$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: l87Sc13zbJnDDyyeapbyNNHMq36iG4b5pbSWjVk44FM= Subject key identifier: 55:5A:E4:65:51:FC:AC:54:17:EA:CA:69:3A:21:BB:92:0A:09:B2:EE Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: DB Signing time: Sun 19 May 2024 06:04:09 +0000 Manifest this update: Sun 19 May 2024 06:04:08 +0000 Manifest next update: Sun 26 May 2024 06:04:08 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: i1FGJwJfp3NHk4C+dm7Tbwk+nfYb4/QL1b0LJWqXVxA=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: kU6fsRIP10rXpeTdFL72qzNk8DJAVh671AdmFJV9slI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: May 19 06:04:08 2024 GMT Not After : May 26 06:04:08 2024 GMT Subject: CN=66499659-3255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:eb:66:1e:f2:fb:f4:7f:f7:0b:73:34:17:5e: e0:a4:d1:59:35:95:5a:d7:85:62:1e:0a:7f:14:23: 5b:16:21:af:21:1e:d8:f7:c5:94:de:aa:04:65:38: 71:5b:3d:47:65:e7:68:56:50:a4:7b:1f:f6:44:1c: 29:a9:17:52:97:b0:30:5b:c8:b2:e6:65:44:78:ec: 97:e5:cc:c6:64:ef:f6:c9:b7:de:a5:6f:85:15:70: 5f:a4:37:c1:e5:67:ef:06:9a:e9:f7:0e:76:0a:29: 95:18:3e:a9:aa:9e:d8:55:12:1c:12:82:bf:1e:d0: dd:54:15:cb:b6:06:f5:a5:0e:8c:64:87:46:55:c8: 6c:e2:a5:b5:cf:31:ad:62:cc:e7:18:40:79:60:46: e2:8e:02:49:b2:ee:73:de:60:2b:2f:f6:1a:49:48: f8:9d:ca:d9:6d:12:dd:60:f9:fa:cc:db:2f:7c:c0: dc:d9:bf:df:58:6d:39:a9:41:ef:79:d6:c3:96:fa: 6b:06:47:b0:d8:21:45:19:36:c6:2e:e2:5e:00:91: 6a:8f:47:aa:ed:49:12:61:38:72:b2:1a:7d:15:8d: aa:b8:24:e1:23:c3:8c:d8:a6:0b:5f:12:b4:1f:99: 8e:8e:40:c6:22:b5:12:1a:f9:87:38:f3:91:b2:03: 08:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:5A:E4:65:51:FC:AC:54:17:EA:CA:69:3A:21:BB:92:0A:09:B2:EE X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:f4:a6:c3:74:50:f2:b9:f7:22:7b:e6:76:3c:68:a6:99:eb: eb:fa:ad:4a:52:4f:45:99:1c:b9:b6:ca:c9:ca:6d:fc:29:78: ae:69:fd:08:03:f2:04:6f:48:75:fa:04:bb:a9:36:97:be:16: ef:36:52:28:c5:c6:b5:6a:42:fd:aa:dd:2c:36:73:0e:83:7e: ca:d0:8e:a4:58:32:2d:37:75:1f:26:34:3d:e6:79:59:60:58: 9c:57:f0:db:10:6e:f5:73:b6:d8:aa:9d:fe:a7:b0:49:fb:63: ce:82:69:7f:bb:ba:96:57:da:18:c3:bd:e3:9b:45:d6:51:c0: 53:9b:81:7a:c7:46:5d:87:71:35:2b:33:47:5a:73:03:40:4e: d8:40:78:c5:6b:a8:83:d2:65:2b:a3:ae:69:2f:fe:b8:ab:0e: eb:ad:d0:5d:e1:11:fb:84:31:31:ae:d6:f7:45:b7:ca:44:3d: cb:97:a5:87:bd:9e:97:86:73:2b:2f:fe:ee:39:a9:b5:97:c6: 7f:01:b5:d1:b5:ca:c7:7d:c3:1d:e0:0e:55:22:9c:b6:4e:92: 3f:ec:1a:d8:5e:2e:da:12:f6:61:85:f7:af:0e:0b:e9:7f:2d: cf:cf:70:b6:ef:b2:9c:1a:a9:11:e7:7b:7c:42:b5:1d:75:93: ac:14:74:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjQwNTE5MDYwNDA4WhcNMjQwNTI2MDYwNDA4WjAYMRYwFAYD VQQDEw02NjQ5OTY1OS0zMjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+tmHvL79H/3C3M0F17gpNFZNZVa14ViHgp/FCNbFiGvIR7Y98WU3qoEZThx Wz1HZedoVlCkex/2RBwpqRdSl7AwW8iy5mVEeOyX5czGZO/2ybfepW+FFXBfpDfB 5WfvBprp9w52CimVGD6pqp7YVRIcEoK/HtDdVBXLtgb1pQ6MZIdGVchs4qW1zzGt YsznGEB5YEbijgJJsu5z3mArL/YaSUj4ncrZbRLdYPn6zNsvfMDc2b/fWG05qUHv edbDlvprBkew2CFFGTbGLuJeAJFqj0eq7UkSYThyshp9FY2quCThI8OM2KYLXxK0 H5mOjkDGIrUSGvmHOPORsgMI5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVa5GVR /KxUF+rKaTohu5IKCbLuMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF9KbDdFDyufcie+Z2PGimmevr+q1KUk9FmRy5tsrJym38KXiuaf0I A/IEb0h1+gS7qTaXvhbvNlIoxca1akL9qt0sNnMOg37K0I6kWDItN3UfJjQ95nlZ YFicV/DbEG71c7bYqp3+p7BJ+2POgml/u7qWV9oYw73jm0XWUcBTm4F6x0Zdh3E1 KzNHWnMDQE7YQHjFa6iD0mUro65pL/64qw7rrdBd4RH7hDExrtb3RbfKRD3Ll6WH vZ6XhnMrL/7uOam1l8Z/AbXRtcrHfcMd4A5VIpy2TpI/7BrYXi7aEvZhhfevDgvp fy3Pz3C277KcGqkR53t8QrUddZOsFHRg -----END CERTIFICATE-----Generated at Sun May 19 08:25:01 2024 by rpki-client on console-ams.rpki-client.org