$ rpki-client -vvf rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft File: C7BDH1UIA338kvd-BrSK7JVR9ls.mft (raw, json) Hash identifier: X2ReM/asf5ImT5UJUolHzYpO0+f7xiij4S9F8wqonRw= Subject key identifier: 8C:4D:FB:A3:35:48:12:26:3A:95:8A:DD:72:86:49:A4:93:5B:95:E9 Authority key identifier: 0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B Certificate issuer: /CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Certificate serial: 1A30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft Manifest number: 1A2A Signing time: Sat 18 May 2024 16:45:50 +0000 Manifest this update: Sat 18 May 2024 16:45:50 +0000 Manifest next update: Sat 25 May 2024 16:45:50 +0000 Files and hashes: 1: C7BDH1UIA338kvd-BrSK7JVR9ls.crl (hash: +pEweiYdlaZA9Fk10zpil9NfhPfOiyyObhua9S3Q7pE=) 2: 8E810FBCD46E11E9B37C0539C4F9AE02.roa (hash: IXW1+0fF2iCeRzSYzjKhJ4py4NiAw4UPgWTtuuz6Vxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6704 (0x1a30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Validity Not Before: May 18 16:45:50 2024 GMT Not After : May 25 16:45:50 2024 GMT Subject: CN=6648db3e-5590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:13:d4:16:a1:09:72:bd:08:77:b3:ca:38: a2:1a:e2:68:a2:52:0e:22:32:26:af:81:b4:5e:c0: 4e:95:6e:92:10:40:70:3b:e8:d6:a5:0b:25:6b:df: 32:82:e8:06:cd:1e:f6:ff:8d:d2:76:64:70:ea:5a: ad:29:d2:93:1f:01:0d:64:3a:d8:43:f0:dc:09:f1: f6:e1:f9:95:f5:1b:f6:46:0b:16:80:43:fb:db:49: 81:57:50:0b:60:39:11:84:57:2d:6d:ed:25:cf:d1: 78:ca:3a:c8:7a:24:be:64:81:9c:bf:42:78:b9:16: 79:32:73:2d:2f:ef:34:0f:20:aa:45:62:4d:ef:ce: d6:ad:51:9d:fe:a2:88:90:63:e3:e6:99:b0:9c:b1: 42:93:da:d3:6d:34:bf:7c:39:e9:3f:fe:9a:21:77: aa:ae:4f:f4:44:6c:49:f4:e5:c1:e0:ea:9b:5c:67: af:f7:6b:c6:84:06:b3:34:21:8b:df:c0:80:fe:e8: d7:b2:cd:83:06:fc:1b:88:11:ff:ec:e4:97:09:c3: 66:cf:a2:71:6a:01:c0:19:bc:9a:8d:41:34:8a:bd: 11:d8:45:81:69:c7:5e:a8:be:b9:50:52:6d:b3:5a: 18:ce:e1:94:07:a0:d7:75:12:5f:fd:93:a2:49:ef: ac:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:4D:FB:A3:35:48:12:26:3A:95:8A:DD:72:86:49:A4:93:5B:95:E9 X509v3 Authority Key Identifier: keyid:0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:45:bd:59:b1:0f:fa:bd:ae:f4:b2:3d:96:8f:69:15:79:e4: 99:f7:6d:a7:8a:60:3c:4c:05:60:86:06:3e:fc:f1:fc:6b:b4: 1b:51:65:71:b0:2a:a0:3b:00:1e:db:b7:1b:37:2c:15:b0:54: be:05:b0:f1:5d:ae:56:bf:9f:4a:e5:80:22:b1:41:fa:09:7c: 78:29:0d:f3:33:9b:9e:c3:01:12:27:14:3f:a5:a2:cf:a5:93: 9a:a0:db:fb:07:83:7a:94:4c:ae:b5:9b:f5:2d:72:8d:41:7f: e0:1a:de:ff:0b:3b:af:21:14:ba:83:fd:0b:ab:e5:ff:a1:b9: bc:fc:46:2f:b1:bc:91:09:c5:14:9b:d1:12:52:e5:13:78:b9: 63:11:87:33:b9:d0:e2:82:f4:af:cb:a4:2f:cd:64:f2:de:e7: 1e:3d:00:11:63:4b:c9:7e:97:35:28:4d:da:b8:20:ef:68:95: 43:79:b2:7b:4a:ba:f2:39:6d:6b:17:a6:40:cb:5c:a0:2a:70: a9:1e:72:43:35:d7:bb:2e:b1:69:94:14:16:60:dd:d1:c7:12: bf:de:01:33:bd:33:81:12:75:b3:47:0b:d6:88:20:ff:55:24: 86:03:03:e7:09:81:48:fe:e1:fd:06:90:1c:d6:c3:34:63:0c: b9:d6:01:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyNTUxMTAvBgNVBAUTKDBCQjA0MzFGNTUwODAzN0RGQzkyRjc3RTA2QjQ4QUVD OTU1MUY2NUIwHhcNMjQwNTE4MTY0NTUwWhcNMjQwNTI1MTY0NTUwWjAYMRYwFAYD VQQDEw02NjQ4ZGIzZS01NTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1B0T1BahCXK9CHezyjiiGuJoolIOIjImr4G0XsBOlW6SEEBwO+jWpQsla98y gugGzR72/43SdmRw6lqtKdKTHwENZDrYQ/DcCfH24fmV9Rv2RgsWgEP720mBV1AL YDkRhFctbe0lz9F4yjrIeiS+ZIGcv0J4uRZ5MnMtL+80DyCqRWJN787WrVGd/qKI kGPj5pmwnLFCk9rTbTS/fDnpP/6aIXeqrk/0RGxJ9OXB4OqbXGev92vGhAazNCGL 38CA/ujXss2DBvwbiBH/7OSXCcNmz6JxagHAGbyajUE0ir0R2EWBacdeqL65UFJt s1oYzuGUB6DXdRJf/ZOiSe+swQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxN+6M1 SBImOpWK3XKGSaSTW5XpMB8GA1UdIwQYMBaAFAuwQx9VCAN9/JL3fga0iuyVUfZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI1NS9CRTYyREM5RTIz MkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEzMzhrdmQtQnJTSzdKVlI5 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QkRIMVVJQTMzOGt2ZC1CclNLN0pWUjlscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzI1NS9CRTYyREM5RTIzMkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEz MzhrdmQtQnJTSzdKVlI5bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJRb1ZsQ/6va70sj2Wj2kVeeSZ922nimA8TAVghgY+/PH8a7QbUWVx sCqgOwAe27cbNywVsFS+BbDxXa5Wv59K5YAisUH6CXx4KQ3zM5uewwESJxQ/paLP pZOaoNv7B4N6lEyutZv1LXKNQX/gGt7/CzuvIRS6g/0Lq+X/obm8/EYvsbyRCcUU m9ESUuUTeLljEYczudDigvSvy6QvzWTy3ucePQARY0vJfpc1KE3auCDvaJVDebJ7 SrryOW1rF6ZAy1ygKnCpHnJDNde7LrFplBQWYN3RxxK/3gEzvTOBEnWzRwvWiCD/ VSSGAwPnCYFI/uH9BpAc1sM0Ywy51gF6 -----END CERTIFICATE-----Generated at Sat May 18 18:21:37 2024 by rpki-client on console-ams.rpki-client.org