$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft File: ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json) Hash identifier: HOtgWbws4dG6RciQ3XmDDdT53sAI/qq92dIIIwTu85o= Subject key identifier: A9:21:4C:10:E6:8F:9E:98:F0:D9:9E:0C:AA:A6:51:45:98:85:0A:AA Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 07AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft Manifest number: 07A5 Signing time: Sat 18 May 2024 22:08:17 +0000 Manifest this update: Sat 18 May 2024 22:08:17 +0000 Manifest next update: Sat 25 May 2024 22:08:17 +0000 Files and hashes: 1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: uPIQx91udxRtyvC8WAIa+2Q1gBpLMD5rP+c2q7mG5oc=) 2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: FZanZR6gOdpokj1q/3xsOivg9V6cz3c3ZCcMipz1nE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: May 18 22:08:17 2024 GMT Not After : May 25 22:08:17 2024 GMT Subject: CN=664926d1-8110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:51:4e:79:c0:45:22:8d:2e:9c:5f:7d:c7:00: f7:96:7b:a7:9e:e9:8a:46:95:b3:ea:50:72:fc:2e: 89:2d:34:69:c2:89:8c:78:10:a0:2b:81:c3:47:d3: 2d:5b:49:f8:81:0b:b6:7a:82:00:51:1d:62:2a:02: 34:96:35:65:ab:62:5d:2f:a3:bd:90:59:d4:02:f6: fc:fa:20:83:1b:8e:93:a5:03:82:fd:ad:0b:b1:7f: 75:87:b8:f8:a1:31:8f:1d:26:fd:70:6a:7c:72:b8: 42:10:e7:10:75:a5:3b:bd:5b:fc:1c:98:55:28:ce: 57:6f:9b:16:83:93:8a:01:72:ba:48:de:58:ee:75: 61:86:3f:ff:9f:b9:41:61:3b:b3:ba:31:80:2c:53: 22:84:7e:6a:ff:5e:5c:41:dd:4e:85:55:db:96:7a: 5c:82:be:4e:57:fc:c6:1c:c5:6d:28:07:7e:22:4e: 2f:cf:6d:31:62:b1:6d:b1:75:f5:63:0e:27:47:ff: ea:87:45:97:19:06:42:b4:81:95:ca:58:e8:8f:32: 53:3b:1a:9a:db:40:2b:be:0e:a3:48:ae:eb:0d:0a: 3f:8e:2d:92:57:df:b3:d1:8c:9d:d3:11:6a:6e:88: 97:8d:c3:ea:b4:8b:42:86:02:33:bd:3e:04:46:c1: c8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:21:4C:10:E6:8F:9E:98:F0:D9:9E:0C:AA:A6:51:45:98:85:0A:AA X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:7c:fc:b9:6d:9a:62:8e:11:1d:81:ef:d8:79:78:ab:4c:34: 70:d6:24:be:21:c9:8b:d7:d1:41:49:bb:aa:2c:3b:e1:30:4e: 66:8d:e2:19:f0:6b:a8:f2:f0:0b:6b:a0:9c:d8:d1:5a:62:4f: ea:fa:10:a8:fa:28:55:16:c1:55:ce:58:38:a1:6c:b7:9e:cb: b4:7a:f0:f9:7a:db:f1:d6:65:07:a3:6d:6f:6d:6f:2b:e0:07: 02:56:69:45:ff:ab:e2:84:87:17:e6:c3:92:74:20:55:ca:10: a5:f4:08:e3:38:d9:af:7a:b0:21:4a:8a:e7:a9:19:94:10:d5: 9d:53:06:ff:d0:b4:86:41:2c:a0:7b:2d:b9:e5:f8:6c:df:6e: 41:b8:51:50:5d:1f:51:24:22:3d:28:d9:b7:48:80:85:58:7f: 82:71:c8:1a:06:d2:70:06:da:3f:48:cc:d2:e7:f6:06:a1:78: ef:bc:df:b5:cb:5b:0a:78:f9:9a:78:93:ef:52:74:b8:11:13: 75:48:b0:02:b7:94:6d:ad:13:84:76:bb:04:28:de:ba:3c:92: de:b5:0b:c0:95:aa:e0:0a:26:d8:69:e4:52:68:56:54:66:dd: 81:bd:d9:a9:9c:d6:0e:54:34:91:35:30:b4:d7:4d:8c:a9:cb: 06:3b:a3:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjQwNTE4MjIwODE3WhcNMjQwNTI1MjIwODE3WjAYMRYwFAYD VQQDEw02NjQ5MjZkMS04MTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1FOecBFIo0unF99xwD3lnunnumKRpWz6lBy/C6JLTRpwomMeBCgK4HDR9Mt W0n4gQu2eoIAUR1iKgI0ljVlq2JdL6O9kFnUAvb8+iCDG46TpQOC/a0LsX91h7j4 oTGPHSb9cGp8crhCEOcQdaU7vVv8HJhVKM5Xb5sWg5OKAXK6SN5Y7nVhhj//n7lB YTuzujGALFMihH5q/15cQd1OhVXblnpcgr5OV/zGHMVtKAd+Ik4vz20xYrFtsXX1 Yw4nR//qh0WXGQZCtIGVyljojzJTOxqa20Arvg6jSK7rDQo/ji2SV9+z0Yyd0xFq boiXjcPqtItChgIzvT4ERsHIhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkhTBDm j56Y8NmeDKqmUUWYhQqqMB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWfPy5bZpijhEdge/YeXirTDRw1iS+IcmL19FBSbuqLDvhME5mjeIZ 8Guo8vALa6Cc2NFaYk/q+hCo+ihVFsFVzlg4oWy3nsu0evD5etvx1mUHo21vbW8r 4AcCVmlF/6vihIcX5sOSdCBVyhCl9AjjONmverAhSornqRmUENWdUwb/0LSGQSyg ey255fhs325BuFFQXR9RJCI9KNm3SICFWH+CccgaBtJwBto/SMzS5/YGoXjvvN+1 y1sKePmaeJPvUnS4ERN1SLACt5RtrROEdrsEKN66PJLetQvAlargCibYaeRSaFZU Zt2BvdmpnNYOVDSRNTC0102MqcsGO6O5 -----END CERTIFICATE-----Generated at Sun May 19 00:30:19 2024 by rpki-client on console-ams.rpki-client.org