$ rpki-client -vvf rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft File: 5sRskdEtWFoSsFVpYh3uGtP4kI4.mft (raw, json) Hash identifier: UAwNvyI4uEv6mHzraqwcmYOXbOmLqhmrzC6eZqhYJYQ= Subject key identifier: AA:2C:EB:71:B6:2A:CF:C4:15:1F:9F:60:FC:7C:5C:CE:E3:C6:87:69 Authority key identifier: E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E Certificate issuer: /CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft Manifest number: 6D Signing time: Sun 19 May 2024 07:31:50 +0000 Manifest this update: Sun 19 May 2024 07:31:49 +0000 Manifest next update: Sun 26 May 2024 07:31:49 +0000 Files and hashes: 1: 5sRskdEtWFoSsFVpYh3uGtP4kI4.crl (hash: CPKDnEDsn/01cwuPxTizwvK8yBIG2LPljTYv+ZEbD20=) 2: 1B299892726F11EEB1217365C4F9AE02.roa (hash: /t+nwTppDZ8C9NhuG+3/6yW+b1AIMxj0muQucwZx3fw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Validity Not Before: May 19 07:31:49 2024 GMT Not After : May 26 07:31:49 2024 GMT Subject: CN=6649aae5-5672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2b:05:fc:10:c2:ba:14:e3:71:36:61:f7:e8: 35:44:12:31:f3:11:2e:90:9e:03:d7:72:b4:42:0f: b3:78:55:fc:2f:ca:9a:e6:6b:b1:d0:d7:f4:30:05: ce:4b:f3:c7:73:54:8a:a3:5a:c2:43:98:ca:f9:6a: e7:89:1e:5e:d1:be:90:c6:10:eb:7f:03:33:8d:a1: 39:c2:71:51:03:53:fe:65:02:6f:ff:64:22:39:61: a6:65:3b:34:65:2b:e9:8a:ef:40:2f:85:79:46:63: a3:a3:a7:59:12:cb:28:f5:c2:30:6e:27:b5:6c:ff: ff:b7:73:66:e3:a3:df:f9:1e:e8:1b:b6:69:98:97: a9:83:8a:5c:b5:bc:cb:40:00:bf:0d:e2:3f:c5:b3: d4:93:78:34:0c:ab:21:61:5b:1a:2a:b7:0f:9c:a0: e7:73:f5:be:a4:e7:9b:c1:80:60:a5:13:3d:f6:05: ba:82:81:b6:d1:0f:23:3d:11:20:e8:b3:2e:3d:0d: cd:d1:26:bc:42:a4:78:79:b2:37:9f:b2:dd:0b:8f: 56:a5:cf:00:84:95:a0:d5:24:87:b6:e7:73:80:4c: af:a9:ac:d7:19:fd:11:52:b5:d7:0f:d2:7c:a7:a9: b2:a3:4e:ff:d7:d1:da:c8:25:37:89:8a:d4:75:da: 78:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:2C:EB:71:B6:2A:CF:C4:15:1F:9F:60:FC:7C:5C:CE:E3:C6:87:69 X509v3 Authority Key Identifier: keyid:E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:8d:87:cb:82:a5:3b:29:be:88:af:6d:2d:ea:27:15:07:6b: 6d:27:63:3d:e0:88:a7:3d:ca:4d:fe:a1:43:58:3c:9f:d0:83: 34:0f:86:68:d2:91:60:67:a3:e6:45:22:7c:8f:c2:9d:4b:52: 1b:ca:33:56:d7:fe:03:0f:bc:2e:65:bc:5b:d2:c4:8e:45:16: a2:7f:1e:55:c7:ea:f4:7a:46:26:a8:51:68:fa:ef:cf:af:44: e2:d3:df:93:61:f5:ee:83:10:cd:c2:d4:7e:07:1e:2e:6e:d9: f6:bf:58:7f:2a:98:d0:c5:41:2d:4d:2e:8c:6b:38:98:68:4b: 7f:59:7d:29:2b:d4:a3:ad:19:dc:a0:4a:fa:ba:88:fd:1b:d6: ea:2b:62:ca:7a:16:6c:c6:4f:a5:d8:5b:2b:6f:ab:55:c2:ee: cc:e9:82:84:69:d3:38:af:3d:62:c1:82:91:6a:e8:42:66:04: 5c:5b:77:13:de:1e:e7:5d:c7:bb:08:95:16:18:6e:9a:31:fd: 22:ad:61:98:ea:ec:ce:f9:8f:cb:77:88:78:d4:94:df:93:6f: df:0a:75:97:b3:d7:d0:4b:4d:2c:d8:fa:56:4c:f0:cb:2e:f3: 39:56:c3:55:95:e2:03:34:85:2c:95:2d:98:48:b3:5e:ac:14: d2:85:92:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QTM2MjExMC8GA1UEBRMoRTZDNDZDOTFEMTJENTg1QTEyQjA1NTY5NjIxREVFMUFE M0Y4OTA4RTAeFw0yNDA1MTkwNzMxNDlaFw0yNDA1MjYwNzMxNDlaMBgxFjAUBgNV BAMTDTY2NDlhYWU1LTU2NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUKwX8EMK6FONxNmH36DVEEjHzES6QngPXcrRCD7N4Vfwvyprma7HQ1/QwBc5L 88dzVIqjWsJDmMr5aueJHl7RvpDGEOt/AzONoTnCcVEDU/5lAm//ZCI5YaZlOzRl K+mK70AvhXlGY6Ojp1kSyyj1wjBuJ7Vs//+3c2bjo9/5HugbtmmYl6mDily1vMtA AL8N4j/Fs9STeDQMqyFhWxoqtw+coOdz9b6k55vBgGClEz32BbqCgbbRDyM9ESDo sy49Dc3RJrxCpHh5sjefst0Lj1alzwCElaDVJIe253OATK+prNcZ/RFStdcP0nyn qbKjTv/X0drIJTeJitR12ni7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqizrcbYq z8QVH59g/HxczuPGh2kwHwYDVR0jBBgwFoAU5sRskdEtWFoSsFVpYh3uGtP4kI4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBMzYyLzdDQkE0QzRDNzI2 RTExRUU5RkUzNTA2MUM0RjlBRTAyLzVzUnNrZEV0V0ZvU3NGVnBZaDN1R3RQNGtJ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXNSc2tkRXRXRm9Tc0ZWcFloM3VHdFA0a0k0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB MzYyLzdDQkE0QzRDNzI2RTExRUU5RkUzNTA2MUM0RjlBRTAyLzVzUnNrZEV0V0Zv U3NGVnBZaDN1R3RQNGtJNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKiNh8uCpTspvoivbS3qJxUHa20nYz3giKc9yk3+oUNYPJ/QgzQPhmjS kWBno+ZFInyPwp1LUhvKM1bX/gMPvC5lvFvSxI5FFqJ/HlXH6vR6RiaoUWj678+v ROLT35Nh9e6DEM3C1H4HHi5u2fa/WH8qmNDFQS1NLoxrOJhoS39ZfSkr1KOtGdyg Svq6iP0b1uorYsp6FmzGT6XYWytvq1XC7szpgoRp0zivPWLBgpFq6EJmBFxbdxPe Huddx7sIlRYYbpox/SKtYZjq7M75j8t3iHjUlN+Tb98KdZez19BLTSzY+lZM8Msu 8zlWw1WV4gM0hSyVLZhIs16sFNKFkqc= -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org