$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft File: 5viFuMHmNK45nsq4FzoD245MEpQ.mft (raw, json) Hash identifier: IsWwfbt1Dc3y/GL+hea1Rvu1wQzA4DSQntsfbDlruQY= Subject key identifier: 8F:EB:9E:81:1A:F9:32:25:99:41:9F:86:AD:70:A5:F7:E6:16:4F:34 Authority key identifier: E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 Certificate issuer: /CN=A914C4D7/serialNumber=E6F885B8C1E634AE399ECAB8173A03DB8E4C1294 Certificate serial: 0D13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft Manifest number: 0D0B Signing time: Sat 18 May 2024 18:44:23 +0000 Manifest this update: Sat 18 May 2024 18:44:23 +0000 Manifest next update: Sat 25 May 2024 18:44:23 +0000 Files and hashes: 1: 5viFuMHmNK45nsq4FzoD245MEpQ.crl (hash: HPJ13iM/YfOZSbStUYRZP4KCkoY1pJv+qjDS7ZYanSo=) 2: 1801797EB79211E986129837C4F9AE02.roa (hash: gxatBMJxzJVFhi2OhDZcobAamssK44JADN8sTBmFx6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3347 (0xd13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4D7/serialNumber=E6F885B8C1E634AE399ECAB8173A03DB8E4C1294 Validity Not Before: May 18 18:44:23 2024 GMT Not After : May 25 18:44:23 2024 GMT Subject: CN=6648f707-e0c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:83:2c:6e:d2:2d:28:e4:88:ad:31:b6:05:8d: cb:0a:08:49:52:15:49:0b:b3:f1:0e:ba:0e:c9:1f: ee:0c:07:62:64:94:2f:a1:c2:53:a0:9d:eb:3b:bc: 98:f0:bf:8e:88:85:01:7a:0b:01:fa:b5:7a:33:f7: a3:6a:03:49:cb:28:6e:f0:f4:dd:23:da:82:99:70: 1c:d7:ff:f3:0b:ad:a8:49:6c:a8:c0:fd:50:46:67: e8:08:11:2b:e6:f0:3b:7a:54:0d:45:06:a6:3d:45: ea:1c:20:f0:00:f8:1a:4e:f2:dc:c5:65:2f:78:1f: 11:4b:67:7a:63:b9:c3:8a:b4:7e:c2:dc:b4:d7:a1: 48:d8:36:1e:b7:ec:de:f5:26:5c:38:04:9e:b5:01: 16:08:f3:ff:13:16:46:3e:d1:1c:eb:71:28:44:05: 1e:df:f6:77:f7:c3:31:b3:ad:41:00:4b:65:b2:ff: 9c:9a:6e:27:be:27:56:c1:62:75:53:66:7f:61:8c: f2:4d:b5:14:c7:69:44:a6:d1:76:a6:f6:19:2b:16: cc:32:43:0e:51:76:ad:a4:05:da:6e:28:e6:6c:e5: 77:1e:c4:54:fa:33:39:03:3c:d1:f3:e7:de:85:ab: 1f:0d:90:cb:e9:9c:72:8c:ac:af:80:38:11:7e:50: c5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EB:9E:81:1A:F9:32:25:99:41:9F:86:AD:70:A5:F7:E6:16:4F:34 X509v3 Authority Key Identifier: keyid:E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:8f:f5:b5:fa:41:b4:2c:69:b2:77:b7:55:b3:1c:a5:7e:ec: 45:6a:4b:4c:ae:1b:f0:e2:cf:f9:d8:6c:4d:1b:45:ca:04:c6: 6b:4a:d6:de:a9:81:9b:f5:53:d2:43:12:3e:d5:73:cc:6c:a7: c6:96:3f:48:1a:6a:6c:1b:b7:2c:69:21:b8:a3:95:ac:a8:9c: 5f:44:40:c1:59:ab:58:b5:b9:03:e2:a8:85:6e:6a:69:34:49: 29:71:c0:23:52:f2:5c:9b:1e:0f:fd:52:ff:10:5f:30:54:25: 18:52:08:f6:43:d9:dc:a0:7f:38:a6:10:ac:62:db:7c:72:f3: df:65:40:62:93:26:fa:a9:3b:b5:24:ef:95:a3:10:e0:20:06: a7:5c:6a:b7:9c:3f:94:f4:42:1f:5f:cf:60:71:f6:88:61:7d: bf:f9:a1:64:b2:96:63:ed:26:0c:d5:f5:53:47:03:d6:b8:f0: e6:24:a3:b1:bc:39:f4:6a:a1:4f:f7:9f:15:5e:6f:4a:8a:c6: 9c:6f:02:79:58:10:d5:82:96:08:ea:44:82:0c:95:01:95:32: c6:bf:cf:89:df:92:64:b6:a3:f9:51:87:f6:7b:39:1b:f8:fa: 1e:42:3d:9f:c3:99:6d:0f:73:02:5d:b6:d0:df:cf:4c:36:28: bd:29:52:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RDcxMTAvBgNVBAUTKEU2Rjg4NUI4QzFFNjM0QUUzOTlFQ0FCODE3M0EwM0RC OEU0QzEyOTQwHhcNMjQwNTE4MTg0NDIzWhcNMjQwNTI1MTg0NDIzWjAYMRYwFAYD VQQDEw02NjQ4ZjcwNy1lMGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4MsbtItKOSIrTG2BY3LCghJUhVJC7PxDroOyR/uDAdiZJQvocJToJ3rO7yY 8L+OiIUBegsB+rV6M/ejagNJyyhu8PTdI9qCmXAc1//zC62oSWyowP1QRmfoCBEr 5vA7elQNRQamPUXqHCDwAPgaTvLcxWUveB8RS2d6Y7nDirR+wty016FI2DYet+ze 9SZcOASetQEWCPP/ExZGPtEc63EoRAUe3/Z398Mxs61BAEtlsv+cmm4nvidWwWJ1 U2Z/YYzyTbUUx2lEptF2pvYZKxbMMkMOUXatpAXabijmbOV3HsRU+jM5AzzR8+fe hasfDZDL6ZxyjKyvgDgRflDFWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/rnoEa +TIlmUGfhq1wpffmFk80MB8GA1UdIwQYMBaAFOb4hbjB5jSuOZ7KuBc6A9uOTBKU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRENy85OUQ5MTUzQUI3 OTAxMUU5QkVFOEREMzRDNEY5QUUwMi81dmlGdU1IbU5LNDVuc3E0RnpvRDI0NU1F cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2aUZ1TUhtTks0NW5zcTRGem9EMjQ1TUVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRENy85OUQ5MTUzQUI3OTAxMUU5QkVFOEREMzRDNEY5QUUwMi81dmlGdU1IbU5L NDVuc3E0RnpvRDI0NU1FcFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJj/W1+kG0LGmyd7dVsxylfuxFaktMrhvw4s/52GxNG0XKBMZrStbe qYGb9VPSQxI+1XPMbKfGlj9IGmpsG7csaSG4o5WsqJxfREDBWatYtbkD4qiFbmpp NEkpccAjUvJcmx4P/VL/EF8wVCUYUgj2Q9ncoH84phCsYtt8cvPfZUBikyb6qTu1 JO+VoxDgIAanXGq3nD+U9EIfX89gcfaIYX2/+aFkspZj7SYM1fVTRwPWuPDmJKOx vDn0aqFP958VXm9KisacbwJ5WBDVgpYI6kSCDJUBlTLGv8+J35JktqP5UYf2ezkb +PoeQj2fw5ltD3MCXbbQ389MNii9KVJN -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org