$ rpki-client -vvf rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft File: AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft (raw, json) Hash identifier: 6nswCZ+p7eijUESgpCcH3wlEM1H+wVJa5s71UcUCb5M= Subject key identifier: F6:C2:71:3F:5B:9F:D8:0E:EF:FE:6D:27:54:07:52:1D:4F:66:6B:F9 Authority key identifier: 02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 Certificate issuer: /CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft Manifest number: E5 Signing time: Sat 27 Apr 2024 05:45:36 +0000 Manifest this update: Sat 27 Apr 2024 05:45:35 +0000 Manifest next update: Sat 04 May 2024 05:45:35 +0000 Files and hashes: 1: AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl (hash: jOG3ygja5cQ+f2SUE3TuvCMkMCWsRz1frgLJ+7ynWg0=) 2: 12AE9E92AA9711EDAAEB8345C4F9AE02.roa (hash: Q8NJ1HkvlonTTd6dT/uijJxHGIltrUcP5WUwngsD98I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Validity Not Before: Apr 27 05:45:35 2024 GMT Not After : May 4 05:45:35 2024 GMT Subject: CN=662c90ff-4abb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:ce:01:1d:70:58:4c:6b:b0:49:03:4e:f1: 2e:4f:a1:ac:4c:9c:f3:b6:4b:e8:ed:29:68:9a:21: 55:3b:db:87:02:09:fd:7f:26:b0:25:74:09:a6:44: e1:85:b6:b4:ca:84:72:c6:bd:42:34:7f:0a:de:df: ab:54:46:10:67:83:87:25:af:6c:15:1d:dc:ae:af: 30:b9:7f:4f:1a:5d:d0:92:f7:f1:5c:a6:c1:24:4f: 6c:da:28:f4:87:41:03:09:e7:7f:41:0a:5b:cd:04: ef:49:ae:1e:7f:ae:4f:6a:b9:bc:43:c8:ab:b7:7c: b8:35:f6:a9:90:24:ba:1f:43:48:0d:e3:f9:c5:f1: 4a:82:36:6d:a0:01:4b:62:a6:f7:25:c0:ec:a4:80: d0:9f:33:b6:cf:9d:57:c7:47:7b:af:20:da:18:ca: a8:8b:12:cd:fc:32:b8:99:3b:68:7f:4f:3a:6d:4c: d1:17:b0:c2:e9:d3:94:d0:2c:02:d0:68:6a:06:8b: 92:d8:a1:68:7e:89:2d:f7:15:b9:4b:25:59:ec:af: 1d:da:c3:74:29:c7:b4:ce:17:98:e2:07:cf:b5:2f: 89:d5:ab:a3:be:c2:84:16:24:cb:a6:ff:8e:a4:e5: 46:07:d4:d2:c5:03:4a:3c:3b:f2:1f:aa:04:ab:c9: e7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C2:71:3F:5B:9F:D8:0E:EF:FE:6D:27:54:07:52:1D:4F:66:6B:F9 X509v3 Authority Key Identifier: keyid:02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a7:85:82:68:03:a4:db:3f:cd:5b:9b:ed:f3:07:36:4f:0b: cf:7f:3f:1f:ac:5a:f0:7e:45:72:70:5e:c9:88:c8:1a:ce:93: 63:1e:de:b5:89:a4:13:ac:f7:4a:92:6e:e6:1a:17:52:cd:ee: a0:c5:aa:17:9c:06:b8:ed:da:72:69:16:ff:fb:c5:d1:b3:06: 9b:cc:b3:78:83:ac:2f:9d:51:02:ae:7e:1d:aa:d0:eb:43:d3: 27:b0:25:07:3f:0a:f8:b3:01:5c:27:d5:b8:3d:27:b6:39:4d: 4f:66:65:e4:ed:10:b8:0b:f6:58:4e:94:cc:21:c6:55:ba:1e: 3b:d7:71:7d:f9:08:78:05:3c:ec:d9:1d:73:91:5b:7d:a6:5b: 7f:70:63:ae:d2:4a:c0:05:7a:23:bc:eb:41:91:98:6f:9b:08: 33:93:76:04:59:52:7c:f1:2c:7d:95:21:6e:c2:44:87:57:e3: 7c:7c:fc:e3:c7:6e:39:87:1c:70:2d:7b:83:72:4d:6e:d2:5a: ad:f6:4d:53:be:4e:99:04:4a:3f:90:83:ca:14:e4:f9:30:10: d3:8e:0c:9d:b2:91:c6:65:60:e0:89:d8:84:67:a3:87:77:9b: bf:36:b0:de:58:f4:bc:11:81:ae:55:7e:20:b7:17:6f:53:91: be:40:1c:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4OEExMTAvBgNVBAUTKDAyODExQzMxRDUwQzkxRkZGRDVFREE2OEI5RUY4MUMz RjlFOUZCMTIwHhcNMjQwNDI3MDU0NTM1WhcNMjQwNTA0MDU0NTM1WjAYMRYwFAYD VQQDEw02NjJjOTBmZi00YWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AjOAR1wWExrsEkDTvEuT6GsTJzztkvo7SlomiFVO9uHAgn9fyawJXQJpkTh hba0yoRyxr1CNH8K3t+rVEYQZ4OHJa9sFR3crq8wuX9PGl3QkvfxXKbBJE9s2ij0 h0EDCed/QQpbzQTvSa4ef65Parm8Q8irt3y4NfapkCS6H0NIDeP5xfFKgjZtoAFL Yqb3JcDspIDQnzO2z51Xx0d7ryDaGMqoixLN/DK4mTtof086bUzRF7DC6dOU0CwC 0GhqBouS2KFofokt9xW5SyVZ7K8d2sN0Kce0zheY4gfPtS+J1aujvsKEFiTLpv+O pOVGB9TSxQNKPDvyH6oEq8nnxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbCcT9b n9gO7/5tJ1QHUh1PZmv5MB8GA1UdIwQYMBaAFAKBHDHVDJH//V7aaLnvgcP56fsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4QS9DOTYzNTdDQUFB OTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtmXzlYdHBvdWUtQndfbnAt eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FvRWNNZFVNa2ZfOVh0cG91ZS1Cd19ucC14SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4QS9DOTYzNTdDQUFBOTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtm XzlYdHBvdWUtQndfbnAteEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAap4WCaAOk2z/NW5vt8wc2TwvPfz8frFrwfkVycF7JiMgazpNjHt61 iaQTrPdKkm7mGhdSze6gxaoXnAa47dpyaRb/+8XRswabzLN4g6wvnVECrn4dqtDr Q9MnsCUHPwr4swFcJ9W4PSe2OU1PZmXk7RC4C/ZYTpTMIcZVuh4713F9+Qh4BTzs 2R1zkVt9plt/cGOu0krABXojvOtBkZhvmwgzk3YEWVJ88Sx9lSFuwkSHV+N8fPzj x245hxxwLXuDck1u0lqt9k1Tvk6ZBEo/kIPKFOT5MBDTjgydspHGZWDgidiEZ6OH d5u/NrDeWPS8EYGuVX4gtxdvU5G+QBzc -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:52 2024 by rpki-client on console-ams.rpki-client.org