$ rpki-client -vvf rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft File: Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft (raw, json) Hash identifier: dBx3OYFtJOpTFgcTX9p/gzoBxOCfX5Z0FVnf2KZtp/o= Subject key identifier: 5E:C8:4B:EA:B8:87:AC:2E:03:80:E4:A8:06:21:5C:D6:4B:A3:3C:9E Authority key identifier: 56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA Certificate issuer: /CN=A914F22A/serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Certificate serial: 12B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft Manifest number: 12AA Signing time: Sat 18 May 2024 17:36:32 +0000 Manifest this update: Sat 18 May 2024 17:36:32 +0000 Manifest next update: Sat 25 May 2024 17:36:32 +0000 Files and hashes: 1: Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl (hash: I94qS14iWlXT6GYnugfqD7URC2WWolPfnJ8TyWUmXvE=) 2: 8B2E3BA270BD11ED970C535FC4F9AE02.roa (hash: b9DIzkKW2WLSIAExdEKuDKS/iyGmueWk0jLgxyfQChI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4784 (0x12b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F22A/serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Validity Not Before: May 18 17:36:32 2024 GMT Not After : May 25 17:36:32 2024 GMT Subject: CN=6648e720-81db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:72:26:5e:bb:60:c5:f6:7b:40:f3:d3:38:d4: fe:35:4c:94:23:75:4d:48:b4:d7:13:74:cc:3a:16: 05:36:e4:e7:74:79:9a:ab:e1:cc:16:cf:de:bf:28: 08:19:a0:5f:9e:04:d4:52:76:0f:ad:06:6f:8f:54: 08:c2:ae:6b:1d:09:c8:5c:9a:bb:d5:da:40:e2:a2: ce:bb:0b:28:3b:3c:5a:8b:a2:4a:09:ac:87:39:b1: bc:a5:e3:3c:08:3b:ca:da:a5:f0:27:55:ae:e4:92: f9:7a:7e:b9:36:5b:d1:b6:8d:9d:9e:87:c7:0d:63: 95:fb:0a:e2:09:d2:30:ba:ce:da:f1:1d:c3:a4:c6: 49:7a:19:3a:83:da:af:e5:c3:8b:0e:19:61:68:84: b8:b1:36:5c:9c:c3:6c:e1:d6:21:3b:2c:66:c4:8f: 3c:40:99:ec:b3:ce:a0:d3:ad:a5:33:7e:3b:00:c4: e0:af:49:47:a2:e9:aa:99:ba:0b:52:8d:f0:98:22: 0a:55:37:c7:23:49:03:87:f3:ad:50:e8:c2:29:f3: 30:2c:fd:ec:81:52:50:b5:2a:9f:4c:5b:a3:ed:b0: 63:80:57:f2:a3:8e:57:16:dd:ba:4d:ca:0b:e5:1f: 84:bf:56:f2:02:76:31:4f:ab:38:87:d8:cc:d6:86: 4b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C8:4B:EA:B8:87:AC:2E:03:80:E4:A8:06:21:5C:D6:4B:A3:3C:9E X509v3 Authority Key Identifier: keyid:56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:48:35:10:02:73:dd:a1:94:13:9e:86:a5:fa:1d:19:24:12: da:35:02:b8:3d:fd:83:f6:15:7b:67:b1:e1:d8:f2:c8:98:f5: dc:1d:ab:a3:96:40:65:2a:c5:d1:f6:be:36:0a:b0:92:c3:cb: fb:c9:e8:68:f7:8e:62:94:17:19:25:63:50:02:6a:0a:e1:6a: a9:51:d1:6d:c1:e2:2a:8c:29:5f:52:f7:10:a8:6c:84:b4:75: 66:4c:5f:81:57:96:b3:5f:d4:8b:d7:a3:c6:f4:dd:09:b9:64: 4b:3c:ca:4a:f9:4e:a8:2a:bb:5b:f9:e0:0a:5b:c7:49:0d:cb: 38:a7:30:39:96:1a:14:57:f7:08:ed:5c:2c:86:52:6e:85:2e: 88:fb:a0:15:b6:50:0b:fe:15:90:c7:43:25:c4:69:8b:6a:9b: 1f:09:f2:dc:18:ef:9d:16:fa:5e:51:99:2d:a7:b0:54:15:17: 8a:38:d4:6d:01:ce:b1:2f:dc:fa:be:59:b1:a2:bf:f8:d7:be: 05:5f:f3:51:21:c8:44:d7:b9:59:15:84:1c:22:cc:78:98:3e: d5:7a:3d:5d:38:00:73:7c:6c:be:99:d3:77:38:98:1b:be:6c: 00:c9:5f:7b:cc:dd:d8:59:91:4f:84:74:32:ad:74:9a:59:30: 23:38:6c:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICErAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyMkExMTAvBgNVBAUTKDU2QUYxQ0QwQjRFMDdEMDAwQzY0QUIwMTZDMzNGNzg2 QTBERDkwRkEwHhcNMjQwNTE4MTczNjMyWhcNMjQwNTI1MTczNjMyWjAYMRYwFAYD VQQDEw02NjQ4ZTcyMC04MWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nImXrtgxfZ7QPPTONT+NUyUI3VNSLTXE3TMOhYFNuTndHmaq+HMFs/evygI GaBfngTUUnYPrQZvj1QIwq5rHQnIXJq71dpA4qLOuwsoOzxai6JKCayHObG8peM8 CDvK2qXwJ1Wu5JL5en65NlvRto2dnofHDWOV+wriCdIwus7a8R3DpMZJehk6g9qv 5cOLDhlhaIS4sTZcnMNs4dYhOyxmxI88QJnss86g062lM347AMTgr0lHoumqmboL Uo3wmCIKVTfHI0kDh/OtUOjCKfMwLP3sgVJQtSqfTFuj7bBjgFfyo45XFt26TcoL 5R+Ev1byAnYxT6s4h9jM1oZLbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7IS+q4 h6wuA4DkqAYhXNZLozyeMB8GA1UdIwQYMBaAFFavHNC04H0ADGSrAWwz94ag3ZD6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjIyQS83RUVDMUU0QzlD RDAxMUU4QjE2MTJCN0RDNEY5QUUwMi9WcThjMExUZ2ZRQU1aS3NCYkRQM2hxRGRr UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZxOGMwTFRnZlFBTVpLc0JiRFAzaHFEZGtQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjIyQS83RUVDMUU0QzlDRDAxMUU4QjE2MTJCN0RDNEY5QUUwMi9WcThjMExUZ2ZR QU1aS3NCYkRQM2hxRGRrUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUSDUQAnPdoZQTnoal+h0ZJBLaNQK4Pf2D9hV7Z7Hh2PLImPXcHauj lkBlKsXR9r42CrCSw8v7yeho945ilBcZJWNQAmoK4WqpUdFtweIqjClfUvcQqGyE tHVmTF+BV5azX9SL16PG9N0JuWRLPMpK+U6oKrtb+eAKW8dJDcs4pzA5lhoUV/cI 7VwshlJuhS6I+6AVtlAL/hWQx0MlxGmLapsfCfLcGO+dFvpeUZktp7BUFReKONRt Ac6xL9z6vlmxor/4174FX/NRIchE17lZFYQcIsx4mD7Vej1dOABzfGy+mdN3OJgb vmwAyV97zN3YWZFPhHQyrXSaWTAjOGyS -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org