$ rpki-client -vvf rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft File: 3fikyb7AEE4WzOMhqWWpLGYURTA.mft (raw, json) Hash identifier: 7fYBxu6FLUwUywbk24ZGQOeS1UZ4j5yL2HEgVSZxiCY= Subject key identifier: ED:69:A5:31:B4:42:F4:9C:A3:9E:72:40:DA:6F:0F:C0:32:C6:86:72 Authority key identifier: DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 Certificate issuer: /CN=A915518E/serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Certificate serial: 0D45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft Manifest number: 0D3C Signing time: Sat 18 May 2024 18:40:18 +0000 Manifest this update: Sat 18 May 2024 18:40:17 +0000 Manifest next update: Sat 25 May 2024 18:40:17 +0000 Files and hashes: 1: 3fikyb7AEE4WzOMhqWWpLGYURTA.crl (hash: DRLr873sRA0OVU2EZH9gGSEpT4q0jjNyYvwX4wBREmA=) 2: 215FAD42B98611E9A053044FC4F9AE02.roa (hash: wTGd2ek5BWcBcdfNOE0XeJ+PA7L13PzSNAsYg6mQ1+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3397 (0xd45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915518E/serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Validity Not Before: May 18 18:40:17 2024 GMT Not After : May 25 18:40:17 2024 GMT Subject: CN=6648f612-5647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f3:37:43:de:c6:95:bb:e9:b5:3e:0a:1f:92: 8f:38:6d:56:f0:c9:1c:6e:b0:d7:96:39:71:b4:cf: 16:81:b3:a7:6f:73:35:ba:d4:8e:73:31:58:67:f6: e7:b9:09:5b:f6:d2:af:de:ff:ad:94:07:3e:00:81: ac:39:17:aa:61:52:02:5d:e8:7c:d5:ae:21:15:45: e4:b6:78:93:c7:ea:cf:21:b6:8e:27:13:69:bc:c7: 2f:12:18:0e:17:cf:41:fb:ad:3e:03:b5:26:1f:a2: 42:b0:f2:36:f7:6a:be:30:15:45:f0:7d:e2:90:65: ff:0e:29:28:55:0b:49:82:c7:b2:40:8a:e9:27:b6: cc:d4:b8:4a:91:d0:b4:62:7a:0b:bc:50:56:23:4c: 56:a3:c6:aa:dc:61:d5:73:3b:71:ce:ae:a3:11:b3: 2b:5e:0e:7c:b3:a8:51:9b:cf:3c:a7:5c:cb:1c:73: a8:1a:a8:e9:16:99:c3:26:c3:31:12:a4:82:72:de: e0:b0:9b:d6:b7:be:a2:0d:78:83:c9:0c:11:03:dd: 2a:d0:7d:22:81:24:67:6c:cb:04:ec:21:f5:e9:1d: 5c:91:fd:c4:81:ec:e4:82:5f:f9:3f:f4:a4:89:22: 28:a3:12:1d:b3:5c:20:cf:3a:29:ac:0c:ee:b4:58: d3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:69:A5:31:B4:42:F4:9C:A3:9E:72:40:DA:6F:0F:C0:32:C6:86:72 X509v3 Authority Key Identifier: keyid:DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:b1:29:22:24:64:ed:c6:9d:1f:59:fb:e0:80:49:39:da:8d: d1:34:dc:80:f9:7c:15:65:a8:c6:19:89:c0:94:3b:bc:32:a2: 4b:9b:76:75:cf:85:1b:b1:56:fb:6a:8d:fa:d4:59:df:55:37: 87:91:62:50:3d:67:e0:1e:82:f4:7f:bd:73:04:f3:f3:cb:b5: d7:81:81:4b:98:1f:16:3e:dc:39:c3:da:13:9e:11:f7:d7:0e: 98:ae:ad:80:ae:aa:6e:8d:c8:10:f7:f1:8d:93:26:2e:80:7b: db:d8:b0:6e:6e:de:10:64:d3:48:97:65:1f:fa:d5:6a:6e:99: af:64:a3:18:ce:4b:2c:f8:39:df:5b:c3:af:ae:52:04:ca:6d: fa:01:e3:f0:2e:8f:90:c3:1e:05:3e:1f:ed:fb:cd:40:7d:f4: ab:d9:a2:cc:a3:ff:a9:35:ff:24:e7:ed:48:42:f4:36:5b:80: 84:99:00:4e:ff:51:78:2e:9e:34:d0:e0:17:96:53:e7:f7:a8: db:60:85:82:da:6e:86:ed:1f:80:e5:50:7c:1c:d4:f9:31:57: 50:19:75:74:66:3f:a3:49:69:76:61:6d:d0:c0:6c:21:a6:be: 0d:dd:07:5c:8f:be:67:4c:c0:89:d1:6c:89:70:d6:fa:c1:0f: 13:87:91:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxOEUxMTAvBgNVBAUTKERERjhBNEM5QkVDMDEwNEUxNkNDRTMyMUE5NjVBOTJD NjYxNDQ1MzAwHhcNMjQwNTE4MTg0MDE3WhcNMjQwNTI1MTg0MDE3WjAYMRYwFAYD VQQDEw02NjQ4ZjYxMi01NjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/M3Q97GlbvptT4KH5KPOG1W8MkcbrDXljlxtM8WgbOnb3M1utSOczFYZ/bn uQlb9tKv3v+tlAc+AIGsOReqYVICXeh81a4hFUXktniTx+rPIbaOJxNpvMcvEhgO F89B+60+A7UmH6JCsPI292q+MBVF8H3ikGX/DikoVQtJgseyQIrpJ7bM1LhKkdC0 YnoLvFBWI0xWo8aq3GHVcztxzq6jEbMrXg58s6hRm888p1zLHHOoGqjpFpnDJsMx EqSCct7gsJvWt76iDXiDyQwRA90q0H0igSRnbMsE7CH16R1ckf3Egezkgl/5P/Sk iSIooxIds1wgzzoprAzutFjT6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1ppTG0 QvSco55yQNpvD8AyxoZyMB8GA1UdIwQYMBaAFN34pMm+wBBOFszjIallqSxmFEUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE4RS9BNzk2RTkwQUFF MDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVFNFd6T01ocVdXcExHWVVS VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaWt5YjdBRUU0V3pPTWhxV1dwTEdZVVJUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE4RS9BNzk2RTkwQUFFMDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVF NFd6T01ocVdXcExHWVVSVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUsSkiJGTtxp0fWfvggEk52o3RNNyA+XwVZajGGYnAlDu8MqJLm3Z1 z4UbsVb7ao361FnfVTeHkWJQPWfgHoL0f71zBPPzy7XXgYFLmB8WPtw5w9oTnhH3 1w6Yrq2ArqpujcgQ9/GNkyYugHvb2LBubt4QZNNIl2Uf+tVqbpmvZKMYzkss+Dnf W8OvrlIEym36AePwLo+Qwx4FPh/t+81AffSr2aLMo/+pNf8k5+1IQvQ2W4CEmQBO /1F4Lp400OAXllPn96jbYIWC2m6G7R+A5VB8HNT5MVdQGXV0Zj+jSWl2YW3QwGwh pr4N3Qdcj75nTMCJ0WyJcNb6wQ8Th5HR -----END CERTIFICATE-----Generated at Sat May 18 19:15:24 2024 by rpki-client on console-ams.rpki-client.org