$ rpki-client -vvf rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft File: DEft4wSONabm6MsM5E_IQ3Jx6z0.mft (raw, json) Hash identifier: 3upvzcZATZx4XNoOgo0CbhPiRDXMt1gWFs0pO0unpVk= Subject key identifier: A4:1C:CF:EC:7F:7E:BB:38:C6:B7:42:01:B8:14:84:8C:88:B8:57:A6 Authority key identifier: 0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D Certificate issuer: /CN=A917B51E/serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Certificate serial: 06D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft Manifest number: 06C9 Signing time: Sat 18 May 2024 23:03:02 +0000 Manifest this update: Sat 18 May 2024 23:03:01 +0000 Manifest next update: Sat 25 May 2024 23:03:01 +0000 Files and hashes: 1: DEft4wSONabm6MsM5E_IQ3Jx6z0.crl (hash: Rmm7s5oRdUJqYxBGA3/UHYPG9AlTHlZiXirT4D67vpo=) 2: EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa (hash: YLnBBdEHbwfh9d/VxrGK1vhLnLXi/RrFFevgHHajgZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1745 (0x6d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B51E/serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Validity Not Before: May 18 23:03:01 2024 GMT Not After : May 25 23:03:01 2024 GMT Subject: CN=664933a5-d0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:67:61:9c:75:9e:72:4f:e9:d3:55:60:ac:75: e7:5b:7e:db:b0:af:c5:26:5c:52:b1:3c:a3:0d:54: 49:36:34:43:de:44:0f:38:8d:c9:d2:ed:f2:0f:15: 51:6a:31:30:f0:1e:52:86:da:ad:63:a9:8b:57:df: d1:a6:ca:33:a3:00:30:0b:f7:ed:6c:f4:4d:8e:af: b2:d7:60:df:27:4f:97:63:80:19:88:0e:22:96:d1: f4:4a:de:4f:60:6b:c0:95:70:98:dd:1b:0b:6e:7a: aa:5c:df:31:3d:9b:b0:ad:da:ec:c2:68:8b:3c:e7: 60:ec:5e:03:bb:b5:3f:af:db:b6:13:5c:36:cf:3a: bb:c9:fd:e7:9b:cd:b3:e1:84:65:03:f7:ad:1b:42: 40:79:6f:35:81:3d:5e:bd:05:9c:a0:a7:48:63:0a: 3d:d7:62:fa:e8:7e:4f:d5:c2:cf:03:7c:f4:c5:e9: 02:08:9e:24:ab:61:08:1f:89:01:cf:71:b1:1c:c9: 77:6d:ad:97:30:a3:b3:8e:3d:69:72:a5:62:6a:b4: 7c:5d:87:c5:cd:98:b9:43:e1:2b:f6:d6:bb:c8:72: 68:aa:b3:59:9c:76:dc:ac:d8:0e:db:87:16:86:dd: 6b:fa:62:fe:c2:3e:8c:3b:8f:c2:87:1b:50:d2:83: ff:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1C:CF:EC:7F:7E:BB:38:C6:B7:42:01:B8:14:84:8C:88:B8:57:A6 X509v3 Authority Key Identifier: keyid:0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:8e:b4:3c:e7:1b:a3:62:e9:47:62:f0:a5:c3:db:cf:25:0b: 03:75:6c:b7:be:75:b9:3f:f7:20:9e:d8:67:2b:85:11:e3:d9: a6:08:e1:6d:9f:fd:e7:e3:7a:1f:3e:cc:3d:25:1c:25:6c:61: 37:35:3d:81:1b:5f:ae:21:ad:1a:41:aa:44:b4:ac:5f:65:74: 40:7b:ff:c6:06:d1:06:2b:e6:66:6e:94:9b:a0:94:a7:cb:b5: 4d:6e:93:20:e9:9f:32:cd:90:1f:b6:7f:69:e7:7b:ef:a2:25: 01:01:be:92:87:c6:8e:28:7e:2e:49:4e:64:a4:dd:b5:4b:ba: 33:11:3a:e6:42:14:dc:ee:74:9c:79:e7:a3:a0:94:7e:f2:f1: 39:3b:80:cd:61:64:2e:3b:f6:ff:f2:b4:75:20:7c:24:1e:3f: 16:0a:58:85:7e:26:ef:49:34:de:fc:a2:7c:1e:ea:1b:73:60: fb:5c:f5:1e:63:d9:f7:cd:3f:ea:23:9d:53:26:86:a5:5d:01: 52:d8:15:6f:ec:aa:3a:15:bf:4b:84:60:52:ec:a1:64:69:c8: 7b:d6:ff:fc:b7:59:3d:7e:58:f1:f6:f9:f8:ac:b4:4b:b5:7f: 6c:44:a8:eb:84:43:d5:03:b3:fa:74:97:10:3a:0e:df:29:e5: 9c:63:03:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MUUxMTAvBgNVBAUTKDBDNDdFREUzMDQ4RTM1QTZFNkU4Q0IwQ0U0NEZDODQz NzI3MUVCM0QwHhcNMjQwNTE4MjMwMzAxWhcNMjQwNTI1MjMwMzAxWjAYMRYwFAYD VQQDEw02NjQ5MzNhNS1kMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGdhnHWeck/p01VgrHXnW37bsK/FJlxSsTyjDVRJNjRD3kQPOI3J0u3yDxVR ajEw8B5ShtqtY6mLV9/RpsozowAwC/ftbPRNjq+y12DfJ0+XY4AZiA4iltH0St5P YGvAlXCY3RsLbnqqXN8xPZuwrdrswmiLPOdg7F4Du7U/r9u2E1w2zzq7yf3nm82z 4YRlA/etG0JAeW81gT1evQWcoKdIYwo912L66H5P1cLPA3z0xekCCJ4kq2EIH4kB z3GxHMl3ba2XMKOzjj1pcqViarR8XYfFzZi5Q+Er9ta7yHJoqrNZnHbcrNgO24cW ht1r+mL+wj6MO4/ChxtQ0oP/OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQcz+x/ frs4xrdCAbgUhIyIuFemMB8GA1UdIwQYMBaAFAxH7eMEjjWm5ujLDORPyENyces9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUxRS81OUNERDU0QTBG RTkxMUVCOUYzMEM3MjVDNEY5QUUwMi9ERWZ0NHdTT05hYm02TXNNNUVfSVEzSng2 ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFZnQ0d1NPTmFibTZNc001RV9JUTNKeDZ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUxRS81OUNERDU0QTBGRTkxMUVCOUYzMEM3MjVDNEY5QUUwMi9ERWZ0NHdTT05h Ym02TXNNNUVfSVEzSng2ejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyjrQ85xujYulHYvClw9vPJQsDdWy3vnW5P/cgnthnK4UR49mmCOFt n/3n43ofPsw9JRwlbGE3NT2BG1+uIa0aQapEtKxfZXRAe//GBtEGK+ZmbpSboJSn y7VNbpMg6Z8yzZAftn9p53vvoiUBAb6Sh8aOKH4uSU5kpN21S7ozETrmQhTc7nSc eeejoJR+8vE5O4DNYWQuO/b/8rR1IHwkHj8WCliFfibvSTTe/KJ8Huobc2D7XPUe Y9n3zT/qI51TJoalXQFS2BVv7Ko6Fb9LhGBS7KFkach71v/8t1k9fljx9vn4rLRL tX9sRKjrhEPVA7P6dJcQOg7fKeWcYwPA -----END CERTIFICATE-----Generated at Sun May 19 00:30:18 2024 by rpki-client on console-ams.rpki-client.org