$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: QEYSa03f9yVjmER6K7w1G2oaXOhr+wNSXM+qbSqCiFM= Subject key identifier: EC:5E:DC:7D:4C:8E:E9:C6:CC:4A:F6:BC:39:46:0B:90:A6:CC:E6:86 Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0AF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0AF0 Signing time: Mon 06 May 2024 20:05:56 +0000 Manifest this update: Mon 06 May 2024 20:05:55 +0000 Manifest next update: Mon 13 May 2024 20:05:55 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: q7Im1Jt6Tl7sg/vd6wEVmO3ubXmXSRGcoRa++1N9IHU=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: 4sB4DOt4CW4eHB/ZFEI2UI4R45G3Zj008UjXQgkb7Gc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: May 6 20:05:55 2024 GMT Not After : May 13 20:05:55 2024 GMT Subject: CN=66393823-20e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:35:a2:bd:1c:a1:b3:38:a3:c6:de:13:93:f3: fa:68:3e:b1:00:72:e5:07:d0:96:d0:07:4f:47:58: 93:ef:c7:fb:ab:8a:2f:bf:f8:60:2c:f5:33:01:ed: 68:e9:da:96:7a:ef:ec:a5:ce:9d:4a:9d:66:d0:33: 04:60:20:bb:81:0f:7c:e2:ce:e9:1e:99:30:01:5e: cd:d0:52:8d:89:34:2f:e0:1f:ec:4d:ca:b6:00:f7: 4f:e2:ed:ad:f9:8e:6e:95:61:10:53:8f:3b:08:c2: 5e:76:d8:a3:9f:cc:b7:84:9e:f4:27:d5:2a:17:76: f5:98:a1:c5:0d:d6:68:77:7b:dc:c0:17:c9:14:8c: 91:c6:fd:ce:39:9d:cb:8e:ab:36:1c:3a:d6:86:9a: 88:92:7f:79:8f:16:19:80:a2:9b:14:2e:88:3a:b6: 21:85:a2:78:fe:d8:ea:65:0f:e4:43:fb:0a:7d:ff: c4:44:c8:d8:dd:fc:57:79:7b:00:a4:28:89:be:83: 8b:57:d6:d4:50:ca:22:46:64:a7:c6:bb:26:e4:e4: 19:2b:9d:e8:1b:06:71:61:2b:1d:88:5b:69:d9:e3: 69:ed:17:7e:bf:08:e3:2f:4a:3d:fc:7c:df:c8:a1: f1:37:f2:82:1b:90:d3:bb:92:49:31:fe:e3:3c:92: 4c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5E:DC:7D:4C:8E:E9:C6:CC:4A:F6:BC:39:46:0B:90:A6:CC:E6:86 X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:2c:71:2d:22:47:a8:b1:4a:61:be:5e:8c:c7:88:e7:e5:fb: bb:07:66:ff:d3:77:7c:03:19:3b:0d:fe:69:d3:6d:69:23:33: bc:be:db:b9:e3:6e:5f:0b:8f:88:29:e9:c5:49:bf:32:db:88: ff:25:18:c3:d6:ed:22:18:4d:62:f5:10:a1:4b:d2:02:9b:55: 0d:b7:a4:bf:a7:26:94:53:f7:05:e1:6b:ad:d2:01:c5:a8:a3: 8b:f2:bb:39:6e:fe:6d:70:10:47:2b:c7:cf:52:f1:7f:2f:f8: 2c:04:e0:2d:2c:c1:1d:1e:9d:cf:78:d3:39:57:30:01:24:a3: 81:44:11:81:6a:9d:6b:38:01:c9:48:74:d1:bb:d5:ca:f9:49: 09:87:94:c7:c0:b9:25:d9:f2:2b:8a:5f:11:61:66:3b:8a:55: e2:45:c0:d2:85:7c:31:b7:89:bd:74:20:c5:5e:f9:0a:8b:9d: 07:8e:81:bc:07:70:b9:12:1d:fb:8c:33:13:d5:32:e6:53:1e: ba:a7:17:5b:44:bd:9e:16:fb:40:4a:41:7b:44:e8:f0:61:68: b5:01:c2:37:16:a0:51:78:15:3c:b8:3b:a4:7d:c2:9c:d2:50: d5:df:2f:15:67:a1:07:c4:c4:3c:bb:1f:df:b2:e0:ab:40:41: 6c:74:24:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjQwNTA2MjAwNTU1WhcNMjQwNTEzMjAwNTU1WjAYMRYwFAYD VQQDEw02NjM5MzgyMy0yMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDWivRyhszijxt4Tk/P6aD6xAHLlB9CW0AdPR1iT78f7q4ovv/hgLPUzAe1o 6dqWeu/spc6dSp1m0DMEYCC7gQ984s7pHpkwAV7N0FKNiTQv4B/sTcq2APdP4u2t +Y5ulWEQU487CMJedtijn8y3hJ70J9UqF3b1mKHFDdZod3vcwBfJFIyRxv3OOZ3L jqs2HDrWhpqIkn95jxYZgKKbFC6IOrYhhaJ4/tjqZQ/kQ/sKff/ERMjY3fxXeXsA pCiJvoOLV9bUUMoiRmSnxrsm5OQZK53oGwZxYSsdiFtp2eNp7Rd+vwjjL0o9/Hzf yKHxN/KCG5DTu5JJMf7jPJJMKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxe3H1M junGzEr2vDlGC5CmzOaGMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMLHEtIkeosUphvl6Mx4jn5fu7B2b/03d8Axk7Df5p021pIzO8vtu5 425fC4+IKenFSb8y24j/JRjD1u0iGE1i9RChS9ICm1UNt6S/pyaUU/cF4Wut0gHF qKOL8rs5bv5tcBBHK8fPUvF/L/gsBOAtLMEdHp3PeNM5VzABJKOBRBGBap1rOAHJ SHTRu9XK+UkJh5THwLkl2fIril8RYWY7ilXiRcDShXwxt4m9dCDFXvkKi50HjoG8 B3C5Eh37jDMT1TLmUx66pxdbRL2eFvtASkF7ROjwYWi1AcI3FqBReBU8uDukfcKc 0lDV3y8VZ6EHxMQ8ux/fsuCrQEFsdCTK -----END CERTIFICATE-----Generated at Mon May 6 23:05:44 2024 by rpki-client on console-fra.rpki-client.org