$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: kJPU+7wwFxrZ8xJ0iA/Sz8ai0AkjL9kfcPnvDwHzeEs= Subject key identifier: 84:7F:79:87:0F:55:0A:CF:F7:F7:48:F5:FB:3E:BB:D3:67:73:87:48 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: F7 Signing time: Sat 01 Jun 2024 07:02:54 +0000 Manifest this update: Sat 01 Jun 2024 07:02:53 +0000 Manifest next update: Sat 08 Jun 2024 07:02:53 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: z2kY6kgFnyIYS0GEfXjurCEXcs3GbRi6npsqFwLMll0=) 2: B1335F1AC56A11ED9C305A33C4F9AE02.roa (hash: 89tg93/qvyRfNlsV5jj75ONUo2PDbucb+SsFfLo6D58=) 3: F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa (hash: XWjLFsGDfe+yx8HJSv7/TrbqDPkINeE4w88NW6FVyf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Jun 1 07:02:53 2024 GMT Not After : Jun 8 07:02:53 2024 GMT Subject: CN=665ac79d-0a04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ba:9f:25:9e:f5:b2:77:e6:a0:23:2e:35:5a: bd:01:5d:e1:7f:86:3f:35:8f:5b:11:99:e5:ed:a7: e5:0a:d2:34:bd:e3:c8:f0:92:e2:8d:94:32:92:95: 87:9f:4a:d6:30:b7:9f:42:a5:d1:7f:9e:62:66:9c: b3:ff:13:9d:ec:e2:eb:5d:3c:d5:db:5c:08:5a:69: af:59:32:30:a0:63:f8:f0:84:16:3f:9e:bd:1a:34: 08:37:be:a4:3a:ae:58:8e:74:d7:d8:4c:3e:74:e6: c1:f5:d0:1e:22:a9:b2:ec:db:18:2f:16:98:e5:6c: 94:aa:9d:0e:d8:79:36:87:cb:59:b4:2e:c9:31:de: f5:2c:35:af:80:06:70:6b:21:12:4c:94:ca:93:69: a1:b7:51:03:9b:81:d4:07:f5:e9:fa:5c:64:4b:7c: 2b:30:65:16:8e:f7:be:85:16:75:2a:65:82:58:aa: 97:b8:0e:18:87:dd:b3:d9:bb:d4:3e:b2:32:62:22: fe:ab:1d:b5:19:19:81:2b:4f:37:77:f5:6f:ef:4a: 49:f0:b6:69:10:4e:a1:69:f6:9f:6a:dc:1d:4e:6c: 37:e7:15:3d:c8:be:e5:7c:74:9a:a8:ba:7d:c3:6c: 8c:d1:04:41:00:2c:15:d4:35:51:e2:11:11:b0:d3: c7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:7F:79:87:0F:55:0A:CF:F7:F7:48:F5:FB:3E:BB:D3:67:73:87:48 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:b0:c7:f8:40:cd:32:92:01:b3:81:13:c5:ef:d9:4a:9e:2f: 6c:61:4b:c0:3a:5a:55:53:6e:ca:55:5b:04:34:f4:43:ba:1c: d2:a4:e9:ea:3f:d0:d3:74:ac:db:c9:9f:cc:cc:2b:e1:0e:e9: 3f:f5:9a:05:9c:61:26:87:d3:23:de:13:e4:51:e6:5d:3a:56: 8f:0e:26:2e:48:f7:ba:57:3f:ae:02:38:db:92:f5:9b:0e:8a: 65:43:6b:20:18:b4:d7:c6:aa:2f:4f:7c:bc:42:67:42:fd:b9: f1:a4:8b:6b:ea:13:6b:24:01:ce:a5:3f:74:81:3e:d6:e4:f0: b7:89:1f:0c:ec:50:2a:88:be:7c:f6:5a:19:37:f1:e2:33:95: 42:d5:1e:96:85:09:84:45:7a:87:4e:2c:c4:ff:b1:60:9d:c1: 24:34:30:18:b7:2d:a2:ff:8d:95:8d:54:5d:a6:88:d9:d3:d7: bb:42:37:f9:0a:8a:e6:2c:28:2c:82:bc:64:f4:0a:60:f9:fa: e8:cd:de:45:23:a5:41:68:29:54:59:93:24:19:fc:c9:8b:a4: 6f:c6:cf:84:d0:1f:19:0e:d3:dd:68:c1:b1:4f:84:a5:43:90: 00:65:b5:bb:6c:7c:43:23:2d:11:f8:43:88:72:a0:ad:95:14: 88:74:bc:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjQwNjAxMDcwMjUzWhcNMjQwNjA4MDcwMjUzWjAYMRYwFAYD VQQDEw02NjVhYzc5ZC0wYTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7qfJZ71snfmoCMuNVq9AV3hf4Y/NY9bEZnl7aflCtI0vePI8JLijZQykpWH n0rWMLefQqXRf55iZpyz/xOd7OLrXTzV21wIWmmvWTIwoGP48IQWP569GjQIN76k Oq5YjnTX2Ew+dObB9dAeIqmy7NsYLxaY5WyUqp0O2Hk2h8tZtC7JMd71LDWvgAZw ayESTJTKk2mht1EDm4HUB/Xp+lxkS3wrMGUWjve+hRZ1KmWCWKqXuA4Yh92z2bvU PrIyYiL+qx21GRmBK083d/Vv70pJ8LZpEE6hafafatwdTmw35xU9yL7lfHSaqLp9 w2yM0QRBACwV1DVR4hERsNPHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIR/eYcP VQrP9/dI9fs+u9Nnc4dIMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnsMf4QM0ykgGzgRPF79lKni9sYUvAOlpVU27KVVsENPRDuhzSpOnq P9DTdKzbyZ/MzCvhDuk/9ZoFnGEmh9Mj3hPkUeZdOlaPDiYuSPe6Vz+uAjjbkvWb DoplQ2sgGLTXxqovT3y8QmdC/bnxpItr6hNrJAHOpT90gT7W5PC3iR8M7FAqiL58 9loZN/HiM5VC1R6WhQmERXqHTizE/7FgncEkNDAYty2i/42VjVRdpojZ09e7Qjf5 CormLCgsgrxk9Apg+frozd5FI6VBaClUWZMkGfzJi6Rvxs+E0B8ZDtPdaMGxT4Sl Q5AAZbW7bHxDIy0R+EOIcqCtlRSIdLyt -----END CERTIFICATE-----Generated at Sat Jun 1 08:15:54 2024 by rpki-client on console-ams.rpki-client.org