$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json) Hash identifier: sp50h0cPbOMfTBz/OZHLoAV2lnW5betesP55PdgCGGQ= Subject key identifier: B6:2B:62:C0:C0:54:71:01:33:D0:3C:73:A1:6F:D1:37:9E:D7:46:C7 Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0BC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft Manifest number: 0BB0 Signing time: Sat 18 May 2024 19:14:31 +0000 Manifest this update: Sat 18 May 2024 19:14:30 +0000 Manifest next update: Sat 25 May 2024 19:14:30 +0000 Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: sGTVqgrG4sEWZXsXAPwCvmAMV8m86N57DRP46/+sRHs=) 2: 4BA5EC4293D911EE86212B1DC4F9AE02.roa (hash: LN8pESJfKWiK9i2ORSuCclenOa+mxcW/ZR7U6hJ0hpw=) 3: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: dK4wMXuqZ/VEBpfJlL9LtzexBuDzAG0QNs11K5xMSLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3009 (0xbc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: May 18 19:14:30 2024 GMT Not After : May 25 19:14:30 2024 GMT Subject: CN=6648fe17-f078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e3:37:25:6f:1d:3a:be:9a:49:2b:78:37:3e: c3:35:a9:9e:94:47:91:40:36:19:30:cc:88:a1:d4: 93:a2:03:3b:bc:df:9e:6f:97:57:00:43:d5:9d:37: 64:e8:3e:a8:9a:1b:73:cb:cd:f8:9f:7f:2e:20:4c: 9d:5c:8e:17:25:ec:ff:d6:be:3d:6b:fc:28:4f:65: f6:5d:52:05:49:9b:40:fc:46:44:47:1b:fe:a0:d4: e9:c5:f9:9c:db:98:cd:ca:5c:21:9b:48:94:7a:22: f8:86:e0:a9:ac:9c:5a:26:cf:cf:bb:73:b0:0b:fe: 9c:9b:c1:5c:e6:da:8f:56:79:d1:71:a9:13:18:0e: 48:47:49:f3:4f:f7:c9:e1:d7:68:1f:19:d5:9e:0d: a2:d3:0c:38:ab:34:d4:e8:d9:20:4f:24:dd:f2:ab: e4:f4:cf:d1:16:37:48:bb:22:a1:d5:ff:9d:79:2c: 33:c3:81:5f:e2:17:04:91:1c:9c:90:e1:3b:ed:0c: 0e:fc:13:d0:41:ed:d2:cf:cf:f4:cc:33:9b:8b:33: 40:c7:a2:30:c5:3c:e9:93:e4:17:64:a8:25:95:80: 8b:3f:09:cb:7e:4e:f7:3d:c3:83:17:ce:46:b9:55: 55:6f:00:65:5c:ef:2e:b9:bb:8b:28:94:54:1d:4a: a1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:2B:62:C0:C0:54:71:01:33:D0:3C:73:A1:6F:D1:37:9E:D7:46:C7 X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:94:c9:75:45:7d:4b:bc:1e:c0:b2:f0:60:ae:e8:14:61:b6: 20:4f:a5:db:68:d5:d1:73:c4:8b:09:ec:ce:27:1e:88:47:19: f4:ee:6b:e4:a4:d0:4f:cc:47:82:cc:25:d8:59:7a:b7:0f:57: c7:7c:7b:0e:42:15:36:a3:f0:ba:56:36:27:29:4c:2c:bb:53: 5a:13:b8:9c:f4:22:b5:9f:cf:97:20:18:42:51:8c:21:e8:6d: a7:7e:ca:4e:86:1b:32:ac:7e:5c:4e:5d:17:92:6d:75:14:a3: 7b:0b:4f:7f:1d:cc:56:48:c5:38:cb:04:40:26:fc:23:bc:c9: 60:c5:73:52:43:76:60:64:f6:fe:85:53:7e:81:70:37:96:b3: 10:b8:98:1b:3b:54:b5:23:ff:57:1e:51:b0:03:c8:1f:39:b2: c9:e1:22:34:db:e4:f4:1c:c7:2d:31:12:f7:eb:73:6f:ca:13: 81:0b:01:c8:c1:a8:78:d4:b1:3f:50:ed:c6:78:ec:f0:fb:ee: b5:d1:dc:56:a6:ca:80:1b:0e:fc:a1:2e:82:54:93:8f:54:91: 62:f2:0c:ee:cc:fd:e8:66:ae:09:0f:7f:cc:24:01:bb:0a:39: ad:80:fe:c8:b0:3f:09:1d:10:be:8d:ac:be:4a:b8:9f:2f:60: 83:bb:e8:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjQwNTE4MTkxNDMwWhcNMjQwNTI1MTkxNDMwWjAYMRYwFAYD VQQDEw02NjQ4ZmUxNy1mMDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+M3JW8dOr6aSSt4Nz7DNamelEeRQDYZMMyIodSTogM7vN+eb5dXAEPVnTdk 6D6omhtzy834n38uIEydXI4XJez/1r49a/woT2X2XVIFSZtA/EZERxv+oNTpxfmc 25jNylwhm0iUeiL4huCprJxaJs/Pu3OwC/6cm8Fc5tqPVnnRcakTGA5IR0nzT/fJ 4ddoHxnVng2i0ww4qzTU6NkgTyTd8qvk9M/RFjdIuyKh1f+deSwzw4Ff4hcEkRyc kOE77QwO/BPQQe3Sz8/0zDObizNAx6IwxTzpk+QXZKgllYCLPwnLfk73PcODF85G uVVVbwBlXO8uubuLKJRUHUqhpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYrYsDA VHEBM9A8c6Fv0Tee10bHMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjg4RC8yQTE0QkUwODAwNUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25r UEtHM0pkUXVwcnFiVTVnVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6lMl1RX1LvB7AsvBgrugUYbYgT6XbaNXRc8SLCezOJx6IRxn07mvk pNBPzEeCzCXYWXq3D1fHfHsOQhU2o/C6VjYnKUwsu1NaE7ic9CK1n8+XIBhCUYwh 6G2nfspOhhsyrH5cTl0Xkm11FKN7C09/HcxWSMU4ywRAJvwjvMlgxXNSQ3ZgZPb+ hVN+gXA3lrMQuJgbO1S1I/9XHlGwA8gfObLJ4SI02+T0HMctMRL363NvyhOBCwHI wah41LE/UO3GeOzw++610dxWpsqAGw78oS6CVJOPVJFi8gzuzP3oZq4JD3/MJAG7 CjmtgP7IsD8JHRC+jay+SrifL2CDu+iC -----END CERTIFICATE-----Generated at Sat May 18 20:16:01 2024 by rpki-client on console-ams.rpki-client.org