$ rpki-client -vvf rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft File: 5wYdsiKDjeaKk84h7ykbBVQthyY.mft (raw, json) Hash identifier: 3WwkYBe+U4Nctftze1xNur9+esPBHHsx8uCbqTWJIos= Subject key identifier: 9F:F9:D8:05:E8:D9:BA:23:06:7E:47:8B:D1:F4:72:CB:BF:3C:B5:24 Authority key identifier: E7:06:1D:B2:22:83:8D:E6:8A:93:CE:21:EF:29:1B:05:54:2D:87:26 Certificate issuer: /CN=A919D3C2/serialNumber=E7061DB222838DE68A93CE21EF291B05542D8726 Certificate serial: 1A32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft Manifest number: 1A2A Signing time: Sat 18 May 2024 16:46:09 +0000 Manifest this update: Sat 18 May 2024 16:46:09 +0000 Manifest next update: Sat 25 May 2024 16:46:09 +0000 Files and hashes: 1: 5wYdsiKDjeaKk84h7ykbBVQthyY.crl (hash: V6RB6VXL/PVvzuTysPGlWXpxkH4D9d91/DlYXHv+vMo=) 2: A6B5F55C23F911E79BE44454C4F9AE02.roa (hash: Qv5AAU60Mi7+dJ3KtkU01WrlemqwaBBxsC0pxuHLu6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.crl rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6706 (0x1a32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D3C2/serialNumber=E7061DB222838DE68A93CE21EF291B05542D8726 Validity Not Before: May 18 16:46:09 2024 GMT Not After : May 25 16:46:09 2024 GMT Subject: CN=6648db51-2e91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f5:37:56:d1:8e:21:4f:da:a4:0c:bd:4e:79: 85:46:29:73:c8:45:98:34:0a:cf:ba:8b:21:b5:9e: 34:57:4f:7e:32:12:e9:5b:ea:8b:2c:1a:65:1d:f5: e5:21:43:ac:fc:f2:31:76:01:f5:2f:2d:af:93:0e: 25:19:6e:4c:5b:f7:87:17:51:4f:95:eb:1a:36:06: 9b:a3:80:c3:c6:0e:58:9b:5e:30:af:96:da:f2:f6: ed:47:4a:d7:8e:52:1c:c8:07:37:73:b5:a5:5d:3c: 1f:79:40:7b:cb:0f:21:9b:5f:a2:b0:4b:64:1e:47: 2f:50:96:5c:87:df:19:dc:c4:3d:4c:80:6c:e4:fa: 5f:51:11:93:d2:61:2a:5e:34:e2:37:3d:bc:07:38: 0f:fc:68:e0:f1:6d:36:bf:98:d8:91:2d:77:72:31: 52:4e:58:75:9a:f5:93:1c:93:ba:a4:06:0e:a4:aa: 2d:d4:b4:f6:0d:33:c4:c6:70:93:27:08:a4:0c:fd: c1:bc:38:4b:2c:2d:b7:91:b6:12:8a:9d:06:16:6f: a0:6d:c4:e9:f8:66:15:48:4e:e6:21:5d:19:06:55: f4:69:d0:a2:95:9b:1c:85:37:83:63:7b:90:d1:2b: 86:12:79:ff:f7:66:84:7e:10:df:93:da:b9:04:e2: df:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:F9:D8:05:E8:D9:BA:23:06:7E:47:8B:D1:F4:72:CB:BF:3C:B5:24 X509v3 Authority Key Identifier: keyid:E7:06:1D:B2:22:83:8D:E6:8A:93:CE:21:EF:29:1B:05:54:2D:87:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:b1:6e:5d:9e:d5:c4:10:e9:29:5f:dc:81:96:60:c1:26:14: ba:83:5a:9d:44:51:19:1c:b2:ef:8f:28:2a:f2:9c:19:7c:e0: 93:0a:66:1b:a3:b6:f9:70:c6:a8:8d:7e:64:26:fe:94:4e:c8: aa:3a:98:2b:13:94:d6:b4:61:d4:fd:60:0d:e4:8e:6d:6e:dd: b6:8a:33:cc:fb:01:fa:48:6f:a4:40:d5:4a:0c:9c:e7:b8:a6: f4:23:cc:a9:aa:d5:2e:dc:b5:97:03:03:07:a6:34:f5:5e:55: 95:0a:0a:94:7f:e3:36:06:43:27:23:33:10:76:b9:f5:10:1e: 5f:e0:e9:3b:11:39:2d:4d:b6:b8:38:3a:94:bf:1c:5c:2a:06: 26:68:aa:d9:f5:fd:ef:c2:89:93:4c:71:11:ce:43:80:bd:91: c1:8e:8a:bd:f7:bb:6e:b2:94:35:52:64:2a:e8:32:60:75:6a: 86:3a:86:23:54:ee:a3:6d:04:65:70:e1:82:7d:5d:be:4d:69: 92:fc:45:1d:68:af:58:a9:9b:50:cf:05:6e:11:12:00:7e:1d: 57:6c:16:40:e1:e9:05:9c:da:7b:61:2a:02:0f:75:4e:d2:5a: a6:db:32:a4:6c:32:f4:9a:4a:7d:14:96:2a:df:0e:6b:08:3b: b1:67:13:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQzQzIxMTAvBgNVBAUTKEU3MDYxREIyMjI4MzhERTY4QTkzQ0UyMUVGMjkxQjA1 NTQyRDg3MjYwHhcNMjQwNTE4MTY0NjA5WhcNMjQwNTI1MTY0NjA5WjAYMRYwFAYD VQQDEw02NjQ4ZGI1MS0yZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfU3VtGOIU/apAy9TnmFRilzyEWYNArPuoshtZ40V09+MhLpW+qLLBplHfXl IUOs/PIxdgH1Ly2vkw4lGW5MW/eHF1FPlesaNgabo4DDxg5Ym14wr5ba8vbtR0rX jlIcyAc3c7WlXTwfeUB7yw8hm1+isEtkHkcvUJZch98Z3MQ9TIBs5PpfURGT0mEq XjTiNz28BzgP/Gjg8W02v5jYkS13cjFSTlh1mvWTHJO6pAYOpKot1LT2DTPExnCT JwikDP3BvDhLLC23kbYSip0GFm+gbcTp+GYVSE7mIV0ZBlX0adCilZschTeDY3uQ 0SuGEnn/92aEfhDfk9q5BOLfzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/52AXo 2bojBn5Hi9H0csu/PLUkMB8GA1UdIwQYMBaAFOcGHbIig43mipPOIe8pGwVULYcm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDNDMi83MkQ3Q0ZENjIz RjgxMUU3OTU4OUQ3NTJDNEY5QUUwMi81d1lkc2lLRGplYUtrODRoN3lrYkJWUXRo eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV3WWRzaUtEamVhS2s4NGg3eWtiQlZRdGh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDNDMi83MkQ3Q0ZENjIzRjgxMUU3OTU4OUQ3NTJDNEY5QUUwMi81d1lkc2lLRGpl YUtrODRoN3lrYkJWUXRoeVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDsW5dntXEEOkpX9yBlmDBJhS6g1qdRFEZHLLvjygq8pwZfOCTCmYb o7b5cMaojX5kJv6UTsiqOpgrE5TWtGHU/WAN5I5tbt22ijPM+wH6SG+kQNVKDJzn uKb0I8ypqtUu3LWXAwMHpjT1XlWVCgqUf+M2BkMnIzMQdrn1EB5f4Ok7ETktTba4 ODqUvxxcKgYmaKrZ9f3vwomTTHERzkOAvZHBjoq997tuspQ1UmQq6DJgdWqGOoYj VO6jbQRlcOGCfV2+TWmS/EUdaK9YqZtQzwVuERIAfh1XbBZA4ekFnNp7YSoCD3VO 0lqm2zKkbDL0mkp9FJYq3w5rCDuxZxOa -----END CERTIFICATE-----Generated at Sat May 18 18:21:38 2024 by rpki-client on console-ams.rpki-client.org