$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: oTmm+wylwFyzWeO5luGDmtML2RR1Tz3xGxcK+iMZdDA= Subject key identifier: CB:AB:E9:1C:0E:D8:C6:49:39:2D:4D:B9:96:93:48:BD:60:3C:E1:3B Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: D1 Signing time: Fri 03 May 2024 06:14:43 +0000 Manifest this update: Fri 03 May 2024 06:14:42 +0000 Manifest next update: Fri 10 May 2024 06:14:42 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: rqkMWyoDzBTsb8F99R0ZGFaNqh+0dqmCaGy9tScDw6o=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 2eqS5cjF9sa6KMzGcQfKPVCA5SVXZZKPARO3qSqHB6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: May 3 06:14:42 2024 GMT Not After : May 10 06:14:42 2024 GMT Subject: CN=663480d2-23dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fa:ce:4e:d8:cb:56:64:20:9c:80:20:c5:5d: c3:f6:52:a2:fd:d0:21:bb:35:65:cd:91:29:f7:39: cd:3e:b7:04:00:e0:22:a6:66:a1:ad:d3:59:65:39: 43:2c:d2:9d:ab:9e:e8:74:1f:45:d8:23:9b:d3:a6: b5:c7:d3:05:e2:54:26:ae:64:0c:11:be:77:c0:9a: b5:71:8b:41:4b:75:e4:66:10:97:0b:7a:b5:d6:30: a4:c6:c9:d2:0f:4e:e0:a0:c0:fc:fa:a6:39:dd:a5: 6b:06:72:14:42:20:6b:07:be:ec:64:97:73:ff:f8: 3b:4f:b6:68:3f:6f:63:85:c3:8c:8b:b5:d5:e4:f8: 14:f4:af:31:cc:db:e6:b3:6c:2b:31:35:a6:4f:a5: 95:5d:37:55:71:ee:0c:9a:bd:68:67:e6:d6:ee:a7: a9:68:d4:5e:26:c6:48:5a:9a:7e:84:93:4f:e0:af: bf:77:87:1d:8a:84:31:a6:d6:af:c5:f2:1e:99:ce: a4:d8:7b:6b:d2:03:34:8f:62:fb:f2:84:16:ae:00: b2:c8:e4:31:fd:04:d0:22:78:11:de:c7:20:3f:c1: 62:3a:25:85:10:b3:55:f7:d7:07:f3:e1:03:16:17: 48:62:fc:b2:96:8e:38:4d:8a:d8:ab:43:55:4b:0f: ee:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AB:E9:1C:0E:D8:C6:49:39:2D:4D:B9:96:93:48:BD:60:3C:E1:3B X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7c:53:e3:bb:18:ad:d5:91:c2:40:ba:45:11:c6:d7:d9:44: 1f:e2:1a:dc:12:8a:e5:af:c6:8d:23:a8:82:9a:c1:49:af:74: 0a:d6:4f:69:54:61:bc:c4:27:12:c8:cd:97:ec:80:0a:80:42: d2:38:e2:fd:26:9b:d8:1e:1e:6c:69:b4:39:e1:6f:17:f3:a3: fc:c4:98:cd:a9:82:ff:e4:98:95:63:fb:76:7d:7f:66:8d:1a: ac:dd:db:03:2a:4f:53:89:49:0e:8c:fc:f6:87:64:38:fe:5d: 1e:53:0a:35:67:7e:5a:a3:13:51:40:f7:e3:b0:08:05:b6:27: f2:a4:71:cc:43:76:b2:52:bf:a9:a6:6e:7b:e7:50:4b:51:27: 21:e3:a4:64:9e:a7:58:a4:53:26:d7:4a:a4:d4:72:21:59:b4: e6:44:1b:2b:e2:d2:de:9b:d6:fc:11:0f:24:cb:1f:e9:9a:2c: 40:75:87:ed:b0:b0:56:5b:13:35:38:80:13:e0:a0:e0:6f:ab: 7a:23:a7:cd:41:53:90:e1:27:47:24:c9:8a:3a:56:8a:7d:9b: c5:20:d7:e2:88:aa:e8:a1:bc:cf:f5:af:9e:e4:fc:08:e5:19: 31:54:9f:b4:c5:8e:a2:99:b3:19:e1:03:44:bf:ef:47:c1:be: ec:c8:df:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjQwNTAzMDYxNDQyWhcNMjQwNTEwMDYxNDQyWjAYMRYwFAYD VQQDEw02NjM0ODBkMi0yM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvrOTtjLVmQgnIAgxV3D9lKi/dAhuzVlzZEp9znNPrcEAOAipmahrdNZZTlD LNKdq57odB9F2COb06a1x9MF4lQmrmQMEb53wJq1cYtBS3XkZhCXC3q11jCkxsnS D07goMD8+qY53aVrBnIUQiBrB77sZJdz//g7T7ZoP29jhcOMi7XV5PgU9K8xzNvm s2wrMTWmT6WVXTdVce4Mmr1oZ+bW7qepaNReJsZIWpp+hJNP4K+/d4cdioQxptav xfIemc6k2Htr0gM0j2L78oQWrgCyyOQx/QTQIngR3scgP8FiOiWFELNV99cH8+ED FhdIYvyylo44TYrYq0NVSw/uJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMur6RwO 2MZJOS1NuZaTSL1gPOE7MB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArfFPjuxit1ZHCQLpFEcbX2UQf4hrcEorlr8aNI6iCmsFJr3QK1k9p VGG8xCcSyM2X7IAKgELSOOL9JpvYHh5sabQ54W8X86P8xJjNqYL/5JiVY/t2fX9m jRqs3dsDKk9TiUkOjPz2h2Q4/l0eUwo1Z35aoxNRQPfjsAgFtifypHHMQ3ayUr+p pm5751BLUSch46RknqdYpFMm10qk1HIhWbTmRBsr4tLem9b8EQ8kyx/pmixAdYft sLBWWxM1OIAT4KDgb6t6I6fNQVOQ4SdHJMmKOlaKfZvFINfiiKroobzP9a+e5PwI 5RkxVJ+0xY6imbMZ4QNEv+9Hwb7syN86 -----END CERTIFICATE-----Generated at Fri May 3 08:21:08 2024 by rpki-client on console-ams.rpki-client.org