$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: XjpAsDb54sc1wP9MZWPNCHYw5bKff1mwQfwk3r2VB5I= Subject key identifier: 46:B8:FD:87:A9:AB:2B:30:E1:3D:E1:81:91:C1:56:4E:C9:47:4F:6B Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0A54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0A4E Signing time: Sat 18 May 2024 20:23:27 +0000 Manifest this update: Sat 18 May 2024 20:23:27 +0000 Manifest next update: Sat 25 May 2024 20:23:27 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: I5hOEgmL3pMlUJAfBCcr6AM4cOdza7KxgQEnpFigyT8=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: 7/xTj0hWgFoZxHiobIJ1SZYazXXBJG8VrDqlWC2SosA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2644 (0xa54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: May 18 20:23:27 2024 GMT Not After : May 25 20:23:27 2024 GMT Subject: CN=66490e3f-c013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:48:69:49:68:c3:32:bb:db:79:7c:74:52:5d: 73:c7:2b:67:6c:07:65:66:f2:4d:df:f8:bd:cf:91: 9b:8f:14:c8:d7:eb:25:4e:1e:48:72:9c:87:9e:a7: eb:02:34:93:23:43:b0:ca:19:61:4e:94:ad:d1:5e: 17:39:f8:9d:c3:b1:9b:94:70:02:55:e4:08:f3:e5: dd:fe:90:f6:99:53:24:39:03:f0:17:55:58:d9:24: cb:18:38:21:4b:29:38:54:91:2e:e9:59:07:ac:91: 7f:56:fb:a4:0a:dd:75:c7:da:22:0d:e3:41:88:0c: 7a:26:01:fc:56:a7:3f:44:13:0f:a1:e9:44:ad:a5: 79:85:f0:6a:fc:84:b6:61:76:a6:35:2f:1d:96:7b: ba:37:eb:42:44:09:28:4f:2a:a9:92:00:8d:38:9b: 8d:6c:6a:91:42:78:4b:cc:5f:e8:55:1f:49:da:a2: c4:c6:12:88:fc:3d:af:39:14:15:15:6c:0f:7c:68: 64:a5:dc:28:ff:e9:a1:aa:da:78:90:56:0a:5c:9a: 92:44:5b:7d:1a:18:a4:94:ff:8d:94:bf:4f:99:7c: 38:75:e5:ac:4a:2a:3d:ce:88:92:ea:66:9c:ac:07: c8:47:41:93:dc:0c:9b:80:c2:d2:19:30:63:d6:88: 2c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B8:FD:87:A9:AB:2B:30:E1:3D:E1:81:91:C1:56:4E:C9:47:4F:6B X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:61:c1:39:61:b9:3c:66:d5:c9:a7:f3:2d:b5:ea:77:c7:bc: 3c:40:86:16:f0:b6:3c:5c:1e:5a:41:b2:2b:f1:e9:8b:1e:25: 75:76:da:f4:65:b4:c9:47:33:6b:16:54:b5:05:e9:f8:1a:b1: 46:45:fd:c5:55:9e:58:ac:97:55:88:78:fd:ae:13:77:19:df: df:5a:a6:1a:94:6d:ce:bf:5d:0e:c8:aa:95:16:37:2d:aa:b3: 22:3f:c4:c9:61:25:29:03:e8:ea:99:c6:5d:eb:9e:f0:86:20: 2d:aa:06:d9:69:d9:ea:77:2e:0f:77:e1:19:2f:c3:a8:97:db: 98:ea:1c:18:d6:c5:1b:1f:9a:7d:c8:46:8f:cb:a8:2e:a1:1f: d7:c5:c0:a6:d3:a5:61:71:81:1a:99:bc:d9:4a:33:3a:50:c8: a5:ec:81:c3:67:77:84:70:26:c8:87:eb:ea:eb:db:92:71:49: ae:4e:0d:85:f2:f7:06:b5:9e:62:af:7b:17:13:1c:6c:a3:39: 7a:f6:9b:07:6a:e5:19:fc:6c:be:87:de:c2:91:74:3f:e0:b7: 72:25:08:f3:5d:f0:c6:da:c6:52:f5:0d:51:57:86:12:6c:80: 7d:b0:d5:b1:d2:76:61:82:41:f9:80:47:54:f1:7f:0f:db:7f: 14:56:27:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjQwNTE4MjAyMzI3WhcNMjQwNTI1MjAyMzI3WjAYMRYwFAYD VQQDEw02NjQ5MGUzZi1jMDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEhpSWjDMrvbeXx0Ul1zxytnbAdlZvJN3/i9z5GbjxTI1+slTh5IcpyHnqfr AjSTI0OwyhlhTpSt0V4XOfidw7GblHACVeQI8+Xd/pD2mVMkOQPwF1VY2STLGDgh Syk4VJEu6VkHrJF/VvukCt11x9oiDeNBiAx6JgH8Vqc/RBMPoelEraV5hfBq/IS2 YXamNS8dlnu6N+tCRAkoTyqpkgCNOJuNbGqRQnhLzF/oVR9J2qLExhKI/D2vORQV FWwPfGhkpdwo/+mhqtp4kFYKXJqSRFt9GhiklP+NlL9PmXw4deWsSio9zoiS6mac rAfIR0GT3AybgMLSGTBj1ogsjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEa4/Yep qysw4T3hgZHBVk7JR09rMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQYcE5Ybk8ZtXJp/Mttep3x7w8QIYW8LY8XB5aQbIr8emLHiV1dtr0 ZbTJRzNrFlS1Ben4GrFGRf3FVZ5YrJdViHj9rhN3Gd/fWqYalG3Ov10OyKqVFjct qrMiP8TJYSUpA+jqmcZd657whiAtqgbZadnqdy4Pd+EZL8Ool9uY6hwY1sUbH5p9 yEaPy6guoR/XxcCm06VhcYEambzZSjM6UMil7IHDZ3eEcCbIh+vq69uScUmuTg2F 8vcGtZ5ir3sXExxsozl69psHauUZ/Gy+h97CkXQ/4LdyJQjzXfDG2sZS9Q1RV4YS bIB9sNWx0nZhgkH5gEdU8X8P238UVicV -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org