$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: GM6PICubJGtqqUa0b6O/zNjKDqnylflOVumQn3uQmGM= Subject key identifier: CC:E6:29:B0:0E:F2:27:F5:08:28:71:DC:37:70:07:F6:A9:1A:CE:2F Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0EFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0EF1 Signing time: Sat 18 May 2024 18:16:26 +0000 Manifest this update: Sat 18 May 2024 18:16:26 +0000 Manifest next update: Sat 25 May 2024 18:16:26 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: Stt/fDszUTn/ITFS30DtAiuPx1Fxp48kcQ8Z+3trjH0=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: wn3cySuLwXeKUJ473H4yvfiVQMWLgbgSubD4zK5xaVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3836 (0xefc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: May 18 18:16:26 2024 GMT Not After : May 25 18:16:26 2024 GMT Subject: CN=6648f07a-0566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9a:1a:4b:64:47:e6:dc:e7:70:af:4b:96:d3: 01:70:90:82:ed:ca:93:d9:34:77:a8:06:28:c1:ac: c4:46:7a:bd:f0:00:4a:e1:96:09:ee:92:3a:d8:5e: ce:55:bf:71:e6:63:af:c4:1e:cb:70:21:cf:5c:a2: 9e:d9:33:0f:f0:e1:a1:99:ef:ed:98:63:07:87:85: c4:ea:f4:bf:9b:0d:9c:b8:88:18:06:27:35:b0:61: eb:ce:17:bd:e9:fe:d3:1c:47:95:91:24:9d:24:f5: 5b:b6:af:6f:63:9f:8a:85:3b:a8:88:8e:fe:b8:ba: 44:5a:2d:26:25:7c:0d:03:78:8d:20:72:32:e3:20: 17:bb:c4:77:9e:b0:02:85:5a:18:54:a4:39:91:74: a0:8a:dd:51:db:07:84:bc:a4:11:f6:b0:b5:4e:00: 21:c3:ff:31:02:28:a5:d7:d7:9d:1b:51:0d:7b:b2: d4:bc:2a:ed:ac:01:63:09:36:25:8e:b9:ed:12:f5: 1c:c7:fc:ee:d0:50:47:13:58:86:0d:c3:26:52:5c: af:33:c8:cc:ff:cf:00:97:f6:53:ed:40:e8:03:ed: 8a:13:c3:ce:54:d6:f4:36:3b:d6:96:75:0e:04:a1: 2d:7b:b9:c3:90:c7:6a:9f:76:43:f3:27:c3:b1:4e: 8d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E6:29:B0:0E:F2:27:F5:08:28:71:DC:37:70:07:F6:A9:1A:CE:2F X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:52:c2:08:ab:0c:14:f2:ae:5b:e3:ee:4c:a7:64:38:4a:3e: 18:a6:0f:e4:fe:94:98:31:8b:1b:09:fa:a6:25:68:a1:9b:36: 76:a9:37:65:15:18:f1:6a:03:9c:cc:12:56:61:bb:c1:24:9a: 1b:3e:1c:6b:3b:18:7c:8c:d2:4a:be:85:03:5a:f6:01:94:70: c3:94:14:1e:e3:f3:8d:b7:6f:6d:55:6d:db:ff:7f:32:e0:6d: 45:69:a8:bf:79:93:49:de:48:54:43:bc:f4:8e:45:eb:6e:3e: 2f:01:75:24:26:7a:8e:76:37:06:85:d4:6b:79:ba:c7:76:df: 51:07:a1:00:87:26:74:81:f0:5f:ea:b5:a8:be:a7:34:98:75: 23:88:a0:e2:1e:4b:62:03:99:46:1c:6b:db:e8:50:63:c5:bb: 08:4f:42:22:e9:1e:30:2f:41:30:f8:c8:78:96:aa:d1:b9:c3: c2:a7:04:18:54:53:40:fe:1e:82:61:52:15:e6:e0:00:97:bd: e8:64:a5:b8:cc:8f:ef:a0:ac:73:32:b7:eb:f4:7e:b2:dd:74: 71:17:4f:29:78:d3:ae:19:5d:34:3b:be:1e:7a:69:69:6e:b4: 54:96:dc:ef:1c:aa:5e:a9:9c:cc:10:02:51:16:04:63:33:48: a1:60:df:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjQwNTE4MTgxNjI2WhcNMjQwNTI1MTgxNjI2WjAYMRYwFAYD VQQDEw02NjQ4ZjA3YS0wNTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0poaS2RH5tzncK9LltMBcJCC7cqT2TR3qAYowazERnq98ABK4ZYJ7pI62F7O Vb9x5mOvxB7LcCHPXKKe2TMP8OGhme/tmGMHh4XE6vS/mw2cuIgYBic1sGHrzhe9 6f7THEeVkSSdJPVbtq9vY5+KhTuoiI7+uLpEWi0mJXwNA3iNIHIy4yAXu8R3nrAC hVoYVKQ5kXSgit1R2weEvKQR9rC1TgAhw/8xAiil19edG1ENe7LUvCrtrAFjCTYl jrntEvUcx/zu0FBHE1iGDcMmUlyvM8jM/88Al/ZT7UDoA+2KE8POVNb0NjvWlnUO BKEte7nDkMdqn3ZD8yfDsU6N8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzmKbAO 8if1CChx3DdwB/apGs4vMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChUsIIqwwU8q5b4+5Mp2Q4Sj4Ypg/k/pSYMYsbCfqmJWihmzZ2qTdl FRjxagOczBJWYbvBJJobPhxrOxh8jNJKvoUDWvYBlHDDlBQe4/ONt29tVW3b/38y 4G1Faai/eZNJ3khUQ7z0jkXrbj4vAXUkJnqOdjcGhdRrebrHdt9RB6EAhyZ0gfBf 6rWovqc0mHUjiKDiHktiA5lGHGvb6FBjxbsIT0Ii6R4wL0Ew+Mh4lqrRucPCpwQY VFNA/h6CYVIV5uAAl73oZKW4zI/voKxzMrfr9H6y3XRxF08peNOuGV00O74eemlp brRUltzvHKpeqZzMEAJRFgRjM0ihYN9j -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org