$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: j19lyZCHmNhDvhvrvLicQQoW8vLTFSktvFDkI7xPxL0= Subject key identifier: 95:87:3A:EC:BA:33:0C:E8:07:DD:52:07:3E:BA:9F:1C:E1:DA:DC:58 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 048B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 047B Signing time: Sun 19 May 2024 01:45:19 +0000 Manifest this update: Sun 19 May 2024 01:45:19 +0000 Manifest next update: Sun 26 May 2024 01:45:19 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: JP3SXebU+TR8JZxssoQWUmXEvJuAhAfK1rIjvHBsAZE=) 2: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: QDfT9hOVpoApckwOzJZ1G4QaXGfi3L3noHOtzJVi/yc=) 3: 13335846175711ECB0193A7BC4F9AE02.roa (hash: j5BMrnB2eJaUYuNsShYdECS4/o2i8fjOWoaiHMJEHvk=) 4: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: dksWrux2b7H1qvIfb48CoqoJju16yTaDJoQULn1IY1I=) 5: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: lFUTTleJWpxB1XcaomK4gRGpuzKUF1xvFlhr9ehhIs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1163 (0x48b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: May 19 01:45:19 2024 GMT Not After : May 26 01:45:19 2024 GMT Subject: CN=664959af-b17f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:53:60:e7:c8:67:0b:0a:a8:de:90:dc:b1:0d: 30:96:e2:de:c3:75:e2:49:b3:99:39:f8:7e:50:07: 58:a8:3c:53:11:b5:48:79:f7:98:fd:3a:1f:c6:ec: 49:9f:98:07:ef:3e:84:12:49:0a:d4:3e:cb:53:24: 94:93:bb:c1:f4:43:d1:dd:0d:3a:ba:74:44:55:c7: b3:2a:e7:00:aa:38:69:74:ac:9b:81:64:e3:99:cf: 2d:4f:36:93:0d:ca:0c:23:7a:ea:0a:14:f3:33:f9: 12:4a:32:02:3c:b0:fd:9f:92:bd:94:87:35:b0:dd: e7:c5:fe:c6:0e:3a:82:74:74:2c:88:da:f5:ac:1d: 4f:15:62:d1:81:e2:41:54:4b:8b:3d:3d:43:43:53: 25:70:59:3d:1a:e1:e8:07:9c:cf:8b:34:41:b5:6f: f2:0c:f8:41:4d:65:12:f1:51:c3:e2:17:77:fd:3e: f1:92:34:0e:6a:71:bd:d1:9e:77:21:42:4d:00:c6: 15:0f:e8:c3:cc:f5:f9:ea:81:cf:62:bc:e9:9a:91: 38:4b:98:30:32:dd:ad:2a:b9:96:09:65:3b:97:54: 00:5a:1b:ac:0f:72:b0:36:ef:8d:52:5c:f1:bb:29: f0:64:14:ed:1a:f6:9f:78:f0:0e:81:ae:17:ef:06: be:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:87:3A:EC:BA:33:0C:E8:07:DD:52:07:3E:BA:9F:1C:E1:DA:DC:58 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:da:c6:43:18:17:6d:d4:ab:d0:e9:eb:1f:d1:ba:3c:b2:45: a4:e8:69:75:88:d3:4b:f3:22:95:88:00:53:97:5e:10:75:a7: 67:5e:55:6d:5a:83:35:71:2b:34:59:22:c4:19:e4:e9:7b:4f: e5:1e:d8:3a:5f:e6:13:9e:4d:e1:02:cc:97:d3:df:b2:0d:bf: fd:4c:94:3f:2f:00:68:45:68:3e:15:66:41:34:63:05:94:bc: 98:ee:d8:fd:9e:eb:d7:85:1d:79:67:f8:ec:27:a5:ec:15:9a: c6:51:eb:7b:98:c5:50:69:4f:be:6c:5e:07:b4:8e:ce:f4:05: a6:6f:50:64:fa:75:cc:aa:0e:67:b3:15:81:a7:d0:06:16:48: 48:10:67:c3:9b:a8:67:c0:55:62:8d:b3:04:80:fe:a2:bd:52: d1:a6:f3:1c:b3:e4:9c:63:89:0d:f9:5a:d8:5a:9f:02:02:e7: a2:d5:88:ac:96:b4:93:34:a4:0d:7d:54:ce:9b:74:85:6d:67: c4:28:cc:29:b1:ce:c4:27:f4:91:c1:a2:fa:3b:32:d8:7c:9f: 59:9f:19:31:2f:00:f7:74:04:f7:6a:5d:5f:72:9a:e7:c3:c0: 55:29:43:1f:f9:88:2c:d4:bb:04:a3:9b:3c:5a:b3:6c:1d:ef: 26:7a:25:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjQwNTE5MDE0NTE5WhcNMjQwNTI2MDE0NTE5WjAYMRYwFAYD VQQDEw02NjQ5NTlhZi1iMTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFNg58hnCwqo3pDcsQ0wluLew3XiSbOZOfh+UAdYqDxTEbVIefeY/TofxuxJ n5gH7z6EEkkK1D7LUySUk7vB9EPR3Q06unREVcezKucAqjhpdKybgWTjmc8tTzaT DcoMI3rqChTzM/kSSjICPLD9n5K9lIc1sN3nxf7GDjqCdHQsiNr1rB1PFWLRgeJB VEuLPT1DQ1MlcFk9GuHoB5zPizRBtW/yDPhBTWUS8VHD4hd3/T7xkjQOanG90Z53 IUJNAMYVD+jDzPX56oHPYrzpmpE4S5gwMt2tKrmWCWU7l1QAWhusD3KwNu+NUlzx uynwZBTtGvafePAOga4X7wa+4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWHOuy6 MwzoB91SBz66nxzh2txYMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC22sZDGBdt1KvQ6esf0bo8skWk6Gl1iNNL8yKViABTl14QdadnXlVt WoM1cSs0WSLEGeTpe0/lHtg6X+YTnk3hAsyX09+yDb/9TJQ/LwBoRWg+FWZBNGMF lLyY7tj9nuvXhR15Z/jsJ6XsFZrGUet7mMVQaU++bF4HtI7O9AWmb1Bk+nXMqg5n sxWBp9AGFkhIEGfDm6hnwFVijbMEgP6ivVLRpvMcs+ScY4kN+VrYWp8CAuei1Yis lrSTNKQNfVTOm3SFbWfEKMwpsc7EJ/SRwaL6OzLYfJ9ZnxkxLwD3dAT3al1fcprn w8BVKUMf+Ygs1LsEo5s8WrNsHe8meiVD -----END CERTIFICATE-----Generated at Sun May 19 02:59:07 2024 by rpki-client on console-ams.rpki-client.org