$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: aPa7xtM9KJm3TKta5ECDHphCsZSwwC+fEU7734zzAME= Subject key identifier: 26:F2:C1:CD:C7:BB:D2:F0:E1:5F:49:5A:1A:C7:FA:E9:3D:DB:FD:69 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 09E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 09C7 Signing time: Sat 18 May 2024 20:51:51 +0000 Manifest this update: Sat 18 May 2024 20:51:51 +0000 Manifest next update: Sat 25 May 2024 20:51:51 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: KRfA0vg1nISRqAhDH5Cs7eaicw1VmjBiRMIgvY/bmeU=) 2: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 873bBCGHkjfyb8l6bvX0YIj28dpF73yIbp8jCOGaSvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2530 (0x9e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: May 18 20:51:51 2024 GMT Not After : May 25 20:51:51 2024 GMT Subject: CN=664914e7-d579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:db:99:ae:4c:f8:9c:8a:9b:94:5f:6b:08:73: 56:2e:0e:52:8f:f7:b4:5d:15:7d:b3:d0:8d:1d:7b: 6f:29:4d:73:bc:ba:b8:e7:13:43:84:ba:69:b7:7b: 6f:75:bd:3f:0f:0e:d3:0b:b2:f3:f7:69:af:01:08: d2:54:86:6a:c2:13:c9:81:a0:16:6d:43:f0:b3:34: 8b:b3:a1:31:f7:09:96:47:f2:f4:c0:55:9b:d6:b2: bd:b3:d5:ab:af:94:54:df:e0:7b:7c:d7:03:47:d3: 08:12:ea:65:26:f9:72:a0:bf:aa:40:e2:b5:5e:2e: a8:7e:db:e1:e8:1b:18:f5:8a:53:28:fb:16:3d:cb: 0f:ff:cb:47:d5:0f:a3:e4:4c:e4:51:15:6f:39:16: 45:39:c0:1a:9b:c8:db:e2:38:04:22:df:2f:b6:85: 8c:57:08:24:9e:c1:b1:0f:c0:39:f0:08:7c:13:20: 4f:94:29:d7:ef:c1:a5:69:db:54:08:a5:fd:d2:d0: 32:7b:58:30:b2:25:45:3e:8d:6e:03:63:fb:a8:79: 97:e1:b7:37:f4:03:c7:fb:fd:84:30:f6:d4:5f:c1: 87:61:9c:25:55:85:38:d6:2f:b6:53:d4:73:f7:d7: 1c:9b:70:d4:bd:ee:04:63:ea:9b:88:c7:9c:79:2d: 09:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F2:C1:CD:C7:BB:D2:F0:E1:5F:49:5A:1A:C7:FA:E9:3D:DB:FD:69 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:95:ec:9e:f4:aa:60:a5:89:54:33:79:99:be:0e:13:8f:ed: be:1f:d3:0c:e7:4f:cf:99:ee:d0:e5:2d:a6:e4:54:31:9b:a6: 73:5b:df:f0:5f:a0:7d:e2:5e:03:e3:d1:84:13:02:62:62:1a: f5:ee:68:70:fb:24:91:ba:6a:0e:2c:8a:b3:73:94:ce:89:67: de:cc:c8:67:dc:a3:81:10:a3:1d:02:09:96:7f:97:44:a2:06: 99:e1:71:37:48:05:61:ce:ca:e6:9e:5f:bb:23:bb:c8:2d:64: e1:fb:fe:76:82:e3:b9:ae:9b:d8:21:50:19:1c:86:28:4e:56: 95:85:ef:ce:fd:20:52:06:8c:39:be:f7:13:62:de:b8:41:ad: 73:28:cc:cf:2d:ae:9e:37:56:98:b2:7a:39:39:af:5b:0d:38: c4:8a:53:44:2d:8a:a1:6e:7d:7d:ef:6a:48:79:15:d1:a3:6e: ac:59:f1:b3:5a:23:90:62:c3:a8:be:43:f1:0f:14:96:02:03: 27:0f:d0:44:a2:19:89:2b:63:e8:bd:00:0e:0a:8b:93:a8:c6: c4:da:3d:da:cf:ce:3e:5c:9a:0e:34:54:9b:17:3c:af:4f:77: 66:5a:04:10:b3:7c:cd:47:76:68:9c:49:88:91:e4:e3:5c:c2: 60:9d:c3:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjQwNTE4MjA1MTUxWhcNMjQwNTI1MjA1MTUxWjAYMRYwFAYD VQQDEw02NjQ5MTRlNy1kNTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA89uZrkz4nIqblF9rCHNWLg5Sj/e0XRV9s9CNHXtvKU1zvLq45xNDhLppt3tv db0/Dw7TC7Lz92mvAQjSVIZqwhPJgaAWbUPwszSLs6Ex9wmWR/L0wFWb1rK9s9Wr r5RU3+B7fNcDR9MIEuplJvlyoL+qQOK1Xi6oftvh6BsY9YpTKPsWPcsP/8tH1Q+j 5EzkURVvORZFOcAam8jb4jgEIt8vtoWMVwgknsGxD8A58Ah8EyBPlCnX78GladtU CKX90tAye1gwsiVFPo1uA2P7qHmX4bc39APH+/2EMPbUX8GHYZwlVYU41i+2U9Rz 99ccm3DUve4EY+qbiMeceS0JuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbywc3H u9Lw4V9JWhrH+uk92/1pMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZleye9KpgpYlUM3mZvg4Tj+2+H9MM50/Pme7Q5S2m5FQxm6ZzW9/w X6B94l4D49GEEwJiYhr17mhw+ySRumoOLIqzc5TOiWfezMhn3KOBEKMdAgmWf5dE ogaZ4XE3SAVhzsrmnl+7I7vILWTh+/52guO5rpvYIVAZHIYoTlaVhe/O/SBSBow5 vvcTYt64Qa1zKMzPLa6eN1aYsno5Oa9bDTjEilNELYqhbn1972pIeRXRo26sWfGz WiOQYsOovkPxDxSWAgMnD9BEohmJK2PovQAOCouTqMbE2j3az84+XJoONFSbFzyv T3dmWgQQs3zNR3ZonEmIkeTjXMJgncPt -----END CERTIFICATE-----Generated at Sat May 18 21:31:28 2024 by rpki-client on console-ams.rpki-client.org