$ rpki-client -vvf rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft File: 5B7XVgdLN63ceU-UC9H1Pj9na5M.mft (raw, json) Hash identifier: Ade4HkQrsUO9bIv9iQBckQfKhIZBHEU2qBSp+UvDk+I= Subject key identifier: 58:8D:2C:D1:DE:B2:6A:37:90:26:F6:C1:B8:D6:2B:5E:6F:9E:87:5F Authority key identifier: E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93 Certificate issuer: /CN=A913B5C7/serialNumber=E41ED756074B37ADDC794F940BD1F53E3F676B93 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft Manifest number: 1D Signing time: Fri 17 May 2024 08:47:57 +0000 Manifest this update: Fri 17 May 2024 08:47:56 +0000 Manifest next update: Fri 24 May 2024 08:47:56 +0000 Files and hashes: 1: 5B7XVgdLN63ceU-UC9H1Pj9na5M.crl (hash: /gIyyPgQzwDT/DZOZddGOhZ8UwW3WjuJxDZqqHrBscg=) 2: B0CE94A0E80911EEADE3420AC4F9AE02.roa (hash: xeBdZEDygAkJP3gWk8DQnl/NecYbqaLYzhSDka+Be5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.crl rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B5C7/serialNumber=E41ED756074B37ADDC794F940BD1F53E3F676B93 Validity Not Before: May 17 08:47:56 2024 GMT Not After : May 24 08:47:56 2024 GMT Subject: CN=664719bd-1362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:b6:24:b0:e1:22:13:57:87:ed:51:f1:f0: 64:b4:7b:08:9b:90:86:46:9e:70:46:b2:e5:2f:45: e5:3b:ab:67:5a:7b:1e:5b:7a:f5:dd:08:86:93:4a: 8d:1f:9d:55:7b:b2:d5:0b:2c:e6:16:27:22:93:01: 85:e0:17:85:2d:6c:a3:88:fb:57:21:57:27:1c:56: 15:ca:2e:55:07:07:d7:42:58:b8:ec:2c:6e:5c:0f: 55:cf:fb:39:c0:6f:0a:1d:53:45:b4:57:9a:1d:42: 99:47:9f:04:3e:28:c2:46:5f:64:e5:83:12:df:85: 77:1c:fe:a9:97:4d:cd:ad:53:6b:b4:e3:49:d8:d3: 12:2b:75:ad:ed:94:40:ab:bd:b6:c4:b2:de:f8:67: 62:71:75:f4:98:8b:d7:ae:a5:51:1d:61:44:d6:29: ca:4f:1a:c4:2e:aa:97:a1:75:25:84:86:05:7b:b2: e1:9e:8c:55:54:21:e1:b4:6e:8f:67:57:65:bd:b6: 4c:0d:ae:9d:e5:c5:a4:74:35:8b:3f:3c:9a:4b:75: dd:4d:48:c6:be:eb:3e:84:bc:4e:85:7a:b1:3e:16: 3d:ff:3a:62:a5:28:36:cc:0a:c6:be:2a:37:24:04: 86:55:b2:5d:93:8d:89:61:06:69:1f:18:fb:8d:ea: 98:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8D:2C:D1:DE:B2:6A:37:90:26:F6:C1:B8:D6:2B:5E:6F:9E:87:5F X509v3 Authority Key Identifier: keyid:E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:ca:d5:bc:08:78:ab:de:69:77:18:b5:eb:d9:64:d1:fa:01: 47:a1:b4:37:27:d3:37:ba:91:a3:4d:9e:b1:08:70:10:f7:2b: ad:df:ff:15:0a:5a:f6:ac:fc:66:23:ea:20:30:c5:85:a0:68: c1:df:c8:2d:23:98:34:56:b5:db:47:12:75:d3:aa:0a:d1:b2: 9e:e9:b3:f6:10:45:4c:c0:3b:0a:29:da:81:4b:ae:ac:36:7a: d6:14:25:42:bb:c1:f2:23:e6:a8:86:f9:ab:8e:e1:b3:e8:bd: 0b:8e:04:6b:3f:69:16:f0:7e:58:78:17:a1:f8:68:cd:90:1d: a6:40:3c:63:db:4f:ef:a4:c9:17:75:cf:de:38:34:9e:e6:aa: 7d:a7:78:2e:9e:be:43:ee:00:db:f7:92:25:3a:15:73:bc:f7: a5:00:8e:78:1e:b5:a0:01:e3:ab:cb:15:f3:b6:c3:cd:4f:f6: 40:16:2e:7e:31:75:4b:da:34:d3:e9:8b:1d:da:f5:ce:fa:21: 2d:bc:a6:27:2d:34:17:d8:34:81:3a:96:4d:51:20:0f:a0:20: 81:95:dd:3e:1d:1f:d0:4b:0c:c7:40:2f:3b:6f:30:a5:dd:c9: 1d:32:ae:d9:10:d6:5b:59:cb:70:e7:14:02:52:23:62:66:7c: 2c:80:29:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjVDNzExMC8GA1UEBRMoRTQxRUQ3NTYwNzRCMzdBRERDNzk0Rjk0MEJEMUY1M0Uz RjY3NkI5MzAeFw0yNDA1MTcwODQ3NTZaFw0yNDA1MjQwODQ3NTZaMBgxFjAUBgNV BAMTDTY2NDcxOWJkLTEzNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC45LYksOEiE1eH7VHx8GS0ewibkIZGnnBGsuUvReU7q2daex5bevXdCIaTSo0f nVV7stULLOYWJyKTAYXgF4UtbKOI+1chVyccVhXKLlUHB9dCWLjsLG5cD1XP+znA bwodU0W0V5odQplHnwQ+KMJGX2TlgxLfhXcc/qmXTc2tU2u040nY0xIrda3tlECr vbbEst74Z2JxdfSYi9eupVEdYUTWKcpPGsQuqpehdSWEhgV7suGejFVUIeG0bo9n V2W9tkwNrp3lxaR0NYs/PJpLdd1NSMa+6z6EvE6FerE+Fj3/OmKlKDbMCsa+Kjck BIZVsl2TjYlhBmkfGPuN6pgJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWI0s0d6y ajeQJvbBuNYrXm+eh18wHwYDVR0jBBgwFoAU5B7XVgdLN63ceU+UC9H1Pj9na5Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNUM3LzY3RDI0Mzk2RTgw OTExRUVCRTQ4OTU2M0M0RjlBRTAyLzVCN1hWZ2RMTjYzY2VVLVVDOUgxUGo5bmE1 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUI3WFZnZExONjNjZVUtVUM5SDFQajluYTVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC NUM3LzY3RDI0Mzk2RTgwOTExRUVCRTQ4OTU2M0M0RjlBRTAyLzVCN1hWZ2RMTjYz Y2VVLVVDOUgxUGo5bmE1TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANnK1bwIeKveaXcYtevZZNH6AUehtDcn0ze6kaNNnrEIcBD3K63f/xUK Wvas/GYj6iAwxYWgaMHfyC0jmDRWtdtHEnXTqgrRsp7ps/YQRUzAOwop2oFLrqw2 etYUJUK7wfIj5qiG+auO4bPovQuOBGs/aRbwflh4F6H4aM2QHaZAPGPbT++kyRd1 z944NJ7mqn2neC6evkPuANv3kiU6FXO896UAjngetaAB46vLFfO2w81P9kAWLn4x dUvaNNPpix3a9c76IS28pictNBfYNIE6lk1RIA+gIIGV3T4dH9BLDMdALztvMKXd yR0yrtkQ1ltZy3DnFAJSI2JmfCyAKX8= -----END CERTIFICATE-----Generated at Fri May 17 10:59:08 2024 by rpki-client on console-ams.rpki-client.org