$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft File: CrbdJlFcU-zFsEYrTEddWn5aVTc.mft (raw, json) Hash identifier: 2THVT5QJUODM31V0KW15dAl797v+uxggxFIuA8q1wXM= Subject key identifier: 32:09:E8:CD:1F:EE:E6:C9:FE:EC:E4:6A:88:2B:BC:EA:46:6E:11:00 Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 0433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft Manifest number: 0423 Signing time: Sun 19 May 2024 02:04:58 +0000 Manifest this update: Sun 19 May 2024 02:04:58 +0000 Manifest next update: Sun 26 May 2024 02:04:58 +0000 Files and hashes: 1: CrbdJlFcU-zFsEYrTEddWn5aVTc.crl (hash: GqarQuFJnA+aEB+Xmydz7ewCyXnSb4x5fdr/pPWejvo=) 2: 78BE822078F911EEBCAFB814C4F9AE02.roa (hash: ZUUO7Ruo7QW+0c5Gso1Zm33YZ7ZtE+TGaUKBO9CsHnc=) 3: 17A651BCA40E11EEAAB83671C4F9AE02.roa (hash: ud/e01rmrnMI7HngSKHE+cQlo1wQpmdnHcl5Kf5zih8=) 4: A4B120EE1EAC11ECB7B9E330C4F9AE02.roa (hash: 5OiO3hnid4AIzh2V/5E5HSxRKiNx2nFYy8PINfQ5Bxo=) 5: 30EFF8D6CB0911EE9260454CC4F9AE02.roa (hash: UBSpkQC7C+2SrJFHCSQjRknYvUnfoKT6zqO+Fgh1ODg=) 6: 16D4DB82A40E11EEAAB83671C4F9AE02.roa (hash: 1CkVhESVaf/2B94HtCDrQpBzCC89MWxtXOgxIuY06j8=) 7: 308758F8CB0911EE9260454CC4F9AE02.roa (hash: 6NxxjvnfyDL1YE5iFRpWg14g3lEf8MNWdtZlhLe7oZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: May 19 02:04:58 2024 GMT Not After : May 26 02:04:58 2024 GMT Subject: CN=66495e4a-c30e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0d:79:34:9d:39:0c:ff:44:4f:57:9e:a2:db: 0e:e3:29:7b:4c:b1:72:c1:d9:2f:eb:1c:e7:28:a6: 50:17:e7:45:9b:bb:4e:28:16:5e:86:f0:be:4d:5f: 33:dd:6a:a3:0e:eb:b1:df:2b:d3:d7:12:fa:1f:d9: eb:fb:07:97:2b:92:14:27:3a:ef:e8:73:ca:58:da: bb:10:ac:7e:63:9f:92:8f:c2:7a:9f:62:d2:85:9b: ea:21:ab:f3:48:1c:56:39:fc:d5:ff:7c:e0:1c:43: 66:56:ee:d0:80:1e:32:47:ed:7d:74:2a:c3:de:b8: e3:ac:89:6f:76:e5:00:52:1e:1f:17:12:1d:d6:a5: c6:81:49:68:b2:b3:b7:3e:7f:20:12:a6:43:8a:a8: 91:b4:58:29:58:06:6a:48:ab:7f:fe:7a:28:cf:dc: ce:8b:05:13:66:38:60:aa:ab:94:22:e8:f2:70:49: fa:b7:7e:98:c5:d2:12:ff:44:ee:b6:a6:a3:ed:7c: 26:4f:a3:e5:e6:db:5c:a6:69:66:62:d3:11:aa:93: 9f:14:25:bb:cc:5a:8a:12:29:6d:55:a1:a4:47:28: 06:55:f2:eb:8c:38:30:56:93:b9:8c:f6:77:8f:42: da:76:a9:4a:11:e6:e8:5c:19:7d:01:12:5c:ad:af: 4f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:09:E8:CD:1F:EE:E6:C9:FE:EC:E4:6A:88:2B:BC:EA:46:6E:11:00 X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:3b:1f:9a:3f:21:e9:6d:2f:ce:f6:af:f8:38:a8:5e:aa:0c: 97:e2:a8:cb:f2:d2:83:92:f1:8b:a9:3f:63:34:27:39:64:d6: 2a:4a:8d:e6:31:e0:b4:7a:ce:e9:11:2e:06:02:f3:a1:3d:b5: 10:eb:b3:e8:d6:e5:6c:8b:00:bb:42:38:6a:1f:1d:49:19:f8: 55:6f:45:47:d3:6d:99:9f:e6:4e:da:9b:43:87:f5:2c:8c:99: d0:81:01:8d:20:fd:43:34:9d:ab:0e:96:ef:ba:01:8a:ae:97: c8:0e:fc:c3:87:47:7f:74:79:72:60:03:a8:68:89:4d:7b:6a: 46:73:c4:07:1f:83:ca:2b:63:66:bd:3b:5d:97:0f:59:23:20: 0d:24:ae:01:b1:a6:4e:2b:a7:78:f8:44:a7:98:18:95:cf:7c: e9:04:67:08:95:81:8e:a5:fd:09:94:13:2f:9e:da:08:99:87: 6e:96:04:dd:fa:ca:83:16:a8:bd:71:4e:8d:c6:33:95:38:e9: 71:43:a8:64:fc:47:ab:2f:bb:e3:d0:1c:60:11:59:82:ef:74: c8:6b:4f:e1:5d:07:48:9a:4f:64:de:d5:1b:9c:e6:69:59:9e: 58:b0:4d:e9:71:62:99:58:97:c9:6f:50:da:f6:57:37:bb:3f: 33:9f:e1:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjQwNTE5MDIwNDU4WhcNMjQwNTI2MDIwNDU4WjAYMRYwFAYD VQQDEw02NjQ5NWU0YS1jMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQ15NJ05DP9ET1eeotsO4yl7TLFywdkv6xznKKZQF+dFm7tOKBZehvC+TV8z 3WqjDuux3yvT1xL6H9nr+weXK5IUJzrv6HPKWNq7EKx+Y5+Sj8J6n2LShZvqIavz SBxWOfzV/3zgHENmVu7QgB4yR+19dCrD3rjjrIlvduUAUh4fFxId1qXGgUlosrO3 Pn8gEqZDiqiRtFgpWAZqSKt//nooz9zOiwUTZjhgqquUIujycEn6t36YxdIS/0Tu tqaj7XwmT6Pl5ttcpmlmYtMRqpOfFCW7zFqKEiltVaGkRygGVfLrjDgwVpO5jPZ3 j0LadqlKEeboXBl9ARJcra9P7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIJ6M0f 7ubJ/uzkaogrvOpGbhEAMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy9FQjMxMkYwMjFFQUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1Ut ekZzRVlyVEVkZFduNWFWVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYOx+aPyHpbS/O9q/4OKheqgyX4qjL8tKDkvGLqT9jNCc5ZNYqSo3m MeC0es7pES4GAvOhPbUQ67Po1uVsiwC7QjhqHx1JGfhVb0VH022Zn+ZO2ptDh/Us jJnQgQGNIP1DNJ2rDpbvugGKrpfIDvzDh0d/dHlyYAOoaIlNe2pGc8QHH4PKK2Nm vTtdlw9ZIyANJK4BsaZOK6d4+ESnmBiVz3zpBGcIlYGOpf0JlBMvntoImYdulgTd +sqDFqi9cU6NxjOVOOlxQ6hk/EerL7vj0BxgEVmC73TIa0/hXQdImk9k3tUbnOZp WZ5YsE3pcWKZWJfJb1Da9lc3uz8zn+Ge -----END CERTIFICATE-----Generated at Sun May 19 02:59:09 2024 by rpki-client on console-ams.rpki-client.org