$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: 4wBmi+pVvVGgO9zu98ajE5WpnDjbUj7mrs2QLsIqYGg= Subject key identifier: 0E:2E:F3:CB:96:36:80:B5:8C:BB:4E:C7:40:8B:0D:A1:26:19:9F:F2 Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 213F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 2130 Signing time: Sat 18 May 2024 16:14:24 +0000 Manifest this update: Sat 18 May 2024 16:14:23 +0000 Manifest next update: Sat 25 May 2024 16:14:23 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: enUpsmrzIKg6JhyMkk6qBgnxTNV9QbAaS5RCJYHT7Cc=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: sxrNxCTJ+45si1boAQwArYewZOdeGJ/p8B0/QcUtSi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8511 (0x213f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: May 18 16:14:23 2024 GMT Not After : May 25 16:14:23 2024 GMT Subject: CN=6648d3e0-ea70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ba:4f:45:e7:4d:a8:83:19:fe:35:01:07:82: e6:51:a4:9c:fa:2e:b1:58:94:5c:59:a5:0c:07:4c: 56:f4:da:77:f9:e6:d6:c3:72:7e:0d:fe:9d:82:0f: de:50:33:54:47:60:74:f1:a8:49:22:48:d9:7b:4b: d9:6d:77:9a:ca:5b:a6:56:e9:5e:04:55:b4:3f:9f: 92:b3:9f:ae:d0:33:b0:3c:e0:f5:69:71:4e:71:30: 48:bb:ff:cc:9e:4b:15:86:97:85:71:4a:0b:38:e9: 0c:4a:c5:2a:6a:42:83:7d:bf:0d:0a:60:31:1c:83: 60:3d:21:d4:72:4c:58:b1:67:cd:42:9d:cd:cc:ec: af:ab:33:91:0a:a6:2f:63:50:d0:97:e1:a0:78:9e: 44:8c:d0:6d:94:fb:7f:c8:dd:ba:7a:95:37:4a:96: 02:03:8f:ba:3d:0c:ee:0e:42:f7:29:3a:d2:7f:22: e2:8c:22:55:ed:ca:f1:26:59:8f:49:6d:bc:76:a3: e2:4f:5c:ee:5f:c3:61:3d:5c:90:ba:8f:42:f4:c2: 2f:04:cc:82:dc:78:b7:6d:87:5e:13:29:24:56:56: 03:50:d1:f1:ac:06:bf:b2:f4:4d:9a:4d:45:1e:25: db:8f:3e:0a:b3:36:b3:55:3a:67:c2:79:34:a9:a7: ab:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2E:F3:CB:96:36:80:B5:8C:BB:4E:C7:40:8B:0D:A1:26:19:9F:F2 X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:8e:06:d9:a6:6c:f6:93:b8:21:84:9d:17:b5:f6:d2:cd:f9: 47:1b:f4:51:76:e5:d0:76:87:64:99:95:16:01:d8:bd:23:94: a8:8a:0b:7b:0b:f4:85:9b:3e:c0:7a:4a:fd:8b:e8:cd:3e:35: 0e:68:1f:f7:ca:ac:5f:20:4f:c5:49:f3:58:04:d9:f0:45:f8: fa:09:15:f4:cd:94:80:bf:25:4e:ca:57:26:0b:be:47:ae:86: 13:d2:ea:51:2c:26:6e:6e:61:db:57:68:d2:a1:66:f8:38:d1: 55:1a:de:f2:cc:c6:7d:b0:8c:6a:ce:e5:8b:1f:eb:5f:6e:5e: e6:a9:e9:01:af:74:67:2a:66:8f:90:23:43:c0:61:e5:b2:70: a6:60:19:99:23:c4:83:de:77:71:93:13:3a:cf:56:99:3b:ca: fa:64:8b:52:df:95:9e:af:ad:02:fc:57:e2:82:c6:c8:d9:0d: 50:d4:ca:e7:f1:7d:b2:7b:33:32:47:21:f2:59:ea:32:42:cd: fa:06:57:e2:e5:49:32:f4:60:73:39:4a:2a:59:68:95:7f:e6: f0:f7:95:13:7b:be:69:c0:a4:3e:62:9b:1e:b6:a2:05:0d:b4: b6:ef:3e:d5:1d:34:01:70:c8:8d:37:a3:b6:66:38:74:58:d0: 8d:58:9f:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjQwNTE4MTYxNDIzWhcNMjQwNTI1MTYxNDIzWjAYMRYwFAYD VQQDEw02NjQ4ZDNlMC1lYTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrpPRedNqIMZ/jUBB4LmUaSc+i6xWJRcWaUMB0xW9Np3+ebWw3J+Df6dgg/e UDNUR2B08ahJIkjZe0vZbXeaylumVuleBFW0P5+Ss5+u0DOwPOD1aXFOcTBIu//M nksVhpeFcUoLOOkMSsUqakKDfb8NCmAxHINgPSHUckxYsWfNQp3NzOyvqzORCqYv Y1DQl+GgeJ5EjNBtlPt/yN26epU3SpYCA4+6PQzuDkL3KTrSfyLijCJV7crxJlmP SW28dqPiT1zuX8NhPVyQuo9C9MIvBMyC3Hi3bYdeEykkVlYDUNHxrAa/svRNmk1F HiXbjz4KszazVTpnwnk0qaerfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4u88uW NoC1jLtOx0CLDaEmGZ/yMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqjgbZpmz2k7ghhJ0XtfbSzflHG/RRduXQdodkmZUWAdi9I5Soigt7 C/SFmz7Aekr9i+jNPjUOaB/3yqxfIE/FSfNYBNnwRfj6CRX0zZSAvyVOylcmC75H roYT0upRLCZubmHbV2jSoWb4ONFVGt7yzMZ9sIxqzuWLH+tfbl7mqekBr3RnKmaP kCNDwGHlsnCmYBmZI8SD3ndxkxM6z1aZO8r6ZItS35Wer60C/FfigsbI2Q1Q1Mrn 8X2yezMyRyHyWeoyQs36Blfi5Uky9GBzOUoqWWiVf+bw95UTe75pwKQ+YpsetqIF DbS27z7VHTQBcMiNN6O2Zjh0WNCNWJ/H -----END CERTIFICATE-----Generated at Sat May 18 17:20:04 2024 by rpki-client on console-ams.rpki-client.org