$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: 1cXDKVz7474Es9V8IG9W/KfzY4S9h/zLIpW3LoIfiD8= Subject key identifier: A0:A5:A5:3D:80:6F:22:8D:E6:0A:F1:08:14:E9:C1:A5:D5:93:92:89 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 010F Signing time: Wed 01 May 2024 03:55:36 +0000 Manifest this update: Wed 01 May 2024 03:55:36 +0000 Manifest next update: Wed 08 May 2024 03:55:36 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: 18qP80vU12B3wgSKEYXsHDJXe7OqsDQT22jCxh3/q+M=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: M/OwMpKUcDGJmYk2FMUB/neSb4EJEBEin020M2YnlkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: May 1 03:55:36 2024 GMT Not After : May 8 03:55:36 2024 GMT Subject: CN=6631bd38-cc85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f8:a8:ed:93:b2:aa:66:42:c4:0f:61:ae:e8: 01:71:05:8c:dd:c8:4f:33:cd:c1:91:70:49:52:99: 62:8f:a4:0b:dd:6c:57:ca:72:20:a0:b0:53:a4:a2: b6:47:66:7c:84:b4:b0:58:65:30:a5:b5:f1:64:83: cd:4f:7f:61:58:81:13:d2:7b:d7:bd:8c:97:17:24: 1e:d3:06:24:94:e7:44:7b:9e:7d:72:64:c4:23:9b: 55:2c:81:3b:51:54:74:29:6a:4d:03:cb:02:fd:fc: e8:02:97:3c:e5:e4:95:b6:31:e8:bd:81:15:b9:cb: 41:8b:ab:19:c5:aa:f4:ea:b8:fe:57:0a:a2:79:65: f6:66:51:0c:9c:73:ea:96:67:73:1e:57:e4:00:69: 36:49:e0:08:17:ab:72:b9:ac:59:26:ee:2c:d8:c3: 59:f3:ea:54:df:66:0e:34:91:23:c6:77:65:f9:21: 05:92:5b:06:57:ea:fa:42:9d:f7:f9:d3:07:26:34: 2b:57:72:4b:f0:ad:36:a2:76:bb:d3:a6:34:1c:ed: c4:08:d0:af:89:3c:e8:1b:85:21:1b:f7:a4:fc:ee: a0:11:71:cb:52:e4:40:96:b0:1b:1f:bb:13:53:d5: c9:c2:64:bc:67:f0:9c:41:8d:18:56:a2:d0:bc:39: d4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A5:A5:3D:80:6F:22:8D:E6:0A:F1:08:14:E9:C1:A5:D5:93:92:89 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:59:19:23:40:34:61:d4:a0:84:9c:98:30:94:ae:ee:1d:6b: 6d:7a:1d:b1:ee:c7:c1:b3:20:64:88:3c:58:39:90:34:31:b0: 99:c4:e6:19:db:d6:bd:6e:7b:0f:67:97:82:cd:b8:5a:e2:a9: 4d:d7:b1:9f:2c:e4:03:4d:c6:ed:56:e9:83:47:6f:94:ea:35: f3:f2:9f:1f:f4:e6:36:c5:14:ad:5b:e6:dd:12:68:7f:96:91: 00:ee:94:7a:49:3b:ad:b9:69:b7:c7:9e:bd:20:8a:98:34:dd: d9:7e:53:b4:72:4d:4f:e9:9d:ef:f3:2f:bb:37:4c:6f:96:35: d0:1a:94:6a:34:4b:2d:a5:ed:89:85:26:94:19:9c:57:af:aa: 20:f7:33:64:1c:a5:06:b4:f9:7b:67:9b:98:1f:0f:47:35:33: 20:4b:82:82:d7:46:50:a2:ae:7b:87:a6:b7:67:10:6f:f8:b3: c5:39:51:f7:4e:74:48:00:23:2d:70:c5:bf:a5:d2:b1:3d:4f: 85:fe:b8:32:53:e7:41:26:1c:b4:71:d1:82:e8:ce:48:20:ef: 87:5e:7a:83:84:8a:01:80:29:b5:b2:fd:bd:d7:f2:48:9e:a1: b2:21:e3:3c:3d:3c:70:83:e7:ef:69:a4:48:83:84:5c:21:17: 29:de:9a:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjQwNTAxMDM1NTM2WhcNMjQwNTA4MDM1NTM2WjAYMRYwFAYD VQQDEw02NjMxYmQzOC1jYzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/io7ZOyqmZCxA9hrugBcQWM3chPM83BkXBJUplij6QL3WxXynIgoLBTpKK2 R2Z8hLSwWGUwpbXxZIPNT39hWIET0nvXvYyXFyQe0wYklOdEe559cmTEI5tVLIE7 UVR0KWpNA8sC/fzoApc85eSVtjHovYEVuctBi6sZxar06rj+VwqieWX2ZlEMnHPq lmdzHlfkAGk2SeAIF6tyuaxZJu4s2MNZ8+pU32YONJEjxndl+SEFklsGV+r6Qp33 +dMHJjQrV3JL8K02ona706Y0HO3ECNCviTzoG4UhG/ek/O6gEXHLUuRAlrAbH7sT U9XJwmS8Z/CcQY0YVqLQvDnU6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKClpT2A byKN5grxCBTpwaXVk5KJMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaWRkjQDRh1KCEnJgwlK7uHWtteh2x7sfBsyBkiDxYOZA0MbCZxOYZ 29a9bnsPZ5eCzbha4qlN17GfLOQDTcbtVumDR2+U6jXz8p8f9OY2xRStW+bdEmh/ lpEA7pR6STutuWm3x569IIqYNN3ZflO0ck1P6Z3v8y+7N0xvljXQGpRqNEstpe2J hSaUGZxXr6og9zNkHKUGtPl7Z5uYHw9HNTMgS4KC10ZQoq57h6a3ZxBv+LPFOVH3 TnRIACMtcMW/pdKxPU+F/rgyU+dBJhy0cdGC6M5IIO+HXnqDhIoBgCm1sv291/JI nqGyIeM8PTxwg+fvaaRIg4RcIRcp3pp4 -----END CERTIFICATE-----Generated at Wed May 1 04:49:21 2024 by rpki-client on console-ams.rpki-client.org