$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft File: j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft (raw, json) Hash identifier: Z39QItvhPSmljbbs6U+ks5kWc4VV2oljKdatrkpQsno= Subject key identifier: 0A:04:CF:C7:5B:43:06:31:0C:10:79:F6:AB:0E:87:67:1B:B0:B8:98 Authority key identifier: 8F:E5:A7:C9:98:FB:8B:78:AC:33:1E:AE:83:BC:17:86:23:EE:3C:9E Certificate issuer: /CN=A913EF1D/serialNumber=8FE5A7C998FB8B78AC331EAE83BC178623EE3C9E Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j-WnyZj7i3isMx6ug7wXhiPuPJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft Manifest number: 1B Signing time: Sun 19 May 2024 08:41:09 +0000 Manifest this update: Sun 19 May 2024 08:41:09 +0000 Manifest next update: Sun 26 May 2024 08:41:09 +0000 Files and hashes: 1: j-WnyZj7i3isMx6ug7wXhiPuPJ4.crl (hash: gyv1DiPZ5CtTeLc+xz2CGrWhxFZpqRbvUXO/yhSi6j8=) 2: 1AE7ED46ECE711EEB12F9A1FC4F9AE02.roa (hash: 2TfuRrs33GlJpt8WHzTylQoJHac6ILq0kUfthhkIDXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.crl rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j-WnyZj7i3isMx6ug7wXhiPuPJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF1D/serialNumber=8FE5A7C998FB8B78AC331EAE83BC178623EE3C9E Validity Not Before: May 19 08:41:09 2024 GMT Not After : May 26 08:41:09 2024 GMT Subject: CN=6649bb25-b5da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ee:b3:6c:a7:e4:81:3b:5d:a3:f5:6b:0d:31: 07:fe:5e:48:8e:1f:e1:f7:41:9e:fc:39:e0:96:91: 61:42:b3:b7:f3:54:c8:61:07:7c:50:03:65:fd:d1: 14:2b:3e:f7:6e:bd:c5:5d:76:3e:ba:d6:5e:24:65: d8:75:47:37:5f:3e:1b:e3:33:19:59:3d:1a:4c:1a: c3:0a:e9:d8:f6:03:e7:a4:8b:ad:fb:99:64:fc:ae: c2:13:b8:5e:80:28:d0:a4:d9:fb:4f:36:69:4a:4f: f5:a8:3f:7d:9c:16:da:42:b4:11:35:e3:c2:22:23: 1f:af:1d:78:cb:73:29:29:ad:d4:16:35:16:26:bf: 04:03:b4:e1:47:66:70:56:24:78:cf:4f:67:57:e2: 8a:69:33:f7:76:87:2f:a4:c7:7e:72:eb:d3:d2:18: b1:29:2b:dd:76:bc:ce:d6:f0:ab:69:03:ee:6a:9e: cd:e2:2b:b0:b2:aa:ea:9f:14:e3:8d:a2:b1:68:6c: 8a:a0:4d:2f:8c:47:9c:09:75:f2:db:8f:73:06:88: d9:23:92:70:bf:62:96:7d:17:56:3c:47:a0:c0:f5: a1:3f:f1:59:86:27:87:4a:52:c7:8a:54:9e:ea:ce: e2:64:51:2d:c6:7a:db:de:3d:5f:00:c3:1b:cb:65: 49:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:04:CF:C7:5B:43:06:31:0C:10:79:F6:AB:0E:87:67:1B:B0:B8:98 X509v3 Authority Key Identifier: keyid:8F:E5:A7:C9:98:FB:8B:78:AC:33:1E:AE:83:BC:17:86:23:EE:3C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j-WnyZj7i3isMx6ug7wXhiPuPJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF1D/BA9CD8ACECE611EEAAE9E81EC4F9AE02/j-WnyZj7i3isMx6ug7wXhiPuPJ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:b3:f5:b4:53:33:5f:46:b2:7b:79:61:21:e5:df:b4:4b:af: a0:c4:38:61:95:69:ca:cd:a7:86:ac:e4:e7:98:f7:30:1a:07: 68:73:f5:51:65:f2:6d:cb:3a:b1:56:83:71:a1:70:09:26:b7: ab:d4:c5:59:6a:27:7d:81:d9:f6:f0:2c:6a:c3:ff:87:8d:72: c9:07:9c:f6:1f:85:c9:a3:d7:7e:bd:4d:87:ec:72:89:c7:d9: 5e:27:6b:f7:bb:b6:2c:ab:79:ec:52:b9:ac:5d:1e:98:4e:17: da:43:d7:54:a2:5c:79:37:2b:fe:27:a7:4f:66:8a:4e:b9:af: d5:7b:66:69:fb:2f:02:61:ca:13:c6:6a:8b:f4:82:bd:f4:fb: 1c:66:c3:77:f8:a5:ce:45:ed:f3:cb:b9:9a:93:92:2e:48:db: a3:3e:78:db:6d:06:68:c7:da:00:9c:88:76:2f:fe:2e:2b:87: 9a:85:2b:f3:85:ac:14:a1:63:31:e3:ce:f8:a6:7e:8a:96:05: ce:60:37:4d:f9:4b:fd:9f:38:74:16:96:e1:5c:95:09:b3:2f: bf:04:0f:3e:94:40:60:56:5e:28:de:aa:b8:77:ee:35:b7:9c: 4c:d7:16:73:7b:df:f8:10:71:1d:c8:5a:6d:92:56:58:2a:a6: 76:c5:39:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RUYxRDExMC8GA1UEBRMoOEZFNUE3Qzk5OEZCOEI3OEFDMzMxRUFFODNCQzE3ODYy M0VFM0M5RTAeFw0yNDA1MTkwODQxMDlaFw0yNDA1MjYwODQxMDlaMBgxFjAUBgNV BAMTDTY2NDliYjI1LWI1ZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn7rNsp+SBO12j9WsNMQf+XkiOH+H3QZ78OeCWkWFCs7fzVMhhB3xQA2X90RQr PvduvcVddj661l4kZdh1RzdfPhvjMxlZPRpMGsMK6dj2A+eki637mWT8rsITuF6A KNCk2ftPNmlKT/WoP32cFtpCtBE148IiIx+vHXjLcykprdQWNRYmvwQDtOFHZnBW JHjPT2dX4oppM/d2hy+kx35y69PSGLEpK912vM7W8KtpA+5qns3iK7CyquqfFOON orFobIqgTS+MR5wJdfLbj3MGiNkjknC/YpZ9F1Y8R6DA9aE/8VmGJ4dKUseKVJ7q zuJkUS3GetvePV8AwxvLZUmPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCgTPx1tD BjEMEHn2qw6HZxuwuJgwHwYDVR0jBBgwFoAUj+WnyZj7i3isMx6ug7wXhiPuPJ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNFRjFEL0JBOUNEOEFDRUNF NjExRUVBQUU5RTgxRUM0RjlBRTAyL2otV255Wmo3aTNpc014NnVnN3dYaGlQdVBK NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvai1XbnlaajdpM2lzTXg2dWc3d1hoaVB1UEo0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNF RjFEL0JBOUNEOEFDRUNFNjExRUVBQUU5RTgxRUM0RjlBRTAyL2otV255Wmo3aTNp c014NnVnN3dYaGlQdVBKNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGmz9bRTM19Gsnt5YSHl37RLr6DEOGGVacrNp4as5OeY9zAaB2hz9VFl 8m3LOrFWg3GhcAkmt6vUxVlqJ32B2fbwLGrD/4eNcskHnPYfhcmj1369TYfsconH 2V4na/e7tiyreexSuaxdHphOF9pD11SiXHk3K/4np09mik65r9V7Zmn7LwJhyhPG aov0gr30+xxmw3f4pc5F7fPLuZqTki5I26M+eNttBmjH2gCciHYv/i4rh5qFK/OF rBShYzHjzvimfoqWBc5gN035S/2fOHQWluFclQmzL78EDz6UQGBWXijeqrh37jW3 nEzXFnN73/gQcR3IWm2SVlgqpnbFOfc= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org