$ rpki-client -vvf rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft File: _ksuVPGAyAmvHsmemnx-JzLZ3aY.mft (raw, json) Hash identifier: EzNmL31dm89yeYGYyEsBpcaQMkFpibw0mqeT+ZXQuBs= Subject key identifier: 63:82:70:A4:A4:B1:44:EE:05:26:16:C5:00:D5:72:8B:EF:F3:D9:06 Authority key identifier: FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 Certificate issuer: /CN=A914BE96/serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Certificate serial: 0F13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft Manifest number: 0F06 Signing time: Sat 18 May 2024 18:15:16 +0000 Manifest this update: Sat 18 May 2024 18:15:16 +0000 Manifest next update: Sat 25 May 2024 18:15:16 +0000 Files and hashes: 1: _ksuVPGAyAmvHsmemnx-JzLZ3aY.crl (hash: CBRMS+B9XBk0lRTsuM6VvsQEtIkAM+OmzVyCGDUmHrQ=) 2: 8F75257455E911E9AE112D6CC4F9AE02.roa (hash: lSqQwjZot8nB0h5x6YdA4gBJ52DKStyjQ+rFV6EF8s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3859 (0xf13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BE96/serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Validity Not Before: May 18 18:15:16 2024 GMT Not After : May 25 18:15:16 2024 GMT Subject: CN=6648f034-d435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ea:77:c3:0d:f4:1a:62:34:86:8d:46:19:dc: df:d4:49:10:a8:fe:da:76:f1:41:34:1d:f3:e1:5a: 00:66:20:fc:09:ff:66:a7:c0:d2:13:e2:42:8b:58: 29:af:93:a0:98:7d:96:b4:20:95:22:a6:67:4f:b3: 57:7b:02:61:80:21:5f:7e:ef:35:81:04:28:cc:64: 34:78:ad:ed:a1:24:38:a9:68:39:5f:ea:cc:94:53: 36:c2:ee:cb:62:9b:c0:af:1c:37:2f:2d:24:8f:b8: 01:94:19:3d:cf:ec:94:62:8b:a7:d2:09:f5:be:6f: d6:05:ae:a8:ae:8c:4b:a2:61:24:1e:97:50:53:b1: 41:e5:c6:2b:d0:93:17:05:64:ce:8d:c6:00:c0:a4: 3f:2c:d3:88:af:68:e5:4e:1a:f2:cf:07:d6:2e:44: 68:00:02:01:6f:7c:73:10:76:e6:d7:24:9e:92:00: d1:6d:4a:74:ec:bb:c7:ce:93:00:67:ac:aa:21:a7: 1c:81:a4:9f:ea:37:56:5f:8a:7d:3f:77:00:be:1e: 1f:3d:4c:82:86:3a:51:39:04:56:82:f0:93:3b:54: c1:a3:07:b4:f2:82:4c:eb:5c:29:62:eb:4f:5f:79: 3b:2c:92:54:66:94:64:83:b4:57:bb:6d:f0:cf:f3: 38:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:82:70:A4:A4:B1:44:EE:05:26:16:C5:00:D5:72:8B:EF:F3:D9:06 X509v3 Authority Key Identifier: keyid:FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:d7:24:90:61:f1:c0:98:bf:23:7b:43:12:47:08:f2:e1:6b: 82:9a:32:de:e7:2d:51:bd:38:81:40:7b:1c:33:bf:98:5c:ea: f3:fd:df:a9:be:dc:6c:8d:25:96:98:41:da:b3:3b:48:d6:33: b6:a3:69:3f:4e:fa:08:98:c0:e6:c2:37:01:ba:b9:a6:28:5c: 7c:4f:7d:51:51:57:56:c4:9b:bd:bb:4d:6e:5f:ba:98:6c:62: f9:12:d6:bc:02:6b:90:43:cb:3c:65:67:1e:a9:9b:b3:82:63: e5:48:90:8f:c1:de:07:3c:b9:3f:98:c4:7f:4f:29:18:d7:21: 47:23:8b:19:34:f7:47:4e:70:4f:c2:f1:b2:28:1c:61:69:5b: b4:8d:78:66:e0:db:8b:3c:08:29:e4:f0:01:a5:04:e4:13:f4: 26:c4:62:4a:fb:ce:de:6c:2d:2a:d5:fd:d7:55:92:ed:20:5a: 49:88:61:98:57:d4:ef:a8:5f:dc:e7:e2:ed:7c:6c:bd:ec:79: a8:a4:28:a7:16:5f:2c:5a:92:1c:fd:87:a7:5a:56:eb:46:3a: 50:33:37:c3:22:ec:9d:51:db:71:03:e0:cd:44:94:88:26:45: f2:dd:c9:66:59:a2:18:7c:91:7e:6a:51:3f:08:0f:f1:52:e9: a2:87:62:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJFOTYxMTAvBgNVBAUTKEZFNEIyRTU0RjE4MEM4MDlBRjFFQzk5RTlBN0M3RTI3 MzJEOUREQTYwHhcNMjQwNTE4MTgxNTE2WhcNMjQwNTI1MTgxNTE2WjAYMRYwFAYD VQQDEw02NjQ4ZjAzNC1kNDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ep3ww30GmI0ho1GGdzf1EkQqP7advFBNB3z4VoAZiD8Cf9mp8DSE+JCi1gp r5OgmH2WtCCVIqZnT7NXewJhgCFffu81gQQozGQ0eK3toSQ4qWg5X+rMlFM2wu7L YpvArxw3Ly0kj7gBlBk9z+yUYoun0gn1vm/WBa6oroxLomEkHpdQU7FB5cYr0JMX BWTOjcYAwKQ/LNOIr2jlThryzwfWLkRoAAIBb3xzEHbm1ySekgDRbUp07LvHzpMA Z6yqIaccgaSf6jdWX4p9P3cAvh4fPUyChjpROQRWgvCTO1TBowe08oJM61wpYutP X3k7LJJUZpRkg7RXu23wz/M46wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOCcKSk sUTuBSYWxQDVcovv89kGMB8GA1UdIwQYMBaAFP5LLlTxgMgJrx7Jnpp8ficy2d2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkU5Ni9FREE2NUFDNDU1 RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlBbXZIc21lbW54LUp6TFoz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rc3VWUEdBeUFtdkhzbWVtbngtSnpMWjNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkU5Ni9FREE2NUFDNDU1RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlB bXZIc21lbW54LUp6TFozYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa1ySQYfHAmL8je0MSRwjy4WuCmjLe5y1RvTiBQHscM7+YXOrz/d+p vtxsjSWWmEHasztI1jO2o2k/TvoImMDmwjcBurmmKFx8T31RUVdWxJu9u01uX7qY bGL5Eta8AmuQQ8s8ZWceqZuzgmPlSJCPwd4HPLk/mMR/TykY1yFHI4sZNPdHTnBP wvGyKBxhaVu0jXhm4NuLPAgp5PABpQTkE/QmxGJK+87ebC0q1f3XVZLtIFpJiGGY V9TvqF/c5+LtfGy97HmopCinFl8sWpIc/YenWlbrRjpQMzfDIuydUdtxA+DNRJSI JkXy3clmWaIYfJF+alE/CA/xUumih2JC -----END CERTIFICATE-----Generated at Sat May 18 19:15:24 2024 by rpki-client on console-ams.rpki-client.org