$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft File: Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft (raw, json) Hash identifier: UCi4xoY7ZWHYobs6BV3EOFxMfd7j/mLJdmvosYkEcI0= Subject key identifier: C0:97:EF:4C:58:F8:76:E0:7B:2B:02:39:CA:36:8E:04:A5:E0:B8:F1 Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Certificate serial: 33FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft Manifest number: 33D7 Signing time: Thu 02 May 2024 15:33:55 +0000 Manifest this update: Thu 02 May 2024 15:33:55 +0000 Manifest next update: Thu 09 May 2024 15:33:55 +0000 Files and hashes: 1: Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl (hash: ZgnPfKMewwY2N0bnLp21rtJBn5BPcLZmIRVleeB8ihs=) 2: 1DECCD5252E911ED8BAAA80AC4F9AE02.roa (hash: b2M3JXjp9snURxRJazD7oQHEBOgr28kRzU7g+A3FfgY=) 3: CFC647301F7911EE9D65A148C4F9AE02.roa (hash: PNU6q/yz3U49CD+oZKbosRy5yu3vFlbV9oWCZ23Wmzw=) 4: 93441F8211CB11EEB8151734C4F9AE02.roa (hash: e6Egs/x2MrOpLmSTkV8bn9fKgYxAdbD5nf7EYufv/sU=) 5: 63C5D8AAA55411EE92D2882AC4F9AE02.roa (hash: Aols0J7an/0VOLmtb2phIXdiFNcH1bA5vPpQQO+rBSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13307 (0x33fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Validity Not Before: May 2 15:33:55 2024 GMT Not After : May 9 15:33:55 2024 GMT Subject: CN=6633b263-47f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:57:a8:89:c0:73:84:1b:07:55:f4:43:5e:2a: a2:ee:ec:4f:b8:34:b8:59:e7:fe:e1:56:5a:5b:2f: 9a:da:f0:f3:98:13:b5:eb:3f:0f:7a:58:d9:26:f9: 36:95:18:86:a0:bd:ad:4b:db:36:68:cc:4e:95:bc: ba:c8:76:85:dc:f2:91:43:7e:e0:ae:36:9f:cc:a9: 2b:97:fe:07:c1:13:1a:8a:63:27:95:bd:05:b9:95: ce:00:dd:f0:6d:f2:82:aa:eb:2a:ae:e5:f4:45:af: 7c:2d:54:77:7d:fd:94:ba:10:ad:7f:d7:c5:d3:d3: f7:a9:58:c9:43:86:49:f7:9e:c8:30:97:5d:0c:78: df:1e:a1:b4:1a:af:23:38:fb:02:9f:2e:ba:c8:5f: 4e:e7:97:ac:23:1c:b8:05:72:49:ae:e6:e1:6d:9c: 2e:d1:58:9b:f5:f0:33:de:80:b1:aa:ac:59:de:9c: 92:0b:b5:39:23:c7:b0:c2:f5:83:9b:85:91:15:c6: 2c:03:9c:1e:b9:c9:22:71:c5:af:f2:03:81:c6:01: e8:c0:b3:6a:8a:89:fc:74:ae:b5:86:d6:22:d3:e6: 7c:f4:a3:a6:d7:f8:84:4b:29:40:d2:f0:b8:a8:34: 29:f7:f9:7e:b9:a6:69:ee:77:98:c1:33:e3:28:84: ad:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:97:EF:4C:58:F8:76:E0:7B:2B:02:39:CA:36:8E:04:A5:E0:B8:F1 X509v3 Authority Key Identifier: keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:e3:72:5e:0a:32:34:cc:2c:20:37:99:d8:85:a2:f2:e2:c6: 38:63:01:9d:af:4f:c6:04:73:a7:62:ab:ad:a5:df:f0:e4:2c: de:35:51:b7:a6:79:ae:a0:03:ff:b6:62:e7:d4:a1:9b:6b:6e: bd:5b:56:24:0c:3d:77:e4:75:ad:99:bd:a8:f5:85:bf:09:76: 48:0b:86:6a:c9:e7:f4:d4:d1:56:61:9f:41:15:cf:0c:8b:39: 99:28:84:77:49:0d:38:01:bd:5a:b7:f8:03:70:f2:75:60:28: ee:cb:04:80:d8:ab:9d:08:2c:8c:9b:9d:92:9c:6f:68:d3:db: 03:0e:e5:7b:3e:52:06:8c:f7:80:9a:08:05:4a:e3:f2:7e:54: 15:f7:ae:26:a5:6d:36:d1:53:d1:7e:75:01:c9:f0:53:ab:ff: 38:b7:ab:87:a5:89:46:7a:0f:4e:72:41:23:43:4b:01:67:e6: 7f:76:01:6e:27:66:ad:57:05:b1:25:0a:21:60:99:07:8c:b5: bc:f8:e8:e8:04:98:d5:bc:59:8d:c7:8b:23:29:c4:4a:84:ff: 8c:87:22:b4:7f:dc:78:95:67:77:10:3f:7a:93:3c:cc:36:b5: 00:fe:c7:14:9b:95:41:59:f9:54:b4:7a:8a:c4:48:9e:54:ac: 90:dd:81:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGNzYxMTAvBgNVBAUTKDYzRUM0RTYzODBGQUFFQTUxMTA3RTlDNDBDMkYxMDU4 RTA4Rjg1NkUwHhcNMjQwNTAyMTUzMzU1WhcNMjQwNTA5MTUzMzU1WjAYMRYwFAYD VQQDEw02NjMzYjI2My00N2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVeoicBzhBsHVfRDXiqi7uxPuDS4Wef+4VZaWy+a2vDzmBO16z8PeljZJvk2 lRiGoL2tS9s2aMxOlby6yHaF3PKRQ37grjafzKkrl/4HwRMaimMnlb0FuZXOAN3w bfKCqusqruX0Ra98LVR3ff2UuhCtf9fF09P3qVjJQ4ZJ957IMJddDHjfHqG0Gq8j OPsCny66yF9O55esIxy4BXJJrubhbZwu0Vib9fAz3oCxqqxZ3pySC7U5I8ewwvWD m4WRFcYsA5weuckiccWv8gOBxgHowLNqion8dK61htYi0+Z89KOm1/iESylA0vC4 qDQp9/l+uaZp7neYwTPjKIStOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCX70xY +HbgeysCOco2jgSl4LjxMB8GA1UdIwQYMBaAFGPsTmOA+q6lEQfpxAwvEFjgj4Vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkY3Ni85NDRFMzg5MjFE QUIxMUUyQkIzMENBQTkwOEIwMkNEMi9ZLXhPWTRENnJxVVJCLW5FREM4UVdPQ1Bo VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kteE9ZNEQ2cnFVUkItbkVEQzhRV09DUGhXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkY3Ni85NDRFMzg5MjFEQUIxMUUyQkIzMENBQTkwOEIwMkNEMi9ZLXhPWTRENnJx VVJCLW5FREM4UVdPQ1BoVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT43JeCjI0zCwgN5nYhaLy4sY4YwGdr0/GBHOnYqutpd/w5CzeNVG3 pnmuoAP/tmLn1KGba269W1YkDD135HWtmb2o9YW/CXZIC4Zqyef01NFWYZ9BFc8M izmZKIR3SQ04Ab1at/gDcPJ1YCjuywSA2KudCCyMm52SnG9o09sDDuV7PlIGjPeA mggFSuPyflQV964mpW020VPRfnUByfBTq/84t6uHpYlGeg9OckEjQ0sBZ+Z/dgFu J2atVwWxJQohYJkHjLW8+OjoBJjVvFmNx4sjKcRKhP+MhyK0f9x4lWd3ED96kzzM NrUA/scUm5VBWflUtHqKxEieVKyQ3YGV -----END CERTIFICATE-----Generated at Thu May 2 17:18:28 2024 by rpki-client on console-ams.rpki-client.org