$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: L5G8z/RZ+W66tgGIEWPF9F8OPTVoa1yLqnouxa6pj/g= Subject key identifier: 45:D5:64:61:85:40:09:F8:32:CC:B1:03:F7:04:0F:F8:D8:64:8D:09 Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 061F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 0618 Signing time: Fri 26 Apr 2024 23:46:00 +0000 Manifest this update: Fri 26 Apr 2024 23:45:59 +0000 Manifest next update: Fri 03 May 2024 23:45:59 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: zfec0ujoSfg8qFJD7SoSL5L3TXCiH2uoRwma1WH7KkM=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: umfOmYx1C1o3wC/2Ke3RN9zKbrXOV6GEbkjUeV3fdUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 23:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Apr 26 23:45:59 2024 GMT Not After : May 3 23:45:59 2024 GMT Subject: CN=662c3cb8-64f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fb:c6:9e:c0:96:80:af:e8:8f:5c:a8:7b:56: 2d:83:1f:91:77:a8:68:82:bb:b4:6c:c2:ff:cd:e3: f7:59:09:0f:00:d0:3c:df:1b:2b:41:78:33:04:e1: 79:a7:ab:0b:6e:e3:eb:9a:f2:9a:b0:29:2a:ba:df: 87:77:df:13:d9:52:d0:64:37:8b:f5:aa:f6:8f:ed: f1:d1:32:83:c6:5d:2c:c2:f5:9f:d0:27:35:f6:d5: 3f:68:d6:0e:d6:84:7a:4d:ff:33:f5:26:f5:d4:e1: 92:ed:43:1d:05:aa:bb:43:3c:c7:ef:6a:b2:ff:1d: 35:82:29:3d:19:69:0f:6d:96:f1:fc:02:c6:ea:a7: 99:f7:fd:36:fc:74:f4:ce:07:37:6f:77:89:99:25: 07:85:b5:9a:a2:e3:9e:d9:9d:99:25:56:12:fe:4e: 86:da:aa:98:3d:d3:26:e0:71:2e:60:bd:2b:5c:87: 74:ac:53:bf:59:7e:56:af:4d:61:2d:0b:c1:d2:81: 62:84:b9:5b:6c:f3:d3:b9:b5:7b:87:b8:8a:64:dc: 07:b0:a3:f2:19:11:57:b0:49:10:7b:b6:4a:4b:69: d3:01:cd:63:2d:66:7f:65:e7:f5:65:85:2f:dd:6b: 25:21:a3:91:7f:49:42:56:89:46:b3:23:6a:5c:f0: d0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D5:64:61:85:40:09:F8:32:CC:B1:03:F7:04:0F:F8:D8:64:8D:09 X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:4f:56:55:87:ec:77:d9:d4:51:64:f2:c8:40:82:54:9c:2f: 2d:67:01:84:3d:c7:bd:63:78:07:70:b3:b7:e0:1e:e0:af:b2: 68:83:db:22:57:0c:79:af:70:5a:3d:ba:f9:a1:e5:cd:a5:3b: df:f2:f8:bd:40:d4:c5:10:b6:25:e8:7b:88:45:19:20:aa:d5: e9:08:0d:85:a3:5d:09:ae:8e:ce:ee:eb:48:c4:f9:c7:fc:aa: 68:1d:d5:0c:94:8d:fd:39:ec:2e:b9:ff:03:8b:cb:ef:35:85: 8a:68:e9:d2:d0:21:e8:a1:ca:0a:cd:ae:1d:c5:cb:ad:ac:33: be:51:bf:c5:c2:5d:78:f8:f8:34:df:03:c1:a5:93:72:25:c5: ad:9f:b3:6e:64:32:ac:80:e5:46:52:f6:5e:a2:c1:04:40:ee: 07:11:2c:69:e0:5d:d1:cd:0e:3a:d0:20:6f:05:b0:2d:08:51: e2:f1:53:a1:23:f7:f3:14:c0:31:63:2b:2b:6b:37:64:d4:a7: 15:5a:6b:57:87:df:9b:ab:cc:b3:0a:39:cc:91:fd:c0:1e:fa: a2:21:95:5f:b6:fe:d4:e3:82:57:d3:eb:64:ea:64:5b:79:22: 86:7e:bc:44:fa:4e:b8:55:00:a7:4a:3c:2c:2a:fb:4e:3d:7f: ee:31:d3:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjQwNDI2MjM0NTU5WhcNMjQwNTAzMjM0NTU5WjAYMRYwFAYD VQQDEw02NjJjM2NiOC02NGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPvGnsCWgK/oj1yoe1Ytgx+Rd6hogru0bML/zeP3WQkPANA83xsrQXgzBOF5 p6sLbuPrmvKasCkqut+Hd98T2VLQZDeL9ar2j+3x0TKDxl0swvWf0Cc19tU/aNYO 1oR6Tf8z9Sb11OGS7UMdBaq7QzzH72qy/x01gik9GWkPbZbx/ALG6qeZ9/02/HT0 zgc3b3eJmSUHhbWaouOe2Z2ZJVYS/k6G2qqYPdMm4HEuYL0rXId0rFO/WX5Wr01h LQvB0oFihLlbbPPTubV7h7iKZNwHsKPyGRFXsEkQe7ZKS2nTAc1jLWZ/Zef1ZYUv 3WslIaORf0lCVolGsyNqXPDQEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXVZGGF QAn4MsyxA/cED/jYZI0JMB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAT1ZVh+x32dRRZPLIQIJUnC8tZwGEPce9Y3gHcLO34B7gr7Jog9si Vwx5r3BaPbr5oeXNpTvf8vi9QNTFELYl6HuIRRkgqtXpCA2Fo10Jro7O7utIxPnH /KpoHdUMlI39Oewuuf8Di8vvNYWKaOnS0CHoocoKza4dxcutrDO+Ub/Fwl14+Pg0 3wPBpZNyJcWtn7NuZDKsgOVGUvZeosEEQO4HESxp4F3RzQ460CBvBbAtCFHi8VOh I/fzFMAxYysrazdk1KcVWmtXh9+bq8yzCjnMkf3AHvqiIZVftv7U44JX0+tk6mRb eSKGfrxE+k64VQCnSjwsKvtOPX/uMdPv -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:15 2024 by rpki-client on console-ams.rpki-client.org