$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.mft (raw, json) Hash identifier: viLzRXiWmrilYwwjrT/5d9Iz7bBuZA5IUT0abB1zKOw= Subject key identifier: 52:F4:AA:2C:A2:B7:46:C8:13:F4:99:C7:EB:63:8A:6C:40:2F:7A:2E Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 065A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft Manifest number: 0654 Signing time: Sat 18 May 2024 23:36:26 +0000 Manifest this update: Sat 18 May 2024 23:36:25 +0000 Manifest next update: Sat 25 May 2024 23:36:25 +0000 Files and hashes: 1: 1O0zil4gh9gu9ML2RZm0ERJy5eA.crl (hash: qdV+iySdLQS25jgpbdoFj/mr3tw/rK1Dz/NsTR9wBSA=) 2: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (hash: Tqs2BwBQN3aw7diwsiZGDcrNhdesKMfXDb80Fkkbg3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: May 18 23:36:25 2024 GMT Not After : May 25 23:36:25 2024 GMT Subject: CN=66493b7a-e867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ad:1f:cc:67:87:db:92:b1:f4:df:70:86:10: 6b:91:86:b5:c8:7e:7b:cc:f0:f9:41:1e:8f:cc:91: 38:33:83:d2:97:4d:6f:86:3f:ad:4e:5f:8c:06:e4: 74:9c:93:e1:d3:76:34:ba:44:21:97:69:2f:21:a0: 34:7d:af:a3:7c:0e:a3:34:50:2e:a6:e5:5b:2d:40: b1:a8:61:c9:5c:d9:38:b2:03:99:cc:51:6d:f4:84: 2f:b4:6d:9c:d4:d6:93:74:b7:ee:07:84:f7:d1:e4: 7d:5e:70:ea:b6:87:57:c8:e8:38:df:70:40:31:fb: 69:d9:e5:cc:7b:0e:03:b9:55:0c:0b:c1:e7:f3:05: 8c:e0:30:0a:d7:bd:b7:51:0c:6d:df:06:f0:2f:50: 59:f8:41:34:cf:c4:21:d2:e1:d5:15:34:7e:6c:ef: b0:a4:ae:4d:ca:41:fd:06:44:7e:16:62:4f:52:16: 87:62:bc:62:0e:36:e1:6e:43:be:83:e7:f1:11:53: 85:b9:a4:5f:49:10:11:1c:2a:99:ad:1e:e9:8b:14: 33:15:e9:94:76:11:60:dd:eb:85:5b:7a:f2:62:4d: 43:31:bb:4b:cb:37:48:9b:74:ff:41:af:15:dc:94: e9:9a:6d:5f:72:ea:6c:62:a1:49:2f:ec:f6:a1:31: d3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F4:AA:2C:A2:B7:46:C8:13:F4:99:C7:EB:63:8A:6C:40:2F:7A:2E X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:ef:f6:e1:d5:59:58:e9:21:ee:c8:c2:3b:9f:ac:26:0b:ab: 7c:26:ed:45:2a:50:a3:90:aa:ad:9f:fc:d3:bb:e3:ac:9c:a5: 3e:50:18:9f:a2:e0:c3:56:96:dc:a9:08:cb:be:8e:b3:69:50: 71:fe:3d:4d:e5:3f:6b:08:7d:22:1a:94:31:c4:ad:5a:78:59: f8:89:aa:7f:03:0b:83:5b:f6:a2:7f:e1:5d:69:3f:0a:dc:86: ff:c3:b0:4d:20:f9:85:8b:67:56:14:fd:50:d0:1b:42:5d:d6: 52:77:a0:c2:56:a9:26:37:3f:93:37:4a:f4:d7:7f:6b:f1:30: fe:35:89:23:de:d3:ac:9a:b3:95:13:91:28:1e:ce:8c:a7:af: de:f5:94:89:9d:28:b1:01:19:e8:20:87:85:28:5e:08:7f:85: ff:85:6c:2d:fd:63:25:6b:85:5c:b3:f2:a5:6c:5e:38:b7:21: 6a:04:38:3b:94:f7:01:0b:b0:b3:b9:95:3a:17:49:a5:f2:10: ea:17:30:68:6b:1b:77:7d:c0:45:58:40:01:88:a5:2f:6f:c0: eb:71:29:66:65:8c:3a:f2:d5:e5:1d:c9:e1:35:35:cb:fd:f4: 7c:5b:6f:c3:41:0d:f3:ef:f9:cf:bf:11:32:c7:d8:14:c4:a0: 6e:de:e0:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjQwNTE4MjMzNjI1WhcNMjQwNTI1MjMzNjI1WjAYMRYwFAYD VQQDEw02NjQ5M2I3YS1lODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApq0fzGeH25Kx9N9whhBrkYa1yH57zPD5QR6PzJE4M4PSl01vhj+tTl+MBuR0 nJPh03Y0ukQhl2kvIaA0fa+jfA6jNFAupuVbLUCxqGHJXNk4sgOZzFFt9IQvtG2c 1NaTdLfuB4T30eR9XnDqtodXyOg433BAMftp2eXMew4DuVUMC8Hn8wWM4DAK1723 UQxt3wbwL1BZ+EE0z8Qh0uHVFTR+bO+wpK5NykH9BkR+FmJPUhaHYrxiDjbhbkO+ g+fxEVOFuaRfSRARHCqZrR7pixQzFemUdhFg3euFW3ryYk1DMbtLyzdIm3T/Qa8V 3JTpmm1fcupsYqFJL+z2oTHTXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFL0qiyi t0bIE/SZx+tjimxAL3ouMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5 Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDI7/bh1VlY6SHuyMI7n6wmC6t8Ju1FKlCjkKqtn/zTu+OsnKU+UBif ouDDVpbcqQjLvo6zaVBx/j1N5T9rCH0iGpQxxK1aeFn4iap/AwuDW/aif+FdaT8K 3Ib/w7BNIPmFi2dWFP1Q0BtCXdZSd6DCVqkmNz+TN0r0139r8TD+NYkj3tOsmrOV E5EoHs6Mp6/e9ZSJnSixARnoIIeFKF4If4X/hWwt/WMla4Vcs/KlbF44tyFqBDg7 lPcBC7CzuZU6F0ml8hDqFzBoaxt3fcBFWEABiKUvb8DrcSlmZYw68tXlHcnhNTXL /fR8W2/DQQ3z7/nPvxEyx9gUxKBu3uDq -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org