d:af:65:ac:ea:49:36:b0:01:8b:5c:03:d0:e8:82:ba: fe:8b:91:13:63:3d:79:67:8b:71:3d:a7:88:e2:3e:5a:95:b9: 6c:66:e7:43:22:cf:0f:c2:df:52:1e:9e:82:af:85:48:a8:e6: fb:64:1b:7f:15:a8:33:00:72:3e:b1:03:df:cf:63:49:66:0f: fc:38:bc:1d:0f:fe:ff:56:9e:9a:4f:b2:f6:cf:7c:55:41:8f: d4:09:e6:92:99:13:b1:c7:92:65:6f:9a:79:96:9f:f3:59:2d: 95:a4:b6:ad:e3:50:d9:fe:28:ad:c8:e2:be:da:a6:f2:e4:4e: e5:c4:d9:a0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0YzQzExMC8GA1UEBRMoNTQ2NEU0OUY1NjBFQzEwRDQ5NzZGNkUyOTYxMTNCQUYy MkE4Q0Y1RjAeFw0yNDA1MTUwNzI2MjZaFw0yNDA1MjIwNzI2MjZaMBgxFjAUBgNV BAMTDTY2NDQ2M2EyLThlYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkZksx8g5Eua4vjOI+iBA1UmoEYvHdoiRMFFP3gkKDFYv2q4sZJXWA8qFmE9c6 FR0AmYnL2WnAsPfqZy66MiKlJf+Kwo6SJY7BZpSO7vKJj4QKC+0kKbEK97DGcunX K1rvbRyEmDXqKMdphlzJ92TDix6bSoKsV1zpiRJXiisjlqOH/8ZJjQ1GQ6q5k7zs gbsvHg0UCxn+mPtogxZrjDxPffAGNmpDqEa0p8W2N/eV3UmOdugEm2OadU/j4mF/ 1J9YLmBMowa/be/T4zDvfLQI66qX+nyMoHqjyzIh0f74PS4beww9uV9Hpdm8ilxw 2QMvEONHPvI0HOOPndx+ypHBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAzKEl4Vl dtY+GJ8JMOh7j0oqGuswHwYDVR0jBBgwFoAUVGTkn1YOwQ1JdvbilhE7ryKoz18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRjNDLzk1NTEzQkE2NURD MTExRUU5ODk0OTkxQ0M0RjlBRTAyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3ox OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVkdUa24xWU93UTFKZHZiaWxoRTdyeUtvejE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RjNDLzk1NTEzQkE2NURDMTExRUU5ODk0OTkxQ0M0RjlBRTAyL1ZHVGtuMVlPd1Ex SmR2YmlsaEU3cnlLb3oxOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADYXU7YD4XFuMMln03DEmCrOCsfa65WQld4kIxej6PgkTUg5MK3LWmtR KAHReoUMNoQRx1AxmEnGoInF/R3zUQXyDcyNs/NnFf7WUdYn/dURpmLE7Px+0bTe oTrd18crpNwiyPJ79WlSnvJWc5hnfq3RHPr5ZSq23ExtMM3lENw6Ha9lrOpJNrAB i1wD0OiCuv6LkRNjPXlni3E9p4jiPlqVuWxm50Mizw/C31IenoKvhUio5vtkG38V qDMAcj6xA9/PY0lmD/w4vB0P/v9WnppPsvbPfFVBj9QJ5pKZE7HHkmVvmnmWn/NZ LZWktq3jUNn+KK3I4r7apvLkTuXE2aA= -----END CERTIFICATE-----Generated at Wed May 15 09:28:17 2024 by rpki-client on console-fra.rpki-client.org