$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft File: 5IPa-2wrg71IK24pCn5AU1W1Ltk.mft (raw, json) Hash identifier: c93W/GI7lPNOabU9LqHJj4PuEFuix9qVOBYyHr/oYeg= Subject key identifier: 10:83:63:69:F0:9E:00:E7:77:89:43:AF:F9:49:E6:A3:94:12:53:C5 Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 0F8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft Manifest number: 0F83 Signing time: Thu 02 May 2024 18:11:59 +0000 Manifest this update: Thu 02 May 2024 18:11:58 +0000 Manifest next update: Thu 09 May 2024 18:11:58 +0000 Files and hashes: 1: 5IPa-2wrg71IK24pCn5AU1W1Ltk.crl (hash: aV0rdQ0suGae8mBlw+YRYhlCFFUy6aIp+JA0U15uZuU=) 2: 99B6039C215311EA86E1E020C4F9AE02.roa (hash: TrlV1S4I3hnT/7E/zUX9+hgyEGZPX/j7UZtfJXvmmrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3981 (0xf8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: May 2 18:11:58 2024 GMT Not After : May 9 18:11:58 2024 GMT Subject: CN=6633d76f-e617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c4:a5:ed:35:2c:a5:2b:27:2e:cb:f4:59:20: 6b:1b:47:78:96:3d:ad:31:f9:9d:a6:33:22:42:ad: a4:b6:40:5d:7b:c3:f2:34:51:5d:fe:91:55:c9:2d: 6d:74:7e:c0:41:70:3d:e8:7d:7f:39:b2:61:54:15: 3d:02:f4:54:4e:d1:c5:ec:75:c3:42:99:ed:be:07: 25:6d:2f:4e:47:31:8f:38:a7:2e:0d:61:ac:50:5e: 05:4f:cf:68:8f:26:ca:17:06:67:b4:47:2d:fc:db: 99:5a:f6:6b:56:30:37:4c:94:b4:4e:77:e5:c2:00: 8d:9c:c5:fc:b7:d3:09:1e:e6:63:23:bb:a3:bc:0c: 70:65:f5:fb:cc:67:52:68:36:8e:c5:62:59:a7:b5: 89:c2:96:2e:79:ad:11:1f:a6:c2:2e:6d:ef:74:b3: 20:05:c8:40:f3:69:ff:9d:be:8d:5c:77:81:e2:43: 33:92:75:d4:d8:f7:42:e8:b2:3e:46:dd:d8:ce:bd: 25:94:cb:dd:e5:0f:c7:9a:b8:91:2a:f0:51:f1:38: 8f:5a:be:3f:bf:11:3b:8c:de:74:bc:38:2f:29:68: 33:12:a1:2a:9c:9b:bd:49:b5:00:29:64:17:37:02: 24:85:68:04:45:63:11:ef:58:e4:b5:4e:47:ca:38: c9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:83:63:69:F0:9E:00:E7:77:89:43:AF:F9:49:E6:A3:94:12:53:C5 X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:51:f1:2c:a6:e6:cd:f9:a2:d4:e7:64:4c:07:3a:ff:c6:28: 83:13:21:16:62:3a:8b:bc:b5:1b:eb:c7:cb:82:2d:1a:3f:1e: 3b:20:b0:52:32:da:4a:11:2f:8e:22:56:a4:b8:fb:b6:36:5d: 85:93:ce:cd:dd:8d:ae:44:86:9a:38:1a:1f:c6:78:02:02:1b: c0:3c:c8:82:44:b6:57:d3:a5:17:2f:d4:f4:98:63:ed:b0:bd: 30:d0:14:a7:95:d4:d2:02:46:3e:7b:c9:39:40:cb:a7:7a:be: 74:98:14:41:09:e8:77:b1:f3:58:2f:cc:26:48:d9:76:33:27: 1d:d3:78:1d:22:9f:b2:1a:76:86:30:80:ca:4e:db:52:1b:68: 1c:d4:49:36:3d:e6:e3:5e:91:86:f7:f4:c4:e9:56:45:1c:11: 14:4a:81:cc:df:9b:c0:99:19:09:09:4e:5e:64:e3:59:88:8b: 80:70:b8:2c:49:39:fb:22:1a:3f:c2:63:e5:c7:08:26:1d:66: 30:3d:d3:ad:87:8f:12:08:69:6d:9b:aa:ec:18:b4:0b:33:84: 1a:96:31:2f:26:fb:60:97:26:6c:89:83:fe:57:d0:37:55:c6: 13:3b:d8:92:a4:fc:3a:30:e4:f1:5f:5d:ff:c5:31:26:04:83: 24:d0:cb:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjQwNTAyMTgxMTU4WhcNMjQwNTA5MTgxMTU4WjAYMRYwFAYD VQQDEw02NjMzZDc2Zi1lNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MSl7TUspSsnLsv0WSBrG0d4lj2tMfmdpjMiQq2ktkBde8PyNFFd/pFVyS1t dH7AQXA96H1/ObJhVBU9AvRUTtHF7HXDQpntvgclbS9ORzGPOKcuDWGsUF4FT89o jybKFwZntEct/NuZWvZrVjA3TJS0TnflwgCNnMX8t9MJHuZjI7ujvAxwZfX7zGdS aDaOxWJZp7WJwpYuea0RH6bCLm3vdLMgBchA82n/nb6NXHeB4kMzknXU2PdC6LI+ Rt3Yzr0llMvd5Q/HmriRKvBR8TiPWr4/vxE7jN50vDgvKWgzEqEqnJu9SbUAKWQX NwIkhWgERWMR71jktU5HyjjJaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCDY2nw ngDnd4lDr/lJ5qOUElPFMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTM2Qi9GN0M4N0U4NDNBN0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3 MUlLMjRwQ241QVUxVzFMdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHUfEspubN+aLU52RMBzr/xiiDEyEWYjqLvLUb68fLgi0aPx47ILBS MtpKES+OIlakuPu2Nl2Fk87N3Y2uRIaaOBofxngCAhvAPMiCRLZX06UXL9T0mGPt sL0w0BSnldTSAkY+e8k5QMuner50mBRBCeh3sfNYL8wmSNl2Mycd03gdIp+yGnaG MIDKTttSG2gc1Ek2PebjXpGG9/TE6VZFHBEUSoHM35vAmRkJCU5eZONZiIuAcLgs STn7Iho/wmPlxwgmHWYwPdOth48SCGltm6rsGLQLM4QaljEvJvtglyZsiYP+V9A3 VcYTO9iSpPw6MOTxX13/xTEmBIMk0MtC -----END CERTIFICATE-----Generated at Thu May 2 20:04:41 2024 by rpki-client on console-ams.rpki-client.org