$ rpki-client -vvf rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft File: 4W5PZeLjl-n84FeFomXGGXyCIMk.mft (raw, json) Hash identifier: 3TcGSAqW6oyrxrLaywAMgznSjchg0X3KR46BQGW57SU= Subject key identifier: 8E:9B:C4:E4:67:23:B6:99:08:87:30:0B:1B:18:13:7C:F7:7D:4E:AA Authority key identifier: E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 Certificate issuer: /CN=A916DED9/serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft Manifest number: 5E Signing time: Sun 19 May 2024 07:42:09 +0000 Manifest this update: Sun 19 May 2024 07:42:08 +0000 Manifest next update: Sun 26 May 2024 07:42:08 +0000 Files and hashes: 1: 4W5PZeLjl-n84FeFomXGGXyCIMk.crl (hash: 9nEIxiDlXBSGUU/sDGHWX+dGbQTcsTcNoX04wVT725c=) 2: 880E53BC852A11EE8B988A85C4F9AE02.roa (hash: sIl0YZsX359p5eI9mAwbfYGQ+EtpoD/khF6JBQsi8XA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DED9/serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Validity Not Before: May 19 07:42:08 2024 GMT Not After : May 26 07:42:08 2024 GMT Subject: CN=6649ad50-fd11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:8a:71:c8:29:d1:47:c2:f7:b6:b2:81:ed:ba: 59:21:7d:c1:68:82:a0:6f:a7:4b:d2:08:1a:66:3a: ba:e2:42:7f:cc:46:9c:21:f4:8e:75:6a:0d:2b:85: d3:dc:ce:a2:43:7c:47:d2:72:61:b4:01:68:11:8e: 94:95:4b:a8:57:97:4b:02:b3:31:24:9d:f0:7f:68: 81:f0:f3:72:c0:04:3b:66:71:6f:43:f4:1b:28:c0: 77:5e:e8:57:35:f3:d3:b9:b5:b9:0a:00:a9:e9:c5: 23:5a:ca:fd:77:31:e9:a0:95:ff:f0:a4:64:d3:23: ba:06:8c:e3:20:bf:ab:e9:55:f9:c8:84:9c:14:6a: df:e3:5d:2d:f2:65:eb:94:47:2b:b3:57:e7:a5:84: 09:31:20:04:4c:84:36:5c:6a:21:e6:78:df:99:fc: eb:49:cf:6a:3f:15:3c:3d:eb:7c:90:51:04:c4:1c: 8e:f2:10:ef:bd:d4:72:d3:5b:d2:1d:e4:e5:19:0b: 19:9a:a7:d9:cb:99:fa:a4:b5:68:b8:e7:3b:7a:05: 1f:c3:12:0b:92:ef:53:f0:19:02:2a:c0:dc:3e:55: c9:a3:e2:ff:c8:f8:f6:ee:a6:23:ed:8b:83:45:cc: c7:b7:dc:4b:5a:7a:f3:aa:63:ef:1d:5e:8c:4a:53: a0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9B:C4:E4:67:23:B6:99:08:87:30:0B:1B:18:13:7C:F7:7D:4E:AA X509v3 Authority Key Identifier: keyid:E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:0b:09:29:cf:7f:a6:aa:7b:17:bf:f2:d0:89:56:ce:90:09: 2f:74:e6:84:1e:be:6e:21:e1:8d:39:d4:44:84:65:79:10:b8: cf:7a:06:90:b2:a4:a9:80:0e:24:30:87:1a:67:ae:1a:55:07: 9e:dc:7b:22:13:c9:e9:42:8a:81:6e:ba:04:c5:14:11:20:9f: 34:0d:2c:13:fb:39:5f:a3:14:19:fe:6c:24:d8:54:cd:4a:d1: cc:da:9a:fd:1b:f1:cb:a1:d8:d9:7a:bd:74:d8:a8:65:e1:23: 51:1a:23:cd:8f:12:f2:09:f9:68:f4:93:6d:ed:e2:ad:ea:ad: 20:c0:9b:f1:ce:a1:7b:b2:1e:5c:6f:97:61:0d:0b:3d:13:d1: cc:c1:e1:7e:81:ee:d7:ac:9c:69:46:de:21:ef:06:5f:84:72: 6a:d5:d9:2c:18:eb:51:7c:4c:f8:b3:c1:69:f1:f4:99:f1:95: 8b:aa:47:dc:2c:32:47:38:2a:fe:5f:95:ff:7c:29:0a:75:9d: 3f:46:4d:93:18:8e:6a:ff:23:f4:ac:30:eb:57:50:50:8e:41: 57:fd:62:7d:f9:b2:f0:2a:ec:f7:a6:41:2d:b6:d9:28:6b:de: c2:28:86:7c:ac:cf:b0:4d:9f:8b:d3:82:e2:4b:7d:db:19:eb: 1c:92:11:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 REVEOTExMC8GA1UEBRMoRTE2RTRGNjVFMkUzOTdFOUZDRTA1Nzg1QTI2NUM2MTk3 QzgyMjBDOTAeFw0yNDA1MTkwNzQyMDhaFw0yNDA1MjYwNzQyMDhaMBgxFjAUBgNV BAMTDTY2NDlhZDUwLWZkMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxinHIKdFHwve2soHtulkhfcFogqBvp0vSCBpmOrriQn/MRpwh9I51ag0rhdPc zqJDfEfScmG0AWgRjpSVS6hXl0sCszEknfB/aIHw83LABDtmcW9D9BsowHde6Fc1 89O5tbkKAKnpxSNayv13Memglf/wpGTTI7oGjOMgv6vpVfnIhJwUat/jXS3yZeuU RyuzV+elhAkxIARMhDZcaiHmeN+Z/OtJz2o/FTw963yQUQTEHI7yEO+91HLTW9Id 5OUZCxmap9nLmfqktWi45zt6BR/DEguS71PwGQIqwNw+Vcmj4v/I+PbupiPti4NF zMe33EtaevOqY+8dXoxKU6DDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjpvE5Gcj tpkIhzALGxgTfPd9TqowHwYDVR0jBBgwFoAU4W5PZeLjl+n84FeFomXGGXyCIMkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZERUQ5L0RGMTVCM0I4ODUy OTExRUVBRkQwNEM4NEM0RjlBRTAyLzRXNVBaZUxqbC1uODRGZUZvbVhHR1h5Q0lN ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFc1UFplTGpsLW44NEZlRm9tWEdHWHlDSU1rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE RUQ5L0RGMTVCM0I4ODUyOTExRUVBRkQwNEM4NEM0RjlBRTAyLzRXNVBaZUxqbC1u ODRGZUZvbVhHR1h5Q0lNay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAILCSnPf6aqexe/8tCJVs6QCS905oQevm4h4Y051ESEZXkQuM96BpCy pKmADiQwhxpnrhpVB57ceyITyelCioFuugTFFBEgnzQNLBP7OV+jFBn+bCTYVM1K 0czamv0b8cuh2Nl6vXTYqGXhI1EaI82PEvIJ+Wj0k23t4q3qrSDAm/HOoXuyHlxv l2ENCz0T0czB4X6B7tesnGlG3iHvBl+EcmrV2SwY61F8TPizwWnx9JnxlYuqR9ws Mkc4Kv5flf98KQp1nT9GTZMYjmr/I/SsMOtXUFCOQVf9Yn35svAq7PemQS222Shr 3sIohnysz7BNn4vTguJLfdsZ6xySESA= -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org