$ rpki-client -vvf rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft File: cEb4mD38NwS25c1-oSgP0PUpeaA.mft (raw, json) Hash identifier: FMZoowTPZjE80/V3p1Dv2rQ8Uju8M+kMR/qoZuEvHPs= Subject key identifier: 9D:08:2D:84:BE:88:21:FC:34:2E:AB:55:86:17:93:BA:8C:36:9B:35 Authority key identifier: 70:46:F8:98:3D:FC:37:04:B6:E5:CD:7E:A1:28:0F:D0:F5:29:79:A0 Certificate issuer: /CN=A916320B/serialNumber=7046F8983DFC3704B6E5CD7EA1280FD0F52979A0 Certificate serial: 0AE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEb4mD38NwS25c1-oSgP0PUpeaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft Manifest number: 0AD4 Signing time: Sat 18 May 2024 20:04:58 +0000 Manifest this update: Sat 18 May 2024 20:04:58 +0000 Manifest next update: Sat 25 May 2024 20:04:58 +0000 Files and hashes: 1: cEb4mD38NwS25c1-oSgP0PUpeaA.crl (hash: ChkQ4ZwmRd9+HwV8Q3sYI3usAx4qH09vEYuqpjjK79E=) 2: B9003CC84EE811EA8C045D52C4F9AE02.roa (hash: zRZmphFM1IkTemLHVfE7OJSRtTdQl19+pMHOTz5MnCM=) 3: 1B8483D04EEA11EA828FA155C4F9AE02.roa (hash: muOo3VCAu7Jat99IdyuC1dTD3o7yL/ncX+TcgLhABUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.crl rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEb4mD38NwS25c1-oSgP0PUpeaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2787 (0xae3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916320B/serialNumber=7046F8983DFC3704B6E5CD7EA1280FD0F52979A0 Validity Not Before: May 18 20:04:58 2024 GMT Not After : May 25 20:04:58 2024 GMT Subject: CN=664909ea-b863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:12:fa:f0:3a:2c:f1:2f:a6:0a:ca:78:35:2f: cb:d1:81:81:47:20:01:d4:fe:24:44:51:3e:c3:a0: cc:9c:44:d8:44:99:74:dd:36:e8:d7:75:c3:90:f7: 64:39:96:59:f7:15:3f:11:71:98:86:c6:8d:1e:f4: 23:55:31:bd:64:c0:82:c6:e6:d7:a0:79:3a:a5:6f: b5:5b:94:93:70:31:1e:c0:63:a9:61:16:50:b4:4d: da:c3:09:ef:73:51:60:d5:37:33:26:09:6f:4a:e3: 95:af:aa:a5:88:87:8d:60:a3:de:3e:ef:ce:26:7b: d3:41:e7:6c:6a:cf:20:fe:da:87:7c:7f:bf:01:5f: 6e:7d:f9:4e:60:41:b2:5b:50:75:13:3b:56:9b:4a: c9:fa:94:34:ba:1d:fd:55:a6:47:13:0c:c5:7f:a4: 0d:3b:e3:b9:dd:32:94:21:a2:c8:fb:9e:4a:d3:f2: 8d:7b:8e:aa:08:c6:00:6e:92:95:19:02:f0:01:ea: 5a:10:69:c5:05:67:c0:7a:2e:1b:6f:62:c9:0f:58: f9:69:64:73:cf:02:b0:f7:a1:77:92:93:0d:99:07: b4:e7:55:9e:a7:15:fe:c5:87:d8:67:ab:3f:51:d9: e5:73:b2:27:c7:49:0c:26:8e:df:a4:5c:cc:0f:4d: 69:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:08:2D:84:BE:88:21:FC:34:2E:AB:55:86:17:93:BA:8C:36:9B:35 X509v3 Authority Key Identifier: keyid:70:46:F8:98:3D:FC:37:04:B6:E5:CD:7E:A1:28:0F:D0:F5:29:79:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEb4mD38NwS25c1-oSgP0PUpeaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:6b:87:fc:75:b3:ac:07:15:55:9d:81:7b:5d:66:1c:50:a0: 54:71:92:ac:1d:b7:04:cd:f4:4a:db:29:bc:01:76:ee:7b:79: 74:8c:41:36:9c:bd:6f:60:f9:9d:15:8f:00:8a:93:ee:42:fb: 22:c9:55:8d:9e:49:36:18:41:a6:36:fa:4e:1e:f6:8d:d9:23: 09:00:86:5e:7b:6d:d0:0f:4e:9c:0b:ef:10:20:10:33:03:f6: 52:1e:21:b5:dd:ea:8e:e0:0f:f0:de:fe:7c:6e:72:06:66:bf: 2a:f3:79:f5:94:d1:fe:59:f9:0a:a3:8b:66:af:07:66:d5:16: 9e:7f:9f:bd:d2:04:20:15:7b:d3:34:86:6a:85:7c:82:8e:78: e7:6e:0e:ed:8d:96:c0:01:5d:2a:df:96:f9:2d:06:4d:da:f5: 5d:16:82:eb:29:bd:d1:22:66:e7:4b:62:d8:12:41:30:a5:e1: 1f:89:5e:46:03:58:94:33:eb:43:95:97:76:9c:95:cc:87:9c: 8d:ce:ae:b0:1c:dc:14:67:2a:82:1a:50:1b:1e:f7:87:a2:d9: dd:5b:e6:b7:91:c4:b1:6e:79:df:de:ff:42:5c:a9:9e:f6:f5: 4b:3c:ea:1d:8b:4d:8f:76:bc:a2:fb:4b:fb:e0:21:04:23:85: df:46:cc:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyMEIxMTAvBgNVBAUTKDcwNDZGODk4M0RGQzM3MDRCNkU1Q0Q3RUExMjgwRkQw RjUyOTc5QTAwHhcNMjQwNTE4MjAwNDU4WhcNMjQwNTI1MjAwNDU4WjAYMRYwFAYD VQQDEw02NjQ5MDllYS1iODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BL68Dos8S+mCsp4NS/L0YGBRyAB1P4kRFE+w6DMnETYRJl03Tbo13XDkPdk OZZZ9xU/EXGYhsaNHvQjVTG9ZMCCxubXoHk6pW+1W5STcDEewGOpYRZQtE3awwnv c1Fg1TczJglvSuOVr6qliIeNYKPePu/OJnvTQedsas8g/tqHfH+/AV9ufflOYEGy W1B1EztWm0rJ+pQ0uh39VaZHEwzFf6QNO+O53TKUIaLI+55K0/KNe46qCMYAbpKV GQLwAepaEGnFBWfAei4bb2LJD1j5aWRzzwKw96F3kpMNmQe051WepxX+xYfYZ6s/ Udnlc7Inx0kMJo7fpFzMD01prwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0ILYS+ iCH8NC6rVYYXk7qMNps1MB8GA1UdIwQYMBaAFHBG+Jg9/DcEtuXNfqEoD9D1KXmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzIwQi8wRkZGN0FBQTI3 QUUxMUVBODU5NTZFNzhDNEY5QUUwMi9jRWI0bUQzOE53UzI1YzEtb1NnUDBQVXBl YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NFYjRtRDM4TndTMjVjMS1vU2dQMFBVcGVhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzIwQi8wRkZGN0FBQTI3QUUxMUVBODU5NTZFNzhDNEY5QUUwMi9jRWI0bUQzOE53 UzI1YzEtb1NnUDBQVXBlYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCta4f8dbOsBxVVnYF7XWYcUKBUcZKsHbcEzfRK2ym8AXbue3l0jEE2 nL1vYPmdFY8AipPuQvsiyVWNnkk2GEGmNvpOHvaN2SMJAIZee23QD06cC+8QIBAz A/ZSHiG13eqO4A/w3v58bnIGZr8q83n1lNH+WfkKo4tmrwdm1Raef5+90gQgFXvT NIZqhXyCjnjnbg7tjZbAAV0q35b5LQZN2vVdFoLrKb3RImbnS2LYEkEwpeEfiV5G A1iUM+tDlZd2nJXMh5yNzq6wHNwUZyqCGlAbHveHotndW+a3kcSxbnnf3v9CXKme 9vVLPOodi02Pdryi+0v74CEEI4XfRszY -----END CERTIFICATE-----Generated at Sat May 18 21:31:28 2024 by rpki-client on console-ams.rpki-client.org