$ rpki-client -vvf rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft File: 4RvPp2LU9ssvatCdA6lA4P6qAfg.mft (raw, json) Hash identifier: hAP6mY7V036qmabeUuMIFwQIZ1owpF755u3scwC6KBs= Subject key identifier: 34:44:EC:78:2E:24:C3:94:91:83:EB:CA:C9:84:BC:44:46:69:F0:FD Authority key identifier: E1:1B:CF:A7:62:D4:F6:CB:2F:6A:D0:9D:03:A9:40:E0:FE:AA:01:F8 Certificate issuer: /CN=A91200F5/serialNumber=E11BCFA762D4F6CB2F6AD09D03A940E0FEAA01F8 Certificate serial: 1E1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft Manifest number: 1E16 Signing time: Sat 18 May 2024 16:26:23 +0000 Manifest this update: Sat 18 May 2024 16:26:22 +0000 Manifest next update: Sat 25 May 2024 16:26:22 +0000 Files and hashes: 1: 4RvPp2LU9ssvatCdA6lA4P6qAfg.crl (hash: /SRDsDkf4cwdNVO4uIibHlHx7HrZ/zicohYfZ2XOlOs=) 2: DB92DE200AEF11ECB7243C0FC4F9AE02.roa (hash: CB1eekjTDQ9QiOipedsLBe3aoXdOQXADQNZiMtdPABM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.crl rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7708 (0x1e1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91200F5/serialNumber=E11BCFA762D4F6CB2F6AD09D03A940E0FEAA01F8 Validity Not Before: May 18 16:26:22 2024 GMT Not After : May 25 16:26:22 2024 GMT Subject: CN=6648d6af-5d70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:05:32:98:5b:8a:46:f5:06:fd:3c:fd:7b:57: 2b:f3:64:dc:12:ff:85:0d:2d:23:59:1e:b8:66:8b: 31:36:7b:f3:50:63:16:3d:5d:13:53:43:60:39:63: 7d:d6:bc:f9:a6:84:f3:48:63:bd:6b:f6:82:36:a0: 72:44:10:72:97:d6:37:57:2d:17:f6:15:24:03:3c: 65:75:ff:fe:f8:92:29:35:b7:e5:43:2f:f6:69:29: e9:00:6b:cd:20:50:2c:eb:88:ce:13:46:89:6b:40: 74:d9:b2:10:49:b9:2d:d5:42:e2:72:3a:a8:db:a3: 0e:25:af:b7:c6:ef:05:bc:14:4a:fb:bd:32:3b:aa: eb:c2:32:5c:4c:9b:a7:d3:85:9b:48:61:23:dd:1f: c8:08:c6:c5:b2:40:3b:55:51:23:f3:96:b3:be:75: 7f:fd:a4:73:b5:6f:13:9f:a9:8e:94:10:95:3c:e7: 3e:31:6e:b6:5a:f1:e4:93:6f:e4:11:c7:e6:66:96: 92:c0:fb:67:7b:7b:31:1d:7b:ba:17:9b:23:10:fb: 74:01:d4:16:9b:59:fa:04:8f:0e:61:7a:e3:87:e5: 5b:15:8a:de:32:38:b0:a1:a5:9e:6f:7e:06:73:a7: 9a:cd:46:c6:34:c7:11:40:ab:c6:ff:f8:70:f1:61: 88:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:44:EC:78:2E:24:C3:94:91:83:EB:CA:C9:84:BC:44:46:69:F0:FD X509v3 Authority Key Identifier: keyid:E1:1B:CF:A7:62:D4:F6:CB:2F:6A:D0:9D:03:A9:40:E0:FE:AA:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:2e:4f:9d:f6:de:b1:fb:e5:d8:38:00:15:60:53:87:4a:38: 07:cb:df:42:67:0a:a4:5d:80:65:64:90:11:38:39:0c:8a:32: 55:c3:37:15:4b:7b:f2:a0:a8:b1:52:27:dc:f9:27:d6:d5:78: 27:03:55:af:aa:e3:5d:5a:65:73:c0:eb:51:2c:f0:04:45:3d: 68:35:3a:b8:52:92:6e:73:b9:ca:38:0b:0c:96:b5:3c:c2:f5: a8:17:8d:7d:bd:c4:8c:db:22:19:2e:47:95:3f:b0:33:ae:a4: 7b:c3:be:55:47:2d:d8:ec:a2:32:3c:03:33:6c:61:2d:ca:0f: a6:a8:80:9b:05:32:d6:e4:73:69:b9:de:30:33:6b:44:40:b9: 29:a5:13:e8:3f:2d:93:57:a0:27:76:74:21:e1:ee:03:f2:df: 6b:9e:98:7f:13:96:53:1b:15:fc:97:0b:1c:ba:ac:00:0e:d7: 1e:9e:14:a2:28:ce:b4:62:70:36:76:5c:d9:73:af:f4:84:26: 63:69:9e:a2:81:75:35:39:5a:6d:18:1a:8c:05:53:94:fe:64: f4:44:79:46:a6:4e:f9:da:f9:55:e6:de:80:7f:c7:33:48:78: 0a:45:bb:75:18:0d:4c:41:e6:30:3e:27:5d:0f:86:f7:c3:41: 0b:56:2c:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAwRjUxMTAvBgNVBAUTKEUxMUJDRkE3NjJENEY2Q0IyRjZBRDA5RDAzQTk0MEUw RkVBQTAxRjgwHhcNMjQwNTE4MTYyNjIyWhcNMjQwNTI1MTYyNjIyWjAYMRYwFAYD VQQDEw02NjQ4ZDZhZi01ZDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAUymFuKRvUG/Tz9e1cr82TcEv+FDS0jWR64ZosxNnvzUGMWPV0TU0NgOWN9 1rz5poTzSGO9a/aCNqByRBByl9Y3Vy0X9hUkAzxldf/++JIpNbflQy/2aSnpAGvN IFAs64jOE0aJa0B02bIQSbkt1ULicjqo26MOJa+3xu8FvBRK+70yO6rrwjJcTJun 04WbSGEj3R/ICMbFskA7VVEj85azvnV//aRztW8Tn6mOlBCVPOc+MW62WvHkk2/k EcfmZpaSwPtne3sxHXu6F5sjEPt0AdQWm1n6BI8OYXrjh+VbFYreMjiwoaWeb34G c6eazUbGNMcRQKvG//hw8WGIfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRE7Hgu JMOUkYPrysmEvERGafD9MB8GA1UdIwQYMBaAFOEbz6di1PbLL2rQnQOpQOD+qgH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDBGNS9EOUU5NTJGNDVF RjQxMUU2OUY1MjlDMkVDNEY5QUUwMi80UnZQcDJMVTlzc3ZhdENkQTZsQTRQNnFB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSdlBwMkxVOXNzdmF0Q2RBNmxBNFA2cUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDBGNS9EOUU5NTJGNDVFRjQxMUU2OUY1MjlDMkVDNEY5QUUwMi80UnZQcDJMVTlz c3ZhdENkQTZsQTRQNnFBZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApLk+d9t6x++XYOAAVYFOHSjgHy99CZwqkXYBlZJARODkMijJVwzcV S3vyoKixUifc+SfW1XgnA1WvquNdWmVzwOtRLPAERT1oNTq4UpJuc7nKOAsMlrU8 wvWoF419vcSM2yIZLkeVP7AzrqR7w75VRy3Y7KIyPAMzbGEtyg+mqICbBTLW5HNp ud4wM2tEQLkppRPoPy2TV6AndnQh4e4D8t9rnph/E5ZTGxX8lwscuqwADtcenhSi KM60YnA2dlzZc6/0hCZjaZ6igXU1OVptGBqMBVOU/mT0RHlGpk752vlV5t6Af8cz SHgKRbt1GA1MQeYwPiddD4b3w0ELViyU -----END CERTIFICATE-----Generated at Sat May 18 17:20:03 2024 by rpki-client on console-ams.rpki-client.org