$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.mft (raw, json) Hash identifier: 9Cd/d5bR5LnzMT98535MDblwwMJxKJ1NZWcTbYKT3ns= Subject key identifier: 0C:9F:12:D9:46:91:C0:2F:7F:0F:82:09:63:7A:4A:4F:22:C9:27:56 Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft Manifest number: 064C Signing time: Tue 30 Apr 2024 23:57:34 +0000 Manifest this update: Tue 30 Apr 2024 23:57:34 +0000 Manifest next update: Tue 07 May 2024 23:57:34 +0000 Files and hashes: 1: 1O0zil4gh9gu9ML2RZm0ERJy5eA.crl (hash: HM6ZMSyx0M77eEOHx+hAGoRoVMOdF0fYwYUuQnX2KS8=) 2: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (hash: Tqs2BwBQN3aw7diwsiZGDcrNhdesKMfXDb80Fkkbg3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: Apr 30 23:57:34 2024 GMT Not After : May 7 23:57:34 2024 GMT Subject: CN=6631856e-744f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ca:31:9e:51:f3:67:78:0f:69:cb:c2:43:50: a9:68:b3:cb:d7:8f:2e:69:8e:6e:4e:da:46:c1:10: c7:d3:61:39:ed:4c:ef:cc:b6:07:01:52:20:d5:dd: f8:c3:f3:23:46:0e:89:77:57:8a:41:90:d7:6c:bc: e6:e9:62:1e:12:22:f8:7b:07:d1:29:bf:ef:d0:c5: af:53:b8:bd:24:3e:30:64:55:d2:cf:3f:94:f7:2d: 66:d1:8e:d8:b5:50:a3:44:4a:06:6d:c7:10:62:1e: 55:f4:dd:85:04:a4:4b:04:92:3d:b7:76:28:de:d6: 5d:ed:64:be:1e:4e:d1:5b:b7:fc:f6:92:ab:fb:28: f3:2e:46:6c:10:97:5c:bd:4a:d3:20:bc:14:d9:57: a5:c4:68:af:0d:d4:72:63:cf:69:ed:39:ac:c1:78: 75:84:09:ab:68:f3:a8:35:d5:5a:74:dd:93:de:35: ea:d1:9a:9a:d7:f0:d9:6e:c2:06:a9:ae:93:2c:89: 5e:df:e9:85:31:96:44:12:a3:51:98:c7:48:b2:0b: 01:f4:eb:65:28:b2:d4:21:b1:86:33:34:4c:fe:af: 6b:f1:68:75:16:0a:20:fc:32:da:71:7b:b7:02:15: a0:68:0f:19:ea:c7:58:8f:58:fe:3e:9a:5b:d0:4f: ee:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:9F:12:D9:46:91:C0:2F:7F:0F:82:09:63:7A:4A:4F:22:C9:27:56 X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:17:58:81:07:40:21:12:bf:47:33:6d:3d:e6:29:00:c8:5b: 38:8f:1e:f5:fd:4d:3b:39:da:f0:81:e4:8d:b5:10:51:cc:1e: a4:bc:71:93:cf:e8:17:8f:b8:42:a2:63:b4:9d:54:19:2c:60: 1d:c1:05:14:21:8d:1d:70:a2:24:d0:49:c1:30:ef:99:97:6b: 06:29:1f:f1:1b:67:6e:94:97:65:99:e7:a1:79:e9:21:3f:36: 4b:e5:09:72:ce:3d:e5:c9:00:28:a9:9e:5b:a0:d6:71:19:a2: 52:c9:be:82:27:2d:a1:e8:4f:5f:e6:5b:29:46:c8:a7:01:af: 52:bf:75:c2:e7:f8:a8:dd:a4:0b:7d:4b:09:ac:52:3a:58:b7: 24:02:b8:d8:5e:ad:c5:a0:f5:b5:cb:6f:7b:26:e1:2b:5a:e1: d4:d0:61:90:d9:60:ea:04:3a:59:63:8f:cc:1b:85:c5:23:c0: 2a:0a:28:7c:a3:64:7c:66:92:b9:8e:22:fd:42:90:6e:13:21: 62:6c:0f:e4:f5:fe:41:03:10:78:07:7e:7f:2d:27:87:d2:62: 03:d2:4c:10:54:e3:1f:78:a2:b4:75:ab:5f:13:d0:cc:c5:c5: 43:7d:71:f8:fc:50:ae:f2:5b:d3:2d:5b:1e:51:be:a6:74:06: bd:65:19:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjQwNDMwMjM1NzM0WhcNMjQwNTA3MjM1NzM0WjAYMRYwFAYD VQQDEw02NjMxODU2ZS03NDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7MoxnlHzZ3gPacvCQ1CpaLPL148uaY5uTtpGwRDH02E57UzvzLYHAVIg1d34 w/MjRg6Jd1eKQZDXbLzm6WIeEiL4ewfRKb/v0MWvU7i9JD4wZFXSzz+U9y1m0Y7Y tVCjREoGbccQYh5V9N2FBKRLBJI9t3Yo3tZd7WS+Hk7RW7f89pKr+yjzLkZsEJdc vUrTILwU2VelxGivDdRyY89p7TmswXh1hAmraPOoNdVadN2T3jXq0Zqa1/DZbsIG qa6TLIle3+mFMZZEEqNRmMdIsgsB9OtlKLLUIbGGMzRM/q9r8Wh1Fgog/DLacXu3 AhWgaA8Z6sdYj1j+Pppb0E/uKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyfEtlG kcAvfw+CCWN6Sk8iySdWMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5 Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBF1iBB0AhEr9HM2095ikAyFs4jx71/U07OdrwgeSNtRBRzB6kvHGT z+gXj7hComO0nVQZLGAdwQUUIY0dcKIk0EnBMO+Zl2sGKR/xG2dulJdlmeeheekh PzZL5Qlyzj3lyQAoqZ5boNZxGaJSyb6CJy2h6E9f5lspRsinAa9Sv3XC5/io3aQL fUsJrFI6WLckArjYXq3FoPW1y297JuErWuHU0GGQ2WDqBDpZY4/MG4XFI8AqCih8 o2R8ZpK5jiL9QpBuEyFibA/k9f5BAxB4B35/LSeH0mID0kwQVOMfeKK0datfE9DM xcVDfXH4/FCu8lvTLVseUb6mdAa9ZRnx -----END CERTIFICATE-----Generated at Wed May 1 00:23:59 2024 by rpki-client on console-fra.rpki-client.org