$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: QHwCCssz2n/wfSZvOMDIwz9W8ue0TvIJMWG1xZIDX8Q= Subject key identifier: 20:D8:F2:A8:5E:20:A8:7F:12:B1:80:5B:C9:3E:D7:75:B6:41:E6:81 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 06F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 06E8 Signing time: Sat 18 May 2024 22:48:41 +0000 Manifest this update: Sat 18 May 2024 22:48:40 +0000 Manifest next update: Sat 25 May 2024 22:48:40 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: qpIi/Kugt9EMk7N7m8rMueA5jyGG4J1d44tpFWjkugg=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: MTInpOnl0k5cHzk/mQ2WeCDrev/aJl9yGIcBSOBrAww=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: Iyw+3tj3IM+pBmHPCcr/UX2wQKedAFHetZW/mNvxVH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: May 18 22:48:40 2024 GMT Not After : May 25 22:48:40 2024 GMT Subject: CN=66493049-2bc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6f:d2:eb:d7:6a:71:48:21:2b:34:ef:00:0d: bd:56:fd:eb:90:0e:46:4c:61:e9:24:a6:ac:6f:ce: 1a:4c:17:08:23:f4:47:42:96:e5:f6:98:93:70:2e: e0:6a:06:d3:2f:06:54:cc:58:18:fc:1c:52:67:d0: d3:1f:40:35:78:cf:34:63:f4:15:e2:e8:24:e7:c2: bd:78:1f:ee:a1:bc:13:cb:f5:14:22:49:51:92:7f: c0:81:7b:1e:4e:89:29:d2:68:88:bc:79:c6:01:76: 1e:82:04:2c:ab:2e:76:74:c6:10:c9:12:9d:29:f0: 1e:f0:b0:c2:76:2b:e7:c2:01:5d:b7:6d:c9:2c:f2: 17:60:1e:38:a2:e1:78:6f:6f:60:58:f3:bf:4c:a5: 54:7d:fc:b0:b3:c9:c5:b1:d4:0f:54:a8:e5:7c:75: 2e:6d:0c:32:8c:c6:68:25:10:c2:e5:ee:c9:3a:f9: e5:8e:8a:a7:a2:48:75:04:6e:3d:45:03:f3:5c:12: 8a:b0:21:a7:07:4e:ff:66:cd:ba:3a:46:66:de:df: d1:ba:27:78:69:4a:02:dd:9d:a8:4c:82:c9:85:2a: 9c:84:b3:7e:16:32:f5:68:d0:bb:28:47:75:e0:00: a7:78:1b:31:36:3b:d5:71:97:dc:66:7a:d9:86:29: 52:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D8:F2:A8:5E:20:A8:7F:12:B1:80:5B:C9:3E:D7:75:B6:41:E6:81 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:11:43:03:d9:fc:cc:bc:4d:64:eb:50:0d:67:58:2b:47:bc: b9:c9:7d:ca:4f:49:0c:c9:51:4d:af:3d:3b:23:ba:0d:3f:d8: 77:bb:9a:05:19:9b:86:6e:69:f7:6b:b0:82:88:28:c5:a0:57: 05:60:81:1d:58:c1:8a:7b:b0:81:19:94:88:df:50:b9:13:fe: 5b:30:56:32:bc:51:d4:d1:1f:f4:3b:c0:6b:8d:0f:6d:11:f3: ce:87:7f:65:f7:70:bb:ef:91:8f:3b:dd:ce:72:c3:e3:f4:80: 62:c7:3b:06:94:b3:56:bb:11:4a:e1:61:9c:93:f9:33:af:11: 5d:c7:3a:57:21:22:65:3a:a4:62:50:97:a5:a1:99:24:61:55: 0c:19:80:87:92:bc:45:9d:2f:56:aa:17:09:4b:1c:15:41:ff: da:34:42:37:26:b5:63:e6:4b:e1:31:2c:ca:f3:90:dd:29:54: d2:37:0b:ac:17:1a:07:09:6d:42:24:d3:52:3b:d2:4d:98:c4: d5:85:0e:91:99:8c:e3:31:09:8f:40:33:e7:ce:53:6f:45:c7: 90:4b:e1:02:d0:6f:ac:29:29:8e:8a:b0:5e:d3:b6:20:ec:a5: c4:88:7d:79:6c:43:0a:ba:a3:99:46:43:b7:32:48:bc:0c:67: c2:1d:ea:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjQwNTE4MjI0ODQwWhcNMjQwNTI1MjI0ODQwWjAYMRYwFAYD VQQDEw02NjQ5MzA0OS0yYmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwG/S69dqcUghKzTvAA29Vv3rkA5GTGHpJKasb84aTBcII/RHQpbl9piTcC7g agbTLwZUzFgY/BxSZ9DTH0A1eM80Y/QV4ugk58K9eB/uobwTy/UUIklRkn/AgXse Tokp0miIvHnGAXYeggQsqy52dMYQyRKdKfAe8LDCdivnwgFdt23JLPIXYB44ouF4 b29gWPO/TKVUffyws8nFsdQPVKjlfHUubQwyjMZoJRDC5e7JOvnljoqnokh1BG49 RQPzXBKKsCGnB07/Zs26OkZm3t/Ruid4aUoC3Z2oTILJhSqchLN+FjL1aNC7KEd1 4ACneBsxNjvVcZfcZnrZhilS+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDY8qhe IKh/ErGAW8k+13W2QeaBMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkEUMD2fzMvE1k61ANZ1grR7y5yX3KT0kMyVFNrz07I7oNP9h3u5oF GZuGbmn3a7CCiCjFoFcFYIEdWMGKe7CBGZSI31C5E/5bMFYyvFHU0R/0O8BrjQ9t EfPOh39l93C775GPO93OcsPj9IBixzsGlLNWuxFK4WGck/kzrxFdxzpXISJlOqRi UJeloZkkYVUMGYCHkrxFnS9WqhcJSxwVQf/aNEI3JrVj5kvhMSzK85DdKVTSNwus FxoHCW1CJNNSO9JNmMTVhQ6RmYzjMQmPQDPnzlNvRceQS+EC0G+sKSmOirBe07Yg 7KXEiH15bEMKuqOZRkO3Mki8DGfCHer3 -----END CERTIFICATE-----Generated at Sun May 19 00:30:13 2024 by rpki-client on console-ams.rpki-client.org