$ rpki-client -vvf rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft File: 5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft (raw, json) Hash identifier: 7fAq00KmFrEWpnXvpnQpzrkCqd7bToK9c7DcGYAhD/A= Subject key identifier: 2C:98:F6:5E:98:C6:46:A1:9F:9A:4B:AF:79:29:98:13:B2:B5:AF:04 Authority key identifier: E5:2D:7F:7F:BA:AC:1F:75:AF:FA:76:2E:DB:3F:28:16:0B:CF:BD:25 Certificate issuer: /CN=A914A47A/serialNumber=E52D7F7FBAAC1F75AFFA762EDB3F28160BCFBD25 Certificate serial: 33CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft Manifest number: 33C6 Signing time: Sat 18 May 2024 15:01:18 +0000 Manifest this update: Sat 18 May 2024 15:01:18 +0000 Manifest next update: Sat 25 May 2024 15:01:18 +0000 Files and hashes: 1: 5S1_f7qsH3Wv-nYu2z8oFgvPvSU.crl (hash: ig7hz6Psa1JgqDdTKVJAJTqct68z1/G1+pWu+ET/J3s=) 2: A5C01D6ED15511EA904EF30BC4F9AE02.roa (hash: g9pqUh5erEZO/WLay3//J8dkPYx1y9WBTENSIPISBog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.crl rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13259 (0x33cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A47A/serialNumber=E52D7F7FBAAC1F75AFFA762EDB3F28160BCFBD25 Validity Not Before: May 18 15:01:18 2024 GMT Not After : May 25 15:01:18 2024 GMT Subject: CN=6648c2be-01e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a8:88:2f:c1:cf:38:bd:52:2d:81:69:ca:85: ea:8b:94:84:2e:be:0e:d9:be:86:e3:5f:84:8b:e2: 74:e9:dd:1c:b1:34:e0:f0:30:18:36:44:2b:47:fc: 27:ea:93:ea:bc:e1:a0:4e:31:3c:c5:ca:68:c0:72: 26:20:e5:bc:92:42:92:0c:cb:b1:22:ec:47:fb:58: d4:9c:79:23:90:e3:e4:45:46:6d:53:4e:e7:f5:f7: 9d:82:d3:a8:95:d5:82:af:c9:a4:b6:8d:1f:55:b7: 05:ce:c2:a2:b0:f3:77:db:eb:42:73:d9:ac:31:ce: aa:f3:90:0c:78:cc:8a:36:5d:5e:51:fe:a4:93:73: 17:87:11:02:57:2e:45:4c:c9:10:5e:dc:a2:8c:0d: b9:9c:ad:8d:5c:65:a0:75:b3:e1:69:d7:12:30:ae: 07:9a:e1:4f:25:e1:51:1f:99:b0:13:4e:64:04:04: 86:69:a1:2c:f3:9b:cf:55:b9:32:b2:26:a7:a5:66: 8b:3d:39:a0:ef:2e:41:80:51:cb:08:92:0b:ad:18: fb:dc:19:92:8e:fa:33:f7:87:3a:72:2b:7f:b5:0b: e0:43:33:1c:14:76:79:f6:e7:82:16:c9:26:bf:70: 16:f6:f2:2a:fc:92:30:12:7a:30:1f:8f:77:f0:3b: 81:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:98:F6:5E:98:C6:46:A1:9F:9A:4B:AF:79:29:98:13:B2:B5:AF:04 X509v3 Authority Key Identifier: keyid:E5:2D:7F:7F:BA:AC:1F:75:AF:FA:76:2E:DB:3F:28:16:0B:CF:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7c:cd:c3:7d:dc:96:22:77:5a:71:6c:d9:6e:64:14:7e:c0: ca:ee:33:85:37:d3:78:f7:00:3b:06:a2:3e:6d:c0:6c:38:bb: fd:de:be:b7:d5:31:95:39:20:f5:2f:d6:d2:f5:60:53:38:0d: aa:fb:f7:1b:a2:ce:49:19:70:5b:57:dd:a5:3c:e3:af:1f:02: 48:1b:67:e4:6c:5d:ce:86:a0:b7:c0:30:6e:04:a2:7a:3a:c3: 4a:d6:1e:83:b6:86:b6:ca:fb:5b:a6:8d:2a:67:fb:1c:36:2c: bd:d8:fd:95:06:86:fe:3a:a9:94:03:7c:77:79:a7:47:e1:06: 1c:e1:32:cd:78:68:3d:1d:7d:f6:08:44:b4:30:b2:3d:02:12: 4a:76:c6:db:bd:67:af:7c:67:bb:fd:60:1c:fc:cb:05:2a:be: 9b:0c:b1:9e:18:26:3b:3c:b1:83:8c:0f:e6:37:c0:09:e4:e1: c4:52:ee:39:2c:43:83:42:30:bf:76:36:61:5f:be:42:5a:b4: e5:00:15:0d:95:9b:d4:6a:66:41:06:f8:38:c8:dc:ef:4a:8f: dd:5c:b1:19:16:e8:cd:be:f8:98:9a:e2:d3:5e:2b:d1:26:74: 71:97:ce:e3:63:71:e6:cf:89:6c:25:41:4d:4b:3c:15:02:2b: 6f:57:ff:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0N0ExMTAvBgNVBAUTKEU1MkQ3RjdGQkFBQzFGNzVBRkZBNzYyRURCM0YyODE2 MEJDRkJEMjUwHhcNMjQwNTE4MTUwMTE4WhcNMjQwNTI1MTUwMTE4WjAYMRYwFAYD VQQDEw02NjQ4YzJiZS0wMWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqiIL8HPOL1SLYFpyoXqi5SELr4O2b6G41+Ei+J06d0csTTg8DAYNkQrR/wn 6pPqvOGgTjE8xcpowHImIOW8kkKSDMuxIuxH+1jUnHkjkOPkRUZtU07n9fedgtOo ldWCr8mkto0fVbcFzsKisPN32+tCc9msMc6q85AMeMyKNl1eUf6kk3MXhxECVy5F TMkQXtyijA25nK2NXGWgdbPhadcSMK4HmuFPJeFRH5mwE05kBASGaaEs85vPVbky sianpWaLPTmg7y5BgFHLCJILrRj73BmSjvoz94c6cit/tQvgQzMcFHZ59ueCFskm v3AW9vIq/JIwEnowH4938DuBqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyY9l6Y xkahn5pLr3kpmBOyta8EMB8GA1UdIwQYMBaAFOUtf3+6rB91r/p2Lts/KBYLz70l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTQ3QS80QUYyMjFEQTFE OTgxMUUyQUQyQjM5ODIwOEIwMkNEMi81UzFfZjdxc0gzV3Ytbll1Mno4b0ZndlB2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTMV9mN3FzSDNXdi1uWXUyejhvRmd2UHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTQ3QS80QUYyMjFEQTFEOTgxMUUyQUQyQjM5ODIwOEIwMkNEMi81UzFfZjdxc0gz V3Ytbll1Mno4b0ZndlB2U1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArfM3DfdyWIndacWzZbmQUfsDK7jOFN9N49wA7BqI+bcBsOLv93r63 1TGVOSD1L9bS9WBTOA2q+/cbos5JGXBbV92lPOOvHwJIG2fkbF3OhqC3wDBuBKJ6 OsNK1h6Dtoa2yvtbpo0qZ/scNiy92P2VBob+OqmUA3x3eadH4QYc4TLNeGg9HX32 CES0MLI9AhJKdsbbvWevfGe7/WAc/MsFKr6bDLGeGCY7PLGDjA/mN8AJ5OHEUu45 LEODQjC/djZhX75CWrTlABUNlZvUamZBBvg4yNzvSo/dXLEZFujNvviYmuLTXivR JnRxl87jY3Hmz4lsJUFNSzwVAitvV/8z -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org