$ rpki-client -vvf rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft File: L1yb73Dl0CO3HEbLZs_iof20g1s.mft (raw, json) Hash identifier: l8aLBx+uXxCdlX64IDlPjSGxja1vf5CPM/SMTz4WnFA= Subject key identifier: 2F:4D:FE:6F:2E:C9:2C:3C:22:7E:D4:14:44:57:20:F8:9A:89:CC:C6 Authority key identifier: 2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B Certificate issuer: /CN=A915D55E/serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft Manifest number: 0698 Signing time: Tue 30 Apr 2024 23:37:08 +0000 Manifest this update: Tue 30 Apr 2024 23:37:08 +0000 Manifest next update: Tue 07 May 2024 23:37:08 +0000 Files and hashes: 1: L1yb73Dl0CO3HEbLZs_iof20g1s.crl (hash: nc7TxjdO6lwMNrUtNocGruC5jYlatEzV0prVFEhlS10=) 2: 2323F9621D5D11EBA3A7E71CC4F9AE02.roa (hash: l2faCZ2NaRKO9RKpqA1xTTOq0n++1p8P7E337Sewxms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D55E/serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Validity Not Before: Apr 30 23:37:08 2024 GMT Not After : May 7 23:37:08 2024 GMT Subject: CN=663180a4-5716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:85:ae:fa:10:26:17:04:79:3d:be:08:03:77: 56:ff:f8:52:d9:ad:69:cb:e7:a9:ac:f4:ce:78:52: 2e:c0:26:99:fa:dd:2d:b4:f5:a6:0c:58:43:22:bc: 20:46:61:25:df:da:b3:3c:9f:d3:43:e6:a2:9d:92: 18:8c:dd:25:a3:26:a1:60:bd:97:a8:b8:ae:09:f7: b5:ec:5e:74:15:e4:00:31:82:8e:87:fe:11:42:e7: 81:fd:c4:3e:8e:6f:49:f7:b6:d2:36:6a:ab:ca:e5: c1:7d:b5:d6:38:50:c8:3b:50:55:61:ba:db:90:83: 7f:19:a8:fe:d1:31:9e:e6:aa:5e:fc:e9:a4:90:eb: 38:73:1d:52:aa:e6:9b:8b:16:38:a9:55:2b:a6:51: 95:48:7f:2d:1f:7f:ae:bd:02:8c:3b:c1:7f:9b:dc: 95:68:50:ce:71:59:d8:28:6f:c4:03:06:82:ad:85: b2:73:0e:ea:70:35:80:87:e5:b3:c0:03:2b:48:e5: 9f:ad:b8:f7:4e:6c:a7:31:a8:16:ed:2b:33:3e:a5: 10:de:b4:2f:38:1c:bd:6f:61:94:bf:57:73:0f:0b: e8:04:d6:e4:b1:98:d1:b6:42:90:8f:f4:0d:1a:ae: f1:18:6f:e5:16:25:a6:68:30:6f:a5:1a:ce:32:05: 62:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:4D:FE:6F:2E:C9:2C:3C:22:7E:D4:14:44:57:20:F8:9A:89:CC:C6 X509v3 Authority Key Identifier: keyid:2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a9:9f:2d:26:38:1a:ac:b8:ef:db:5b:83:38:74:6b:51:b2: a7:1a:ad:1d:a8:9a:33:93:e9:aa:3f:f9:69:54:f3:f2:5e:cf: 43:46:37:eb:6d:64:6e:11:96:fa:d3:ee:a8:8e:c6:db:cd:c0: 0b:69:7f:db:cd:c7:40:de:3d:af:c9:c2:b0:52:a5:51:21:7f: 9a:7c:82:f5:a5:bf:5e:05:14:1f:75:08:26:37:29:8e:07:8d: f0:8f:b7:71:f5:29:89:8c:fd:15:46:2b:53:96:83:3c:70:04: c4:a1:9c:8c:6e:6a:f1:d2:7a:19:3e:f7:0b:c4:e3:24:8e:f7: 41:fa:60:69:fa:43:e1:21:e7:20:3b:c4:89:1a:d4:5e:90:32: 46:22:a8:ea:b6:bf:39:12:5c:cc:b2:46:9a:46:1e:0e:09:9b: a1:40:e3:48:82:8a:dc:26:73:02:02:0b:f4:4a:d4:b4:df:ff: 45:72:20:eb:f4:00:75:00:86:0c:cc:42:4b:1b:c5:a5:fa:58: 8a:90:b1:7c:ca:d8:1e:1c:a3:25:f4:af:93:11:b8:ad:25:79: 0c:04:3c:b2:e3:87:39:0a:ef:6a:0d:c5:f2:21:30:c7:d2:27: df:f4:64:10:35:2e:64:9e:c8:e7:25:e8:a7:41:e7:00:57:5e: fa:d3:59:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ1NUUxMTAvBgNVBAUTKDJGNUM5QkVGNzBFNUQwMjNCNzFDNDZDQjY2Q0ZFMkEx RkRCNDgzNUIwHhcNMjQwNDMwMjMzNzA4WhcNMjQwNTA3MjMzNzA4WjAYMRYwFAYD VQQDEw02NjMxODBhNC01NzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYWu+hAmFwR5Pb4IA3dW//hS2a1py+eprPTOeFIuwCaZ+t0ttPWmDFhDIrwg RmEl39qzPJ/TQ+ainZIYjN0loyahYL2XqLiuCfe17F50FeQAMYKOh/4RQueB/cQ+ jm9J97bSNmqryuXBfbXWOFDIO1BVYbrbkIN/Gaj+0TGe5qpe/OmkkOs4cx1Squab ixY4qVUrplGVSH8tH3+uvQKMO8F/m9yVaFDOcVnYKG/EAwaCrYWycw7qcDWAh+Wz wAMrSOWfrbj3TmynMagW7SszPqUQ3rQvOBy9b2GUv1dzDwvoBNbksZjRtkKQj/QN Gq7xGG/lFiWmaDBvpRrOMgVifQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9N/m8u ySw8In7UFERXIPiaiczGMB8GA1UdIwQYMBaAFC9cm+9w5dAjtxxGy2bP4qH9tINb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDU1RS82MkE1RUI2QTFE NUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBDTzNIRWJMWnNfaW9mMjBn MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxeWI3M0RsMENPM0hFYkxac19pb2YyMGcxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDU1RS82MkE1RUI2QTFENUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBD TzNIRWJMWnNfaW9mMjBnMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqqZ8tJjgarLjv21uDOHRrUbKnGq0dqJozk+mqP/lpVPPyXs9DRjfr bWRuEZb60+6ojsbbzcALaX/bzcdA3j2vycKwUqVRIX+afIL1pb9eBRQfdQgmNymO B43wj7dx9SmJjP0VRitTloM8cATEoZyMbmrx0noZPvcLxOMkjvdB+mBp+kPhIecg O8SJGtRekDJGIqjqtr85ElzMskaaRh4OCZuhQONIgorcJnMCAgv0StS03/9FciDr 9AB1AIYMzEJLG8Wl+liKkLF8ytgeHKMl9K+TEbitJXkMBDyy44c5Cu9qDcXyITDH 0iff9GQQNS5knsjnJeinQecAV17601n6 -----END CERTIFICATE-----Generated at Wed May 1 00:35:49 2024 by rpki-client on console-ams.rpki-client.org