$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: bIjGDMDl2ggk5qQPE7tCpUsn5dCr+oM7gmGKxfi62hs= Subject key identifier: 8D:39:EE:74:42:4A:4C:4A:08:81:93:B0:F9:76:C4:06:3B:94:0C:CE Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 2137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 2128 Signing time: Thu 02 May 2024 16:17:38 +0000 Manifest this update: Thu 02 May 2024 16:17:38 +0000 Manifest next update: Thu 09 May 2024 16:17:38 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: FYXDSD9LZYF1JxN2wxfTKKlTJxTA594RntuFf5oHq8s=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: sxrNxCTJ+45si1boAQwArYewZOdeGJ/p8B0/QcUtSi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8503 (0x2137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: May 2 16:17:38 2024 GMT Not After : May 9 16:17:38 2024 GMT Subject: CN=6633bca2-70a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1b:05:fc:d6:a1:1d:3d:36:75:dc:b2:ed:42: aa:43:73:04:d8:11:80:a1:86:d6:0c:e5:e1:36:c8: 86:49:73:d5:71:b5:77:6c:22:3f:6b:e1:23:c5:f8: 14:1f:8c:aa:d1:12:75:50:5a:51:65:a0:04:ef:0c: 3a:d8:ad:08:5a:d5:54:8d:b1:69:c2:c4:90:df:58: 85:5e:1c:34:ac:cb:4b:ef:69:f6:f5:9a:b8:2a:6b: 18:ea:47:01:f0:ae:7b:cb:27:e6:75:d2:d5:c7:b1: e0:d9:a0:39:7d:82:12:21:17:2e:dc:21:ff:4a:f2: de:8b:36:1e:70:08:c0:fd:42:9e:50:7d:1a:5a:19: a8:19:86:13:0d:4a:2e:7b:a0:fe:c2:f8:36:5e:71: 0b:49:0f:d4:6f:6b:a5:37:f6:28:32:6e:20:44:c5: 2c:9d:f1:47:e9:80:0c:19:f1:26:6b:05:4a:ba:a7: 92:ed:15:0c:da:89:50:a8:af:4f:67:f2:94:a9:7a: 5c:4c:f8:ad:d2:2f:13:96:d8:46:5b:0e:bb:e4:9c: d6:df:75:3b:b7:80:2f:d9:9d:f3:b8:07:90:19:af: 06:9f:8e:b2:6e:58:4b:21:cb:fc:87:65:be:df:ca: f9:b7:4d:31:d8:eb:1a:bb:5a:f4:cb:68:57:7b:14: 73:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:39:EE:74:42:4A:4C:4A:08:81:93:B0:F9:76:C4:06:3B:94:0C:CE X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:04:e9:8a:23:43:b1:e3:fe:3c:d5:21:e8:57:46:97:59:e7: 4f:e7:db:28:b1:9b:bb:de:72:89:52:4a:d3:5b:f2:65:65:72: e8:c2:41:2b:bc:5d:2b:d9:c7:0e:f4:b8:d8:23:59:8d:30:3d: 85:97:76:44:03:67:c6:b1:9d:6b:a6:49:f3:8f:f6:45:48:7d: 5b:30:6f:b4:79:60:b5:2d:89:14:30:1e:85:62:95:fa:82:e4: c6:d5:6a:67:67:c4:72:3a:5d:eb:54:0b:df:df:e8:3c:32:77: 82:cd:e0:af:d5:38:72:b8:e7:80:52:2b:e1:69:19:78:8d:f0: c3:f2:03:32:8d:28:4a:bf:94:31:cf:25:e3:73:80:b4:7c:aa: df:97:8e:eb:0a:7d:b0:fb:1f:49:2b:89:e7:f3:17:89:f8:f2: 20:48:8e:7b:4b:63:6e:fe:d2:0a:6d:05:29:a2:1f:fd:ef:00: 27:4e:78:44:cb:ce:49:7a:fa:08:de:85:34:69:23:5b:6d:00: cc:73:29:86:ab:a0:2e:41:f0:f3:3c:ea:4b:a4:be:5d:62:c0: 85:9c:e3:62:52:1f:47:1b:6c:f8:20:15:e1:2f:6c:0c:49:f6: 51:f4:d1:43:3c:eb:76:31:a1:d0:20:7d:57:97:89:c9:bc:38: da:41:f0:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICITcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjQwNTAyMTYxNzM4WhcNMjQwNTA5MTYxNzM4WjAYMRYwFAYD VQQDEw02NjMzYmNhMi03MGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlRsF/NahHT02ddyy7UKqQ3ME2BGAoYbWDOXhNsiGSXPVcbV3bCI/a+EjxfgU H4yq0RJ1UFpRZaAE7ww62K0IWtVUjbFpwsSQ31iFXhw0rMtL72n29Zq4KmsY6kcB 8K57yyfmddLVx7Hg2aA5fYISIRcu3CH/SvLeizYecAjA/UKeUH0aWhmoGYYTDUou e6D+wvg2XnELSQ/Ub2ulN/YoMm4gRMUsnfFH6YAMGfEmawVKuqeS7RUM2olQqK9P Z/KUqXpcTPit0i8TlthGWw675JzW33U7t4Av2Z3zuAeQGa8Gn46yblhLIcv8h2W+ 38r5t00x2Osau1r0y2hXexRzKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI057nRC SkxKCIGTsPl2xAY7lAzOMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPBOmKI0Ox4/481SHoV0aXWedP59sosZu73nKJUkrTW/JlZXLowkEr vF0r2ccO9LjYI1mNMD2Fl3ZEA2fGsZ1rpknzj/ZFSH1bMG+0eWC1LYkUMB6FYpX6 guTG1WpnZ8RyOl3rVAvf3+g8MneCzeCv1ThyuOeAUivhaRl4jfDD8gMyjShKv5Qx zyXjc4C0fKrfl47rCn2w+x9JK4nn8xeJ+PIgSI57S2Nu/tIKbQUpoh/97wAnTnhE y85JevoI3oU0aSNbbQDMcymGq6AuQfDzPOpLpL5dYsCFnONiUh9HG2z4IBXhL2wM SfZR9NFDPOt2MaHQIH1Xl4nJvDjaQfCr -----END CERTIFICATE-----Generated at Thu May 2 17:18:29 2024 by rpki-client on console-ams.rpki-client.org