$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json) Hash identifier: yk05Elp+D1p8Gdif4n8IA9egvdQZZnodJA8gGFI+r4k= Subject key identifier: B8:A6:19:5C:C8:21:8F:F2:01:FE:16:7D:95:7C:B2:68:71:8C:2E:69 Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Certificate serial: 0F51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft Manifest number: 0F47 Signing time: Mon 06 May 2024 18:15:43 +0000 Manifest this update: Mon 06 May 2024 18:15:43 +0000 Manifest next update: Mon 13 May 2024 18:15:43 +0000 Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: sOi3L/CyRhuDssZNc7Vt6UMr7Vy6s4IvwR7gdgtLm7M=) 2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: Mc3Q9wmukgUIJT3q9J5EygK6/IHcoyR/RZQ0Eut8nLU=) 3: 608836D046B111E98B793856C4F9AE02.roa (hash: rltN2xhTkn/8LBf4ssPkcwToahSO3m8NAPpsxdmLbos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3921 (0xf51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Validity Not Before: May 6 18:15:43 2024 GMT Not After : May 13 18:15:43 2024 GMT Subject: CN=66391e4f-2e81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ad:c2:52:f7:5b:64:d0:49:47:cb:2a:32:87: 59:41:c4:69:49:15:44:5b:e2:71:50:61:6a:e1:0f: 5b:4b:b4:b3:73:86:6e:d9:17:70:c5:ee:b4:8d:21: d4:e2:08:93:23:21:68:75:62:06:ec:0d:fb:df:63: 07:34:47:4a:22:78:1c:1a:c6:1c:26:1e:dd:77:52: 29:9b:f7:36:55:b8:51:10:69:ea:38:29:7b:96:58: fe:5c:f6:7b:ed:a7:f4:a1:1a:1c:6d:00:db:01:48: 31:5f:07:da:62:d3:46:19:9a:b3:1d:16:7b:2c:dc: 7e:e6:9e:08:a3:f7:cb:69:30:e1:fe:c0:d6:74:08: a4:68:63:21:8e:1e:94:0e:f0:9e:e8:3c:9b:f8:4f: bd:20:b2:40:7e:22:f3:47:06:6c:d9:56:fc:f0:7e: 8b:10:2e:06:0c:ec:7e:d9:d6:4e:e4:19:a0:ce:94: 12:ba:9d:41:58:45:6a:28:84:74:0f:bb:87:11:bf: 96:22:90:5f:38:1f:da:e2:91:2e:5a:d0:46:3e:79: 15:ae:4d:34:b8:d6:3d:51:72:7a:17:bc:c3:62:d9: 6a:2b:f0:a5:13:88:d1:86:c7:e3:94:36:04:3e:1f: 96:2c:65:2a:dc:69:24:08:d9:15:21:be:dc:e0:25: ff:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A6:19:5C:C8:21:8F:F2:01:FE:16:7D:95:7C:B2:68:71:8C:2E:69 X509v3 Authority Key Identifier: keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:1f:55:c8:bd:52:bc:81:e7:1f:17:28:20:f7:ad:3a:c4:1b: 03:6e:bc:a3:0a:6f:97:75:b3:05:14:78:e3:b6:2c:41:bf:8e: ad:bd:f6:84:ab:41:30:a8:d8:2b:9e:e5:67:34:38:59:5d:01: 66:28:0a:d3:0c:6c:21:d5:57:79:79:79:b9:f2:bb:b6:55:dd: 18:aa:79:60:79:65:e2:4a:bf:95:70:63:d2:a5:bd:ef:f2:25: 71:9b:24:87:6f:78:28:3f:04:c3:62:81:4a:4a:16:80:ce:39: 55:23:e8:56:c2:ce:e0:8d:fa:1d:7c:ba:f6:ab:b3:d6:1d:5f: 7c:c0:ef:52:c0:72:c8:db:38:d1:71:8a:db:b1:6a:64:4e:8f: d4:9a:56:5f:fb:3b:ed:84:80:88:1b:dc:b0:6a:72:d2:8a:54: de:5d:72:43:9f:ff:61:e0:5e:c3:cb:79:7e:a3:93:c8:ef:35: f0:68:7f:63:fa:bb:a6:9d:7f:f4:7a:b9:3a:26:d0:ba:5c:58: b4:7e:f7:e2:d7:d5:5f:97:17:3d:a3:a9:c4:fd:34:0e:94:9f: 2f:76:57:46:b3:aa:72:c3:e8:56:16:c4:a2:fd:c7:59:7c:d4: 52:ff:a9:83:52:38:16:ab:db:f8:40:4a:da:58:62:65:09:f4: de:54:35:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKDIyM0JFMTk4OTJFNkU2Q0I0MDZFNUZBOTk1NkREQkNF QTk1Q0JCNDYwHhcNMjQwNTA2MTgxNTQzWhcNMjQwNTEzMTgxNTQzWjAYMRYwFAYD VQQDEw02NjM5MWU0Zi0yZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva3CUvdbZNBJR8sqModZQcRpSRVEW+JxUGFq4Q9bS7Szc4Zu2Rdwxe60jSHU 4giTIyFodWIG7A3732MHNEdKIngcGsYcJh7dd1Ipm/c2VbhREGnqOCl7llj+XPZ7 7af0oRocbQDbAUgxXwfaYtNGGZqzHRZ7LNx+5p4Io/fLaTDh/sDWdAikaGMhjh6U DvCe6Dyb+E+9ILJAfiLzRwZs2Vb88H6LEC4GDOx+2dZO5BmgzpQSup1BWEVqKIR0 D7uHEb+WIpBfOB/a4pEuWtBGPnkVrk00uNY9UXJ6F7zDYtlqK/ClE4jRhsfjlDYE Ph+WLGUq3GkkCNkVIb7c4CX/1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLimGVzI IY/yAf4WfZV8smhxjC5pMB8GA1UdIwQYMBaAFCI74ZiS5ubLQG5fqZVt286pXLtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9CNkE5RjI2MDQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVzdEFibC1wbFczYnpxbGN1 MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lqdmhtSkxtNXN0QWJsLXBsVzNienFsY3UwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTZCNy9CNkE5RjI2MDQ2QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVz dEFibC1wbFczYnpxbGN1MFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHH1XIvVK8gecfFygg9606xBsDbryjCm+XdbMFFHjjtixBv46tvfaE q0EwqNgrnuVnNDhZXQFmKArTDGwh1Vd5eXm58ru2Vd0YqnlgeWXiSr+VcGPSpb3v 8iVxmySHb3goPwTDYoFKShaAzjlVI+hWws7gjfodfLr2q7PWHV98wO9SwHLI2zjR cYrbsWpkTo/UmlZf+zvthICIG9ywanLSilTeXXJDn/9h4F7Dy3l+o5PI7zXwaH9j +rumnX/0erk6JtC6XFi0fvfi19Vflxc9o6nE/TQOlJ8vdldGs6pyw+hWFsSi/cdZ fNRS/6mDUjgWq9v4QEraWGJlCfTeVDUu -----END CERTIFICATE-----Generated at Mon May 6 20:19:15 2024 by rpki-client on console-fra.rpki-client.org