$ rpki-client -vvf rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft File: 1FgFH22pUil0dbSEvd0Pu-NJDnA.mft (raw, json) Hash identifier: uSDoY33yXQrvhKyPcf9vctJYaxiMBpjTDAmfjyXzJPw= Subject key identifier: E9:96:00:00:C8:50:66:DB:E2:93:E9:1A:15:98:DE:3B:A3:4A:B2:A8 Authority key identifier: D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70 Certificate issuer: /CN=A915D85E/serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70 Certificate serial: 0674 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft Manifest number: 0663 Signing time: Sat 18 May 2024 23:37:14 +0000 Manifest this update: Sat 18 May 2024 23:37:14 +0000 Manifest next update: Sat 25 May 2024 23:37:14 +0000 Files and hashes: 1: 1FgFH22pUil0dbSEvd0Pu-NJDnA.crl (hash: F5z/3BarDGCc2DZ2VY8Q5YkeP7JGiiiKp72C4PtdHJs=) 2: 9B5A7020522911ED9136DF2AC4F9AE02.roa (hash: yDhuA4Ob5DnwqrR8L0ZR9FkfFA5Nm0serWGqFaLGioc=) 3: C56E8DD2724511EEBCA61115C4F9AE02.roa (hash: lBEkbAlFSk7ypsIUZlbpBzceU+j5r3wvvBgizdC1PAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.crl rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D85E/serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70 Validity Not Before: May 18 23:37:14 2024 GMT Not After : May 25 23:37:14 2024 GMT Subject: CN=66493baa-27ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:46:77:5c:14:1f:51:da:1b:79:04:ca:09:e7: 58:c1:e8:7d:b6:72:3d:26:8a:09:c9:2c:e6:8f:2e: 5a:6f:a2:88:76:de:ce:6d:88:36:24:26:5c:07:45: 62:9f:20:83:7a:90:cb:d5:26:7f:c5:35:92:d3:2f: 66:53:5d:78:b2:ef:a9:3c:1b:0c:aa:b0:31:03:61: f2:8b:82:40:61:bc:ae:61:c8:9b:d1:e0:84:45:45: 4f:22:90:cc:e3:b9:43:e6:6f:f9:3d:e4:4e:fb:91: 28:b9:06:17:2a:d3:6e:92:32:8a:bb:12:90:84:80: 5d:2c:a3:77:c5:7f:50:43:9c:65:f0:19:37:f2:7c: bb:5b:fe:fb:41:ec:73:a0:94:8b:65:21:de:ed:19: 2b:cb:f8:7d:10:fd:59:a2:31:d4:05:9c:1f:a5:dc: 54:f4:59:17:75:8d:d6:f6:b7:c9:d4:10:0f:57:a9: 71:91:1b:d0:a1:8c:6e:32:c1:04:c7:88:1c:a7:bb: b9:a0:69:41:87:cf:17:3b:ad:d6:b4:ff:c8:8c:42: 49:41:3d:94:96:4f:26:c0:df:59:c1:1b:77:14:42: d0:b5:48:6a:ee:8c:43:e9:5f:b0:da:68:9a:be:38: c3:49:0c:d2:1a:31:5a:00:4d:1a:68:e5:f2:d1:49: a3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:96:00:00:C8:50:66:DB:E2:93:E9:1A:15:98:DE:3B:A3:4A:B2:A8 X509v3 Authority Key Identifier: keyid:D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:bb:fe:79:ce:a9:27:cf:14:6c:57:b7:b4:ad:f7:07:77:3c: 47:68:b4:44:b1:84:66:a1:10:27:c9:bb:b6:55:fd:84:36:66: 08:3b:9a:e6:3b:58:0d:0f:c5:d8:3c:47:73:5c:b6:29:58:bd: 68:55:92:a4:94:65:c9:f1:10:50:77:08:4c:33:eb:e9:85:88: 27:56:87:85:0a:c6:22:32:b6:c3:58:59:ce:f4:5f:c0:4b:1c: bf:70:bc:85:d6:92:23:7e:69:00:69:f1:69:a2:63:a4:5e:32: f5:da:7d:8c:f1:fd:0f:3d:e4:1f:20:d6:22:13:2f:49:b4:00: eb:4f:f8:c1:d7:7a:1f:49:20:c9:a1:62:9f:78:70:8c:d6:d7: 33:6f:93:f9:89:21:dd:de:09:27:05:57:c9:8e:fc:d3:12:61: de:af:cf:2f:09:6e:6a:20:a9:e6:10:74:52:71:29:4a:a1:fd: 74:cb:c0:2b:92:4d:b5:8e:0c:69:ef:46:a5:82:66:05:79:e8: 3c:92:f7:25:cd:b4:d6:2a:6a:17:18:a9:50:ca:e0:9e:ff:ee: e0:c2:76:f9:15:4b:a3:db:a9:d8:60:4c:ea:10:78:45:fd:51: 8a:7c:6d:7f:4f:9d:82:1b:f8:eb:3a:d7:f3:7e:ca:e9:6d:63: 15:53:b9:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ4NUUxMTAvBgNVBAUTKEQ0NTgwNTFGNkRBOTUyMjk3NDc1QjQ4NEJEREQwRkJC RTM0OTBFNzAwHhcNMjQwNTE4MjMzNzE0WhcNMjQwNTI1MjMzNzE0WjAYMRYwFAYD VQQDEw02NjQ5M2JhYS0yN2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UZ3XBQfUdobeQTKCedYweh9tnI9JooJySzmjy5ab6KIdt7ObYg2JCZcB0Vi nyCDepDL1SZ/xTWS0y9mU114su+pPBsMqrAxA2Hyi4JAYbyuYcib0eCERUVPIpDM 47lD5m/5PeRO+5EouQYXKtNukjKKuxKQhIBdLKN3xX9QQ5xl8Bk38ny7W/77Qexz oJSLZSHe7Rkry/h9EP1ZojHUBZwfpdxU9FkXdY3W9rfJ1BAPV6lxkRvQoYxuMsEE x4gcp7u5oGlBh88XO63WtP/IjEJJQT2Ulk8mwN9ZwRt3FELQtUhq7oxD6V+w2mia vjjDSQzSGjFaAE0aaOXy0Umj/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmWAADI UGbb4pPpGhWY3jujSrKoMB8GA1UdIwQYMBaAFNRYBR9tqVIpdHW0hL3dD7vjSQ5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDg1RS83M0VGOTA5QzNC QjUxMUVCQjREMTM3N0RDNEY5QUUwMi8xRmdGSDIycFVpbDBkYlNFdmQwUHUtTkpE bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGZ0ZIMjJwVWlsMGRiU0V2ZDBQdS1OSkRuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDg1RS83M0VGOTA5QzNCQjUxMUVCQjREMTM3N0RDNEY5QUUwMi8xRmdGSDIycFVp bDBkYlNFdmQwUHUtTkpEbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQu/55zqknzxRsV7e0rfcHdzxHaLREsYRmoRAnybu2Vf2ENmYIO5rm O1gND8XYPEdzXLYpWL1oVZKklGXJ8RBQdwhMM+vphYgnVoeFCsYiMrbDWFnO9F/A Sxy/cLyF1pIjfmkAafFpomOkXjL12n2M8f0PPeQfINYiEy9JtADrT/jB13ofSSDJ oWKfeHCM1tczb5P5iSHd3gknBVfJjvzTEmHer88vCW5qIKnmEHRScSlKof10y8Ar kk21jgxp70algmYFeeg8kvclzbTWKmoXGKlQyuCe/+7gwnb5FUuj26nYYEzqEHhF /VGKfG1/T52CG/jrOtfzfsrpbWMVU7nz -----END CERTIFICATE-----Generated at Sun May 19 00:30:15 2024 by rpki-client on console-ams.rpki-client.org