$ rpki-client -vvf rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft File: E5bqlAlF_CBf8uPRsr4bkNcsxek.mft (raw, json) Hash identifier: TZiQInZHLV/UEtBCAaqEztqhufvSCY1XzrDS0xEeXfs= Subject key identifier: AD:33:97:FB:FB:7B:48:C1:03:3F:04:42:81:11:A6:1C:46:F3:96:75 Authority key identifier: 13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 Certificate issuer: /CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Certificate serial: 043D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft Manifest number: 0437 Signing time: Sun 19 May 2024 02:00:18 +0000 Manifest this update: Sun 19 May 2024 02:00:18 +0000 Manifest next update: Sun 26 May 2024 02:00:18 +0000 Files and hashes: 1: E5bqlAlF_CBf8uPRsr4bkNcsxek.crl (hash: 296b45ai/kEQK81WaJNsWwtgcUoD+g2I5z7srwcGHCo=) 2: EB17A8C2152511ECAD055780C4F9AE02.roa (hash: tSfOi8QEd8WZFX+kKoxAdQaNFmUMXky40Cr2qEqOVlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Validity Not Before: May 19 02:00:18 2024 GMT Not After : May 26 02:00:18 2024 GMT Subject: CN=66495d32-b796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:67:3c:d8:80:37:d9:49:32:97:da:66:63:df: ed:ca:77:03:c1:ca:6d:4c:12:18:94:e7:37:85:68: 0d:e2:f9:a7:6f:36:ff:af:74:f9:59:f0:b5:6f:9c: 3e:e7:4c:6a:b7:3a:34:cc:58:2d:22:cc:de:a3:4f: 9c:22:28:cb:31:b1:a5:70:54:b5:d4:4d:4d:05:f4: a5:23:91:4b:4a:89:ce:f2:a3:c1:db:aa:71:18:0a: 87:b2:35:ed:f6:26:10:05:bc:5c:30:97:8b:4b:46: db:21:29:e0:ea:86:52:f6:8c:90:d6:df:6c:3d:4d: df:9c:15:07:1f:71:49:d4:c6:15:ab:40:99:ed:e2: ec:82:83:8f:86:c9:0a:4d:5f:c8:58:dd:ac:ae:13: 1c:a4:c7:92:e3:a5:fa:46:77:6e:40:88:b6:56:f7: e4:43:79:26:71:ce:5f:5c:e8:8a:2e:d7:de:0d:1b: 48:9b:d4:b7:30:f4:2c:c9:58:19:8b:2e:5a:9f:3e: 0e:c0:79:c0:4b:f2:59:a7:23:46:c4:54:af:e4:8c: fc:b2:59:65:c9:4b:fb:16:67:82:bb:22:43:14:9c: 92:00:43:3b:31:59:14:2d:e1:2b:c4:15:d5:8c:c3: 47:fa:72:4b:8f:11:63:09:5a:9b:6e:ac:37:5b:71: c3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:33:97:FB:FB:7B:48:C1:03:3F:04:42:81:11:A6:1C:46:F3:96:75 X509v3 Authority Key Identifier: keyid:13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:e1:e7:95:bb:56:62:83:42:52:4c:a0:d1:a1:1b:b8:5a:f4: 58:37:00:7c:11:cc:17:6b:68:a8:74:b8:84:76:28:3e:54:42: 4b:c6:32:85:29:0a:bc:bb:26:ed:c1:39:80:53:65:f9:02:25: e3:ae:2c:02:dc:c6:99:94:3f:63:a0:9e:d4:a3:0e:0c:c9:d6: f8:57:4d:f7:2b:58:b9:4f:d6:45:c7:08:17:97:f7:2c:1e:59: f7:7b:48:3c:c1:16:ce:f6:b4:a2:5b:f4:3c:0d:21:37:c9:11: f4:87:c9:76:a3:1f:10:a3:df:1e:80:78:a0:68:61:a3:33:a5: 77:1b:91:a9:a1:35:09:6b:97:4d:3c:b6:12:0e:f7:13:b8:f2: 47:76:2a:5b:0f:a5:e8:09:eb:88:77:f9:05:45:85:1f:34:9a: 58:0d:d0:76:53:61:c1:a5:c7:a0:6f:ae:9b:a3:64:c8:ff:e3: 98:d5:01:9d:66:71:b0:95:c6:72:76:a0:c8:56:17:90:d6:21: e5:99:2c:81:e8:7b:74:81:f9:76:33:87:ff:3a:0c:31:fe:6f: c4:c0:ed:1a:c7:4a:8b:94:9b:ac:9f:0f:58:fd:53:bd:50:43: fb:57:4f:b2:d4:14:b0:57:83:5b:41:94:1a:a5:77:ea:b4:b3: 98:82:9a:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERGNTYxMTAvBgNVBAUTKDEzOTZFQTk0MDk0NUZDMjA1RkYyRTNEMUIyQkUxQjkw RDcyQ0M1RTkwHhcNMjQwNTE5MDIwMDE4WhcNMjQwNTI2MDIwMDE4WjAYMRYwFAYD VQQDEw02NjQ5NWQzMi1iNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Wc82IA32Ukyl9pmY9/tyncDwcptTBIYlOc3hWgN4vmnbzb/r3T5WfC1b5w+ 50xqtzo0zFgtIszeo0+cIijLMbGlcFS11E1NBfSlI5FLSonO8qPB26pxGAqHsjXt 9iYQBbxcMJeLS0bbISng6oZS9oyQ1t9sPU3fnBUHH3FJ1MYVq0CZ7eLsgoOPhskK TV/IWN2srhMcpMeS46X6RnduQIi2VvfkQ3kmcc5fXOiKLtfeDRtIm9S3MPQsyVgZ iy5anz4OwHnAS/JZpyNGxFSv5Iz8slllyUv7FmeCuyJDFJySAEM7MVkULeErxBXV jMNH+nJLjxFjCVqbbqw3W3HDGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0zl/v7 e0jBAz8EQoERphxG85Z1MB8GA1UdIwQYMBaAFBOW6pQJRfwgX/Lj0bK+G5DXLMXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REY1Ni9CRDdGQTAzODE1 MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9DQmY4dVBSc3I0YmtOY3N4 ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1YnFsQWxGX0NCZjh1UFJzcjRia05jc3hlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REY1Ni9CRDdGQTAzODE1MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9D QmY4dVBSc3I0YmtOY3N4ZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU4eeVu1Zig0JSTKDRoRu4WvRYNwB8EcwXa2iodLiEdig+VEJLxjKF KQq8uybtwTmAU2X5AiXjriwC3MaZlD9joJ7Uow4Mydb4V033K1i5T9ZFxwgXl/cs Hln3e0g8wRbO9rSiW/Q8DSE3yRH0h8l2ox8Qo98egHigaGGjM6V3G5GpoTUJa5dN PLYSDvcTuPJHdipbD6XoCeuId/kFRYUfNJpYDdB2U2HBpcegb66bo2TI/+OY1QGd ZnGwlcZydqDIVheQ1iHlmSyB6Ht0gfl2M4f/Ogwx/m/EwO0ax0qLlJusnw9Y/VO9 UEP7V0+y1BSwV4NbQZQapXfqtLOYgpqE -----END CERTIFICATE-----Generated at Sun May 19 02:59:07 2024 by rpki-client on console-ams.rpki-client.org