$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft File: sdV2wMeOXPWNSDeibJJjxj8TFd0.mft (raw, json) Hash identifier: Km4H6YDQMDY/m81Q6kq3v8gSkXeLn7a/GihTSktaUTM= Subject key identifier: AA:7C:8B:49:F1:26:F2:54:4E:94:7C:1C:98:29:3E:24:92:C6:9D:A6 Authority key identifier: B1:D5:76:C0:C7:8E:5C:F5:8D:48:37:A2:6C:92:63:C6:3F:13:15:DD Certificate issuer: /CN=A914EB5A/serialNumber=B1D576C0C78E5CF58D4837A26C9263C63F1315DD Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft Manifest number: 4C Signing time: Fri 17 May 2024 08:05:33 +0000 Manifest this update: Fri 17 May 2024 08:05:33 +0000 Manifest next update: Fri 24 May 2024 08:05:33 +0000 Files and hashes: 1: sdV2wMeOXPWNSDeibJJjxj8TFd0.crl (hash: ku/Ei9ewjn0RI4YEMxEZYohCYp+Zk9dgW8pyz6suQYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.crl rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB5A/serialNumber=B1D576C0C78E5CF58D4837A26C9263C63F1315DD Validity Not Before: May 17 08:05:33 2024 GMT Not After : May 24 08:05:33 2024 GMT Subject: CN=66470fcd-9d9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:08:ba:26:d0:6e:42:67:6e:cd:93:c7:f0:da: 61:b5:45:94:6d:f1:6e:11:6d:7f:fd:13:ce:20:35: 0f:6e:cc:74:44:39:3b:e6:4e:68:eb:00:75:f8:0a: e0:cd:c8:51:3b:62:4c:d7:3f:45:80:36:85:90:50: 90:19:22:20:4d:14:41:ae:df:04:a7:ae:ae:0c:91: 97:9d:a7:7a:b1:c0:98:79:86:79:f1:df:b3:27:9f: db:b2:43:a3:be:54:84:2c:61:03:7f:3f:72:1d:b8: f5:12:41:75:a1:6d:1c:45:29:ae:6b:06:6f:e1:9c: 37:8b:a6:49:54:49:4a:f2:90:17:cc:a5:a3:ff:8b: 69:c9:c3:79:13:cf:62:87:0f:eb:d0:c8:d2:47:39: 8c:17:a1:74:d0:a4:a1:79:b2:ec:71:13:a0:21:67: 0f:1b:c2:a7:42:84:3b:29:df:71:48:f6:e5:ca:61: da:ba:b8:37:15:cc:22:1c:77:e2:5b:7c:e4:05:ff: 67:99:cc:b5:29:cd:7e:9a:78:e3:0b:12:ca:cc:7c: 05:c2:20:1d:b5:44:11:f7:ea:4a:01:37:ca:ba:9a: 4f:e2:42:6e:4a:25:d2:7c:3a:47:d6:04:4c:03:07: 55:78:94:50:7d:31:b1:86:87:4b:fc:2a:5a:6d:94: dd:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7C:8B:49:F1:26:F2:54:4E:94:7C:1C:98:29:3E:24:92:C6:9D:A6 X509v3 Authority Key Identifier: keyid:B1:D5:76:C0:C7:8E:5C:F5:8D:48:37:A2:6C:92:63:C6:3F:13:15:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:22:7b:7a:14:85:d9:63:97:95:4a:d6:21:38:c8:93:9d:9f: 4d:dc:71:42:46:fc:bb:91:9e:d7:88:c8:33:d5:2b:49:9b:2d: 79:03:d8:2f:db:fb:ab:f0:80:7f:f7:21:12:a2:35:7c:ed:9b: b3:5c:07:b7:d0:63:df:7d:d6:64:5e:68:9c:5f:4c:36:b2:ef: fc:ef:31:d4:b6:b8:b9:f2:4d:f5:0a:cf:55:5c:5b:1c:56:df: 5f:0a:0e:93:0f:09:97:80:9f:f1:06:c2:a3:39:24:82:76:98: 0e:88:cc:02:8d:c3:fe:cd:3f:91:2c:e9:ae:01:fa:f3:7f:bc: f5:e8:d1:e4:8c:13:42:15:3b:fd:5a:79:86:f1:a9:e2:2d:a4: f9:2a:19:80:d6:fe:27:1c:12:6c:30:78:0a:cc:bd:9a:49:1e: 27:88:aa:9c:a3:37:97:80:83:a2:fc:0a:2c:5c:6b:10:3c:1a: c6:bb:ec:64:ac:0e:e6:e3:9f:bf:eb:92:e2:71:9c:0e:c3:22: 67:fa:02:22:d8:66:f9:c6:91:ae:bb:16:f5:1f:05:99:b2:bd: c1:c5:b8:66:ab:30:67:28:30:d9:61:92:fc:0f:2f:1d:27:15: 88:18:fd:a1:d6:df:a2:36:22:07:21:14:73:40:12:67:91:57: 53:58:7e:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RUI1QTExMC8GA1UEBRMoQjFENTc2QzBDNzhFNUNGNThENDgzN0EyNkM5MjYzQzYz RjEzMTVERDAeFw0yNDA1MTcwODA1MzNaFw0yNDA1MjQwODA1MzNaMBgxFjAUBgNV BAMTDTY2NDcwZmNkLTlkOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdCLom0G5CZ27Nk8fw2mG1RZRt8W4RbX/9E84gNQ9uzHREOTvmTmjrAHX4CuDN yFE7YkzXP0WANoWQUJAZIiBNFEGu3wSnrq4MkZedp3qxwJh5hnnx37Mnn9uyQ6O+ VIQsYQN/P3IduPUSQXWhbRxFKa5rBm/hnDeLpklUSUrykBfMpaP/i2nJw3kTz2KH D+vQyNJHOYwXoXTQpKF5suxxE6AhZw8bwqdChDsp33FI9uXKYdq6uDcVzCIcd+Jb fOQF/2eZzLUpzX6aeOMLEsrMfAXCIB21RBH36koBN8q6mk/iQm5KJdJ8OkfWBEwD B1V4lFB9MbGGh0v8KlptlN3RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqnyLSfEm 8lROlHwcmCk+JJLGnaYwHwYDVR0jBBgwFoAUsdV2wMeOXPWNSDeibJJjxj8TFd0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFQjVBLzdDMDc1RTE4QTNC MzExRUVBRDY2MjkxOUM0RjlBRTAyL3NkVjJ3TWVPWFBXTlNEZWliSkpqeGo4VEZk MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2RWMndNZU9YUFdOU0RlaWJKSmp4ajhURmQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF QjVBLzdDMDc1RTE4QTNCMzExRUVBRDY2MjkxOUM0RjlBRTAyL3NkVjJ3TWVPWFBX TlNEZWliSkpqeGo4VEZkMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFMie3oUhdljl5VK1iE4yJOdn03ccUJG/LuRnteIyDPVK0mbLXkD2C/b +6vwgH/3IRKiNXztm7NcB7fQY9991mReaJxfTDay7/zvMdS2uLnyTfUKz1VcWxxW 318KDpMPCZeAn/EGwqM5JIJ2mA6IzAKNw/7NP5Es6a4B+vN/vPXo0eSME0IVO/1a eYbxqeItpPkqGYDW/iccEmwweArMvZpJHieIqpyjN5eAg6L8CixcaxA8Gsa77GSs Dubjn7/rkuJxnA7DImf6AiLYZvnGka67FvUfBZmyvcHFuGarMGcoMNlhkvwPLx0n FYgY/aHW36I2IgchFHNAEmeRV1NYfvA= -----END CERTIFICATE-----Generated at Fri May 17 08:52:48 2024 by rpki-client on console-ams.rpki-client.org