$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: gKxL493BcYcrx++UCjLpsLGbeXz28eW/DOAzDLIrh2U= Subject key identifier: 10:09:3B:B2:0A:6C:15:A6:F8:58:6B:89:79:24:31:02:CB:25:BE:FF Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: 3F Signing time: Sun 19 May 2024 07:08:00 +0000 Manifest this update: Sun 19 May 2024 07:08:00 +0000 Manifest next update: Sun 26 May 2024 07:08:00 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: oXfHGZzhxaMVbtojfwwIt0INdmvHDQ6WF/gIYbGFoQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Validity Not Before: May 19 07:08:00 2024 GMT Not After : May 26 07:08:00 2024 GMT Subject: CN=6649a550-0caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c2:52:dd:32:a8:81:9e:ad:4f:55:ce:e1:b4: 15:60:78:6c:ec:52:60:aa:22:d0:3a:3b:ba:69:23: 08:37:e1:e8:0b:ed:7e:a5:63:1d:56:50:5a:10:0a: b5:12:fa:21:67:8b:56:f3:67:85:d5:52:f3:94:e2: 81:6a:1f:c8:9d:f8:d3:52:39:bd:1d:d9:31:d7:2b: 67:93:75:c6:5c:a3:38:d3:4e:e7:f5:79:98:57:b8: b6:62:53:c4:81:3f:a5:98:b7:a3:76:13:09:ad:49: b7:eb:6e:e8:6f:93:a1:a7:1f:6b:f9:9f:0e:8b:c1: 51:72:96:a2:48:e1:c7:28:12:a5:fa:38:8c:16:96: dd:42:e1:71:46:b9:a6:70:06:df:ed:c6:03:1d:ee: 4c:b5:e8:4e:36:17:ce:7e:78:35:f3:56:f9:dd:97: cf:55:02:1a:14:db:55:7a:4e:c5:f9:e9:18:b6:7a: ca:ac:54:77:ff:bb:b7:27:55:16:bc:08:c6:ff:96: c5:c4:ef:ae:a6:37:40:7d:fb:6f:d2:df:d5:64:e4: 38:a8:df:b0:5f:de:23:1e:d2:23:53:bf:01:26:ec: c9:d6:65:a5:41:24:57:76:02:d3:e0:c9:91:4a:78: ab:84:a0:06:97:10:02:98:bb:9a:97:da:e5:ab:8d: 0a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:09:3B:B2:0A:6C:15:A6:F8:58:6B:89:79:24:31:02:CB:25:BE:FF X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:f8:45:62:f1:1d:d7:ee:79:0b:0a:a1:91:45:12:1f:8f:b4: ad:3d:60:5b:9a:74:78:40:89:cf:63:fe:f0:a3:2e:84:c2:fe: 9f:ca:6d:99:3e:ba:9b:31:c6:28:3c:4a:46:1e:ef:fb:28:2a: a4:32:e8:cb:55:02:c2:22:fb:71:54:f4:8f:b8:02:d9:f9:97: 02:c4:b5:a8:a5:4d:d3:6e:89:3e:ed:33:44:47:46:98:eb:bf: 46:b8:59:79:c3:a1:a9:de:48:6a:0d:23:7c:ca:61:dd:08:3c: 09:4f:35:1b:a5:e1:74:ca:3d:d4:e9:d4:57:f7:63:83:75:45: 21:bd:31:58:ac:ce:ed:df:0c:ba:86:f0:84:76:c9:e2:75:2b: 39:0c:85:d4:40:ac:0b:07:3d:35:8d:fb:a6:27:0b:8b:00:38: d5:e3:f7:f8:2c:e1:09:ed:af:a0:80:ca:b3:e8:54:fa:0e:a0: ef:2b:4f:97:49:cb:5d:4a:56:fd:26:a1:35:9c:fe:a9:03:8f: 27:74:9e:b1:81:fb:85:27:08:1a:0b:5a:7f:9e:26:8f:69:d6: 97:82:2e:f7:49:15:3f:62:84:7b:9e:fe:e2:8f:96:ae:bb:d0: a6:39:cf:68:6f:90:e3:3b:50:03:23:b9:a8:1f:c7:ab:15:97: a4:57:c4:48 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RTM0MzExMC8GA1UEBRMoMTRFNTVFQzM0MjhFM0QyQkE0REM3MUMxNTlFNUY2MDYx RjE2M0M2RDAeFw0yNDA1MTkwNzA4MDBaFw0yNDA1MjYwNzA4MDBaMBgxFjAUBgNV BAMTDTY2NDlhNTUwLTBjYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmwlLdMqiBnq1PVc7htBVgeGzsUmCqItA6O7ppIwg34egL7X6lYx1WUFoQCrUS +iFni1bzZ4XVUvOU4oFqH8id+NNSOb0d2THXK2eTdcZcozjTTuf1eZhXuLZiU8SB P6WYt6N2EwmtSbfrbuhvk6GnH2v5nw6LwVFylqJI4ccoEqX6OIwWlt1C4XFGuaZw Bt/txgMd7ky16E42F85+eDXzVvndl89VAhoU21V6TsX56Ri2esqsVHf/u7cnVRa8 CMb/lsXE766mN0B9+2/S39Vk5Dio37Bf3iMe0iNTvwEm7MnWZaVBJFd2AtPgyZFK eKuEoAaXEAKYu5qX2uWrjQrtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEAk7sgps Fab4WGuJeSQxAsslvv8wHwYDVR0jBBgwFoAUFOVew0KOPSuk3HHBWeX2Bh8WPG0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZFMzQzLzNBRTczOUFFQjk3 RTExRUVCM0MyMjk1NUM0RjlBRTAyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BH MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRk9WZXcwS09QU3VrM0hIQldlWDJCaDhXUEcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZF MzQzLzNBRTczOUFFQjk3RTExRUVCM0MyMjk1NUM0RjlBRTAyL0ZPVmV3MEtPUFN1 azNISEJXZVgyQmg4V1BHMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKX4RWLxHdfueQsKoZFFEh+PtK09YFuadHhAic9j/vCjLoTC/p/KbZk+ upsxxig8SkYe7/soKqQy6MtVAsIi+3FU9I+4Atn5lwLEtailTdNuiT7tM0RHRpjr v0a4WXnDoaneSGoNI3zKYd0IPAlPNRul4XTKPdTp1Ff3Y4N1RSG9MViszu3fDLqG 8IR2yeJ1KzkMhdRArAsHPTWN+6YnC4sAONXj9/gs4Qntr6CAyrPoVPoOoO8rT5dJ y11KVv0moTWc/qkDjyd0nrGB+4UnCBoLWn+eJo9p1peCLvdJFT9ihHue/uKPlq67 0KY5z2hvkOM7UAMjuagfx6sVl6RXxEg= -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org