$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft File: 5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft (raw, json) Hash identifier: ZS3rAZIThxPw0Vj5w+X5EYxbwIvszRtma3CMIQwHflk= Subject key identifier: 75:57:5E:48:24:54:E6:47:CC:34:6D:B7:23:7F:02:7C:2B:2F:05:A2 Authority key identifier: E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 Certificate issuer: /CN=A912DA1D/serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft Manifest number: 0290 Signing time: Sun 19 May 2024 03:40:35 +0000 Manifest this update: Sun 19 May 2024 03:40:35 +0000 Manifest next update: Sun 26 May 2024 03:40:34 +0000 Files and hashes: 1: 5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl (hash: uRCW8SZ0KXC8PVY+CVjwGG1PirFk8ixbS1EJlftGSZU=) 2: 44B90434DFA011ED8C895F7CC4F9AE02.roa (hash: 5uQdC/Aj/BekU6t4F2SSyV0cuXGmv9OJwhqQoF3gV3Y=) 3: 0589A4B8DF9511EDAAA7E22AC4F9AE02.roa (hash: fZINIbheYfqPSlmD4xMT4zKcUz3FSELZ4ZHi11Z85ho=) 4: 36B1CD340A6D11ED89FD3F13C4F9AE02.roa (hash: 62sXJWlT3h3nHyOfMwNf6c+ar5aY+tJqwoFwwPI3cac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1D/serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Validity Not Before: May 19 03:40:35 2024 GMT Not After : May 26 03:40:34 2024 GMT Subject: CN=664974b3-5798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:41:52:04:b3:f6:17:ce:a6:98:2c:eb:14:9b: 73:6f:af:1e:c3:a0:4a:96:5a:47:ec:3e:a5:ff:b8: 60:7e:e9:2e:9e:76:f0:02:75:26:1d:88:ff:5e:6d: 76:69:fa:d7:1b:ed:7b:46:6d:7e:13:e6:0c:92:18: d0:62:54:27:4f:54:9e:98:ab:ed:67:9c:cf:db:63: 05:5f:00:2c:60:e9:63:b1:19:27:3a:45:cf:7d:0c: 7e:57:d7:9b:5f:de:8d:02:dc:61:60:7d:ee:e9:65: e9:3a:f8:a3:5d:0c:a0:fa:c1:06:be:42:03:11:35: f5:7c:3e:70:84:c2:28:4d:77:cb:ea:11:fc:26:e3: 0c:4d:a3:5a:2c:c5:2b:3a:c7:cb:80:fd:09:0b:25: 59:e8:88:b9:f7:34:f5:ff:47:a8:b4:14:5e:4a:c2: 38:c9:93:56:43:58:f7:d1:f1:3b:f9:a7:ca:9d:91: c8:1c:2c:77:5f:60:d6:0f:63:b4:78:e1:63:c0:0e: 39:49:4e:5f:44:69:76:25:b2:38:5c:88:c8:70:b7: 79:89:fc:69:19:25:8c:6a:2a:51:ef:fb:4f:26:40: 88:0a:2c:07:97:70:61:26:5b:65:91:23:62:4c:4d: 8c:fb:c1:ec:1d:ce:de:cd:2d:2f:f5:15:5a:1f:98: 8a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:57:5E:48:24:54:E6:47:CC:34:6D:B7:23:7F:02:7C:2B:2F:05:A2 X509v3 Authority Key Identifier: keyid:E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:e6:1c:37:3c:a9:1f:d2:f2:d8:8d:7f:c2:98:3e:39:86:f1: dd:9a:25:57:22:1e:db:eb:fb:97:46:e9:e2:f9:ba:b6:d2:e4: 0a:a8:4a:f1:99:b0:72:17:8c:26:32:9f:6a:1d:9a:1c:9b:9d: e0:ab:3e:78:aa:fe:9b:7b:f0:42:0a:f5:a2:f6:05:4c:61:da: 8f:9c:d6:8f:a3:d5:4a:4c:8d:59:b2:4b:8f:d0:3b:6c:32:50: 4d:e1:e2:32:8c:fb:b5:59:43:c0:52:45:8f:51:3f:7c:a8:f6: ac:99:8d:f6:b4:b1:22:88:5b:cb:14:d4:d3:4a:bc:63:95:59: 14:fb:5a:8f:c5:8d:5c:45:85:f9:c1:11:66:75:28:14:02:fa: 81:2c:09:71:0f:0e:f2:63:ec:97:8a:53:bb:a1:5a:15:f0:07: a0:49:44:4f:a1:8b:86:b5:fc:71:5b:ec:97:6d:79:b1:55:17: d4:f9:f6:c0:5c:4d:74:17:89:49:a0:bf:b7:fc:ab:47:27:5e: 74:9f:5e:3b:53:7a:69:4a:cd:09:e9:23:7a:e1:91:38:ca:be: 59:49:00:ab:11:37:25:be:dd:4b:7c:91:b2:48:65:d5:d4:9f: 3a:8e:f6:9c:e2:0f:9c:ea:5a:5e:cd:56:b2:2a:d1:51:fd:5d: d5:d7:8f:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUQxMTAvBgNVBAUTKEU0MjE0MkUzRTU4NDU3NjJEMEU4RDY4QjAyRkIxMEU4 NzVCQzZCRjIwHhcNMjQwNTE5MDM0MDM1WhcNMjQwNTI2MDM0MDM0WjAYMRYwFAYD VQQDEw02NjQ5NzRiMy01Nzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUFSBLP2F86mmCzrFJtzb68ew6BKllpH7D6l/7hgfukunnbwAnUmHYj/Xm12 afrXG+17Rm1+E+YMkhjQYlQnT1SemKvtZ5zP22MFXwAsYOljsRknOkXPfQx+V9eb X96NAtxhYH3u6WXpOvijXQyg+sEGvkIDETX1fD5whMIoTXfL6hH8JuMMTaNaLMUr OsfLgP0JCyVZ6Ii59zT1/0eotBReSsI4yZNWQ1j30fE7+afKnZHIHCx3X2DWD2O0 eOFjwA45SU5fRGl2JbI4XIjIcLd5ifxpGSWMaipR7/tPJkCICiwHl3BhJltlkSNi TE2M+8HsHc7ezS0v9RVaH5iKvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVXXkgk VOZHzDRttyN/AnwrLwWiMB8GA1UdIwQYMBaAFOQhQuPlhFdi0OjWiwL7EOh1vGvy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRC9CNDZFNDJEQUJC MUIxMUVDQjBBQzBGMTRDNEY5QUUwMi81Q0ZDNC1XRVYyTFE2TmFMQXZzUTZIVzhh X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDRkM0LVdFVjJMUTZOYUxBdnNRNkhXOGFfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REExRC9CNDZFNDJEQUJCMUIxMUVDQjBBQzBGMTRDNEY5QUUwMi81Q0ZDNC1XRVYy TFE2TmFMQXZzUTZIVzhhX0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB65hw3PKkf0vLYjX/CmD45hvHdmiVXIh7b6/uXRuni+bq20uQKqErx mbByF4wmMp9qHZocm53gqz54qv6be/BCCvWi9gVMYdqPnNaPo9VKTI1ZskuP0Dts MlBN4eIyjPu1WUPAUkWPUT98qPasmY32tLEiiFvLFNTTSrxjlVkU+1qPxY1cRYX5 wRFmdSgUAvqBLAlxDw7yY+yXilO7oVoV8AegSURPoYuGtfxxW+yXbXmxVRfU+fbA XE10F4lJoL+3/KtHJ150n147U3ppSs0J6SN64ZE4yr5ZSQCrETclvt1LfJGySGXV 1J86jvac4g+c6lpezVayKtFR/V3V14+9 -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org