$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft File: 526yVsD8sH4pB5eDQ-mtndIf4gY.mft (raw, json) Hash identifier: qQYN7aOWtCLdeFAdNTsgqJt1EONLaUPb5kU0NylKmjw= Subject key identifier: 71:40:BE:20:C6:47:02:54:9C:12:0B:C9:9E:7A:E2:17:29:8F:47:F2 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 363D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft Manifest number: 34F9 Signing time: Thu 06 Jun 2024 14:34:45 +0000 Manifest this update: Thu 06 Jun 2024 14:34:44 +0000 Manifest next update: Thu 13 Jun 2024 14:34:44 +0000 Files and hashes: 1: 526yVsD8sH4pB5eDQ-mtndIf4gY.crl (hash: WZYHRClba4STdEglEAH5ro4bFAVQGr+kmJIvYwQJ3hk=) 2: 2C1ADE1A35C811EEB06D6E4FC4F9AE02.roa (hash: 8MCpRJoVltVeERBQ0ugdqfN0oewrw0+O6EZ3go6tPiI=) 3: 07589CCAC7E911EAB8670A2EC4F9AE02.roa (hash: CsyiwNQnybdoYElC2ssVXTuKar+TIRapRy4w8ZS/j1k=) 4: 6340E1B8FC0C11EEB75C6D54C4F9AE02.roa (hash: dj6+A46m2flcL6Gylu4PVkjY6OLiJ9WmcuQgsovd/Z4=) 5: 27FA0AE0513511ED9255DB7CC4F9AE02.roa (hash: 6gCrOfQFRqacO3Rcz4O2ln2/HeT9pzLoQ7Sfm+FPxS0=) 6: F6296404F82F11EEA21E8113C4F9AE02.roa (hash: LKk33foK1PLF6uXKEZvWKHJyd4ir8S/AwT6llFbdDOU=) 7: 2C21DAECFBFE11EEAB5B287BC4F9AE02.roa (hash: GHA0hxX3L+HKFJgRF1hNsE8VZizVreTbn5y/sQWalxQ=) 8: 6B9538F223DD11EF81EBB933C4F9AE02.roa (hash: FFMixOt8zSya0QiYDD4ISSfr+6GdtUIShA483xXfbt8=) 9: 9EA1CDAAFBF611EEAEFDCB0CC4F9AE02.roa (hash: WbjpGsgTud6h7iZInFe6b7Lmc5DkYF0gWbEHJ1y5tyo=) 10: 41C9B272FC0B11EEBC66DB51C4F9AE02.roa (hash: TDccGlL5NjDsE9PvsIo+l1KiA2xuZa6+rFNXm69NsLQ=) 11: 7B1D2FECE13311EE88056B5DC4F9AE02.roa (hash: c/0Yb8t5FsVqVAQ1yro3g7jy6b1TJzY35JO0x9DgC24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13885 (0x363d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Jun 6 14:34:44 2024 GMT Not After : Jun 13 14:34:44 2024 GMT Subject: CN=6661c905-66cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:89:d6:f5:ba:96:d6:9f:f6:3a:39:40:ce: 02:fa:31:90:11:10:6d:94:ca:20:aa:0d:6c:dd:94: c5:cb:54:c8:2f:98:f8:48:55:22:6e:6d:77:67:18: dd:31:65:db:90:99:8f:5a:ff:74:62:7a:c5:07:f7: 31:ac:32:40:0e:f1:14:a6:e6:ad:52:c5:c8:70:dd: 13:2e:10:ce:8f:41:1c:f3:6c:04:75:a0:ed:e6:17: 14:c1:dc:36:47:85:6a:aa:8e:d9:bb:fd:c0:17:ef: 0e:4a:94:c5:16:33:ba:0b:ef:ed:97:a4:82:90:51: bc:33:c4:32:6c:31:93:a4:b6:70:46:47:d1:42:b6: ff:c0:02:34:bb:b4:f1:bc:8e:c9:a7:9a:fb:10:fe: a2:61:60:2b:41:62:2a:0a:a5:00:ce:68:2f:c3:d5: 62:44:3a:a7:d9:9d:38:7a:b2:c6:22:af:d9:bb:69: f3:26:fc:02:f9:bd:cd:a4:f3:9d:fe:2c:92:1e:9d: 83:f5:40:23:2d:cd:b7:ac:9d:ba:b4:11:6b:72:31: e3:83:40:a4:a6:7f:ab:09:a7:6f:3c:c8:a0:aa:8a: 5d:4a:c4:d9:93:f3:5e:ac:eb:39:08:f1:af:c8:43: 46:f9:3c:3b:d8:b7:96:db:be:9c:43:33:c2:4f:5c: 1a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:40:BE:20:C6:47:02:54:9C:12:0B:C9:9E:7A:E2:17:29:8F:47:F2 X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c3:d2:04:6d:ba:9a:c7:0c:bd:77:3b:0c:4e:84:a3:8e:88: 0f:53:50:bf:e5:57:0d:f0:81:64:26:ac:6b:79:41:36:66:a0: 01:92:2d:62:6e:b3:fd:2f:87:ac:e4:35:e5:3f:c5:1b:6f:4c: 87:06:97:40:85:8c:a6:8a:4d:af:25:7a:af:97:41:8d:8c:9c: 52:f2:0f:21:33:b1:7d:cf:d5:5b:1f:db:83:e2:cc:c6:85:0e: 42:49:8d:52:79:74:84:e1:ff:ad:38:bb:76:bc:95:34:7c:90: d7:c2:76:68:f8:f8:7e:50:10:cc:8c:2c:63:17:f4:b2:3c:e0: 35:f7:19:6b:31:f2:36:b0:65:3c:6c:9e:53:83:ee:cf:c4:75: c8:08:72:09:aa:e0:30:ec:72:91:71:b7:de:d8:b1:df:94:94: ca:62:9f:e1:04:39:8c:05:59:7e:ea:6f:2c:b0:32:09:10:a5: c4:c5:04:0f:f1:0c:8e:05:bb:82:9b:ee:db:25:cf:67:0a:5e: 9c:7e:7d:ef:b3:27:d1:09:ab:fe:d9:1e:66:f0:83:da:e0:22: 25:fe:ca:ac:6d:02:be:8c:a8:bb:1b:52:5e:6d:c9:86:15:3a: c8:cf:15:10:a7:dd:57:4d:19:ff:a4:29:1c:1f:23:09:c7:8d: c7:1e:6d:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjQwNjA2MTQzNDQ0WhcNMjQwNjEzMTQzNDQ0WjAYMRYwFAYD VQQDEw02NjYxYzkwNS02NmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiyJ1vW6ltaf9jo5QM4C+jGQERBtlMogqg1s3ZTFy1TIL5j4SFUibm13Zxjd MWXbkJmPWv90YnrFB/cxrDJADvEUpuatUsXIcN0TLhDOj0Ec82wEdaDt5hcUwdw2 R4Vqqo7Zu/3AF+8OSpTFFjO6C+/tl6SCkFG8M8QybDGTpLZwRkfRQrb/wAI0u7Tx vI7Jp5r7EP6iYWArQWIqCqUAzmgvw9ViRDqn2Z04erLGIq/Zu2nzJvwC+b3NpPOd /iySHp2D9UAjLc23rJ26tBFrcjHjg0Ckpn+rCadvPMigqopdSsTZk/NerOs5CPGv yENG+Tw72LeW276cQzPCT1wahQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFAviDG RwJUnBILyZ564hcpj0fyMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzgzQi9FNEUxMEI0QTFEODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNI NHBCNWVEUS1tdG5kSWY0Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7w9IEbbqaxwy9dzsMToSjjogPU1C/5VcN8IFkJqxreUE2ZqABki1i brP9L4es5DXlP8Ubb0yHBpdAhYymik2vJXqvl0GNjJxS8g8hM7F9z9VbH9uD4szG hQ5CSY1SeXSE4f+tOLt2vJU0fJDXwnZo+Ph+UBDMjCxjF/SyPOA19xlrMfI2sGU8 bJ5Tg+7PxHXICHIJquAw7HKRcbfe2LHflJTKYp/hBDmMBVl+6m8ssDIJEKXExQQP 8QyOBbuCm+7bJc9nCl6cfn3vsyfRCav+2R5m8IPa4CIl/sqsbQK+jKi7G1JebcmG FTrIzxUQp91XTRn/pCkcHyMJx43HHm24 -----END CERTIFICATE-----Generated at Thu Jun 6 21:10:44 2024 by rpki-client on console-ams.rpki-client.org