$ rpki-client -vvf rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft File: 67oUOyhmNxjNjH2j9jEAmpgE7l8.mft (raw, json) Hash identifier: PIvzzVzCw6Dk0tEVfa7iDZQN9ZetSn8oXzpq8GSdjo0= Subject key identifier: 1F:C0:C4:23:1C:0E:1B:23:5F:D7:93:55:8B:04:AD:2B:78:CE:9B:CB Authority key identifier: EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F Certificate issuer: /CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft Manifest number: CD Signing time: Fri 03 May 2024 06:19:33 +0000 Manifest this update: Fri 03 May 2024 06:19:32 +0000 Manifest next update: Fri 10 May 2024 06:19:32 +0000 Files and hashes: 1: 67oUOyhmNxjNjH2j9jEAmpgE7l8.crl (hash: 1QcbWiUJesiF+Oa2dHNFcI7rpDDvxsWQfDV/WxpX3C0=) 2: D277F83CD3A411ED8C51160FC4F9AE02.roa (hash: zaoKS/Y1Ph1TfzBJvxVJTzMA+iBbcn26uLQGnZGKNrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Validity Not Before: May 3 06:19:32 2024 GMT Not After : May 10 06:19:32 2024 GMT Subject: CN=663481f4-f464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:73:4d:f5:14:1e:60:9c:66:e7:d8:5e:45:d2: 3f:39:d2:37:ed:56:a1:3e:35:c6:90:0a:8e:40:35: 13:a2:14:58:ec:b7:df:01:4a:93:fc:10:99:9e:e1: 62:ed:29:15:3d:ab:b7:2f:4b:bf:89:9e:0a:95:30: 25:95:4f:ca:37:00:34:d8:a0:02:ce:8c:8c:2b:4f: b9:bb:34:64:95:ba:f7:93:95:76:19:1c:cf:e3:1e: 88:30:73:d3:3b:42:27:7c:3c:a3:c2:51:ed:4c:63: b4:db:04:7d:33:66:a4:7e:eb:74:ac:79:8f:d6:6a: 90:cc:f8:49:40:4e:e0:a7:70:e2:e9:df:2f:0f:16: 79:5c:6d:b9:12:87:50:3c:6c:4f:df:05:5e:3d:ba: 27:c1:92:ed:81:a7:22:6b:50:3d:0c:dd:f7:fc:94: 2e:25:b5:dc:44:f5:1e:7b:d7:03:05:b3:00:85:69: b4:34:b3:df:ad:ac:be:e8:31:7d:be:c4:22:a1:dd: 8e:e0:0c:40:7b:3a:51:21:cd:42:2a:37:bf:49:e8: 6f:b5:e5:57:d5:9d:9a:f7:1c:c9:3d:87:21:66:90: dc:3a:4d:b3:c2:9d:93:fd:d7:fa:6b:24:37:5b:fc: 1e:d4:d5:17:fc:ae:fe:5a:8c:e3:d9:5b:d0:3e:23: 39:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C0:C4:23:1C:0E:1B:23:5F:D7:93:55:8B:04:AD:2B:78:CE:9B:CB X509v3 Authority Key Identifier: keyid:EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:0f:04:b5:09:76:0b:51:74:b3:0e:56:ef:6a:fa:04:f7:ce: 1e:fc:b9:ae:59:c5:ff:fa:68:84:f4:a3:55:56:7e:f6:ad:f5: a3:c9:21:e5:21:eb:67:69:64:07:5c:6e:ed:50:2a:ac:95:12: 90:3e:d6:cc:ee:54:1e:62:47:29:9d:c9:28:98:de:8c:5d:7b: 8d:e1:1f:af:b9:f1:47:4e:27:8d:eb:31:f0:96:ef:cd:52:ed: 2c:b0:00:7b:cc:d4:43:72:eb:fd:22:71:dd:04:f5:2e:70:e3: ca:f2:aa:42:ed:e0:b5:21:26:19:11:5b:79:e0:5c:3c:1a:b5: 34:e2:af:fa:8d:61:5a:92:07:4b:93:aa:5b:cb:c2:37:87:ee: 0e:bf:a0:51:c2:53:17:c5:98:0d:96:ad:a4:d4:81:a4:24:35: 0a:d2:a3:a4:72:bb:a1:46:92:4b:50:89:3e:33:a8:ed:f4:4e: 07:da:10:b0:c9:4a:47:18:11:8b:01:5f:f1:00:08:5b:25:0b: 74:5a:1b:52:b0:92:c3:87:40:60:14:b1:3d:be:e2:36:74:8b: 4e:28:cd:de:69:cd:a9:8a:78:ed:90:64:29:26:c2:65:78:a9: b7:52:9d:84:0b:8f:a5:99:5e:a8:f5:43:ad:5e:6e:7b:53:e8: 83:21:89:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY3NkYxMTAvBgNVBAUTKEVCQkExNDNCMjg2NjM3MThDRDhDN0RBM0Y2MzEwMDlB OTgwNEVFNUYwHhcNMjQwNTAzMDYxOTMyWhcNMjQwNTEwMDYxOTMyWjAYMRYwFAYD VQQDEw02NjM0ODFmNC1mNDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3NN9RQeYJxm59heRdI/OdI37VahPjXGkAqOQDUTohRY7LffAUqT/BCZnuFi 7SkVPau3L0u/iZ4KlTAllU/KNwA02KACzoyMK0+5uzRklbr3k5V2GRzP4x6IMHPT O0InfDyjwlHtTGO02wR9M2akfut0rHmP1mqQzPhJQE7gp3Di6d8vDxZ5XG25EodQ PGxP3wVePbonwZLtgacia1A9DN33/JQuJbXcRPUee9cDBbMAhWm0NLPfray+6DF9 vsQiod2O4AxAezpRIc1CKje/SehvteVX1Z2a9xzJPYchZpDcOk2zwp2T/df6ayQ3 W/we1NUX/K7+Wozj2VvQPiM5nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/AxCMc DhsjX9eTVYsErSt4zpvLMB8GA1UdIwQYMBaAFOu6FDsoZjcYzYx9o/YxAJqYBO5f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njc2Ri9GRTQ5RkFDMkQz QTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54ak5qSDJqOWpFQW1wZ0U3 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3b1VPeWhtTnhqTmpIMmo5akVBbXBnRTdsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njc2Ri9GRTQ5RkFDMkQzQTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54 ak5qSDJqOWpFQW1wZ0U3bDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsDwS1CXYLUXSzDlbvavoE984e/LmuWcX/+miE9KNVVn72rfWjySHl IetnaWQHXG7tUCqslRKQPtbM7lQeYkcpnckomN6MXXuN4R+vufFHTieN6zHwlu/N Uu0ssAB7zNRDcuv9InHdBPUucOPK8qpC7eC1ISYZEVt54Fw8GrU04q/6jWFakgdL k6pby8I3h+4Ov6BRwlMXxZgNlq2k1IGkJDUK0qOkcruhRpJLUIk+M6jt9E4H2hCw yUpHGBGLAV/xAAhbJQt0WhtSsJLDh0BgFLE9vuI2dItOKM3eac2pinjtkGQpJsJl eKm3Up2EC4+lmV6o9UOtXm57U+iDIYlG -----END CERTIFICATE-----Generated at Fri May 3 08:21:37 2024 by rpki-client on console-ams.rpki-client.org