$ rpki-client -vvf rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft File: rSHioIh9gBBYg2nxR4WWAoR3zb4.mft (raw, json) Hash identifier: Lu98Vey3yyfwKgKPMpusVmgF+O5qhSbKgfw73rc0SjE= Subject key identifier: 9F:4E:C2:B1:8F:7E:4F:85:D0:5C:D3:EE:0C:88:0F:6C:9D:A4:D4:0D Authority key identifier: AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE Certificate issuer: /CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Certificate serial: 1001 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft Manifest number: 0FFB Signing time: Fri 31 May 2024 18:25:47 +0000 Manifest this update: Fri 31 May 2024 18:25:46 +0000 Manifest next update: Fri 07 Jun 2024 18:25:46 +0000 Files and hashes: 1: rSHioIh9gBBYg2nxR4WWAoR3zb4.crl (hash: bOYtwugRgcBE1n/hkRshM5zwXdcFHZAzpGkmA3pDEzA=) 2: 2CDBC1B0251111E997B74770C4F9AE02.roa (hash: gvG1ZqQraEFhN08IlgwALzbDtTjdZshIJN/OLKpgb4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4097 (0x1001) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Validity Not Before: May 31 18:25:46 2024 GMT Not After : Jun 7 18:25:46 2024 GMT Subject: CN=665a162b-8690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:67:bc:d6:6b:ec:c9:e1:2e:47:ad:6e:7b:e2: b8:15:7a:01:2d:08:dd:c9:6e:8b:6f:27:a7:e5:e0: 5a:52:3d:d1:f7:82:81:fc:ce:c7:e4:c9:9f:a1:01: 58:1f:45:92:81:70:09:bb:c2:12:f1:a3:cc:1c:10: 13:cc:56:38:34:eb:64:bf:71:e2:8b:27:0f:fd:8c: 53:4e:d1:cb:8f:07:95:c0:1b:aa:63:8f:4b:c5:50: 96:cf:25:f4:ec:dd:c6:95:0c:02:6c:32:ef:46:fd: a2:e6:0d:07:30:17:46:4f:63:05:b9:93:a8:51:9d: 74:07:b3:f9:3e:6b:6d:9d:af:a0:b6:c0:c9:b1:2c: b3:cb:86:a8:5a:e3:08:4f:bd:8a:80:38:8a:3d:73: 20:bd:53:83:6e:c3:13:01:92:72:00:49:16:cf:2c: a1:5f:e8:19:fb:fc:b2:2b:59:ab:7e:71:f2:b9:f5: df:9a:b9:4b:a4:a0:b6:2c:71:1e:0b:72:e3:8c:7c: bc:aa:d8:77:05:42:fa:f4:72:3b:c4:27:fe:b4:12: d9:74:af:fb:95:6c:a1:94:40:4a:96:9f:b4:49:0b: f6:22:a8:5f:37:78:f2:34:c9:30:82:7e:7e:03:58: b8:54:e6:b4:d4:c4:28:e2:6e:21:83:5e:15:d0:af: 39:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:4E:C2:B1:8F:7E:4F:85:D0:5C:D3:EE:0C:88:0F:6C:9D:A4:D4:0D X509v3 Authority Key Identifier: keyid:AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:0e:11:da:4d:61:3a:b0:aa:2e:24:75:c3:ab:9f:7e:75:bf: 75:2c:21:ed:9a:97:15:fd:5c:ad:f7:11:b6:af:b4:4c:6b:82: 8e:d5:90:f8:ca:22:7d:c4:31:2a:5b:df:96:6d:71:17:d6:e2: ed:6d:6a:9c:bf:b1:de:df:72:8c:81:7c:55:be:a5:77:f7:c4: 04:2d:fd:51:3e:31:cc:a0:48:c1:0c:0c:22:c7:c4:e3:20:0d: 1a:a3:c9:a8:6b:92:35:6b:79:9b:ab:3e:24:6b:28:35:e8:69: 56:8e:37:9a:9e:5b:bf:b5:40:33:af:dc:75:5b:ed:cc:6d:5b: a9:85:65:0b:93:e7:c1:6a:3c:85:48:aa:7a:e3:59:31:a0:8f: b7:ac:5f:f4:fa:ec:64:5a:16:be:fd:c2:36:ba:45:c2:c3:c5: b5:c2:1a:42:a5:3b:c5:84:b6:53:db:f5:dd:85:05:d8:ad:aa: 50:fb:4b:ab:26:9f:90:c5:2a:26:fa:b7:c2:2e:41:a2:94:81: 42:58:08:7e:bc:d3:58:f3:61:b6:c7:91:32:0e:e7:b5:d4:98: 86:22:7c:09:6f:2d:f0:ef:58:89:f7:36:87:ed:3f:b3:4f:67: de:17:ec:ac:11:11:2e:d0:85:fa:54:83:aa:f9:af:58:20:82: 69:42:b6:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM0NEYxMTAvBgNVBAUTKEFEMjFFMkEwODg3RDgwMTA1ODgzNjlGMTQ3ODU5NjAy ODQ3N0NEQkUwHhcNMjQwNTMxMTgyNTQ2WhcNMjQwNjA3MTgyNTQ2WjAYMRYwFAYD VQQDEw02NjVhMTYyYi04NjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnme81mvsyeEuR61ue+K4FXoBLQjdyW6Lbyen5eBaUj3R94KB/M7H5MmfoQFY H0WSgXAJu8IS8aPMHBATzFY4NOtkv3HiiycP/YxTTtHLjweVwBuqY49LxVCWzyX0 7N3GlQwCbDLvRv2i5g0HMBdGT2MFuZOoUZ10B7P5Pmttna+gtsDJsSyzy4aoWuMI T72KgDiKPXMgvVODbsMTAZJyAEkWzyyhX+gZ+/yyK1mrfnHyufXfmrlLpKC2LHEe C3LjjHy8qth3BUL69HI7xCf+tBLZdK/7lWyhlEBKlp+0SQv2IqhfN3jyNMkwgn5+ A1i4VOa01MQo4m4hg14V0K85gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9OwrGP fk+F0FzT7gyID2ydpNQNMB8GA1UdIwQYMBaAFK0h4qCIfYAQWINp8UeFlgKEd82+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzQ0Ri85NEZGQkFBMDI1 MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdCQllnMm54UjRXV0FvUjN6 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSGlvSWg5Z0JCWWcybnhSNFdXQW9SM3piNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzQ0Ri85NEZGQkFBMDI1MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdC QllnMm54UjRXV0FvUjN6YjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZDhHaTWE6sKouJHXDq59+db91LCHtmpcV/Vyt9xG2r7RMa4KO1ZD4 yiJ9xDEqW9+WbXEX1uLtbWqcv7He33KMgXxVvqV398QELf1RPjHMoEjBDAwix8Tj IA0ao8moa5I1a3mbqz4kayg16GlWjjeanlu/tUAzr9x1W+3MbVuphWULk+fBajyF SKp641kxoI+3rF/0+uxkWha+/cI2ukXCw8W1whpCpTvFhLZT2/XdhQXYrapQ+0ur Jp+QxSom+rfCLkGilIFCWAh+vNNY82G2x5EyDue11JiGInwJby3w71iJ9zaH7T+z T2feF+ysEREu0IX6VIOq+a9YIIJpQrYA -----END CERTIFICATE-----Generated at Fri May 31 20:34:00 2024 by rpki-client on console-ams.rpki-client.org