$ rpki-client -vvf rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft File: r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft (raw, json) Hash identifier: f/Tu4eX4Y9+fUZgAC6mXUMzPbM/A7UNdCTHMiD2lvug= Subject key identifier: 59:EB:EF:18:DB:F8:8E:46:C2:8F:0D:34:85:25:1A:0A:F8:9D:D7:D4 Authority key identifier: AF:85:78:8B:8C:52:D1:28:D5:34:0A:75:09:5B:8F:0F:11:77:9C:48 Certificate issuer: /CN=A919F53A/serialNumber=AF85788B8C52D128D5340A75095B8F0F11779C48 Certificate serial: 067C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft Manifest number: 0678 Signing time: Sat 01 Jun 2024 00:19:32 +0000 Manifest this update: Sat 01 Jun 2024 00:19:31 +0000 Manifest next update: Sat 08 Jun 2024 00:19:31 +0000 Files and hashes: 1: r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl (hash: +Ur+kxk/FpHSQlBb3pvfErY4kBheh5imZ7tSW/dJuoQ=) 2: 72BCBB042FC211EBB8550B0AC4F9AE02.roa (hash: W74p/U+ZKm+i2aa6ytxthZ3GiXWBjWMUpOEQvBU+HkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1660 (0x67c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F53A/serialNumber=AF85788B8C52D128D5340A75095B8F0F11779C48 Validity Not Before: Jun 1 00:19:31 2024 GMT Not After : Jun 8 00:19:31 2024 GMT Subject: CN=665a6914-675c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3c:02:b4:ba:96:64:9e:2c:41:8f:f2:18:2a: 34:c0:e9:12:b0:a6:e8:74:49:ca:c9:bd:e6:fe:e5: dc:11:57:8a:b7:02:a3:39:b9:84:99:6f:c1:37:53: a8:79:66:d6:b8:d0:4e:06:43:b5:30:5d:8c:6d:0c: 98:50:88:1b:e4:2e:1c:fd:72:d9:50:fd:0b:8e:e5: c0:51:b8:98:ef:a3:11:b8:88:61:56:89:85:cd:54: b4:6e:eb:79:c6:81:50:de:03:81:7d:f5:2a:2b:96: f1:12:09:2f:d7:c8:24:22:38:37:06:24:4d:7c:c3: fc:39:17:df:93:c1:51:f0:d9:06:43:fc:e8:28:57: b6:e0:fd:ca:97:4a:18:68:c6:98:66:2b:64:72:d0: 0e:31:15:4c:74:4d:20:41:55:ef:d0:8b:26:5b:33: 7f:32:4b:7d:4d:89:b8:f9:9c:a2:02:8d:d1:81:6a: d3:07:16:e0:5c:2d:a3:0e:ab:80:32:24:3d:09:4f: cd:be:7c:ff:1f:6d:11:f9:04:41:82:dc:90:13:9d: ac:fe:46:bc:cb:d2:35:8a:2a:60:42:bd:73:71:54: 27:b3:b0:31:4d:1b:20:1b:80:95:8d:e7:46:3d:68: b1:5e:94:07:79:3d:be:b0:c8:9c:46:27:a4:5a:35: 37:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EB:EF:18:DB:F8:8E:46:C2:8F:0D:34:85:25:1A:0A:F8:9D:D7:D4 X509v3 Authority Key Identifier: keyid:AF:85:78:8B:8C:52:D1:28:D5:34:0A:75:09:5B:8F:0F:11:77:9C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:86:d3:25:5b:64:4d:ba:e6:61:61:18:e9:3a:c4:aa:9a:ac: c0:14:a5:04:99:0d:d5:21:93:e2:db:30:dd:44:1a:7d:f2:af: bd:06:02:51:c1:68:a8:78:b8:2e:1d:fe:2e:68:f0:61:a8:b9: 6d:e5:12:1f:6d:f6:0d:2c:9a:44:e7:ae:4f:f5:25:aa:e1:e6: 78:8b:e7:6c:91:42:66:8e:72:f0:96:79:19:a9:8b:73:43:d7: fa:07:36:4f:a4:1d:3f:38:79:4b:a0:1f:8e:57:d5:b0:1c:75: 06:22:fc:d1:1e:49:09:b2:29:c8:2d:01:18:1b:61:2b:bd:44: d7:fc:b9:10:d4:18:99:46:00:32:f6:57:79:5b:41:24:60:d2: 74:05:42:3e:53:39:a7:49:17:ed:12:e1:f6:29:53:92:e5:34: 97:aa:f9:35:29:07:21:5b:79:61:ac:ff:17:47:af:40:2e:0c: 33:fd:1f:a6:b5:df:0c:d4:54:d9:0e:78:bb:95:81:2f:27:d2: f1:f4:77:8f:c9:25:0d:39:2e:3b:0a:2f:0d:ad:90:a9:04:ee: bd:06:d0:9c:24:80:87:66:03:8e:c4:b4:f4:38:62:a6:52:ee: 63:79:35:b6:b0:96:f0:8b:3d:9b:b3:63:46:6e:52:bc:e1:ed: 73:2f:b9:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1M0ExMTAvBgNVBAUTKEFGODU3ODhCOEM1MkQxMjhENTM0MEE3NTA5NUI4RjBG MTE3NzlDNDgwHhcNMjQwNjAxMDAxOTMxWhcNMjQwNjA4MDAxOTMxWjAYMRYwFAYD VQQDEw02NjVhNjkxNC02NzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4TwCtLqWZJ4sQY/yGCo0wOkSsKbodEnKyb3m/uXcEVeKtwKjObmEmW/BN1Oo eWbWuNBOBkO1MF2MbQyYUIgb5C4c/XLZUP0LjuXAUbiY76MRuIhhVomFzVS0but5 xoFQ3gOBffUqK5bxEgkv18gkIjg3BiRNfMP8ORffk8FR8NkGQ/zoKFe24P3Kl0oY aMaYZitkctAOMRVMdE0gQVXv0IsmWzN/Mkt9TYm4+ZyiAo3RgWrTBxbgXC2jDquA MiQ9CU/Nvnz/H20R+QRBgtyQE52s/ka8y9I1iipgQr1zcVQns7AxTRsgG4CVjedG PWixXpQHeT2+sMicRiekWjU36wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnr7xjb +I5Gwo8NNIUlGgr4ndfUMB8GA1UdIwQYMBaAFK+FeIuMUtEo1TQKdQlbjw8Rd5xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUzQS8zNkI1MkRGQTJG QzAxMUVCQTI1RkU5ODJDNEY5QUUwMi9yNFY0aTR4UzBTalZOQXAxQ1Z1UER4RjNu RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0VjRpNHhTMFNqVk5BcDFDVnVQRHhGM25FZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUzQS8zNkI1MkRGQTJGQzAxMUVCQTI1RkU5ODJDNEY5QUUwMi9yNFY0aTR4UzBT alZOQXAxQ1Z1UER4RjNuRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQhtMlW2RNuuZhYRjpOsSqmqzAFKUEmQ3VIZPi2zDdRBp98q+9BgJR wWioeLguHf4uaPBhqLlt5RIfbfYNLJpE565P9SWq4eZ4i+dskUJmjnLwlnkZqYtz Q9f6BzZPpB0/OHlLoB+OV9WwHHUGIvzRHkkJsinILQEYG2ErvUTX/LkQ1BiZRgAy 9ld5W0EkYNJ0BUI+UzmnSRftEuH2KVOS5TSXqvk1KQchW3lhrP8XR69ALgwz/R+m td8M1FTZDni7lYEvJ9Lx9HePySUNOS47Ci8NrZCpBO69BtCcJICHZgOOxLT0OGKm Uu5jeTW2sJbwiz2bs2NGblK84e1zL7mM -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:18 2024 by rpki-client on console-ams.rpki-client.org