$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: YnykUYYURHtarKGtTEXWUknQy8UOyMJmS9iV2nH+IwY= Subject key identifier: 65:76:3B:8B:82:80:9C:B1:D9:9F:D6:22:10:44:AD:84:BE:82:C0:DD Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0E95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0E86 Signing time: Fri 26 Apr 2024 18:22:14 +0000 Manifest this update: Fri 26 Apr 2024 18:22:13 +0000 Manifest next update: Fri 03 May 2024 18:22:13 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: EX2FbeyjRLjSsVKj02waP6X74wdAyiQW6R1c0Fg2trU=) 2: E8B2E1609EF211E988220246C4F9AE02.roa (hash: y2KGOCDh7I/P8NsvXsW+6RsyMZA1W+PFX8XRN0+6vUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 18:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3733 (0xe95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Apr 26 18:22:13 2024 GMT Not After : May 3 18:22:13 2024 GMT Subject: CN=662bf0d5-8838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:af:ed:b7:fb:8a:0e:fd:c5:90:e3:3a:d7:3a: f9:1f:36:e4:3a:1d:bc:5c:62:8a:ea:c6:bd:94:5e: 72:8b:84:b2:be:0a:d8:f3:42:bf:89:cd:28:1b:84: 72:f7:15:c0:6f:70:cb:c9:18:1f:21:c8:a6:33:b0: e6:87:7a:c0:0c:8e:40:07:56:90:bb:44:53:fe:86: 35:d4:59:f8:59:e9:32:f7:1c:c9:1e:57:23:f4:65: e2:8d:54:44:1d:fa:31:58:03:3b:50:eb:c3:2b:52: 03:d2:3c:b1:80:44:81:a9:d0:de:8c:53:d8:60:e5: 74:4c:c1:c6:cf:ee:28:1d:e2:20:da:f7:95:38:8e: 2a:33:15:ef:72:29:5e:cb:1c:8d:e1:4b:24:02:7f: 8c:13:e8:48:11:b2:9c:64:00:70:ed:4e:e7:87:4a: fb:9e:5d:02:9e:0a:42:10:04:b3:16:c8:74:25:e0: 1f:b6:6f:44:8e:ae:86:76:0e:e8:46:04:08:d3:e1: a1:91:06:33:44:d2:d7:6e:6e:61:e9:fa:87:69:46: 07:6f:f3:e3:a8:1a:9e:78:63:3e:d1:b3:17:1a:ed: 07:3f:94:0d:11:f9:e6:1d:5c:cb:04:ef:fe:80:9f: 2d:03:dd:c1:fc:e3:fa:12:36:32:0a:f3:0b:e6:65: 27:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:76:3B:8B:82:80:9C:B1:D9:9F:D6:22:10:44:AD:84:BE:82:C0:DD X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:31:7b:ed:8d:0b:08:5a:a3:dc:c8:6a:d6:d8:88:ba:2e:7b: d4:67:6d:40:2e:28:53:3a:53:f8:e2:fc:24:cc:20:67:b0:2f: dd:04:1b:c8:c3:a9:43:3a:6e:a9:f2:71:35:87:95:f8:01:f6: 21:b2:c5:24:61:69:6b:ed:bb:13:1b:2e:a3:60:ab:4e:47:00: 6d:49:50:5d:e8:5d:69:d2:ac:a5:7f:d9:65:d5:55:5b:1a:1c: 51:61:c2:4f:40:b8:ae:6f:ce:26:56:0c:f2:57:c1:c0:84:72: a4:12:b0:3f:0b:08:51:82:f6:97:41:4f:19:69:56:1d:4e:00: 65:d8:31:59:a7:a2:79:48:ef:fd:88:14:35:e5:0e:d9:df:b7: 17:8a:75:26:b3:5a:21:4e:4b:f0:b2:6a:b9:32:2a:eb:a9:1a: 61:b4:03:73:39:d4:a1:3f:7e:e4:2e:f1:7b:87:92:24:4b:84: 96:5a:27:b4:b9:cc:df:6d:4b:19:14:38:2c:c3:c2:17:0f:09: 45:d9:53:1c:8a:82:f2:91:b1:49:ff:a2:e2:fb:31:57:89:48: 13:d6:45:5d:40:2e:5d:64:25:20:72:9d:49:14:af:e8:30:26: f0:72:03:63:2f:89:9b:94:87:fb:91:e2:f5:24:6f:cc:42:fb: 0f:3b:4a:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjQwNDI2MTgyMjEzWhcNMjQwNTAzMTgyMjEzWjAYMRYwFAYD VQQDEw02NjJiZjBkNS04ODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6/tt/uKDv3FkOM61zr5HzbkOh28XGKK6sa9lF5yi4SyvgrY80K/ic0oG4Ry 9xXAb3DLyRgfIcimM7Dmh3rADI5AB1aQu0RT/oY11Fn4Weky9xzJHlcj9GXijVRE HfoxWAM7UOvDK1ID0jyxgESBqdDejFPYYOV0TMHGz+4oHeIg2veVOI4qMxXvcile yxyN4UskAn+ME+hIEbKcZABw7U7nh0r7nl0CngpCEASzFsh0JeAftm9Ejq6Gdg7o RgQI0+GhkQYzRNLXbm5h6fqHaUYHb/PjqBqeeGM+0bMXGu0HP5QNEfnmHVzLBO/+ gJ8tA93B/OP6EjYyCvML5mUnnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGV2O4uC gJyx2Z/WIhBErYS+gsDdMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4MXvtjQsIWqPcyGrW2Ii6LnvUZ21ALihTOlP44vwkzCBnsC/dBBvI w6lDOm6p8nE1h5X4AfYhssUkYWlr7bsTGy6jYKtORwBtSVBd6F1p0qylf9ll1VVb GhxRYcJPQLiub84mVgzyV8HAhHKkErA/CwhRgvaXQU8ZaVYdTgBl2DFZp6J5SO/9 iBQ15Q7Z37cXinUms1ohTkvwsmq5MirrqRphtANzOdShP37kLvF7h5IkS4SWWie0 uczfbUsZFDgsw8IXDwlF2VMcioLykbFJ/6Li+zFXiUgT1kVdQC5dZCUgcp1JFK/o MCbwcgNjL4mblIf7keL1JG/MQvsPO0pl -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:43 2024 by rpki-client on console-ams.rpki-client.org