$ rpki-client -vvf rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft File: s2MvNI2Zt8k-43IQ13M9KC8UWko.mft (raw, json) Hash identifier: ARHtLk2J31t4/iGfsfoOo56kPOukQXXdUVqwVpXrrao= Subject key identifier: BA:32:14:3D:02:97:48:0C:56:5B:7F:CE:62:5E:6C:8D:BF:2D:F3:B4 Authority key identifier: B3:63:2F:34:8D:99:B7:C9:3E:E3:72:10:D7:73:3D:28:2F:14:5A:4A Certificate issuer: /CN=A918E74A/serialNumber=B3632F348D99B7C93EE37210D7733D282F145A4A Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft Manifest number: DF Signing time: Sun 19 May 2024 05:59:34 +0000 Manifest this update: Sun 19 May 2024 05:59:33 +0000 Manifest next update: Sun 26 May 2024 05:59:33 +0000 Files and hashes: 1: s2MvNI2Zt8k-43IQ13M9KC8UWko.crl (hash: Jqk+Eu+6gVKZJ276hvtFoa5dspJ6p9wRnBakF/FgV7c=) 2: A0B1EDDCC24011ED80139928C4F9AE02.roa (hash: Uk3rBIxJV45EOBy2eFPekpy4A8sQVxEwLHcYZPjeIaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.crl rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E74A/serialNumber=B3632F348D99B7C93EE37210D7733D282F145A4A Validity Not Before: May 19 05:59:33 2024 GMT Not After : May 26 05:59:33 2024 GMT Subject: CN=66499546-f655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8b:ed:60:0d:f4:c6:88:a4:a9:87:6d:a1:92: 5b:9f:68:54:fa:32:f9:ac:04:0a:e4:c4:09:d2:f9: 5f:9f:b0:3e:27:d3:c9:17:54:a2:60:1b:98:93:53: 4d:d3:8b:59:86:2c:30:13:23:46:cd:b5:f2:f1:33: 63:fa:16:dc:99:d6:11:f7:7d:eb:7b:55:82:d7:4b: 04:5a:04:16:b1:e2:34:e7:02:a3:b5:ad:44:54:c5: e6:b4:6c:5e:64:d2:76:87:6c:10:00:47:eb:00:3e: 27:c4:86:ff:85:6a:1b:eb:8f:e8:3e:84:33:d3:26: c3:bd:b5:fe:a4:c6:ed:65:3d:ac:b1:6f:57:02:d8: 6b:b1:4b:17:e6:d1:17:cc:53:26:e4:b1:e3:d8:00: 8c:42:b6:ba:ab:5f:8d:49:05:24:40:36:3b:fa:5f: c6:c8:68:c9:f1:37:48:68:80:94:cd:07:6b:fd:e5: 03:b3:28:ec:b3:c5:ff:29:0f:56:51:4b:b2:bd:4d: 44:a8:c0:25:25:6a:24:b0:0b:41:e5:af:38:29:b5: 8a:ad:75:86:80:5a:40:31:35:98:fe:85:20:b2:69: bc:04:f2:6f:02:84:cd:1d:6d:5a:7a:f0:21:42:0e: fc:ba:a9:20:00:d9:12:26:39:08:d2:84:fa:64:db: b1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:32:14:3D:02:97:48:0C:56:5B:7F:CE:62:5E:6C:8D:BF:2D:F3:B4 X509v3 Authority Key Identifier: keyid:B3:63:2F:34:8D:99:B7:C9:3E:E3:72:10:D7:73:3D:28:2F:14:5A:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2MvNI2Zt8k-43IQ13M9KC8UWko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E74A/B0682EE4C23B11ED91687921C4F9AE02/s2MvNI2Zt8k-43IQ13M9KC8UWko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:7d:52:0b:3f:e2:e0:15:d2:40:93:61:28:1c:76:90:af:ec: 8a:ec:0a:63:fc:6c:af:d9:0e:e7:01:cb:f8:a4:0c:8d:25:c5: a3:1a:cf:24:44:52:bb:69:45:66:4b:0a:b5:e1:24:bb:12:ee: 69:13:b2:21:4d:ee:79:49:20:24:44:7f:c2:ab:65:77:08:aa: 40:0c:7a:ba:06:4a:84:dd:7d:1a:d2:ee:54:c0:dc:fa:e6:1d: ff:09:53:d9:93:49:51:bd:43:4a:cb:11:16:4a:b5:81:68:0d: c6:28:15:85:78:a1:5a:8e:ee:65:fd:ab:28:9c:0c:78:9e:a7: ee:f9:d7:46:6e:e6:d0:ca:a9:e7:b7:0f:65:0a:87:32:5a:bb: 4c:07:b9:c0:2b:00:cb:b7:37:5d:ec:fe:1c:c7:40:92:d9:71: 3e:20:3d:24:7c:7d:b0:a2:d1:bd:55:82:d8:2a:42:2f:d8:2b: 15:f8:d4:07:24:01:dd:f1:6e:a5:4a:42:bc:e1:fe:79:af:0f: 46:50:5b:db:da:1b:d2:5c:58:6c:4a:54:22:a9:86:72:bc:94: 0b:96:5b:87:15:a9:dd:d9:92:27:d6:2a:3e:86:c9:74:a0:2c: 78:8a:7a:0f:b5:6c:89:67:79:53:f5:b8:bb:0d:9c:40:7f:e0: eb:4f:94:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU3NEExMTAvBgNVBAUTKEIzNjMyRjM0OEQ5OUI3QzkzRUUzNzIxMEQ3NzMzRDI4 MkYxNDVBNEEwHhcNMjQwNTE5MDU1OTMzWhcNMjQwNTI2MDU1OTMzWjAYMRYwFAYD VQQDEw02NjQ5OTU0Ni1mNjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4vtYA30xoikqYdtoZJbn2hU+jL5rAQK5MQJ0vlfn7A+J9PJF1SiYBuYk1NN 04tZhiwwEyNGzbXy8TNj+hbcmdYR933re1WC10sEWgQWseI05wKjta1EVMXmtGxe ZNJ2h2wQAEfrAD4nxIb/hWob64/oPoQz0ybDvbX+pMbtZT2ssW9XAthrsUsX5tEX zFMm5LHj2ACMQra6q1+NSQUkQDY7+l/GyGjJ8TdIaICUzQdr/eUDsyjss8X/KQ9W UUuyvU1EqMAlJWoksAtB5a84KbWKrXWGgFpAMTWY/oUgsmm8BPJvAoTNHW1aevAh Qg78uqkgANkSJjkI0oT6ZNuxXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoyFD0C l0gMVlt/zmJebI2/LfO0MB8GA1UdIwQYMBaAFLNjLzSNmbfJPuNyENdzPSgvFFpK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTc0QS9CMDY4MkVFNEMy M0IxMUVEOTE2ODc5MjFDNEY5QUUwMi9zMk12TkkyWnQ4ay00M0lRMTNNOUtDOFVX a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MyTXZOSTJadDhrLTQzSVExM005S0M4VVdrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTc0QS9CMDY4MkVFNEMyM0IxMUVEOTE2ODc5MjFDNEY5QUUwMi9zMk12TkkyWnQ4 ay00M0lRMTNNOUtDOFVXa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmfVILP+LgFdJAk2EoHHaQr+yK7Apj/Gyv2Q7nAcv4pAyNJcWjGs8k RFK7aUVmSwq14SS7Eu5pE7IhTe55SSAkRH/Cq2V3CKpADHq6BkqE3X0a0u5UwNz6 5h3/CVPZk0lRvUNKyxEWSrWBaA3GKBWFeKFaju5l/asonAx4nqfu+ddGbubQyqnn tw9lCocyWrtMB7nAKwDLtzdd7P4cx0CS2XE+ID0kfH2wotG9VYLYKkIv2CsV+NQH JAHd8W6lSkK84f55rw9GUFvb2hvSXFhsSlQiqYZyvJQLlluHFand2ZIn1io+hsl0 oCx4inoPtWyJZ3lT9bi7DZxAf+DrT5R3 -----END CERTIFICATE-----Generated at Sun May 19 07:40:41 2024 by rpki-client on console-fra.rpki-client.org