$ rpki-client -vvf rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft File: 47jqsa6RbflaLVWue7e7eaULSuc.mft (raw, json) Hash identifier: gNk8Z1YZfNlssTkrr6KZPWVCHviyleCw/i5AYiyd7no= Subject key identifier: 20:28:6C:72:6A:17:F0:ED:55:C5:5E:3E:4B:FA:7C:87:55:92:9B:8E Authority key identifier: E3:B8:EA:B1:AE:91:6D:F9:5A:2D:55:AE:7B:B7:BB:79:A5:0B:4A:E7 Certificate issuer: /CN=A918B591/serialNumber=E3B8EAB1AE916DF95A2D55AE7BB7BB79A50B4AE7 Certificate serial: 0676 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft Manifest number: 0671 Signing time: Sat 18 May 2024 23:29:08 +0000 Manifest this update: Sat 18 May 2024 23:29:07 +0000 Manifest next update: Sat 25 May 2024 23:29:07 +0000 Files and hashes: 1: 47jqsa6RbflaLVWue7e7eaULSuc.crl (hash: Ojn309R0HPX28fNTbsqZ3Sj8foAz1CfdqhKZBLN7pLU=) 2: D2E2417A2F7211EB80969C22C4F9AE02.roa (hash: 5hXuw5V++QagpBJ1Df5xzXXy68/h9f8Vvx58YBpkE8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.crl rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B591/serialNumber=E3B8EAB1AE916DF95A2D55AE7BB7BB79A50B4AE7 Validity Not Before: May 18 23:29:07 2024 GMT Not After : May 25 23:29:07 2024 GMT Subject: CN=664939c4-d098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ba:2b:15:f3:34:44:92:18:61:5e:b9:af:86: f9:75:1e:9e:c5:ab:fc:a1:a2:b7:a1:17:bd:da:81: a6:b7:02:96:0d:de:8a:60:16:c0:ff:2a:b7:1b:06: 1f:a0:c6:44:75:f7:39:ea:9b:7f:bb:29:a9:c9:91: 94:2f:f4:b1:40:b9:d5:b9:98:56:2f:f1:6e:ca:21: a5:de:62:0b:9c:65:85:72:f8:85:c7:2c:fe:2e:86: af:15:ed:f1:a1:2e:06:b6:8b:f8:56:8f:64:8c:20: e5:80:1b:7b:a9:4f:51:fb:be:80:64:7b:2a:e0:a7: d1:c5:9c:3c:02:b2:36:07:33:e6:6c:ab:af:00:28: 5e:cf:b4:30:e5:07:84:d3:91:ac:4c:84:2a:d2:d4: dc:90:dc:ea:55:29:88:a1:e7:5e:a5:0b:34:e9:c7: 2e:5e:6c:c2:0d:91:27:25:2b:ae:5c:a6:a0:68:35: 3c:58:85:a2:06:a7:0c:ac:82:9d:31:88:44:a5:27: 9c:5a:35:0d:85:0f:c7:b2:b4:1a:21:13:f1:6d:d2: 70:d5:f6:a4:5f:b7:41:17:89:86:8f:54:d5:70:b8: 23:79:75:f0:19:03:43:38:26:e3:43:ff:52:64:e8: 76:c2:0e:2d:e7:ae:1a:06:e5:b1:75:b3:5d:37:75: 07:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:28:6C:72:6A:17:F0:ED:55:C5:5E:3E:4B:FA:7C:87:55:92:9B:8E X509v3 Authority Key Identifier: keyid:E3:B8:EA:B1:AE:91:6D:F9:5A:2D:55:AE:7B:B7:BB:79:A5:0B:4A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6b:ce:a7:0a:a3:e9:eb:64:4c:7e:3e:18:8d:2c:51:00:fe: 3c:c9:f6:eb:ab:fc:31:a7:02:46:f5:2e:7d:ae:db:6c:dd:89: 12:0b:e8:74:fe:23:7f:c5:f1:c6:38:87:5f:40:5e:f8:bc:b8: 15:88:d0:e0:ba:96:7f:c1:87:4f:d8:c1:b0:cc:7e:67:b0:29: a5:f7:e7:19:5e:8e:69:2c:42:b6:50:f5:0a:f0:99:ea:e3:86: c2:e5:ff:95:63:eb:bb:d5:60:94:d5:18:51:ea:9d:c8:d4:0d: d5:28:ae:c5:02:94:f9:a4:5a:80:7f:67:82:ee:74:5f:f0:66: ed:6a:ab:f9:2e:9c:0e:46:a5:a2:f9:34:97:57:87:0e:9c:20: b7:b6:00:ed:4e:fd:83:60:4b:77:0a:0e:b2:be:a3:c4:a0:7d: 58:62:f9:cf:03:1e:6e:91:e6:af:c4:e8:38:e2:25:bf:a8:ec: 06:3b:b8:7d:ef:4a:79:1b:e7:91:c6:a8:d3:15:d2:48:2e:5c: bb:6e:22:74:f6:ff:df:e4:7b:ae:5c:48:3f:e3:82:c2:5f:79: eb:6c:4f:50:10:3d:ec:10:60:eb:c9:43:a7:94:98:85:17:2d: b6:90:85:85:ac:f3:94:6f:f4:5e:0a:dc:85:b3:74:63:fd:3d: e5:ab:85:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1OTExMTAvBgNVBAUTKEUzQjhFQUIxQUU5MTZERjk1QTJENTVBRTdCQjdCQjc5 QTUwQjRBRTcwHhcNMjQwNTE4MjMyOTA3WhcNMjQwNTI1MjMyOTA3WjAYMRYwFAYD VQQDEw02NjQ5MzljNC1kMDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurorFfM0RJIYYV65r4b5dR6exav8oaK3oRe92oGmtwKWDd6KYBbA/yq3GwYf oMZEdfc56pt/uympyZGUL/SxQLnVuZhWL/FuyiGl3mILnGWFcviFxyz+LoavFe3x oS4Gtov4Vo9kjCDlgBt7qU9R+76AZHsq4KfRxZw8ArI2BzPmbKuvAChez7Qw5QeE 05GsTIQq0tTckNzqVSmIoedepQs06ccuXmzCDZEnJSuuXKagaDU8WIWiBqcMrIKd MYhEpSecWjUNhQ/HsrQaIRPxbdJw1fakX7dBF4mGj1TVcLgjeXXwGQNDOCbjQ/9S ZOh2wg4t564aBuWxdbNdN3UHjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAobHJq F/DtVcVePkv6fIdVkpuOMB8GA1UdIwQYMBaAFOO46rGukW35Wi1Vrnu3u3mlC0rn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjU5MS9EMjMzQzY0NjJG NzExMUVCQjZFRDNFMjJDNEY5QUUwMi80N2pxc2E2UmJmbGFMVld1ZTdlN2VhVUxT dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ3anFzYTZSYmZsYUxWV3VlN2U3ZWFVTFN1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjU5MS9EMjMzQzY0NjJGNzExMUVCQjZFRDNFMjJDNEY5QUUwMi80N2pxc2E2UmJm bGFMVld1ZTdlN2VhVUxTdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBa86nCqPp62RMfj4YjSxRAP48yfbrq/wxpwJG9S59rtts3YkSC+h0 /iN/xfHGOIdfQF74vLgViNDgupZ/wYdP2MGwzH5nsCml9+cZXo5pLEK2UPUK8Jnq 44bC5f+VY+u71WCU1RhR6p3I1A3VKK7FApT5pFqAf2eC7nRf8Gbtaqv5LpwORqWi +TSXV4cOnCC3tgDtTv2DYEt3Cg6yvqPEoH1YYvnPAx5ukeavxOg44iW/qOwGO7h9 70p5G+eRxqjTFdJILly7biJ09v/f5HuuXEg/44LCX3nrbE9QED3sEGDryUOnlJiF Fy22kIWFrPOUb/ReCtyFs3Rj/T3lq4Vs -----END CERTIFICATE-----Generated at Sun May 19 00:30:19 2024 by rpki-client on console-ams.rpki-client.org