$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: Npk2xu7WSCMuvufTQjJvxBhS86lf95JrGCIQ8cb9l8k= Subject key identifier: 0B:73:22:61:48:0E:B5:05:40:CD:9E:1F:B3:48:C3:91:6C:75:8D:8D Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 41 Signing time: Wed 15 May 2024 08:21:21 +0000 Manifest this update: Wed 15 May 2024 08:21:21 +0000 Manifest next update: Wed 22 May 2024 08:21:21 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: 8ylOkS3fCsw/+nS1e82X07/apVN2xRjoRw0AlBh3xaE=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: May 15 08:21:21 2024 GMT Not After : May 22 08:21:21 2024 GMT Subject: CN=66447081-3a4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:78:7c:d6:b6:6b:a0:aa:de:56:1b:b0:f3:39: b4:74:a3:31:eb:ca:8a:a9:7b:80:ae:d1:34:23:23: 7a:95:74:d1:12:2c:2c:e6:34:eb:84:fb:f3:10:ee: 82:9d:f4:96:9a:77:e4:bf:b1:b9:fc:a1:63:d5:73: 02:27:4f:c4:c9:3b:00:e2:9c:6e:8d:9c:0a:dc:97: c8:e5:3d:57:ab:40:e4:3a:23:53:4b:0b:53:74:70: f3:b2:ae:cf:95:3a:be:75:9f:1a:51:09:73:7e:82: cc:43:0c:99:ad:78:b9:07:e5:32:01:b9:1d:70:52: bf:ad:8b:80:d9:1b:17:e7:e8:ca:61:00:42:dd:12: 8f:63:7e:c2:68:3f:6b:63:da:7c:4a:00:38:65:47: 19:2a:5d:cd:16:c7:6c:e5:0a:d1:4b:0b:0b:5f:b2: 33:b1:52:3e:11:3c:97:52:a7:5c:02:56:82:3c:ea: 2f:8b:9c:a7:b7:4e:eb:26:35:90:4e:c5:c9:ff:a6: 43:87:d2:33:c3:a7:48:0b:50:4a:b0:ef:27:a2:e4: 0d:49:f4:70:21:49:c8:a9:62:45:36:79:6e:db:ac: 34:32:00:eb:f6:4c:12:a3:d2:ea:c3:29:45:95:6f: d6:d2:e0:61:da:e4:33:01:ff:8e:ba:47:c5:ef:35: 05:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:73:22:61:48:0E:B5:05:40:CD:9E:1F:B3:48:C3:91:6C:75:8D:8D X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:b4:25:d4:6d:9b:9a:81:18:27:97:08:06:fc:9e:cf:f4:10: 38:77:4a:66:47:a1:f4:02:83:c2:01:fd:85:fa:e1:3b:8e:99: ce:6c:4c:2b:5f:0f:14:f1:fc:10:80:f9:78:19:c8:6e:f3:7c: 5d:76:c8:66:d3:f8:d8:ef:1a:a9:25:37:40:e5:c3:c3:2f:df: 64:2e:32:49:2b:53:00:36:f0:7d:73:98:b0:12:fb:a9:74:70: 79:8a:b6:11:8b:00:5d:d7:fc:55:4f:ac:cb:d0:20:e4:89:0f: 65:72:66:eb:b9:ea:88:03:58:99:72:55:f0:cb:74:14:17:f1: 4f:72:b7:60:ae:94:7a:41:78:dc:3a:01:ae:b0:fd:b5:bb:5f: cf:46:93:ce:34:13:17:87:c6:29:6e:b8:a1:b1:31:39:72:46: 26:6e:25:6e:e7:82:35:2e:0e:13:ba:80:88:d4:19:e8:61:f8: cb:17:77:c9:1a:af:33:77:88:f1:d2:89:f0:f7:9e:c0:e7:3e: d6:71:60:33:8e:51:e1:88:ed:31:a1:0b:22:5c:16:ba:96:70: 58:e7:31:e3:e9:fa:45:5a:5c:08:e5:e3:54:5e:2c:3e:ec:ad: f4:ed:d9:7e:d2:e4:88:8d:3b:e4:c3:ea:05:53:5d:51:9e:15: 5b:5e:30:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REQwNDExMC8GA1UEBRMoNDczNDY0ODQ3MTU5QkIxNTJGQkZFMURCQjVBMUIwMTU0 NjgyMkYxNzAeFw0yNDA1MTUwODIxMjFaFw0yNDA1MjIwODIxMjFaMBgxFjAUBgNV BAMTDTY2NDQ3MDgxLTNhNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoeHzWtmugqt5WG7DzObR0ozHryoqpe4Cu0TQjI3qVdNESLCzmNOuE+/MQ7oKd 9Jaad+S/sbn8oWPVcwInT8TJOwDinG6NnArcl8jlPVerQOQ6I1NLC1N0cPOyrs+V Or51nxpRCXN+gsxDDJmteLkH5TIBuR1wUr+ti4DZGxfn6MphAELdEo9jfsJoP2tj 2nxKADhlRxkqXc0Wx2zlCtFLCwtfsjOxUj4RPJdSp1wCVoI86i+LnKe3TusmNZBO xcn/pkOH0jPDp0gLUEqw7yei5A1J9HAhScipYkU2eW7brDQyAOv2TBKj0urDKUWV b9bS4GHa5DMB/466R8XvNQVbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC3MiYUgO tQVAzZ4fs0jDkWx1jY0wHwYDVR0jBBgwFoAURzRkhHFZuxUvv+HbtaGwFUaCLxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERDA0L0MzRDVGREM2QjlC QjExRUVBQTMyMjk1RUM0RjlBRTAyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUnpSa2hIRlp1eFV2di1IYnRhR3dGVWFDTHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE RDA0L0MzRDVGREM2QjlCQjExRUVBQTMyMjk1RUM0RjlBRTAyL1J6UmtoSEZadXhV dnYtSGJ0YUd3RlVhQ0x4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE60JdRtm5qBGCeXCAb8ns/0EDh3SmZHofQCg8IB/YX64TuOmc5sTCtf DxTx/BCA+XgZyG7zfF12yGbT+NjvGqklN0Dlw8Mv32QuMkkrUwA28H1zmLAS+6l0 cHmKthGLAF3X/FVPrMvQIOSJD2VyZuu56ogDWJlyVfDLdBQX8U9yt2CulHpBeNw6 Aa6w/bW7X89Gk840ExeHxiluuKGxMTlyRiZuJW7ngjUuDhO6gIjUGehh+MsXd8ka rzN3iPHSifD3nsDnPtZxYDOOUeGI7TGhCyJcFrqWcFjnMePp+kVaXAjl41ReLD7s rfTt2X7S5IiNO+TD6gVTXVGeFVteMK0= -----END CERTIFICATE-----Generated at Wed May 15 09:04:07 2024 by rpki-client on console-ams.rpki-client.org