$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: GM0kJIA4Hf8gQXmqSpSeKuGkDx//02SOdH56Fw6ZfQA= Subject key identifier: 98:0A:1F:FA:3F:4F:BE:33:06:37:7E:05:4B:C9:A8:75:6C:06:4A:B9 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: C4 Signing time: Wed 15 May 2024 06:23:50 +0000 Manifest this update: Wed 15 May 2024 06:23:50 +0000 Manifest next update: Wed 22 May 2024 06:23:50 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: FHdKY9FA+vFqOIhZsF+i9p5uN1UAq2XLosm0+PUywSQ=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: wrAqXtR5cQSmhUWLr1y8UjgIlTpfMqLqNlgVaZhEGts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: May 15 06:23:50 2024 GMT Not After : May 22 06:23:50 2024 GMT Subject: CN=664454f6-d57c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:88:e7:6f:80:19:31:1f:f8:b3:f0:af:1a:b0: 49:57:c7:bf:2e:fb:c9:4e:89:3f:a1:e5:d7:b8:b5: e0:c7:5e:7d:aa:bd:66:b2:49:49:50:11:09:ef:d5: ce:67:5c:33:6c:4b:c3:0a:b4:d8:3a:e8:85:d8:4e: c0:50:74:db:a7:a8:fc:a2:b6:8e:d9:86:c7:6c:ab: 74:7c:8c:56:50:3d:01:c2:cc:7f:ca:a0:c8:18:99: 9f:e1:c4:51:93:32:1c:7e:f3:fd:70:03:e9:8c:19: fe:ba:7a:a8:22:87:b1:82:5c:b5:9d:d0:8a:ce:a5: 24:a4:49:7e:27:03:16:80:be:e3:0b:54:e7:1c:60: a8:20:b3:6c:6d:19:d5:e1:0d:40:dd:63:bb:bd:e8: 6b:d1:d6:db:e1:e5:ca:ec:b0:a0:ee:be:c5:91:6f: 20:6d:da:80:1b:14:8a:2b:23:b3:72:97:90:67:65: 61:66:41:a3:f1:7b:85:fa:71:04:c2:cd:f8:43:4f: cc:3d:a8:c9:69:0d:1f:50:b4:ee:5d:8b:3f:b3:ff: 19:6e:1e:29:05:42:68:3f:5a:f8:a4:75:46:ca:e7: f2:03:0f:cd:f3:d7:d7:d9:d3:ff:4d:3d:0e:5d:62: 55:c0:e6:68:76:ce:9e:73:64:47:98:da:96:e6:b7: bd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:0A:1F:FA:3F:4F:BE:33:06:37:7E:05:4B:C9:A8:75:6C:06:4A:B9 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:3e:a3:2a:2e:82:07:b5:fd:d1:25:82:b7:bc:c6:56:f4:0c: 9a:20:9c:b3:10:81:f7:fd:bb:8f:08:1d:93:80:89:08:ee:d9: c8:00:84:6b:53:ac:e3:c9:8b:67:22:2b:6f:73:75:ac:44:49: 82:a9:40:fe:6d:3e:ab:2d:3b:12:36:0a:f9:4f:e8:68:3f:c1: 10:d1:72:35:90:56:a6:4e:f7:e0:0c:4f:6c:9a:6f:a4:0f:5a: e6:77:2b:e2:71:de:1b:c0:81:5e:e8:ae:38:1a:1e:f0:8c:1c: 60:f9:1a:c8:21:66:38:43:a2:ce:c1:84:c6:a9:da:78:9d:63: b3:b5:79:53:2c:d4:38:99:e7:5d:b0:2e:7c:05:ff:24:0a:4e: dd:2e:71:3e:ea:0e:e0:e2:5d:34:35:5b:12:fa:02:0a:da:7a: 2d:c0:45:31:0c:dd:05:79:a6:ab:9f:c6:ad:2a:0a:40:3b:32: 76:ff:3b:30:9a:70:f6:ee:b8:ae:56:c3:e5:4a:38:8d:e1:9b: 49:32:92:a4:66:8f:58:2f:01:c2:1b:fb:b3:43:0d:17:c4:68: 97:15:a1:6e:9f:af:e2:74:70:2a:f1:07:4b:89:16:e2:8c:c5: cb:a8:09:1e:1a:9b:b8:6c:e3:27:5e:00:56:98:ce:8c:00:a2: 57:37:21:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjQwNTE1MDYyMzUwWhcNMjQwNTIyMDYyMzUwWjAYMRYwFAYD VQQDEw02NjQ0NTRmNi1kNTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04jnb4AZMR/4s/CvGrBJV8e/LvvJTok/oeXXuLXgx159qr1msklJUBEJ79XO Z1wzbEvDCrTYOuiF2E7AUHTbp6j8oraO2YbHbKt0fIxWUD0Bwsx/yqDIGJmf4cRR kzIcfvP9cAPpjBn+unqoIoexgly1ndCKzqUkpEl+JwMWgL7jC1TnHGCoILNsbRnV 4Q1A3WO7vehr0dbb4eXK7LCg7r7FkW8gbdqAGxSKKyOzcpeQZ2VhZkGj8XuF+nEE ws34Q0/MPajJaQ0fULTuXYs/s/8Zbh4pBUJoP1r4pHVGyufyAw/N89fX2dP/TT0O XWJVwOZods6ec2RHmNqW5re9qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgKH/o/ T74zBjd+BUvJqHVsBkq5MB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGPqMqLoIHtf3RJYK3vMZW9AyaIJyzEIH3/buPCB2TgIkI7tnIAIRr U6zjyYtnIitvc3WsREmCqUD+bT6rLTsSNgr5T+hoP8EQ0XI1kFamTvfgDE9smm+k D1rmdyvicd4bwIFe6K44Gh7wjBxg+RrIIWY4Q6LOwYTGqdp4nWOztXlTLNQ4medd sC58Bf8kCk7dLnE+6g7g4l00NVsS+gIK2notwEUxDN0Feaarn8atKgpAOzJ2/zsw mnD27riuVsPlSjiN4ZtJMpKkZo9YLwHCG/uzQw0XxGiXFaFun6/idHAq8QdLiRbi jMXLqAkeGpu4bOMnXgBWmM6MAKJXNyEs -----END CERTIFICATE-----Generated at Wed May 15 06:54:27 2024 by rpki-client on console-ams.rpki-client.org