$ rpki-client -vvf rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft File: s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft (raw, json) Hash identifier: nk5PdwXTMA+lHhokDDrXUh9BpNkX/wQ9IoW82ZKXOzc= Subject key identifier: 3E:9C:56:92:68:68:22:48:FF:59:87:4E:17:3D:FA:87:92:FF:82:C8 Authority key identifier: B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 Certificate issuer: /CN=A917530D/serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft Manifest number: 42 Signing time: Fri 17 May 2024 08:17:21 +0000 Manifest this update: Fri 17 May 2024 08:17:21 +0000 Manifest next update: Fri 24 May 2024 08:17:21 +0000 Files and hashes: 1: s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl (hash: nZekJhCB5LL7omM8BIdfbsn0hgLWCETx9mVqjVZdI9s=) 2: DA42C906BC2A11EEB6CFC42EC4F9AE02.roa (hash: xowL51lDOOq5Kq1w+FCgVhKjCp8KQWXaZrEsKptgTj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917530D/serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Validity Not Before: May 17 08:17:21 2024 GMT Not After : May 24 08:17:21 2024 GMT Subject: CN=66471291-99bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:29:90:b4:be:af:98:c9:ad:51:0a:18:78:b3: d7:39:0c:d8:70:2b:fc:5b:12:a6:8e:9b:10:a4:20: 3a:ab:c8:37:b9:84:1f:5f:0e:28:2b:2d:ce:f5:47: 6f:b8:90:16:17:60:2b:fd:5b:4a:81:07:7f:f9:2e: fd:5b:b2:61:4c:4a:15:43:01:de:a4:77:11:3f:c2: e3:6c:97:93:fa:c5:9e:99:9b:b3:db:ba:1f:7e:f0: 50:0a:90:e6:a1:2d:6b:e7:24:83:10:1f:23:68:69: 6c:34:4b:b6:e7:5e:6a:7c:91:86:1d:60:f2:60:a7: e7:cf:ca:f2:15:12:99:f6:c8:51:82:75:54:90:41: d9:48:82:c2:53:49:85:85:cd:1d:4f:95:13:c0:6e: ba:0c:81:7b:9f:49:c8:87:26:80:27:da:2a:93:47: 35:f4:91:5b:2f:16:d5:9d:4e:31:7d:9b:5d:07:cb: 5a:df:7c:1f:df:5d:d7:02:04:ce:a1:2f:f5:9c:b1: be:eb:72:d7:44:ca:09:e0:ea:2b:e6:1d:77:23:80: d8:02:cd:79:07:b8:2e:04:a1:b8:96:04:69:ff:78: 71:4e:91:27:e1:d2:7f:97:da:33:b6:c0:4c:e0:4e: 81:28:1f:ab:a7:ae:b5:3d:6b:9c:ce:71:9d:5a:a4: cb:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9C:56:92:68:68:22:48:FF:59:87:4E:17:3D:FA:87:92:FF:82:C8 X509v3 Authority Key Identifier: keyid:B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:5f:df:c4:ea:5a:c5:13:1b:3e:f7:bb:04:4f:9c:2c:56:38: e4:06:0b:10:b9:e4:54:12:d8:21:4d:4a:f2:f2:70:85:48:d4: ce:0b:9b:44:2f:71:b1:e2:ec:9a:de:81:67:ab:91:9b:55:94: ff:2e:15:40:39:bc:7b:69:a1:74:44:42:81:20:97:dc:25:03: e4:13:a9:dc:d7:4b:b3:41:03:44:73:dc:f5:68:01:ee:81:b7: 70:e3:ad:98:25:5c:b1:d7:bb:77:e8:92:9e:d0:e3:e8:9f:ae: 6c:7c:f5:83:da:7e:64:fa:b8:cd:6d:f9:71:fa:79:fd:89:86: 0d:2c:a1:c4:f5:fc:c9:e3:84:8c:66:1e:8a:f8:6c:66:98:55: 3b:5a:83:c1:7e:75:3a:c0:49:28:8f:46:13:7d:19:fc:76:43: 5e:95:e9:00:13:22:eb:d3:17:bd:50:a5:28:da:92:aa:19:dc: 02:1f:a8:04:a0:91:7a:92:ad:b9:39:54:bf:62:b2:5e:00:37: 2a:df:3f:1f:e0:1c:94:b9:dd:54:56:2e:9d:19:db:5c:6c:27: 70:a7:9a:ef:94:47:25:1d:b9:c7:87:b3:76:2f:db:9d:73:b7: f7:6c:a8:a4:2b:84:4a:11:2d:56:8f:4e:05:94:65:19:0a:df: 64:d2:56:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTMwRDExMC8GA1UEBRMoQjM5OTJGMEQ0OUJBRjZBMzZGREE2NThFNUI0NTk0Njk1 MjFFNUI0NDAeFw0yNDA1MTcwODE3MjFaFw0yNDA1MjQwODE3MjFaMBgxFjAUBgNV BAMTDTY2NDcxMjkxLTk5YmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3KZC0vq+Yya1RChh4s9c5DNhwK/xbEqaOmxCkIDqryDe5hB9fDigrLc71R2+4 kBYXYCv9W0qBB3/5Lv1bsmFMShVDAd6kdxE/wuNsl5P6xZ6Zm7Pbuh9+8FAKkOah LWvnJIMQHyNoaWw0S7bnXmp8kYYdYPJgp+fPyvIVEpn2yFGCdVSQQdlIgsJTSYWF zR1PlRPAbroMgXufSciHJoAn2iqTRzX0kVsvFtWdTjF9m10Hy1rffB/fXdcCBM6h L/Wcsb7rctdEygng6ivmHXcjgNgCzXkHuC4EobiWBGn/eHFOkSfh0n+X2jO2wEzg ToEoH6unrrU9a5zOcZ1apMsDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPpxWkmho Ikj/WYdOFz36h5L/gsgwHwYDVR0jBBgwFoAUs5kvDUm69qNv2mWOW0WUaVIeW0Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1MzBEL0REN0UwOTFDQjY0 QjExRUU5MTQ2Mzc2MEM0RjlBRTAyL3M1a3ZEVW02OXFOdjJtV09XMFdVYVZJZVcw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvczVrdkRVbTY5cU52Mm1XT1cwV1VhVkllVzBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 MzBEL0REN0UwOTFDQjY0QjExRUU5MTQ2Mzc2MEM0RjlBRTAyL3M1a3ZEVW02OXFO djJtV09XMFdVYVZJZVcwUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALdf38TqWsUTGz73uwRPnCxWOOQGCxC55FQS2CFNSvLycIVI1M4Lm0Qv cbHi7JregWerkZtVlP8uFUA5vHtpoXREQoEgl9wlA+QTqdzXS7NBA0Rz3PVoAe6B t3DjrZglXLHXu3fokp7Q4+ifrmx89YPafmT6uM1t+XH6ef2Jhg0socT1/MnjhIxm Hor4bGaYVTtag8F+dTrASSiPRhN9Gfx2Q16V6QATIuvTF71QpSjakqoZ3AIfqASg kXqSrbk5VL9isl4ANyrfPx/gHJS53VRWLp0Z21xsJ3Cnmu+URyUduceHs3Yv251z t/dsqKQrhEoRLVaPTgWUZRkK32TSVnw= -----END CERTIFICATE-----Generated at Fri May 17 08:52:49 2024 by rpki-client on console-ams.rpki-client.org