$ rpki-client -vvf rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft File: EclyfKUpLOXaXXC6iCvC1kP0EIU.mft (raw, json) Hash identifier: xNnX8ZPfP/LpYYBYtw7r+IIu3vYfYFdYQIxgTghKHjc= Subject key identifier: 97:02:6E:3D:34:D3:3C:1E:75:7D:4E:5A:56:4F:68:21:17:5F:78:BF Authority key identifier: 11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 Certificate issuer: /CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Certificate serial: 0804 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft Manifest number: 07F7 Signing time: Sat 18 May 2024 21:55:17 +0000 Manifest this update: Sat 18 May 2024 21:55:16 +0000 Manifest next update: Sat 25 May 2024 21:55:16 +0000 Files and hashes: 1: EclyfKUpLOXaXXC6iCvC1kP0EIU.crl (hash: 0nZvfx/D5HPG4U2ek80/D2ZeHwyVafwpKhQnY8W855Q=) 2: C2D236E6B70E11EAAE6CE049C4F9AE02.roa (hash: Y47apNgOzJ6xhPSgejM+cnUgXuOKmmkEQCObfhcCUEc=) 3: 3AD34AA4B66F11EAAA29FB47C4F9AE02.roa (hash: EQkdIXE9oGGaOVDVqrl5JyY1I+BIM2lR/j5wezDZbyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Validity Not Before: May 18 21:55:16 2024 GMT Not After : May 25 21:55:16 2024 GMT Subject: CN=664923c5-33f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:97:a4:c1:1e:5f:f8:02:39:cb:de:49:56:d8: 8b:1c:8b:e9:c0:77:4d:df:df:9e:ee:ef:7a:67:16: d2:d5:c6:c8:8b:a1:25:d5:d8:4c:76:0d:f9:cb:ef: aa:28:33:bf:2f:d4:5d:01:4b:b4:56:1b:61:a1:c6: 27:34:3b:28:18:cd:8b:b9:97:6b:3a:e0:07:87:01: d0:ee:6a:b1:60:1b:09:0c:c5:7a:ff:4b:24:59:4b: 83:88:e1:7a:16:d8:a0:92:de:0b:59:f1:61:c9:d9: 97:2a:9c:0f:c4:90:b6:03:e8:fe:99:3d:77:af:ad: 40:e4:66:06:79:be:47:9a:35:4d:c9:38:d3:8e:00: 34:77:3c:68:0d:31:58:6a:56:76:e8:d3:01:ce:71: 81:60:fd:bb:fd:d0:e9:19:4d:23:13:9a:a4:e2:c7: bc:ae:b9:d3:75:44:5d:46:ab:ec:e5:b0:00:93:4e: 20:5f:be:cb:51:d5:56:e8:36:f9:8a:9e:4b:83:76: 28:0c:7c:51:55:8c:77:22:07:1b:d2:40:db:45:81: e9:bb:1a:22:49:f1:1e:a6:3b:67:f0:8e:76:9a:0b: 7d:aa:aa:38:53:53:76:ae:34:04:eb:ff:06:14:fd: 89:68:1f:36:8b:61:bf:6d:94:60:80:3f:80:c0:cf: b7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:02:6E:3D:34:D3:3C:1E:75:7D:4E:5A:56:4F:68:21:17:5F:78:BF X509v3 Authority Key Identifier: keyid:11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:8d:fb:93:4f:66:e6:ce:1b:00:48:cc:50:ce:b3:cc:0d:b3: dd:2e:44:24:02:73:e3:6a:bf:2c:f9:82:bd:dd:f4:44:62:a9: 55:0b:12:b3:29:67:80:a7:21:51:54:90:34:f7:82:24:9f:69: 8e:fa:64:3f:8e:32:14:d1:93:e4:be:7e:f4:70:a3:a5:89:df: d3:6a:6b:52:15:7b:bf:16:2f:22:be:fe:26:6c:46:ab:6f:5e: ac:29:d7:4f:11:35:9e:82:3a:a6:5e:82:49:1c:9e:94:76:72: 05:47:fc:bf:68:de:57:4f:21:89:d0:3d:74:8d:cc:79:a0:87: 12:e5:f3:47:cc:36:7c:b9:17:6f:bf:4d:4a:84:ec:b4:d7:16: 65:00:8f:ad:0d:0f:41:20:ef:13:3d:89:ea:e9:19:63:e2:44: 01:77:55:c3:fc:c3:72:4c:9f:92:59:18:b2:8d:14:a5:e4:94: 58:32:01:f7:b8:9b:fb:44:db:f3:98:d6:68:ab:cf:ab:38:8a: 9b:b8:86:08:af:96:9f:e9:a3:05:eb:cc:f9:a5:78:ca:12:83: ec:15:21:46:8a:35:0c:37:d5:4d:d7:b9:bf:42:a2:c3:22:b9: 3c:1d:ac:8b:e0:35:57:be:4e:b1:c8:85:53:31:70:ef:48:d7: 67:a5:a4:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg0OUQxMTAvBgNVBAUTKDExQzk3MjdDQTUyOTJDRTVEQTVENzBCQTg4MkJDMkQ2 NDNGNDEwODUwHhcNMjQwNTE4MjE1NTE2WhcNMjQwNTI1MjE1NTE2WjAYMRYwFAYD VQQDEw02NjQ5MjNjNS0zM2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJekwR5f+AI5y95JVtiLHIvpwHdN39+e7u96ZxbS1cbIi6El1dhMdg35y++q KDO/L9RdAUu0VhthocYnNDsoGM2LuZdrOuAHhwHQ7mqxYBsJDMV6/0skWUuDiOF6 Ftigkt4LWfFhydmXKpwPxJC2A+j+mT13r61A5GYGeb5HmjVNyTjTjgA0dzxoDTFY alZ26NMBznGBYP27/dDpGU0jE5qk4se8rrnTdURdRqvs5bAAk04gX77LUdVW6Db5 ip5Lg3YoDHxRVYx3Igcb0kDbRYHpuxoiSfEepjtn8I52mgt9qqo4U1N2rjQE6/8G FP2JaB82i2G/bZRggD+AwM+3VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcCbj00 0zwedX1OWlZPaCEXX3i/MB8GA1UdIwQYMBaAFBHJcnylKSzl2l1wuogrwtZD9BCF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODQ5RC80NDFBNzI2NEI2 NkUxMUVBOUIwODcyNDdDNEY5QUUwMi9FY2x5ZktVcExPWGFYWEM2aUN2QzFrUDBF SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VjbHlmS1VwTE9YYVhYQzZpQ3ZDMWtQMEVJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODQ5RC80NDFBNzI2NEI2NkUxMUVBOUIwODcyNDdDNEY5QUUwMi9FY2x5ZktVcExP WGFYWEM2aUN2QzFrUDBFSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRjfuTT2bmzhsASMxQzrPMDbPdLkQkAnPjar8s+YK93fREYqlVCxKz KWeApyFRVJA094Ikn2mO+mQ/jjIU0ZPkvn70cKOlid/TamtSFXu/Fi8ivv4mbEar b16sKddPETWegjqmXoJJHJ6UdnIFR/y/aN5XTyGJ0D10jcx5oIcS5fNHzDZ8uRdv v01KhOy01xZlAI+tDQ9BIO8TPYnq6Rlj4kQBd1XD/MNyTJ+SWRiyjRSl5JRYMgH3 uJv7RNvzmNZoq8+rOIqbuIYIr5af6aMF68z5pXjKEoPsFSFGijUMN9VN17m/QqLD Irk8HayL4DVXvk6xyIVTMXDvSNdnpaTx -----END CERTIFICATE-----Generated at Sat May 18 22:27:53 2024 by rpki-client on console-ams.rpki-client.org