$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: kFusurZnF0BhQQ9N+uvAmmYpD8gdmanJFTSEaDmPGV4= Subject key identifier: ED:D9:E2:70:EF:C9:34:71:1F:15:30:F1:53:A4:23:E7:1D:A2:3E:30 Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0EF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0EEC Signing time: Wed 08 May 2024 18:21:46 +0000 Manifest this update: Wed 08 May 2024 18:21:46 +0000 Manifest next update: Wed 15 May 2024 18:21:46 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: fQBaGwFS8BzQAXeYyiDRvJfRnIPhIaT7LMB8xyFXFSA=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: wn3cySuLwXeKUJ473H4yvfiVQMWLgbgSubD4zK5xaVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3831 (0xef7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: May 8 18:21:46 2024 GMT Not After : May 15 18:21:46 2024 GMT Subject: CN=663bc2ba-a6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:be:a4:8b:a7:1e:be:77:35:ff:1a:36:2f:5d: 94:0b:48:33:7f:0c:eb:bf:86:ef:2c:80:d0:c5:e3: 53:ea:4a:13:04:dc:ed:00:fd:12:87:b1:e8:c6:c9: 8b:10:df:94:d3:0b:2c:7c:ef:2c:b2:6e:95:83:5e: c9:2e:8e:e0:da:8f:af:a9:8b:d8:9f:10:b1:46:f8: f9:22:26:73:a6:bd:a7:77:7e:82:3c:ca:df:f4:6a: 42:0b:3e:8e:26:14:15:68:13:b1:fa:9c:4f:bb:a0: 5a:14:32:d0:6a:ca:dd:98:de:2b:cf:5c:17:df:f7: 86:35:d5:d1:13:83:b0:5b:78:76:b8:f8:eb:0f:76: 6b:95:1a:6f:e6:1f:7b:07:5a:89:0e:46:80:6a:af: 99:cc:fb:c9:5c:76:55:bd:9d:98:7f:15:cb:88:d0: c7:b9:31:6a:0e:e5:cf:92:30:d5:26:d0:a2:f5:c5: ba:31:c0:c6:80:68:a1:97:de:99:b7:12:a1:b0:60: 42:82:3c:18:70:5c:55:d4:64:14:c3:6e:b4:a5:f4: cc:bd:23:6e:8d:5a:3f:93:1b:b3:df:c6:7d:69:05: 60:42:92:a0:1d:27:e1:a2:5b:fc:50:20:fd:42:d2: 08:17:0f:0c:b7:bb:1f:d2:e0:8e:4f:c8:ec:4d:9a: a7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:D9:E2:70:EF:C9:34:71:1F:15:30:F1:53:A4:23:E7:1D:A2:3E:30 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:a9:bc:56:f9:fd:08:53:a9:bc:07:89:0e:be:56:81:75:e0: 85:cd:e0:18:05:f6:4d:c3:b2:0e:31:88:ac:84:b9:f5:b6:e6: a2:9e:f4:e8:21:f6:5f:ff:de:56:19:c6:ff:68:9a:83:90:89: c5:a8:70:b1:6f:bb:b4:bb:a4:b7:a2:38:0a:c6:10:07:dc:0a: 29:ea:66:41:ea:5e:a6:9b:b0:5b:09:2d:86:d3:f9:b6:19:97: 98:51:91:20:5d:ed:b4:dd:a4:a5:e0:47:b6:c0:04:06:7d:21: fb:a0:53:8e:44:39:b6:de:00:ef:5e:d2:58:64:25:95:7c:47: e8:69:08:eb:b2:36:d5:69:f2:72:3c:41:3f:88:7f:4e:96:44: e8:f4:4d:6a:46:2b:06:f1:48:10:80:dc:fd:f1:59:de:92:5c: 23:55:e2:dc:5e:c1:82:a0:ac:18:5d:ab:26:77:54:77:ad:60: 7d:2f:b3:ee:d2:61:66:db:e2:52:48:07:28:33:b8:fe:23:16: 44:81:4a:8e:a3:1c:af:a6:c1:83:88:5b:fe:d8:8b:36:09:aa: db:95:be:43:88:53:b3:1f:9a:75:3b:8e:79:d7:73:3e:65:6f: 21:9f:5c:1d:3c:85:e0:ed:ec:52:78:13:b0:ee:27:20:43:65: cd:83:46:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjQwNTA4MTgyMTQ2WhcNMjQwNTE1MTgyMTQ2WjAYMRYwFAYD VQQDEw02NjNiYzJiYS1hNmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2b6ki6cevnc1/xo2L12UC0gzfwzrv4bvLIDQxeNT6koTBNztAP0Sh7HoxsmL EN+U0wssfO8ssm6Vg17JLo7g2o+vqYvYnxCxRvj5IiZzpr2nd36CPMrf9GpCCz6O JhQVaBOx+pxPu6BaFDLQasrdmN4rz1wX3/eGNdXRE4OwW3h2uPjrD3ZrlRpv5h97 B1qJDkaAaq+ZzPvJXHZVvZ2YfxXLiNDHuTFqDuXPkjDVJtCi9cW6McDGgGihl96Z txKhsGBCgjwYcFxV1GQUw260pfTMvSNujVo/kxuz38Z9aQVgQpKgHSfholv8UCD9 QtIIFw8Mt7sf0uCOT8jsTZqn5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3Z4nDv yTRxHxUw8VOkI+cdoj4wMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGqbxW+f0IU6m8B4kOvlaBdeCFzeAYBfZNw7IOMYishLn1tuainvTo IfZf/95WGcb/aJqDkInFqHCxb7u0u6S3ojgKxhAH3Aop6mZB6l6mm7BbCS2G0/m2 GZeYUZEgXe203aSl4Ee2wAQGfSH7oFOORDm23gDvXtJYZCWVfEfoaQjrsjbVafJy PEE/iH9OlkTo9E1qRisG8UgQgNz98VneklwjVeLcXsGCoKwYXasmd1R3rWB9L7Pu 0mFm2+JSSAcoM7j+IxZEgUqOoxyvpsGDiFv+2Is2Carblb5DiFOzH5p1O45513M+ ZW8hn1wdPIXg7exSeBOw7icgQ2XNg0YA -----END CERTIFICATE-----Generated at Wed May 8 20:35:51 2024 by rpki-client on console-ams.rpki-client.org