$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: 8/8EC3ENRnx1iZlmALzsEjVxrEPnfH6TOhqSKc7FQds= Subject key identifier: 1C:90:91:E5:4D:F0:36:61:C9:55:7E:F3:C3:98:AF:2F:47:5A:CD:7E Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 06E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 06E3 Signing time: Sat 18 May 2024 22:51:17 +0000 Manifest this update: Sat 18 May 2024 22:51:17 +0000 Manifest next update: Sat 25 May 2024 22:51:17 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: AzZvJA6PaYKHOedAQ+vq03fc6K9cq9kNXXL/ixNlzu8=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: wbhiBTffYsutIFvVL6vDZuOV2ZB4edfZWKxQBEku9Tc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1768 (0x6e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: May 18 22:51:17 2024 GMT Not After : May 25 22:51:17 2024 GMT Subject: CN=664930e5-68fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d0:4e:2f:01:7e:4f:6e:4b:1c:66:b4:40:0d: 4b:2b:69:28:d7:e8:f2:8c:a3:02:15:aa:30:2d:c0: 8e:ef:35:27:c4:50:77:85:45:cb:ec:35:46:c4:85: 72:a7:2b:ca:a1:22:ca:c3:65:dd:eb:48:42:39:02: 4b:ad:28:03:4f:47:22:bc:96:40:87:0a:f0:b7:38: f2:be:73:40:3e:55:44:a0:fe:09:58:37:d6:06:c9: f4:b6:16:78:74:1a:3c:28:21:05:de:17:aa:d7:29: 59:d4:84:53:05:71:ff:90:2b:ba:48:12:60:1e:4c: 23:4a:1a:93:7b:d9:28:09:19:d2:8f:c8:b3:02:b6: 5e:e1:e7:a5:86:5f:7b:7f:09:ef:b2:34:5a:26:75: ad:0e:3a:7c:86:15:b4:6a:21:58:92:9d:1f:c4:88: a3:09:75:13:7f:fa:24:04:b0:f2:d7:28:03:f4:61: 25:60:fc:65:2d:58:c5:5b:d1:fb:d8:d1:9b:cd:4d: d6:cf:13:dc:81:cf:e0:37:ff:12:2a:58:3a:aa:55: 7f:f0:21:a0:86:df:b8:af:83:c1:d5:a9:02:d2:75: be:61:bf:1c:1b:1f:36:96:12:2b:f7:31:5c:46:c1: c4:f2:e1:f9:4b:03:cf:e5:12:be:fb:33:34:ea:1e: 31:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:90:91:E5:4D:F0:36:61:C9:55:7E:F3:C3:98:AF:2F:47:5A:CD:7E X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:61:31:6c:4a:7d:01:32:6d:94:0e:eb:ce:39:a9:3a:44:fe: 5a:65:c9:1a:27:9f:13:3d:d6:41:bd:ca:f4:57:ec:cf:2c:30: 20:52:0a:27:e3:c9:82:cd:26:b2:9f:07:e3:a8:b9:50:bd:0b: 0f:12:81:08:7b:73:bb:22:23:8a:6f:54:bb:fa:d8:a1:55:d4: 2d:aa:5a:5b:cb:fc:69:e5:2e:29:da:00:ea:f7:81:7b:3f:64: 5c:a0:e1:82:8b:8c:7b:7e:65:c8:b5:f8:0b:0e:68:9e:92:77: 74:e5:66:a1:39:2a:d4:70:6c:2f:ed:fd:c6:c4:64:9e:46:2e: f8:1a:b5:6b:7a:c2:34:c3:0a:ed:50:52:07:ef:38:3b:82:78: 17:8b:80:c5:bb:7e:54:23:34:57:2b:c9:4a:df:43:0f:28:e6: 2e:0f:bc:41:57:c2:fc:88:40:b4:0c:84:65:11:a0:b7:00:1d: 29:36:64:50:e4:e0:d2:7f:e5:96:b2:f4:80:cf:30:90:cc:b5: 41:c2:ca:05:aa:aa:4f:16:22:6a:e1:15:d9:f0:c2:1f:44:5a: a1:5c:7b:70:d5:e7:59:12:c7:1d:6d:57:da:93:7e:00:e8:a3: 9a:df:c4:ee:47:41:d7:4b:80:63:37:2d:34:ef:cb:e2:05:f6: 76:5a:b0:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjQwNTE4MjI1MTE3WhcNMjQwNTI1MjI1MTE3WjAYMRYwFAYD VQQDEw02NjQ5MzBlNS02OGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9BOLwF+T25LHGa0QA1LK2ko1+jyjKMCFaowLcCO7zUnxFB3hUXL7DVGxIVy pyvKoSLKw2Xd60hCOQJLrSgDT0civJZAhwrwtzjyvnNAPlVEoP4JWDfWBsn0thZ4 dBo8KCEF3heq1ylZ1IRTBXH/kCu6SBJgHkwjShqTe9koCRnSj8izArZe4eelhl97 fwnvsjRaJnWtDjp8hhW0aiFYkp0fxIijCXUTf/okBLDy1ygD9GElYPxlLVjFW9H7 2NGbzU3WzxPcgc/gN/8SKlg6qlV/8CGght+4r4PB1akC0nW+Yb8cGx82lhIr9zFc RsHE8uH5SwPP5RK++zM06h4xWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByQkeVN 8DZhyVV+88OYry9HWs1+MB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBYTFsSn0BMm2UDuvOOak6RP5aZckaJ58TPdZBvcr0V+zPLDAgUgon 48mCzSaynwfjqLlQvQsPEoEIe3O7IiOKb1S7+tihVdQtqlpby/xp5S4p2gDq94F7 P2RcoOGCi4x7fmXItfgLDmieknd05WahOSrUcGwv7f3GxGSeRi74GrVresI0wwrt UFIH7zg7gngXi4DFu35UIzRXK8lK30MPKOYuD7xBV8L8iEC0DIRlEaC3AB0pNmRQ 5ODSf+WWsvSAzzCQzLVBwsoFqqpPFiJq4RXZ8MIfRFqhXHtw1edZEscdbVfak34A 6KOa38TuR0HXS4BjNy0078viBfZ2WrAx -----END CERTIFICATE-----Generated at Sun May 19 00:30:19 2024 by rpki-client on console-ams.rpki-client.org