$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft File: SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json) Hash identifier: c2eLpyfjFPgMRg+VsZnx7Ek9bVVF8wFCWg6UoBhqpLI= Subject key identifier: 27:31:21:15:BE:D6:7C:33:31:02:A4:2B:8A:DD:B7:A6:A0:B2:79:CC Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0363 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft Manifest number: 02D5 Signing time: Sun 05 May 2024 04:10:25 +0000 Manifest this update: Sun 05 May 2024 04:10:24 +0000 Manifest next update: Sun 12 May 2024 04:10:24 +0000 Files and hashes: 1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: KYIS8/irTAqsAfJOQi2rZoZpyrbotMg4bzu+3ndEuZ0=) 2: 235C33AA841511EEB8881E26C4F9AE02.roa (hash: jmi1JZjzehR3yePlMUTZutphDwDUThMcgz51EkckL2c=) 3: 1C7F3C8A7EA711EE9C448073C4F9AE02.roa (hash: N6DJRcb0SjnSIyTeiruNRar8brYnzHfOY/5Qmm+3hno=) 4: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: sHaHg9/ZEy3FERUEfrG4jIGoDgh8jdysF5zBd2/CKb8=) 5: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: 4ers2wprTN+JJmazhN9QYuHdjF3IelqkxZc6uQfuvg4=) 6: 57009BC0E4FE11EE8B097A79C4F9AE02.roa (hash: OwETguEfEvG/dWuG5wsUlMAo/UY27Q8IMcr+unH4nas=) 7: 16BF6942E73D11EE8DEA7557C4F9AE02.roa (hash: mEden+ZL6AprpGBwQdsicZV5E+5pVyJeJDiZk89o9PY=) 8: 86EB79708F1011EE9F013A61C4F9AE02.roa (hash: PFvirkze092+A2fSWCZLyrdNbDRpoINf3y4pSF8csaI=) 9: D1BA7FEECA3B11EE8D7CEE5CC4F9AE02.roa (hash: aRgm5zgnsHFIXtP+yBcTahvHh5UAq+FydVbLV5yb3hc=) 10: F16906BE625611EEBA45F77CC4F9AE02.roa (hash: dgDZLoAzcazveqHHtAj6qR7dsw1O4iVW5y2mGZ2E860=) 11: B6E083D46E2F11EEB9C12A34C4F9AE02.roa (hash: jMpeqZzda4Tlk/0o2YLAEWGmXqhyM7sTgyqPU+OleOk=) 12: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: SoCQctOLjZY4cy0M3zbgvSzieCF+rw9JdVfCkJg1AcI=) 13: E011A1CE9F0911EE80908323C4F9AE02.roa (hash: 9VphZWM+pP4iVWC4TX37ejJaMHbcM4Ll0ZUv37yLJrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 867 (0x363) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: May 5 04:10:24 2024 GMT Not After : May 12 04:10:24 2024 GMT Subject: CN=663706b0-d09d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:19:b1:54:06:b2:80:04:88:7c:58:b5:70:f7: c6:f9:ce:e2:62:63:d8:38:f7:d6:3f:ed:0f:b9:39: 0f:e3:c2:4c:e5:8f:53:a9:20:22:9f:73:34:18:cd: c4:b3:76:c9:d7:91:ee:96:6e:e0:61:80:f8:6a:62: 4a:07:66:04:87:8c:f4:87:aa:f7:26:2c:47:a6:43: a9:01:c3:f7:44:10:32:f8:dc:e1:f9:fe:0b:85:5c: 63:d1:56:7e:88:b2:4b:fe:aa:f1:ac:30:53:fd:28: cd:ca:90:f2:a1:c6:53:72:fe:cd:39:78:96:d1:f0: 7f:23:ff:6c:86:26:a3:e9:03:8d:40:ac:25:16:86: f2:ed:05:54:34:4a:43:1d:9d:1f:cb:e8:67:f9:b8: ac:7b:83:e3:2b:4b:c4:0e:09:71:fe:8e:73:60:f2: 35:d5:be:51:bd:b9:4c:3d:f2:4c:18:c4:07:8b:db: 9b:fb:54:f7:de:c8:22:e0:ed:b7:45:9f:70:04:f4: 30:5e:3b:8f:83:c2:0f:64:22:cf:88:53:e9:b3:09: 72:e3:d6:f6:6e:7d:1a:b1:65:77:3f:b3:e4:06:0c: 59:cf:65:b7:19:63:48:73:7f:8f:bc:b7:2e:7d:56: 88:00:ac:e2:0f:56:07:2f:f9:92:2f:12:28:5b:d0: d3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:31:21:15:BE:D6:7C:33:31:02:A4:2B:8A:DD:B7:A6:A0:B2:79:CC X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:af:62:d3:88:5c:0c:c4:35:8d:c3:72:d2:97:fb:a2:ef:85: a0:f7:2e:92:e8:96:e3:e3:4d:bd:23:b3:aa:49:21:aa:fe:ad: e4:be:cc:c7:ac:52:98:27:40:bb:f4:6f:cf:04:35:3b:85:2b: 11:d8:ac:8f:73:c0:fe:e9:95:e6:16:6f:58:20:8b:9e:cf:ed: ba:73:5e:18:ff:dd:26:65:64:dc:8f:9c:c7:fb:17:27:3c:d0: f0:69:3f:2d:9c:a7:9c:d0:e9:73:f8:e4:91:05:52:83:f4:e3: 92:d4:29:2d:25:46:81:8f:69:b6:fb:27:b1:db:3a:68:7a:0c: e4:58:d5:a0:a6:96:8b:6b:4d:b9:c6:bd:fa:9a:36:11:40:ce: 45:4b:19:f4:92:4e:cc:54:c3:54:73:2d:b0:99:67:46:6d:9e: 82:4d:a8:0f:7f:e8:7b:52:41:5d:41:44:3d:fd:d2:3a:db:bf: 14:15:ac:63:30:8e:2c:2b:90:61:b0:19:79:65:9b:dc:45:76: f2:68:6e:3c:8c:e9:ab:7f:c1:37:d4:30:59:7c:72:4f:1c:76: fc:d1:73:29:d6:9c:7f:65:5f:a7:e5:d2:89:98:e5:72:46:42: 68:33:e9:cd:fb:0a:80:9e:b3:e4:fd:b1:d6:4f:07:68:5b:2d: 81:55:20:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjQwNTA1MDQxMDI0WhcNMjQwNTEyMDQxMDI0WjAYMRYwFAYD VQQDEw02NjM3MDZiMC1kMDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hmxVAaygASIfFi1cPfG+c7iYmPYOPfWP+0PuTkP48JM5Y9TqSAin3M0GM3E s3bJ15Hulm7gYYD4amJKB2YEh4z0h6r3JixHpkOpAcP3RBAy+Nzh+f4LhVxj0VZ+ iLJL/qrxrDBT/SjNypDyocZTcv7NOXiW0fB/I/9shiaj6QONQKwlFoby7QVUNEpD HZ0fy+hn+bise4PjK0vEDglx/o5zYPI11b5RvblMPfJMGMQHi9ub+1T33sgi4O23 RZ9wBPQwXjuPg8IPZCLPiFPpswly49b2bn0asWV3P7PkBgxZz2W3GWNIc3+PvLcu fVaIAKziD1YHL/mSLxIoW9DT8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcxIRW+ 1nwzMQKkK4rdt6agsnnMMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM3NS8zQUE1REVFMERENTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29t YXBHa0Jtd0c5TFR0bUVaSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0r2LTiFwMxDWNw3LSl/ui74Wg9y6S6Jbj4029I7OqSSGq/q3kvszH rFKYJ0C79G/PBDU7hSsR2KyPc8D+6ZXmFm9YIIuez+26c14Y/90mZWTcj5zH+xcn PNDwaT8tnKec0Olz+OSRBVKD9OOS1CktJUaBj2m2+yex2zpoegzkWNWgppaLa025 xr36mjYRQM5FSxn0kk7MVMNUcy2wmWdGbZ6CTagPf+h7UkFdQUQ9/dI6278UFaxj MI4sK5BhsBl5ZZvcRXbyaG48jOmrf8E31DBZfHJPHHb80XMp1px/ZV+n5dKJmOVy RkJoM+nN+wqAnrPk/bHWTwdoWy2BVSCB -----END CERTIFICATE-----Generated at Sun May 5 04:39:59 2024 by rpki-client on console-ams.rpki-client.org