$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json) Hash identifier: PvDXobsNAKDScoSnP4PMX3WLfpTA5KJkrS5Q039DRHc= Subject key identifier: 91:5F:E5:23:96:80:63:EC:BC:2E:3A:AE:D0:E8:B9:E1:2C:45:74:C4 Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Certificate serial: 0F57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft Manifest number: 0F4D Signing time: Sat 18 May 2024 18:10:20 +0000 Manifest this update: Sat 18 May 2024 18:10:20 +0000 Manifest next update: Sat 25 May 2024 18:10:20 +0000 Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: 2hOpIUp4PsDv2//9XCxBZh46Nh9CWncAgHPdpozYd24=) 2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: Mc3Q9wmukgUIJT3q9J5EygK6/IHcoyR/RZQ0Eut8nLU=) 3: 608836D046B111E98B793856C4F9AE02.roa (hash: rltN2xhTkn/8LBf4ssPkcwToahSO3m8NAPpsxdmLbos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Validity Not Before: May 18 18:10:20 2024 GMT Not After : May 25 18:10:20 2024 GMT Subject: CN=6648ef0c-42da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:84:f3:ea:a2:c3:62:ec:49:41:f2:fe:cf:26: c2:ce:25:44:56:ec:54:90:4e:56:53:74:83:88:0f: b7:82:25:6f:95:c8:3b:e5:c1:31:d4:87:2f:8e:9b: 06:12:4a:26:e2:30:01:64:35:05:d7:13:d6:45:25: 29:7a:9e:5d:5a:78:2d:fe:eb:29:97:d7:39:e2:07: 4a:f4:ff:22:63:e0:bc:2d:15:97:34:27:89:0a:8a: 22:a3:d9:f0:91:cb:4c:8f:8b:45:15:ce:5a:55:8d: b3:fe:eb:91:8a:9c:f4:a3:a5:c1:25:83:aa:72:ee: 9a:15:a5:3c:b4:ab:1b:73:79:a7:4c:d5:05:40:30: 1d:17:c7:57:7a:24:d6:68:69:ad:41:38:11:bc:91: 09:f7:bc:bb:90:61:c3:c1:57:98:81:5f:54:ae:87: f2:5a:6e:9e:96:a9:1b:79:b4:c4:4d:43:79:be:75: 95:89:8e:b5:57:7a:51:ab:b4:27:44:32:04:49:96: 21:01:c8:38:f2:cb:6c:e4:fe:31:09:49:32:9a:1c: 8e:d4:41:69:3e:c6:1a:66:4c:24:97:4f:5e:c2:50: 5e:4a:a4:b1:82:25:6a:5b:f1:96:55:1b:8c:5c:d2: c8:76:bc:8d:88:71:af:bd:24:4e:4c:89:37:40:6a: 7e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:5F:E5:23:96:80:63:EC:BC:2E:3A:AE:D0:E8:B9:E1:2C:45:74:C4 X509v3 Authority Key Identifier: keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:36:d4:13:cd:5e:ac:b9:a4:bb:6c:94:70:31:d3:f4:df:4c: c0:a7:c7:0a:1f:f4:bb:93:88:c0:6e:fb:c3:88:c5:e3:75:78: 69:a6:59:6b:af:82:a2:d4:66:7a:e0:ee:1a:c3:85:65:c3:3e: 80:2a:7d:99:74:9f:a3:d7:bb:f4:4c:65:e6:c9:19:17:96:46: 2a:9d:70:3e:c4:2e:f8:2d:9a:2c:36:86:8c:48:4b:d8:ff:29: 4b:5e:8b:f9:8e:c3:15:b0:e8:7e:f4:32:9f:33:4f:dc:ab:19: 86:1c:4b:f0:be:84:c9:be:41:0f:2a:e2:e9:a9:21:db:06:bb: 89:47:d0:eb:cc:35:d0:01:eb:70:74:d1:40:05:33:b7:c6:d6: f3:cb:2a:41:4e:44:4e:90:c6:0a:a6:91:c5:d3:b3:7b:81:f7: f0:34:f4:9b:4e:9d:69:ca:12:6c:f8:0c:a2:9c:fe:75:2a:c6: a4:9f:64:80:5a:7c:0a:90:cd:12:03:fd:91:f2:ae:45:a3:aa: f7:4d:f7:c3:3d:38:86:d2:a2:47:fa:0b:02:7b:54:39:d2:c6: 18:e2:74:bc:77:17:1d:27:b5:9b:3b:71:2e:58:90:62:9b:1a: 9c:88:0e:7f:04:0a:9f:9d:bd:5d:50:89:68:bc:c2:26:29:65: 74:fa:fc:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKDIyM0JFMTk4OTJFNkU2Q0I0MDZFNUZBOTk1NkREQkNF QTk1Q0JCNDYwHhcNMjQwNTE4MTgxMDIwWhcNMjQwNTI1MTgxMDIwWjAYMRYwFAYD VQQDEw02NjQ4ZWYwYy00MmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4Tz6qLDYuxJQfL+zybCziVEVuxUkE5WU3SDiA+3giVvlcg75cEx1IcvjpsG Ekom4jABZDUF1xPWRSUpep5dWngt/uspl9c54gdK9P8iY+C8LRWXNCeJCooio9nw kctMj4tFFc5aVY2z/uuRipz0o6XBJYOqcu6aFaU8tKsbc3mnTNUFQDAdF8dXeiTW aGmtQTgRvJEJ97y7kGHDwVeYgV9UrofyWm6elqkbebTETUN5vnWViY61V3pRq7Qn RDIESZYhAcg48sts5P4xCUkymhyO1EFpPsYaZkwkl09ewlBeSqSxgiVqW/GWVRuM XNLIdryNiHGvvSROTIk3QGp+HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFf5SOW gGPsvC46rtDoueEsRXTEMB8GA1UdIwQYMBaAFCI74ZiS5ubLQG5fqZVt286pXLtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9CNkE5RjI2MDQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVzdEFibC1wbFczYnpxbGN1 MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lqdmhtSkxtNXN0QWJsLXBsVzNienFsY3UwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTZCNy9CNkE5RjI2MDQ2QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVz dEFibC1wbFczYnpxbGN1MFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQNtQTzV6suaS7bJRwMdP030zAp8cKH/S7k4jAbvvDiMXjdXhppllr r4Ki1GZ64O4aw4Vlwz6AKn2ZdJ+j17v0TGXmyRkXlkYqnXA+xC74LZosNoaMSEvY /ylLXov5jsMVsOh+9DKfM0/cqxmGHEvwvoTJvkEPKuLpqSHbBruJR9DrzDXQAetw dNFABTO3xtbzyypBTkROkMYKppHF07N7gffwNPSbTp1pyhJs+AyinP51Ksakn2SA WnwKkM0SA/2R8q5Fo6r3TffDPTiG0qJH+gsCe1Q50sYY4nS8dxcdJ7WbO3EuWJBi mxqciA5/BAqfnb1dUIlovMImKWV0+vyi -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org