$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: NYjSFGrq60e/iMgj6j8J/8d1M7Eih7RMyCkSTlzbzF0= Subject key identifier: 31:B3:D8:44:99:A1:38:12:3A:86:50:07:3D:5A:65:8B:BB:6A:AE:68 Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 10D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 10CA Signing time: Sat 18 May 2024 17:53:13 +0000 Manifest this update: Sat 18 May 2024 17:53:12 +0000 Manifest next update: Sat 25 May 2024 17:53:12 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: 7aXjX2iVgD4oIqce9A5waBmdjX1yRhIO/QYPAPbaOFY=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: SXDuy3cjJrsJ5Wcyy+xzu8jBQxpXFkylGcCMPDh81cQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4309 (0x10d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: May 18 17:53:12 2024 GMT Not After : May 25 17:53:12 2024 GMT Subject: CN=6648eb08-cc7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:90:7a:5e:1e:99:86:67:1c:1c:e6:a7:76:1c: e9:66:48:10:29:4b:71:ca:4e:a9:3b:5d:03:9c:a9: 20:89:84:12:56:77:4a:db:07:84:a9:44:dd:f5:b4: c0:7f:fb:0b:fe:1d:49:c8:d5:aa:5a:00:49:39:f6: e2:4e:07:c5:03:9b:a1:a8:f7:54:d8:f9:10:f5:1e: b4:c8:5e:50:5e:1a:6f:84:3a:6b:f0:0b:01:bd:e1: db:22:95:6c:5a:11:2c:e0:ff:3a:d9:56:8c:67:ab: 46:e8:7b:d7:67:0f:33:7c:0f:b0:71:e5:70:74:e6: 48:c2:20:26:af:ca:1b:da:d6:36:3c:4d:48:05:43: a8:d7:c3:3d:be:8f:98:88:0c:93:d8:6b:3b:15:cf: 6f:0c:2b:6f:51:9f:9c:dd:5f:f7:68:d0:ff:8e:43: 1a:e3:0a:b9:b3:af:a1:1c:a7:1d:98:22:8a:a2:f1: c0:f7:24:5b:77:b0:c9:31:01:41:63:32:e8:05:3f: 27:0f:3b:57:cf:d6:90:78:f4:10:2b:cd:7e:ae:a0: 98:d1:36:c7:af:07:57:91:f7:95:7a:56:0f:96:d1: 4c:8c:7c:c7:fc:c5:be:24:64:ce:cf:db:79:9f:76: bb:39:2a:5b:5a:89:d6:d2:5c:10:58:01:a1:b4:4c: c8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B3:D8:44:99:A1:38:12:3A:86:50:07:3D:5A:65:8B:BB:6A:AE:68 X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:80:7c:10:f1:6c:13:4f:37:74:8f:65:8b:43:7d:96:8f:f0: eb:83:50:f1:c6:a2:5b:b2:96:74:34:e8:30:96:cf:e9:e2:3f: 94:89:5b:e5:37:f2:2f:07:26:bb:e8:f2:ac:1a:8f:56:65:61: 46:68:97:4b:bc:f3:5f:6f:1a:8f:27:2d:27:9f:3b:d8:91:e7: cd:c4:63:eb:cc:a4:10:c8:ee:d4:b2:64:a9:e2:15:86:d2:00: 33:03:fb:cd:c6:3d:14:01:18:7c:31:f4:f0:71:fc:f6:a5:5f: 39:2f:49:85:90:1b:59:cb:b0:c5:5f:f7:75:83:7f:98:96:8d: 79:7b:98:49:ce:3d:c3:4a:7e:9a:e0:bb:ec:ce:5c:76:8a:21: 39:30:ef:07:3c:32:34:c5:9a:8f:03:83:4a:ed:32:30:83:72: 90:97:f0:7b:60:44:1b:db:54:90:79:5f:fe:d7:9c:5c:69:8e: 0a:3b:8d:da:b3:c9:9f:d8:12:07:e7:c6:8f:46:cf:0c:60:c0: 2c:95:79:e3:82:f9:af:e1:4a:df:ce:e3:43:69:83:ac:21:ac: 69:0f:d9:09:aa:35:8a:a7:3e:e6:b3:f7:f4:8e:58:10:6a:10: 86:ad:3f:ac:68:d5:5d:7d:98:00:3c:ea:99:29:bf:4c:e1:a1: 6e:f4:cd:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICENUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjQwNTE4MTc1MzEyWhcNMjQwNTI1MTc1MzEyWjAYMRYwFAYD VQQDEw02NjQ4ZWIwOC1jYzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pB6Xh6ZhmccHOandhzpZkgQKUtxyk6pO10DnKkgiYQSVndK2weEqUTd9bTA f/sL/h1JyNWqWgBJOfbiTgfFA5uhqPdU2PkQ9R60yF5QXhpvhDpr8AsBveHbIpVs WhEs4P862VaMZ6tG6HvXZw8zfA+wceVwdOZIwiAmr8ob2tY2PE1IBUOo18M9vo+Y iAyT2Gs7Fc9vDCtvUZ+c3V/3aND/jkMa4wq5s6+hHKcdmCKKovHA9yRbd7DJMQFB YzLoBT8nDztXz9aQePQQK81+rqCY0TbHrwdXkfeVelYPltFMjHzH/MW+JGTOz9t5 n3a7OSpbWonW0lwQWAGhtEzI/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGz2ESZ oTgSOoZQBz1aZYu7aq5oMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMgHwQ8WwTTzd0j2WLQ32Wj/Drg1DxxqJbspZ0NOgwls/p4j+UiVvl N/IvBya76PKsGo9WZWFGaJdLvPNfbxqPJy0nnzvYkefNxGPrzKQQyO7UsmSp4hWG 0gAzA/vNxj0UARh8MfTwcfz2pV85L0mFkBtZy7DFX/d1g3+Ylo15e5hJzj3DSn6a 4Lvszlx2iiE5MO8HPDI0xZqPA4NK7TIwg3KQl/B7YEQb21SQeV/+15xcaY4KO43a s8mf2BIH58aPRs8MYMAslXnjgvmv4UrfzuNDaYOsIaxpD9kJqjWKpz7ms/f0jlgQ ahCGrT+saNVdfZgAPOqZKb9M4aFu9M3O -----END CERTIFICATE-----Generated at Sat May 18 19:15:24 2024 by rpki-client on console-ams.rpki-client.org