$ rpki-client -vvf rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft File: aMW6vfwSOWbQX4DD-kI3lELEIgw.mft (raw, json) Hash identifier: WcuMb1gpJgxp2TbndJcVUlxV8oXfMFQPtnvFdrvS1iw= Subject key identifier: 01:39:6C:12:14:8E:1B:43:DE:79:4F:8E:88:A2:1A:84:E0:6B:3C:7C Authority key identifier: 68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C Certificate issuer: /CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Certificate serial: 33E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft Manifest number: 33CC Signing time: Tue 30 Apr 2024 14:51:17 +0000 Manifest this update: Tue 30 Apr 2024 14:51:17 +0000 Manifest next update: Tue 07 May 2024 14:51:17 +0000 Files and hashes: 1: aMW6vfwSOWbQX4DD-kI3lELEIgw.crl (hash: 2bAv0thm2x316/UH6bhgqfTmT4MUMASHRD2grWipuhU=) 2: E05FE99AB0D511E5B4F68B09C4F9AE02.roa (hash: r/uWPxWKwu+kO1HevrlCc4sI8N+zLGmuIoKjh8em6gs=) 3: 73438FF06DED11E9A21D1341C4F9AE02.roa (hash: ezI8TwMx43cHowiyWTqvZ83VJ4vIz73nr929q1FGN6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 14:51:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13286 (0x33e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Validity Not Before: Apr 30 14:51:17 2024 GMT Not After : May 7 14:51:17 2024 GMT Subject: CN=66310565-6b20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:29:5e:97:13:cf:25:81:ed:3f:d6:38:01:8d: 7e:fc:27:a9:76:ae:12:e0:0d:d9:4b:50:5d:31:54: e1:27:bf:04:84:4c:81:03:61:a3:e3:85:81:2c:5d: c2:06:71:81:51:92:08:59:1f:91:05:45:cb:57:54: 86:dd:85:66:57:d2:02:d4:99:16:af:86:50:fb:b0: 16:fc:89:ef:90:fe:cc:cb:39:d1:f2:96:52:e3:d9: f4:07:fb:4e:f3:96:fb:79:2a:74:7a:f9:41:fb:f4: b5:64:cd:95:de:34:87:22:b5:1d:00:74:75:2f:7a: 00:80:62:2a:c8:1a:49:b2:ac:b0:81:40:61:3e:ad: a6:ac:68:d0:21:7a:68:68:69:38:3c:0d:0f:4a:7f: 42:c6:22:b2:ca:7b:6c:bf:2d:bb:0e:ca:83:01:d1: 50:bc:b7:a2:9b:4b:1a:4c:49:c4:48:ed:69:d5:07: df:2c:c2:04:1a:7a:d8:37:1d:95:37:76:ae:14:26: b9:fe:42:36:b8:fb:07:a5:37:7c:2c:a8:d1:c0:1e: 32:68:6b:28:41:7a:26:79:0f:ea:39:41:15:ac:a8: f6:47:0f:dd:3e:62:d2:fa:e3:45:58:1d:9e:7d:fc: 64:d6:c9:15:af:b6:56:05:be:4d:cf:fb:94:c7:ef: 13:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:39:6C:12:14:8E:1B:43:DE:79:4F:8E:88:A2:1A:84:E0:6B:3C:7C X509v3 Authority Key Identifier: keyid:68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:34:34:bd:9f:d9:59:03:ca:99:ff:5a:21:f6:74:84:dc:3f: f4:a2:e6:5c:b4:ed:8b:80:85:66:a7:6e:47:9a:e8:8f:11:de: 97:59:b8:ba:af:65:d9:03:d8:02:36:2a:53:18:dc:32:73:9e: 57:e6:5b:6c:df:d7:1f:2a:30:6a:f4:1b:f2:29:7e:8c:bf:29: e8:d7:8e:23:8e:bb:0e:4e:ab:75:ad:fd:53:fb:e4:ea:be:b2: 04:1c:fd:30:12:a6:73:51:00:63:9e:84:a8:a8:26:d9:94:a5: d0:d4:09:bb:3f:b3:ac:33:f4:23:76:6a:6d:37:38:e1:2c:9d: 1e:a8:5e:45:08:90:3b:d9:63:f1:e2:62:5d:ec:e3:da:fd:92: 7a:f6:40:2a:ab:b0:a6:f1:dd:6c:2c:bf:2a:6a:f4:8b:ae:9e: f2:28:a3:4a:d8:58:ff:1c:d0:55:a3:6c:6b:52:2b:41:ac:29: 36:43:ca:97:48:1a:0b:4c:30:2e:da:c7:f0:f6:33:82:40:bf: af:03:d1:25:26:47:66:41:a2:50:4f:85:b2:d9:4a:db:8e:40: 3c:be:2a:3b:64:16:33:27:35:33:2f:b6:71:ec:f9:b6:b2:5d: 16:f7:77:3c:0e:b2:5b:67:c4:02:17:df:b6:34:2c:42:7f:63: f7:1c:54:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIwMUQxMTAvBgNVBAUTKDY4QzVCQUJERkMxMjM5NjZEMDVGODBDM0ZBNDIzNzk0 NDJDNDIyMEMwHhcNMjQwNDMwMTQ1MTE3WhcNMjQwNTA3MTQ1MTE3WjAYMRYwFAYD VQQDEw02NjMxMDU2NS02YjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ClelxPPJYHtP9Y4AY1+/Cepdq4S4A3ZS1BdMVThJ78EhEyBA2Gj44WBLF3C BnGBUZIIWR+RBUXLV1SG3YVmV9IC1JkWr4ZQ+7AW/InvkP7MyznR8pZS49n0B/tO 85b7eSp0evlB+/S1ZM2V3jSHIrUdAHR1L3oAgGIqyBpJsqywgUBhPq2mrGjQIXpo aGk4PA0PSn9CxiKyyntsvy27DsqDAdFQvLeim0saTEnESO1p1QffLMIEGnrYNx2V N3auFCa5/kI2uPsHpTd8LKjRwB4yaGsoQXomeQ/qOUEVrKj2Rw/dPmLS+uNFWB2e ffxk1skVr7ZWBb5Nz/uUx+8TxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE5bBIU jhtD3nlPjoiiGoTgazx8MB8GA1UdIwQYMBaAFGjFur38Ejlm0F+Aw/pCN5RCxCIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjAxRC9DRDFFMjk0ODFE OTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09XYlFYNERELWtJM2xFTEVJ Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNVzZ2ZndTT1diUVg0REQta0kzbEVMRUlndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjAxRC9DRDFFMjk0ODFEOTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09X YlFYNERELWtJM2xFTEVJZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCENDS9n9lZA8qZ/1oh9nSE3D/0ouZctO2LgIVmp25HmuiPEd6XWbi6 r2XZA9gCNipTGNwyc55X5lts39cfKjBq9BvyKX6Mvyno144jjrsOTqt1rf1T++Tq vrIEHP0wEqZzUQBjnoSoqCbZlKXQ1Am7P7OsM/QjdmptNzjhLJ0eqF5FCJA72WPx 4mJd7OPa/ZJ69kAqq7Cm8d1sLL8qavSLrp7yKKNK2Fj/HNBVo2xrUitBrCk2Q8qX SBoLTDAu2sfw9jOCQL+vA9ElJkdmQaJQT4Wy2UrbjkA8vio7ZBYzJzUzL7Zx7Pm2 sl0W93c8DrJbZ8QCF9+2NCxCf2P3HFSR -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:27 2024 by rpki-client on console-ams.rpki-client.org