$ rpki-client -vvf rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft File: Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft (raw, json) Hash identifier: 04ihiLrxhRK67ijVuKXX+Tu3fRe88nW3gev4Nw5R5OE= Subject key identifier: 53:EB:D7:7C:6E:CA:A9:52:E3:4D:C7:55:F4:FC:E4:61:62:1C:A2:47 Authority key identifier: 2E:8C:BB:8C:26:00:C6:A0:98:C9:58:B9:64:C3:2D:CB:18:B8:03:5C Certificate issuer: /CN=A911E9B6/serialNumber=2E8CBB8C2600C6A098C958B964C32DCB18B8035C Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft Manifest number: 0111 Signing time: Sun 19 May 2024 05:30:35 +0000 Manifest this update: Sun 19 May 2024 05:30:35 +0000 Manifest next update: Sun 26 May 2024 05:30:35 +0000 Files and hashes: 1: Loy7jCYAxqCYyVi5ZMMtyxi4A1w.crl (hash: JAJTHMCI7UTRsxIrzuMXNHLGQ3YTEwC+y53cmlaqR2w=) 2: C3E640EE917811ED904ACF83C4F9AE02.roa (hash: A4+/CvAq5mHbP+AOxvkMWdzg7e9oQgnalc06bQnNQUQ=) 3: E260EBC4914011EDABD5F778C4F9AE02.roa (hash: pU/elbUoh0j8PH6/VL9mrY9wNAYpdaUxohsajY0Nvj0=) 4: E1D3A69C914011EDABD5F778C4F9AE02.roa (hash: JgPeqKU4xsklT076cCsBqaFdVoT5w8sKgLYiNf2MyxI=) 5: 7606086E914611ED8DE00A16C4F9AE02.roa (hash: 9yOQAKhFaTfuZqQNPZxR2Z+NGc7nsKwzw6QMxaKVE/0=) 6: E07C4E34914011EDABD5F778C4F9AE02.roa (hash: ebvqHzeRlbm2q/dYQIXv+KTaJC9u2MXvSXJ+lCKaLew=) 7: E137AAE4914011EDABD5F778C4F9AE02.roa (hash: pq/apOOz1IhPtAtHKhRZyj8F3MjedPS9nKhqg3OZNL4=) 8: C3481400917811ED904ACF83C4F9AE02.roa (hash: G57w3BY+oamoZrS5obrZv6SV9BGixuS9Eocll81oryM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.crl rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E9B6/serialNumber=2E8CBB8C2600C6A098C958B964C32DCB18B8035C Validity Not Before: May 19 05:30:35 2024 GMT Not After : May 26 05:30:35 2024 GMT Subject: CN=66498e7b-1757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8e:f8:83:2b:96:fa:15:06:ae:ac:27:a0:85: a0:6f:13:55:fd:04:76:13:ba:eb:46:32:42:2f:3e: e0:1e:65:65:de:fb:17:5b:64:ef:fc:56:84:72:b4: 6b:38:22:94:00:ee:31:34:6e:4d:aa:a2:cb:26:d9: 93:33:62:ff:07:f8:44:5f:24:75:ad:c8:2c:35:d2: 7e:ae:7e:3c:37:c1:4b:05:cc:46:e6:38:37:71:b5: d6:5e:3b:30:86:4c:10:ee:a9:02:24:a4:52:be:69: 99:65:0a:f0:9d:19:96:a7:ec:37:ab:7c:7d:f8:9a: 25:bf:81:21:d9:d4:0b:cb:78:ad:5f:42:04:58:28: 63:43:f4:9d:a0:7b:db:bf:ed:8e:e8:93:52:7f:dd: c6:06:82:ca:a6:a9:74:ba:2c:76:43:04:66:95:cc: 57:07:81:6e:e1:01:95:8c:fd:92:66:a6:b3:ea:1c: 53:9f:2f:e9:46:69:fb:30:e5:8d:2b:7d:ab:5c:0b: ef:6b:f2:ca:dc:17:7a:98:5c:08:1b:0b:31:8c:0f: 73:57:d8:05:22:86:f1:6b:93:6d:15:1e:95:99:59: 2d:aa:d7:a1:4d:0a:0c:9b:8e:4e:03:a9:21:bf:fa: 2e:45:fa:df:67:a9:09:0d:a3:1c:e7:fb:1c:38:c3: 77:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:EB:D7:7C:6E:CA:A9:52:E3:4D:C7:55:F4:FC:E4:61:62:1C:A2:47 X509v3 Authority Key Identifier: keyid:2E:8C:BB:8C:26:00:C6:A0:98:C9:58:B9:64:C3:2D:CB:18:B8:03:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E9B6/7918CB0C7FF511ED9ED4641DC4F9AE02/Loy7jCYAxqCYyVi5ZMMtyxi4A1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:bf:a6:a0:1f:7e:8d:38:74:d9:8c:59:a4:82:bb:e3:85:c4: e7:5c:5a:fd:75:2f:c6:9e:d6:78:36:a5:c3:a5:71:8e:b9:78: b9:27:e5:a8:df:3a:c6:cd:b4:b6:e2:43:6e:90:af:6e:a5:8b: 77:7d:b7:35:8b:57:79:8f:87:db:6c:eb:d5:c3:69:08:b7:f3: 39:a2:4a:eb:43:ad:d7:1c:98:e2:be:f4:86:8a:65:82:a3:b2: 8f:ec:e9:dc:7a:00:a6:21:7d:22:0d:d9:da:5a:ab:6d:cf:86: 50:52:d8:01:48:01:6a:2d:8b:85:bf:6b:6f:a3:ef:0d:74:a0: 55:97:2a:5e:53:e1:e8:70:9c:fc:b1:ce:f2:8c:e4:c0:ba:c0: df:0a:50:91:4f:80:05:3f:6e:ee:54:b7:0c:4b:d0:de:24:a3: f6:3a:a6:e2:5c:98:25:c7:0e:74:74:1a:69:8a:92:d6:dd:31: 0a:6f:eb:d9:74:38:7b:5a:a5:50:df:8c:59:0c:7f:ab:39:c1: c0:51:1a:9e:08:ca:d6:8e:b5:19:b2:5b:9b:4a:fe:84:b6:c5: e3:94:e4:78:b6:f3:53:40:3a:a1:8c:89:6a:26:56:3e:6f:9c: bd:8f:c3:1d:ec:3e:06:48:77:3f:9e:d2:6e:b8:54:d1:84:69: 2c:1b:35:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU5QjYxMTAvBgNVBAUTKDJFOENCQjhDMjYwMEM2QTA5OEM5NThCOTY0QzMyRENC MThCODAzNUMwHhcNMjQwNTE5MDUzMDM1WhcNMjQwNTI2MDUzMDM1WjAYMRYwFAYD VQQDEw02NjQ5OGU3Yi0xNzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Y74gyuW+hUGrqwnoIWgbxNV/QR2E7rrRjJCLz7gHmVl3vsXW2Tv/FaEcrRr OCKUAO4xNG5NqqLLJtmTM2L/B/hEXyR1rcgsNdJ+rn48N8FLBcxG5jg3cbXWXjsw hkwQ7qkCJKRSvmmZZQrwnRmWp+w3q3x9+Jolv4Eh2dQLy3itX0IEWChjQ/SdoHvb v+2O6JNSf93GBoLKpql0uix2QwRmlcxXB4Fu4QGVjP2SZqaz6hxTny/pRmn7MOWN K32rXAvva/LK3Bd6mFwIGwsxjA9zV9gFIobxa5NtFR6VmVktqtehTQoMm45OA6kh v/ouRfrfZ6kJDaMc5/scOMN35QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPr13xu yqlS403HVfT85GFiHKJHMB8GA1UdIwQYMBaAFC6Mu4wmAMagmMlYuWTDLcsYuANc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTlCNi83OTE4Q0IwQzdG RjUxMUVEOUVENDY0MURDNEY5QUUwMi9Mb3k3akNZQXhxQ1l5Vmk1Wk1NdHl4aTRB MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xveTdqQ1lBeHFDWXlWaTVaTU10eXhpNEExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTlCNi83OTE4Q0IwQzdGRjUxMUVEOUVENDY0MURDNEY5QUUwMi9Mb3k3akNZQXhx Q1l5Vmk1Wk1NdHl4aTRBMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAv6agH36NOHTZjFmkgrvjhcTnXFr9dS/GntZ4NqXDpXGOuXi5J+Wo 3zrGzbS24kNukK9upYt3fbc1i1d5j4fbbOvVw2kIt/M5okrrQ63XHJjivvSGimWC o7KP7OncegCmIX0iDdnaWqttz4ZQUtgBSAFqLYuFv2tvo+8NdKBVlypeU+HocJz8 sc7yjOTAusDfClCRT4AFP27uVLcMS9DeJKP2OqbiXJglxw50dBppipLW3TEKb+vZ dDh7WqVQ34xZDH+rOcHAURqeCMrWjrUZslubSv6EtsXjlOR4tvNTQDqhjIlqJlY+ b5y9j8Md7D4GSHc/ntJuuFTRhGksGzUa -----END CERTIFICATE-----Generated at Sun May 19 06:14:32 2024 by rpki-client on console-ams.rpki-client.org