$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: E5jq8xstiHjmS/0v+gwFywnqe6ocRIQ1/EODunKJyLU= Subject key identifier: 00:15:6C:BC:0C:86:22:D0:A7:7A:9E:F9:18:40:C4:7B:DE:9F:DD:72 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 01A5 Signing time: Sat 01 Jun 2024 05:51:17 +0000 Manifest this update: Sat 01 Jun 2024 05:51:17 +0000 Manifest next update: Sat 08 Jun 2024 05:51:17 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: ZYCwQtfjFUw3Jz6Rxz68t3RWMt2ohaaeV26hRxrnkPo=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: /GIZ8EE2qpv2qSmSHnfpq4oc3z3rckA0lTZLTGHlwNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:51:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Jun 1 05:51:17 2024 GMT Not After : Jun 8 05:51:17 2024 GMT Subject: CN=665ab6d5-cd27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9f:ed:b0:0f:a0:95:dc:fd:a9:22:57:21:a9: bf:94:01:06:d5:aa:b0:2e:98:5d:85:aa:42:2f:11: b6:0f:cb:09:b8:f0:db:f7:54:c4:f9:57:0f:e8:42: 90:f8:a9:3b:6a:95:3b:80:3c:7e:d1:3f:85:c6:9d: 09:d4:90:3c:b4:94:a3:b8:4d:9d:f9:d0:56:2d:98: ee:db:41:96:99:6b:51:5f:79:12:e5:7d:28:95:c8: 52:de:ee:30:25:72:53:d3:cf:87:ba:e1:b5:3f:c2: 29:40:6b:d6:95:16:ec:82:0d:2e:a6:1d:f2:38:0e: a8:8e:ac:64:c1:ab:9b:13:9c:92:21:72:9a:fb:f1: 81:c3:f3:a8:25:47:02:98:7f:40:db:b2:47:49:4f: a3:3f:a2:8f:2d:39:d3:46:9d:cd:21:66:7a:cb:fd: d2:ce:3c:76:e0:4d:29:09:54:f7:7f:06:ec:e1:5f: 68:08:b8:fe:ca:fc:98:49:72:a7:f7:ce:97:84:b9: 7c:f3:7d:0c:4f:f7:b3:4b:91:d8:22:03:8f:1f:a5: fd:10:dd:f7:4b:32:38:8b:dd:28:c7:bf:84:e9:f1: 68:c1:2b:c0:39:d9:bb:7d:13:b4:13:ac:cf:96:92: 78:2b:85:ce:b4:c2:96:13:9a:ca:46:1b:3e:d0:10: 40:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:15:6C:BC:0C:86:22:D0:A7:7A:9E:F9:18:40:C4:7B:DE:9F:DD:72 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:b4:69:ec:75:26:b5:c8:6d:9c:ad:9a:88:32:04:d6:e4:0a: d3:b0:7d:36:6f:de:0b:ac:7d:0f:ed:13:56:7d:54:13:4f:d9: c5:1a:2f:00:5c:c4:65:37:33:82:94:c3:08:40:6f:c3:14:a8: a2:90:a3:9b:1e:66:e6:05:0e:37:06:4e:d0:7d:c8:66:29:99: b5:67:d1:61:d3:c3:b0:79:fa:80:19:3e:8d:a4:73:4d:36:e3: 9e:7e:f4:c9:80:cb:b8:bb:90:6e:1d:23:ff:d6:1a:e7:0b:dc: 56:e6:cf:80:ec:37:e0:de:e6:d1:38:62:b7:b3:57:38:c2:73: d8:c5:11:f7:27:a2:d2:ce:63:f8:7f:72:d4:d1:eb:cc:fd:ad: 28:dc:a8:9b:73:2c:e5:2b:f6:9f:92:ee:c0:ec:13:80:26:0e: 02:25:4e:a0:3a:9c:17:cf:d8:7d:cf:f2:95:71:bf:47:f3:6b: 35:d5:8e:0e:30:7f:4c:da:60:99:4a:8a:95:79:ac:16:b7:f1: 44:36:d7:db:21:95:4b:b7:e9:eb:f8:4d:ef:08:e5:4a:3c:e4: b5:2b:c1:06:5e:68:2c:2e:28:b1:01:6e:72:1f:a6:0a:fa:25: 45:f3:cd:a6:b2:dc:64:34:93:8d:b0:88:17:00:b2:79:8e:d5: 11:b0:c9:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjQwNjAxMDU1MTE3WhcNMjQwNjA4MDU1MTE3WjAYMRYwFAYD VQQDEw02NjVhYjZkNS1jZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZ/tsA+gldz9qSJXIam/lAEG1aqwLphdhapCLxG2D8sJuPDb91TE+VcP6EKQ +Kk7apU7gDx+0T+Fxp0J1JA8tJSjuE2d+dBWLZju20GWmWtRX3kS5X0olchS3u4w JXJT08+HuuG1P8IpQGvWlRbsgg0uph3yOA6ojqxkwaubE5ySIXKa+/GBw/OoJUcC mH9A27JHSU+jP6KPLTnTRp3NIWZ6y/3Szjx24E0pCVT3fwbs4V9oCLj+yvyYSXKn 986XhLl8830MT/ezS5HYIgOPH6X9EN33SzI4i90ox7+E6fFowSvAOdm7fRO0E6zP lpJ4K4XOtMKWE5rKRhs+0BBADQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAVbLwM hiLQp3qe+RhAxHven91yMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBItGnsdSa1yG2crZqIMgTW5ArTsH02b94LrH0P7RNWfVQTT9nFGi8A XMRlNzOClMMIQG/DFKiikKObHmbmBQ43Bk7QfchmKZm1Z9Fh08OwefqAGT6NpHNN NuOefvTJgMu4u5BuHSP/1hrnC9xW5s+A7Dfg3ubROGK3s1c4wnPYxRH3J6LSzmP4 f3LU0evM/a0o3KibcyzlK/afku7A7BOAJg4CJU6gOpwXz9h9z/KVcb9H82s11Y4O MH9M2mCZSoqVeawWt/FENtfbIZVLt+nr+E3vCOVKPOS1K8EGXmgsLiixAW5yH6YK +iVF882mstxkNJONsIgXALJ5jtURsMne -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:16 2024 by rpki-client on console-ams.rpki-client.org