$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: kzHqj8Nt+v1g/OQnqCbrBIpBnP0L+I0uhdXo8kuFuTg= Subject key identifier: E1:80:A9:BE:8D:22:DA:0F:8B:0A:A2:D6:DF:F6:17:0F:3D:41:21:80 Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 3405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 33DE Signing time: Sat 18 May 2024 14:20:59 +0000 Manifest this update: Sat 18 May 2024 14:20:59 +0000 Manifest next update: Sat 25 May 2024 14:20:59 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: IYZxH99pyVIKvTweIgWGAk48sw8ci3eRwRv8aBFLL10=) 2: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: 05qJ0sn8rQBNFNv369WrDd8tR/TB9GEAXezZf+eaYaA=) 3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: unX4U7vjrWbMRsfP4blBuADgCRj9x/Ccf3D+JmpWjmY=) 4: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: 63yMYUZE3120qDbsxbpHv5kOq7xlxLFTMK9ZWashgbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13317 (0x3405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: May 18 14:20:59 2024 GMT Not After : May 25 14:20:59 2024 GMT Subject: CN=6648b94b-1db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:28:de:84:0c:b2:fa:14:68:c6:1a:1d:44: 9a:de:3b:e3:09:6c:27:2c:2d:02:9a:3f:f6:70:79: e4:0c:e9:b9:0a:f4:34:02:65:a7:30:ba:7c:fc:d0: 59:9d:cc:67:4d:37:27:ab:4b:e9:55:04:37:68:57: bc:be:fe:78:78:28:2a:02:33:54:94:dd:77:9a:74: a8:c9:5c:b8:55:31:20:64:1e:5d:95:3a:ee:3c:ed: ae:28:9e:8b:84:87:09:3d:15:25:12:39:70:9a:30: 43:0b:66:ac:b3:e9:da:af:2c:d6:5f:1e:7b:70:5b: f4:41:db:65:31:af:63:a2:05:8e:6e:29:35:d8:aa: c3:0e:6c:8d:38:21:27:05:1c:bc:25:8d:ca:fd:b8: 2f:54:7e:39:56:05:2b:2d:55:ba:bf:c2:d7:c2:64: 20:4c:d6:6d:b1:c1:43:e6:43:ca:9d:03:0f:0e:33: 74:1e:1a:46:10:06:ae:b9:fd:b4:f6:0a:16:54:6a: a8:68:68:27:7d:eb:91:bc:57:3e:bd:47:bf:77:9d: 9c:3b:1b:2c:2d:cf:60:f6:13:0a:cd:01:a3:07:fa: ac:a9:67:81:c4:7b:f2:90:6d:ac:ae:46:7e:85:82: 83:a4:98:93:14:91:0a:78:d8:61:bb:3b:03:4b:00: 31:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:80:A9:BE:8D:22:DA:0F:8B:0A:A2:D6:DF:F6:17:0F:3D:41:21:80 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:69:2e:1a:85:8a:42:a2:78:1e:4e:01:46:a5:5f:7b:e5:59: 52:53:46:49:36:e9:1c:5e:49:85:46:36:cd:32:e9:92:6d:71: 78:fc:9b:0f:ac:cc:0f:53:2c:40:f7:67:9e:46:dd:ff:cd:2b: a0:9c:52:02:a3:4d:e6:b6:44:52:cd:81:17:d3:43:e4:55:11: b5:f1:e2:32:9e:5f:19:55:70:26:63:4f:3b:d9:4c:7e:40:4b: 0f:12:15:8b:ac:e6:4a:57:fa:2d:ba:75:31:dc:f6:d7:9e:9e: 19:96:0c:3f:3c:82:27:02:e8:f4:0e:6b:e0:d3:b8:2b:93:66: f1:11:30:18:c2:e5:a9:3d:34:25:6b:c0:a1:d7:5c:8d:38:eb: ee:45:16:0d:bc:94:4e:f4:8c:ce:42:8a:81:b6:01:43:2b:fc: 44:66:8c:f5:ce:cd:59:ca:c4:a7:a6:03:41:ed:60:de:82:aa: 80:ce:16:92:92:e4:ce:e7:e5:57:91:5b:b2:54:fd:3f:0a:03: 17:11:51:dc:76:25:c0:c6:5f:23:a2:56:36:29:3a:1a:91:db: b1:50:89:01:4c:88:09:08:c3:82:f6:65:85:ac:fd:56:e1:b9: 0f:ee:39:4b:2c:76:dc:af:b0:a8:46:71:d9:58:d9:d2:fe:eb: ca:70:f2:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjQwNTE4MTQyMDU5WhcNMjQwNTI1MTQyMDU5WjAYMRYwFAYD VQQDEw02NjQ4Yjk0Yi0xZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwowo3oQMsvoUaMYaHUSa3jvjCWwnLC0Cmj/2cHnkDOm5CvQ0AmWnMLp8/NBZ ncxnTTcnq0vpVQQ3aFe8vv54eCgqAjNUlN13mnSoyVy4VTEgZB5dlTruPO2uKJ6L hIcJPRUlEjlwmjBDC2ass+naryzWXx57cFv0QdtlMa9jogWObik12KrDDmyNOCEn BRy8JY3K/bgvVH45VgUrLVW6v8LXwmQgTNZtscFD5kPKnQMPDjN0HhpGEAauuf20 9goWVGqoaGgnfeuRvFc+vUe/d52cOxssLc9g9hMKzQGjB/qsqWeBxHvykG2srkZ+ hYKDpJiTFJEKeNhhuzsDSwAxQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGAqb6N ItoPiwqi1t/2Fw89QSGAMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6aS4ahYpCongeTgFGpV975VlSU0ZJNukcXkmFRjbNMumSbXF4/JsP rMwPUyxA92eeRt3/zSugnFICo03mtkRSzYEX00PkVRG18eIynl8ZVXAmY0872Ux+ QEsPEhWLrOZKV/otunUx3PbXnp4Zlgw/PIInAuj0Dmvg07grk2bxETAYwuWpPTQl a8Ch11yNOOvuRRYNvJRO9IzOQoqBtgFDK/xEZoz1zs1ZysSnpgNB7WDegqqAzhaS kuTO5+VXkVuyVP0/CgMXEVHcdiXAxl8jolY2KToakduxUIkBTIgJCMOC9mWFrP1W 4bkP7jlLLHbcr7CoRnHZWNnS/uvKcPKU -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org