$ rpki-client -vvf rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.mft File: 5-kErSYVSeMdvVn0azB0xr-m2rI.mft (raw, json) Hash identifier: jvU7+EGpouwdfGOmSNmkUar03frsa5rjDfisMkSy1go= Subject key identifier: 3F:CE:D2:57:23:80:3D:1D:AA:16:19:B2:D5:05:8A:1A:6D:6F:96:72 Authority key identifier: E7:E9:04:AD:26:15:49:E3:1D:BD:59:F4:6B:30:74:C6:BF:A6:DA:B2 Certificate issuer: /CN=A9148E9A/serialNumber=E7E904AD261549E31DBD59F46B3074C6BFA6DAB2 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5-kErSYVSeMdvVn0azB0xr-m2rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.mft Manifest number: D4 Signing time: Sat 27 Apr 2024 05:57:34 +0000 Manifest this update: Sat 27 Apr 2024 05:57:33 +0000 Manifest next update: Sat 04 May 2024 05:57:33 +0000 Files and hashes: 1: 5-kErSYVSeMdvVn0azB0xr-m2rI.crl (hash: VP0tOmxxIGuv70n8j2IMgTQ7l5Gkgy7xjYWUE070G+I=) 2: 20BD79FAC17A11ED8F7A315FC4F9AE02.roa (hash: FtelNB9mh9rm/DPnO36fMVkGjRmD3W2CCA0ojbvk/CE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.crl rsync://rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5-kErSYVSeMdvVn0azB0xr-m2rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148E9A/serialNumber=E7E904AD261549E31DBD59F46B3074C6BFA6DAB2 Validity Not Before: Apr 27 05:57:33 2024 GMT Not After : May 4 05:57:33 2024 GMT Subject: CN=662c93ce-50ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0b:d3:28:b8:fd:43:41:30:2f:2a:75:11:59: a4:16:88:5b:54:88:62:9c:4c:56:4c:d5:3e:32:5a: 21:81:57:fd:61:f3:3c:f4:3f:cb:44:43:9a:01:cd: b6:59:84:36:cf:98:40:69:11:50:ce:21:77:0e:51: d4:94:26:ad:a0:f7:af:9b:6e:a7:79:ff:43:42:27: e6:c3:28:4c:2e:9f:e2:6c:d5:ba:54:f3:bd:a3:dd: 81:6f:cc:25:2e:d8:b8:56:30:f9:77:df:a6:1a:31: 6f:22:f4:29:81:9f:54:b2:4d:21:5c:14:6f:3b:cc: 2f:96:36:c7:41:f3:0d:d5:2e:86:6a:b6:da:1e:42: 74:9a:9c:c6:68:da:7f:6d:4b:fe:56:d7:88:03:e6: 37:49:fa:b5:9d:ae:73:cc:33:cd:a3:e2:2e:21:be: 5d:56:df:b4:d8:13:8b:9e:0d:e4:40:7f:02:34:45: b3:47:a3:fa:ae:1d:e5:72:4b:08:16:36:26:5b:81: 47:f7:51:0a:a7:60:69:71:11:ed:00:6d:f3:45:06: db:36:c9:a7:36:df:5c:8d:2a:6b:f4:cf:51:2c:a7: e1:53:2e:f8:f2:8d:10:6a:41:f5:a9:b3:c2:af:61: 85:22:1c:d2:4d:9d:fa:e5:40:c6:04:dc:df:98:96: f6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:CE:D2:57:23:80:3D:1D:AA:16:19:B2:D5:05:8A:1A:6D:6F:96:72 X509v3 Authority Key Identifier: keyid:E7:E9:04:AD:26:15:49:E3:1D:BD:59:F4:6B:30:74:C6:BF:A6:DA:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5-kErSYVSeMdvVn0azB0xr-m2rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148E9A/03F47D8AC17711EDA039F22FC4F9AE02/5-kErSYVSeMdvVn0azB0xr-m2rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:55:b4:c7:bf:b2:d3:10:8d:ac:0c:72:05:88:dd:81:47:ad: 06:8e:f0:10:b5:0b:a9:ed:a9:4c:3b:13:6c:93:24:8c:2b:7e: 46:69:80:c9:a6:b3:35:13:72:98:d9:f3:66:14:18:1e:09:bd: 06:40:d7:09:d2:6e:67:f9:7b:e8:92:03:ab:63:3e:56:31:b9: f3:6d:4e:bd:82:e8:c8:ca:69:7c:b0:5a:8b:6c:6b:43:27:b0: 7f:79:b8:01:72:db:e7:97:bb:88:52:65:90:c8:ca:b8:1f:5e: 22:a5:e1:95:df:d8:cc:6b:83:03:4a:4a:bf:21:2b:ea:1d:52: d5:25:e5:51:06:86:b9:5d:ef:63:a6:b2:3f:e3:c7:78:c8:93: 8c:3e:33:e2:21:d2:aa:7b:8c:1b:fe:41:87:b6:0f:70:8c:6f: b9:e5:0b:db:21:38:a4:c5:42:4d:a8:16:f2:da:6c:e1:8f:99: ef:f7:97:cc:01:fb:3c:89:62:27:35:5b:f9:15:18:30:a2:12: 57:e8:ce:2f:34:34:7b:34:41:df:1f:10:0d:47:41:34:6d:d4: 24:3f:2a:55:b4:58:c3:3c:51:25:a8:9c:73:dc:8c:71:90:c3: 67:50:a8:14:8f:71:15:e8:81:0e:36:92:c4:bd:f9:7a:bb:2f: b2:24:65:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFOUExMTAvBgNVBAUTKEU3RTkwNEFEMjYxNTQ5RTMxREJENTlGNDZCMzA3NEM2 QkZBNkRBQjIwHhcNMjQwNDI3MDU1NzMzWhcNMjQwNTA0MDU1NzMzWjAYMRYwFAYD VQQDEw02NjJjOTNjZS01MGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwvTKLj9Q0EwLyp1EVmkFohbVIhinExWTNU+MlohgVf9YfM89D/LREOaAc22 WYQ2z5hAaRFQziF3DlHUlCatoPevm26nef9DQifmwyhMLp/ibNW6VPO9o92Bb8wl Lti4VjD5d9+mGjFvIvQpgZ9Usk0hXBRvO8wvljbHQfMN1S6GarbaHkJ0mpzGaNp/ bUv+VteIA+Y3Sfq1na5zzDPNo+IuIb5dVt+02BOLng3kQH8CNEWzR6P6rh3lcksI FjYmW4FH91EKp2BpcRHtAG3zRQbbNsmnNt9cjSpr9M9RLKfhUy748o0QakH1qbPC r2GFIhzSTZ365UDGBNzfmJb25wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/O0lcj gD0dqhYZstUFihptb5ZyMB8GA1UdIwQYMBaAFOfpBK0mFUnjHb1Z9GswdMa/ptqy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEU5QS8wM0Y0N0Q4QUMx NzcxMUVEQTAzOUYyMkZDNEY5QUUwMi81LWtFclNZVlNlTWR2Vm4wYXpCMHhyLW0y ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUta0VyU1lWU2VNZHZWbjBhekIweHItbTJySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEU5QS8wM0Y0N0Q4QUMxNzcxMUVEQTAzOUYyMkZDNEY5QUUwMi81LWtFclNZVlNl TWR2Vm4wYXpCMHhyLW0yckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqVbTHv7LTEI2sDHIFiN2BR60GjvAQtQup7alMOxNskySMK35GaYDJ prM1E3KY2fNmFBgeCb0GQNcJ0m5n+XvokgOrYz5WMbnzbU69gujIyml8sFqLbGtD J7B/ebgBctvnl7uIUmWQyMq4H14ipeGV39jMa4MDSkq/ISvqHVLVJeVRBoa5Xe9j prI/48d4yJOMPjPiIdKqe4wb/kGHtg9wjG+55QvbITikxUJNqBby2mzhj5nv95fM Afs8iWInNVv5FRgwohJX6M4vNDR7NEHfHxANR0E0bdQkPypVtFjDPFElqJxz3Ixx kMNnUKgUj3EV6IEONpLEvfl6uy+yJGWF -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:50 2024 by rpki-client on console-ams.rpki-client.org