$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: CKiAubArs5ouSmu+Cwb1c7FEhJHgna4fuMfbsYCBO+Q= Subject key identifier: 86:1B:9F:60:EC:A7:BC:34:6B:60:42:4D:61:5D:A8:4A:25:D8:02:6D Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0C24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0C1F Signing time: Sat 04 May 2024 19:09:16 +0000 Manifest this update: Sat 04 May 2024 19:09:15 +0000 Manifest next update: Sat 11 May 2024 19:09:15 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: q4EGvbUmnJ4/I+yDwqW6BUR0QXhe3qynJQ+a92ZbjjM=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: ZkUb8/k/pyJN1dk2SCWgY4ayBh/tGOA1WybYiVcrjIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3108 (0xc24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: May 4 19:09:15 2024 GMT Not After : May 11 19:09:15 2024 GMT Subject: CN=663687dc-9fb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5e:be:b0:fa:a6:d4:50:98:c2:d2:81:ec:3a: 16:75:46:cb:24:0e:69:d9:d7:1d:54:76:ca:4b:37: ee:2b:84:03:77:b7:2c:58:73:1c:1d:55:33:09:a3: 39:0a:20:c2:ea:4b:66:04:c6:59:e4:7e:84:98:02: e2:9a:b6:06:7a:1d:81:45:22:e0:99:64:63:82:02: 70:93:27:f6:ae:dc:ae:a5:89:65:ce:a7:f7:74:06: fa:39:3b:6f:35:73:4d:7c:73:95:37:cb:d6:13:b7: 5d:8d:88:4f:a2:2f:31:c3:4b:1f:9e:55:80:a9:76: 3d:37:b1:a4:96:5f:96:47:75:b2:f7:04:3e:b0:fa: 17:d3:8a:0b:03:23:fe:98:69:bd:79:d0:de:19:42: 80:af:46:ff:7b:53:81:51:85:f8:66:e5:f3:f8:34: 2c:31:0b:c0:e1:36:40:ed:5d:ac:38:8e:4b:6c:ca: 2e:6e:3f:5d:30:ad:cb:45:c1:14:e9:18:db:e6:ec: 7c:f1:06:26:72:33:1e:70:c8:1f:7e:a0:69:c3:a2: 3c:b8:20:82:45:81:e1:a0:8c:45:27:19:45:ac:4a: f5:51:c3:48:ff:96:39:13:6d:b3:88:0d:e9:c8:cb: e0:d1:31:2d:25:de:89:3c:81:c0:d1:3f:b6:bb:10: 4c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:1B:9F:60:EC:A7:BC:34:6B:60:42:4D:61:5D:A8:4A:25:D8:02:6D X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:93:43:77:99:0d:35:14:00:97:22:f0:6e:ff:f2:c4:60:d3: d3:39:f7:c7:ea:c3:98:f7:9e:e0:f2:c8:d5:df:37:09:9e:9d: 2a:3a:2c:e6:84:8c:45:b9:43:be:7e:cd:6b:0e:b1:9f:a4:76: 3d:6a:af:1d:13:01:10:bc:06:7c:9b:7e:80:98:f2:86:3a:55: 07:ac:c5:b3:94:d1:80:e3:58:29:ed:37:c6:b5:52:71:32:ac: e9:11:ef:3e:fc:41:79:8f:2e:29:ec:fd:19:43:67:57:04:77: ba:8d:17:7e:05:22:ee:69:d0:d0:0c:b6:46:1f:e8:65:b6:58: fb:50:4c:f7:82:e2:58:f0:8c:5c:88:70:21:da:e5:2d:8c:89: 1a:7c:7b:05:fe:4a:a8:bd:89:5d:5b:c1:6d:fb:49:33:52:75: 85:04:a2:f4:fa:09:c7:a1:72:36:a5:8f:22:9a:6d:e8:d1:15: 67:9b:f9:0a:f5:6f:00:47:d2:8d:60:31:86:a6:19:96:b7:d2: 3c:b2:80:8f:63:60:d1:fa:99:08:3e:bc:7b:11:db:26:d9:aa: a8:68:e8:13:2f:58:87:62:27:8d:66:d2:58:9f:10:e6:70:ae: b2:22:35:68:af:88:69:04:52:ab:bb:98:d9:c0:e0:5c:33:e6: a3:88:72:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjQwNTA0MTkwOTE1WhcNMjQwNTExMTkwOTE1WjAYMRYwFAYD VQQDEw02NjM2ODdkYy05ZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw16+sPqm1FCYwtKB7DoWdUbLJA5p2dcdVHbKSzfuK4QDd7csWHMcHVUzCaM5 CiDC6ktmBMZZ5H6EmALimrYGeh2BRSLgmWRjggJwkyf2rtyupYllzqf3dAb6OTtv NXNNfHOVN8vWE7ddjYhPoi8xw0sfnlWAqXY9N7Gkll+WR3Wy9wQ+sPoX04oLAyP+ mGm9edDeGUKAr0b/e1OBUYX4ZuXz+DQsMQvA4TZA7V2sOI5LbMoubj9dMK3LRcEU 6Rjb5ux88QYmcjMecMgffqBpw6I8uCCCRYHhoIxFJxlFrEr1UcNI/5Y5E22ziA3p yMvg0TEtJd6JPIHA0T+2uxBMfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYbn2Ds p7w0a2BCTWFdqEol2AJtMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBck0N3mQ01FACXIvBu//LEYNPTOffH6sOY957g8sjV3zcJnp0qOizm hIxFuUO+fs1rDrGfpHY9aq8dEwEQvAZ8m36AmPKGOlUHrMWzlNGA41gp7TfGtVJx MqzpEe8+/EF5jy4p7P0ZQ2dXBHe6jRd+BSLuadDQDLZGH+hltlj7UEz3guJY8Ixc iHAh2uUtjIkafHsF/kqovYldW8Ft+0kzUnWFBKL0+gnHoXI2pY8imm3o0RVnm/kK 9W8AR9KNYDGGphmWt9I8soCPY2DR+pkIPrx7Edsm2aqoaOgTL1iHYieNZtJYnxDm cK6yIjVor4hpBFKru5jZwOBcM+ajiHIa -----END CERTIFICATE-----Generated at Sat May 4 19:58:40 2024 by rpki-client on console-ams.rpki-client.org