$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: HVwlS2NK7/+/Q9a54sYBEYwDcZqEWdT00ZFZrrnHObA= Subject key identifier: D2:99:FC:2B:C3:F7:1E:A4:88:D6:46:C4:E6:27:99:A8:8F:B9:30:E8 Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0C2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0C26 Signing time: Sat 18 May 2024 18:59:09 +0000 Manifest this update: Sat 18 May 2024 18:59:09 +0000 Manifest next update: Sat 25 May 2024 18:59:09 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: qSiGtV3Iw/+pnm/tGEZQTVtoAyo4ktoJHT+zWoJfBt8=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: ZkUb8/k/pyJN1dk2SCWgY4ayBh/tGOA1WybYiVcrjIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3115 (0xc2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: May 18 18:59:09 2024 GMT Not After : May 25 18:59:09 2024 GMT Subject: CN=6648fa7d-5d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4d:8c:f7:80:8a:5f:f9:b9:c6:51:c4:ee:61: 58:4b:80:c8:9c:40:37:be:a0:df:6c:79:e2:47:bf: 10:26:a7:3d:f1:20:3b:4c:56:5a:ea:ea:a9:27:d4: bb:60:cd:3c:6b:c9:87:94:16:5c:49:25:93:1c:27: 5b:ed:7a:9a:0a:da:de:ea:ba:cf:e4:f9:a6:02:68: 55:95:d2:83:40:9c:23:5b:d6:5d:0d:99:5d:e4:a2: 63:d2:50:1f:3e:2b:f6:19:69:b9:03:da:6c:1a:a4: 3d:f5:fa:9b:78:46:b4:df:98:d6:91:0e:ce:5e:ec: 0d:25:d7:2e:2d:38:f3:48:70:91:e0:03:77:31:29: aa:ea:ad:ee:40:bf:34:7c:f0:f7:84:05:48:f7:9d: 8b:ac:57:9f:f6:8b:8e:ef:59:3a:d9:2b:22:7d:bd: 56:0a:5e:d3:f0:bd:8e:2c:a9:27:44:bd:74:49:18: f8:37:d9:ff:e6:4f:99:c9:35:0d:8a:eb:8b:1f:f4: 3f:4a:ba:d8:5f:b5:3c:14:92:57:27:b9:a7:6f:ad: 44:1c:50:ae:74:8c:ac:85:2f:42:9a:59:a2:63:f0: 74:0b:d8:28:99:46:0b:c1:7d:22:36:b1:1a:19:5d: 68:2a:a3:ed:4a:c2:b6:17:ad:a8:d1:dd:fd:f5:c2: 61:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:99:FC:2B:C3:F7:1E:A4:88:D6:46:C4:E6:27:99:A8:8F:B9:30:E8 X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:e8:8a:24:62:94:4c:8f:f9:40:f4:57:a1:bf:a0:7a:8d:53: 3d:af:74:0f:6f:e7:33:cc:d3:69:61:d7:06:d9:e7:2f:df:4f: bf:c7:d2:de:99:e0:30:bc:69:a8:68:e0:6e:a4:bf:f4:8f:39: ad:ef:c3:f3:25:e1:fa:57:76:54:96:d0:a3:b9:92:11:5c:83: eb:e9:3f:a9:d9:95:a1:77:6a:72:94:53:42:34:22:8d:22:28: 74:fc:a7:b8:1b:a1:06:e8:db:f8:64:5b:3d:14:7d:74:b2:fb: eb:63:c5:15:c1:8a:72:77:e9:0f:3a:fa:b9:cf:11:09:82:82: 89:16:a6:d7:3f:f8:6e:f9:e7:52:c2:aa:ed:e4:02:27:e7:06: 92:f4:50:01:d0:4d:f7:aa:2f:d6:25:ad:13:66:0a:f5:3c:6a: 85:05:59:c0:7c:97:99:d3:a7:4c:f2:0d:ce:dd:d1:6a:ae:34: 65:04:87:c1:fb:30:64:8f:7b:61:1a:21:f3:3d:d4:6b:e4:ee: 2b:42:97:88:53:73:e8:08:5c:53:8a:b4:9f:01:2f:63:89:c3: 8c:a2:fd:67:e8:78:5c:e3:f3:c9:2f:f7:9f:b9:25:71:82:20: b7:b1:22:2a:1e:3b:d5:a8:0e:24:f4:01:52:16:13:56:98:ed: a4:65:23:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjQwNTE4MTg1OTA5WhcNMjQwNTI1MTg1OTA5WjAYMRYwFAYD VQQDEw02NjQ4ZmE3ZC01ZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuE2M94CKX/m5xlHE7mFYS4DInEA3vqDfbHniR78QJqc98SA7TFZa6uqpJ9S7 YM08a8mHlBZcSSWTHCdb7XqaCtre6rrP5PmmAmhVldKDQJwjW9ZdDZld5KJj0lAf Piv2GWm5A9psGqQ99fqbeEa035jWkQ7OXuwNJdcuLTjzSHCR4AN3MSmq6q3uQL80 fPD3hAVI952LrFef9ouO71k62Ssifb1WCl7T8L2OLKknRL10SRj4N9n/5k+ZyTUN iuuLH/Q/SrrYX7U8FJJXJ7mnb61EHFCudIyshS9CmlmiY/B0C9gomUYLwX0iNrEa GV1oKqPtSsK2F62o0d399cJhMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKZ/CvD 9x6kiNZGxOYnmaiPuTDoMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn6IokYpRMj/lA9Fehv6B6jVM9r3QPb+czzNNpYdcG2ecv30+/x9Le meAwvGmoaOBupL/0jzmt78PzJeH6V3ZUltCjuZIRXIPr6T+p2ZWhd2pylFNCNCKN Iih0/Ke4G6EG6Nv4ZFs9FH10svvrY8UVwYpyd+kPOvq5zxEJgoKJFqbXP/hu+edS wqrt5AIn5waS9FAB0E33qi/WJa0TZgr1PGqFBVnAfJeZ06dM8g3O3dFqrjRlBIfB +zBkj3thGiHzPdRr5O4rQpeIU3PoCFxTirSfAS9jicOMov1n6Hhc4/PJL/efuSVx giC3sSIqHjvVqA4k9AFSFhNWmO2kZSPP -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org