$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft File: em4wIQZCz0-7QXPzUnSOHqXCx8M.mft (raw, json) Hash identifier: T6gaeSBfIFm5rrZYKBIdRQeJt29TCSZ0tdAvlEJsQAA= Subject key identifier: CD:21:80:72:62:67:1E:B0:5F:F8:54:9C:20:34:C3:3F:87:21:7B:CD Authority key identifier: 7A:6E:30:21:06:42:CF:4F:BB:41:73:F3:52:74:8E:1E:A5:C2:C7:C3 Certificate issuer: /CN=A917D9FC/serialNumber=7A6E30210642CF4FBB4173F352748E1EA5C2C7C3 Certificate serial: 1776 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft Manifest number: 1757 Signing time: Sat 18 May 2024 17:03:20 +0000 Manifest this update: Sat 18 May 2024 17:03:19 +0000 Manifest next update: Sat 25 May 2024 17:03:19 +0000 Files and hashes: 1: em4wIQZCz0-7QXPzUnSOHqXCx8M.crl (hash: f3Fm2LOee3E9WzPJkK3BOYVUEHoyq/PJ1AMjfniY0Do=) 2: 708DE4A87AB011E8B7AB0E53C4F9AE02.roa (hash: mlV5FElI2KfwPw+F74U5A5+ugzB0GpF8appz7O1hrRc=) 3: F49AA4A889C211EEADFCF27CC4F9AE02.roa (hash: d2SHnZ0bs3Ad8y5hDn3mylfyHabzy/8uFTs+4jhjfXE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.crl rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6006 (0x1776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC/serialNumber=7A6E30210642CF4FBB4173F352748E1EA5C2C7C3 Validity Not Before: May 18 17:03:19 2024 GMT Not After : May 25 17:03:19 2024 GMT Subject: CN=6648df58-ce61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:87:0c:d3:9d:e1:ba:24:de:56:50:97:1b:bf: 11:33:05:92:f4:18:56:28:9c:00:aa:50:5b:83:47: e3:c1:e3:1c:1e:20:fa:41:e3:a2:77:db:db:bb:65: 35:03:a7:9e:de:9b:47:65:21:a2:00:af:e8:fa:e6: ac:94:7d:02:34:39:cc:b4:94:c1:71:3a:19:f3:8f: 0b:c4:61:44:10:c1:b8:a7:5e:6c:aa:c0:b4:4f:74: 65:84:7f:52:09:bf:68:5d:75:37:1c:36:82:bc:36: 65:ac:4c:35:cb:6a:f5:5c:fd:1c:32:eb:3a:a2:e7: 6a:4a:0a:4c:95:4c:77:db:11:c0:9d:01:a5:52:24: 3c:4a:2c:b3:17:82:7b:93:92:b2:18:54:10:70:e0: 9a:c6:30:55:61:a0:02:a8:83:3f:11:26:02:a0:fe: 41:05:fb:09:58:ad:c2:1e:8d:98:56:e3:7e:a4:37: 47:64:9c:a3:81:0f:c5:50:df:43:4f:73:49:4c:72: 17:15:33:e4:fb:cf:b2:3a:63:f8:27:89:d6:c5:4a: 21:f7:e4:aa:b3:a7:f3:79:4c:51:c7:2e:5a:0c:91: a0:81:de:0b:93:9b:a8:8f:fe:98:92:f7:8b:13:86: e9:89:44:90:4d:11:5d:95:9a:f0:6a:01:94:76:88: f9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:21:80:72:62:67:1E:B0:5F:F8:54:9C:20:34:C3:3F:87:21:7B:CD X509v3 Authority Key Identifier: keyid:7A:6E:30:21:06:42:CF:4F:BB:41:73:F3:52:74:8E:1E:A5:C2:C7:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:2f:9a:39:f7:48:74:a7:a2:a3:64:c3:f2:fc:3d:3c:d9:b8: 9f:4d:e3:82:78:ba:ff:dc:91:74:6e:4d:ca:72:e1:15:4c:19: c1:7a:c2:a8:b8:ca:a3:b4:83:f9:9d:f4:0b:06:5e:34:dd:56: 5f:a3:17:79:11:ef:48:36:8d:01:ad:5d:fa:b1:b5:e1:2c:e9: e7:f3:99:e0:70:71:56:45:6a:d4:53:9e:f5:d4:bd:f4:3b:fb: 7f:35:a5:b7:87:ae:88:7f:6e:57:91:97:3d:aa:03:43:29:e0: b1:31:26:31:f0:ff:42:49:6b:88:aa:4b:57:a7:5c:79:10:16: ec:7f:16:81:70:24:5d:1e:2c:09:1e:4a:dd:65:2f:2d:0f:26: 79:5a:c5:ac:34:bd:a2:96:be:1c:68:20:16:1d:f8:0f:0e:91: 2d:3e:c4:2b:88:ca:6a:60:f5:06:91:f7:92:2f:28:96:d1:b8: 7e:ff:2f:96:0f:23:f8:39:02:81:f0:be:f9:ce:18:cf:47:08: c9:1a:89:54:86:a4:8c:2d:9f:1d:2d:31:31:0e:fc:0b:93:94: 44:86:48:8f:b6:7b:e2:4c:d0:65:38:47:c8:73:d7:77:5f:00: 53:81:c2:f3:23:d8:1c:34:81:66:56:2d:12:ac:8c:11:5f:14: 35:6e:3d:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKDdBNkUzMDIxMDY0MkNGNEZCQjQxNzNGMzUyNzQ4RTFF QTVDMkM3QzMwHhcNMjQwNTE4MTcwMzE5WhcNMjQwNTI1MTcwMzE5WjAYMRYwFAYD VQQDEw02NjQ4ZGY1OC1jZTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApocM053huiTeVlCXG78RMwWS9BhWKJwAqlBbg0fjweMcHiD6QeOid9vbu2U1 A6ee3ptHZSGiAK/o+uaslH0CNDnMtJTBcToZ848LxGFEEMG4p15sqsC0T3RlhH9S Cb9oXXU3HDaCvDZlrEw1y2r1XP0cMus6oudqSgpMlUx32xHAnQGlUiQ8SiyzF4J7 k5KyGFQQcOCaxjBVYaACqIM/ESYCoP5BBfsJWK3CHo2YVuN+pDdHZJyjgQ/FUN9D T3NJTHIXFTPk+8+yOmP4J4nWxUoh9+Sqs6fzeUxRxy5aDJGggd4Lk5uoj/6YkveL E4bpiUSQTRFdlZrwagGUdoj5lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0hgHJi Zx6wX/hUnCA0wz+HIXvNMB8GA1UdIwQYMBaAFHpuMCEGQs9Pu0Fz81J0jh6lwsfD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy9DNkIwMzRBQUI4 OTkxMUU3QjI2OUI4NTBDNEY5QUUwMi9lbTR3SVFaQ3owLTdRWFB6VW5TT0hxWEN4 OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VtNHdJUVpDejAtN1FYUHpVblNPSHFYQ3g4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy9DNkIwMzRBQUI4OTkxMUU3QjI2OUI4NTBDNEY5QUUwMi9lbTR3SVFaQ3ow LTdRWFB6VW5TT0hxWEN4OE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPL5o590h0p6KjZMPy/D082bifTeOCeLr/3JF0bk3KcuEVTBnBesKo uMqjtIP5nfQLBl403VZfoxd5Ee9INo0BrV36sbXhLOnn85ngcHFWRWrUU5711L30 O/t/NaW3h66If25XkZc9qgNDKeCxMSYx8P9CSWuIqktXp1x5EBbsfxaBcCRdHiwJ HkrdZS8tDyZ5WsWsNL2ilr4caCAWHfgPDpEtPsQriMpqYPUGkfeSLyiW0bh+/y+W DyP4OQKB8L75zhjPRwjJGolUhqSMLZ8dLTExDvwLk5REhkiPtnviTNBlOEfIc9d3 XwBTgcLzI9gcNIFmVi0SrIwRXxQ1bj3y -----END CERTIFICATE-----Generated at Sat May 18 18:21:37 2024 by rpki-client on console-ams.rpki-client.org