$ rpki-client -vvf rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft File: 4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft (raw, json) Hash identifier: Duup+BFUvQPywBJc+5QwpbkqI84wSJ0ySs4S/ZFuK/w= Subject key identifier: 85:80:8A:08:93:69:11:BA:C8:E5:E0:5E:A1:1E:EA:19:04:E1:9B:7F Authority key identifier: E2:D8:13:D6:6C:E5:0D:D9:38:FC:3A:53:2D:B8:ED:E2:C5:BA:79:5C Certificate issuer: /CN=A913B0D6/serialNumber=E2D813D66CE50DD938FC3A532DB8EDE2C5BA795C Certificate serial: 06E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4tgT1mzlDdk4_DpTLbjt4sW6eVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft Manifest number: 06DA Signing time: Sat 18 May 2024 22:56:05 +0000 Manifest this update: Sat 18 May 2024 22:56:04 +0000 Manifest next update: Sat 25 May 2024 22:56:04 +0000 Files and hashes: 1: 4tgT1mzlDdk4_DpTLbjt4sW6eVw.crl (hash: oNsgWQ6oeWGlESdNeHstwnVL4kRCGbidjKF57Zst1uA=) 2: A7501D94086B11EBB0FF1A43C4F9AE02.roa (hash: ljCV+6EoHUmfnmRqDVFzjyrXA6ZYTvmag8096W3U24A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.crl rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4tgT1mzlDdk4_DpTLbjt4sW6eVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1760 (0x6e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B0D6/serialNumber=E2D813D66CE50DD938FC3A532DB8EDE2C5BA795C Validity Not Before: May 18 22:56:04 2024 GMT Not After : May 25 22:56:04 2024 GMT Subject: CN=66493205-1173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:80:2b:88:37:58:74:7d:54:e3:55:2d:88:8a: 08:46:f6:f3:68:f5:de:95:d4:44:24:0a:32:fa:ea: 6f:e4:89:b1:73:21:bb:b4:20:1a:7f:b6:9f:5c:0f: 4c:25:a3:23:df:91:18:ba:a4:92:14:6f:c3:b9:2f: 28:eb:46:14:90:36:8e:6f:36:5a:1d:46:d7:69:ac: 28:5c:72:9d:a0:b0:fb:ae:df:1c:2f:21:3d:ba:80: e3:f1:c2:ec:91:62:8f:2c:98:3b:72:51:02:c0:6c: d8:f7:df:e0:f4:51:3f:bc:fe:d5:d2:23:72:fd:db: c9:49:de:06:7c:23:42:cc:b0:f4:2c:ed:8e:5e:74: 23:5b:f5:e5:94:11:8e:a3:16:dc:a8:c6:1a:7f:e1: 2e:06:19:d5:5d:8c:5b:1d:b2:b4:e7:f9:6c:a5:5f: 8b:14:b7:7b:7f:a1:c4:16:f7:0e:e1:b6:3b:54:99: ab:2a:36:6d:2d:f1:32:5f:51:c7:33:c1:72:4a:ef: 51:81:2c:56:b5:7c:2c:eb:24:25:59:06:be:8a:be: 3a:20:b8:1d:de:71:8d:14:86:86:f1:3c:86:44:99: ef:30:a3:4b:ba:e5:63:ef:a7:e5:23:d9:d2:ca:f9: d0:41:b5:8d:c3:1f:e0:27:f0:58:50:86:93:3a:ca: bc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:80:8A:08:93:69:11:BA:C8:E5:E0:5E:A1:1E:EA:19:04:E1:9B:7F X509v3 Authority Key Identifier: keyid:E2:D8:13:D6:6C:E5:0D:D9:38:FC:3A:53:2D:B8:ED:E2:C5:BA:79:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4tgT1mzlDdk4_DpTLbjt4sW6eVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:b4:b2:d5:3f:b6:ac:88:b7:d0:2c:d2:50:ee:99:85:7a:10: cf:47:38:1b:73:99:eb:b8:dc:58:70:6f:0e:d6:af:9f:e0:2f: 0a:05:8b:8d:45:42:a7:6a:e2:58:3b:5a:ba:25:bd:ea:68:a0: 0b:78:bb:a9:1f:a9:e7:36:5a:32:0e:fb:ef:bf:97:21:dd:40: 23:8d:31:ee:4a:6a:da:aa:14:ca:90:f7:3b:1e:87:1f:06:4f: d4:87:2f:ab:5c:71:36:c4:a4:bd:f4:02:c7:fb:f2:b8:62:86: ca:9f:5d:ac:48:e8:2e:d3:d2:b8:f0:36:e2:80:d3:2b:8e:d9: e6:3d:be:0d:c3:ad:5d:fa:0e:58:d4:27:7b:fc:f6:fb:4e:3f: da:c9:d1:f7:d1:37:1d:58:62:c2:0d:29:5f:d5:6e:0e:36:6e: ba:9f:db:8c:46:99:13:67:5f:fd:31:15:28:f5:c4:45:a2:4a: 43:57:df:e8:cd:db:13:a1:fa:f7:2c:30:e2:51:cd:87:1f:b1: 7f:75:c6:4c:a3:a6:5e:50:3a:d5:7f:2d:9f:f7:be:78:0e:f6: d8:44:25:d0:df:c1:fc:6b:c5:19:1f:2c:a4:d0:bb:e7:2d:a8: 56:29:f1:a9:dc:06:67:93:fe:93:e3:27:db:bd:64:d7:f4:15: de:94:61:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwRDYxMTAvBgNVBAUTKEUyRDgxM0Q2NkNFNTBERDkzOEZDM0E1MzJEQjhFREUy QzVCQTc5NUMwHhcNMjQwNTE4MjI1NjA0WhcNMjQwNTI1MjI1NjA0WjAYMRYwFAYD VQQDEw02NjQ5MzIwNS0xMTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIAriDdYdH1U41UtiIoIRvbzaPXeldREJAoy+upv5ImxcyG7tCAaf7afXA9M JaMj35EYuqSSFG/DuS8o60YUkDaObzZaHUbXaawoXHKdoLD7rt8cLyE9uoDj8cLs kWKPLJg7clECwGzY99/g9FE/vP7V0iNy/dvJSd4GfCNCzLD0LO2OXnQjW/XllBGO oxbcqMYaf+EuBhnVXYxbHbK05/lspV+LFLd7f6HEFvcO4bY7VJmrKjZtLfEyX1HH M8FySu9RgSxWtXws6yQlWQa+ir46ILgd3nGNFIaG8TyGRJnvMKNLuuVj76flI9nS yvnQQbWNwx/gJ/BYUIaTOsq8rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWAigiT aRG6yOXgXqEe6hkE4Zt/MB8GA1UdIwQYMBaAFOLYE9Zs5Q3ZOPw6Uy247eLFunlc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjBENi84OUEwRTdBMjA4 NkExMUVCOURGMzM4NDJDNEY5QUUwMi80dGdUMW16bERkazRfRHBUTGJqdDRzVzZl VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR0Z1QxbXpsRGRrNF9EcFRMYmp0NHNXNmVWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjBENi84OUEwRTdBMjA4NkExMUVCOURGMzM4NDJDNEY5QUUwMi80dGdUMW16bERk azRfRHBUTGJqdDRzVzZlVncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMtLLVP7asiLfQLNJQ7pmFehDPRzgbc5nruNxYcG8O1q+f4C8KBYuN RUKnauJYO1q6Jb3qaKALeLupH6nnNloyDvvvv5ch3UAjjTHuSmraqhTKkPc7Hocf Bk/Uhy+rXHE2xKS99ALH+/K4YobKn12sSOgu09K48DbigNMrjtnmPb4Nw61d+g5Y 1Cd7/Pb7Tj/aydH30TcdWGLCDSlf1W4ONm66n9uMRpkTZ1/9MRUo9cRFokpDV9/o zdsTofr3LDDiUc2HH7F/dcZMo6ZeUDrVfy2f9754DvbYRCXQ38H8a8UZHyyk0Lvn LahWKfGp3AZnk/6T4yfbvWTX9BXelGEv -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org