$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft File: ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json) Hash identifier: iRGSRfJTqlyxJXY0U5T45v0crETXeev1XaOHfwI0X9g= Subject key identifier: B3:0A:63:34:BF:62:3A:62:70:85:7F:17:D3:87:0D:E7:AC:F4:4D:3D Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 07A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft Manifest number: 07A0 Signing time: Mon 06 May 2024 22:14:26 +0000 Manifest this update: Mon 06 May 2024 22:14:25 +0000 Manifest next update: Mon 13 May 2024 22:14:25 +0000 Files and hashes: 1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: IOFnEcArzq/q8u++sXPDG8LDjO5/YXKz9FXJa2kiLYE=) 2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: FZanZR6gOdpokj1q/3xsOivg9V6cz3c3ZCcMipz1nE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: May 6 22:14:25 2024 GMT Not After : May 13 22:14:25 2024 GMT Subject: CN=66395641-2704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2b:71:94:2f:f0:cb:82:b0:35:0b:45:94:67: ff:92:34:49:d3:91:5f:15:c7:ac:8d:e3:cd:ed:ea: e3:17:66:dd:40:a3:1e:37:ed:9c:49:02:59:c7:d8: 5d:90:e8:29:61:f7:ca:40:63:e3:4f:f4:91:0b:34: 89:74:58:c1:ea:ab:99:e5:9a:39:1f:9f:30:22:bd: ba:23:9a:24:21:08:09:eb:cc:b7:2f:3c:64:58:40: b3:53:53:1a:5a:56:6d:60:04:13:7a:7a:7b:2d:57: 20:2c:79:18:76:64:30:6b:02:d1:06:50:f3:f9:4e: 91:d2:4e:2e:c9:a3:8f:68:bf:4c:b9:44:0a:2e:0f: 59:cc:09:2f:80:80:08:1d:a1:2f:81:0a:2d:d2:39: 4e:71:2c:f2:b2:32:37:98:e3:3b:f4:af:98:ff:d9: 21:1e:cd:cb:5b:05:f6:dc:2f:03:7d:34:e8:aa:21: 4e:6a:bd:0f:42:57:6f:d4:8b:0e:b8:44:e7:22:08: 61:41:3d:26:f1:61:fd:ef:d2:7b:d4:90:74:76:d7: b9:a9:b1:49:63:3c:a6:e5:78:e9:0f:89:c8:13:a6: ac:64:a6:32:f4:dc:37:74:a6:ed:0e:2a:27:e9:07: ee:90:82:ba:58:95:2c:42:9c:00:f6:03:e7:b4:bf: ec:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0A:63:34:BF:62:3A:62:70:85:7F:17:D3:87:0D:E7:AC:F4:4D:3D X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:79:8d:6d:44:1a:de:c6:51:84:f3:09:bf:63:42:87:40:a3: b8:ce:de:c0:01:5b:33:4f:d3:0c:4c:6d:fd:76:68:7e:fc:3d: 36:e0:a1:45:ac:c4:dc:db:b3:12:26:82:c6:4a:08:be:00:f4: 38:5a:5f:1d:81:ba:67:d1:45:25:13:12:ac:ae:77:24:b4:b8: b1:28:c8:6f:20:28:f5:ce:98:5d:41:dd:4e:cf:1f:75:00:91: 2c:3c:28:24:2d:14:c2:0f:63:04:e8:fe:3c:21:9b:1b:73:0c: b1:6e:a0:bd:5e:60:d2:87:ab:42:e4:c7:5f:25:38:ad:f9:22: f9:78:8b:2f:56:93:91:96:11:7d:11:be:f1:7e:86:7e:21:1d: a6:b1:b9:8e:bb:4d:4c:a2:68:97:48:de:ad:48:ed:19:3c:ac: 23:ba:43:94:2c:5d:33:de:c4:2c:06:d4:23:57:1b:fa:54:5f: 0d:cd:00:13:02:f7:dc:38:92:c4:64:81:9e:11:37:7d:47:6c: 88:2b:70:56:93:31:a9:2e:35:ae:5c:08:99:88:4c:a3:7b:a2: 39:24:9b:62:41:c1:17:47:7d:fc:a7:f4:dd:d9:af:08:2f:13: 42:d5:cb:52:82:8f:94:b6:5a:c9:5a:a7:39:77:94:59:9d:f1: d7:3e:9c:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjQwNTA2MjIxNDI1WhcNMjQwNTEzMjIxNDI1WjAYMRYwFAYD VQQDEw02NjM5NTY0MS0yNzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxytxlC/wy4KwNQtFlGf/kjRJ05FfFcesjePN7erjF2bdQKMeN+2cSQJZx9hd kOgpYffKQGPjT/SRCzSJdFjB6quZ5Zo5H58wIr26I5okIQgJ68y3LzxkWECzU1Ma WlZtYAQTenp7LVcgLHkYdmQwawLRBlDz+U6R0k4uyaOPaL9MuUQKLg9ZzAkvgIAI HaEvgQot0jlOcSzysjI3mOM79K+Y/9khHs3LWwX23C8DfTToqiFOar0PQldv1IsO uETnIghhQT0m8WH979J71JB0dte5qbFJYzym5XjpD4nIE6asZKYy9Nw3dKbtDion 6QfukIK6WJUsQpwA9gPntL/sgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMKYzS/ YjpicIV/F9OHDees9E09MB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGeY1tRBrexlGE8wm/Y0KHQKO4zt7AAVszT9MMTG39dmh+/D024KFF rMTc27MSJoLGSgi+APQ4Wl8dgbpn0UUlExKsrncktLixKMhvICj1zphdQd1Ozx91 AJEsPCgkLRTCD2ME6P48IZsbcwyxbqC9XmDSh6tC5MdfJTit+SL5eIsvVpORlhF9 Eb7xfoZ+IR2msbmOu01MomiXSN6tSO0ZPKwjukOULF0z3sQsBtQjVxv6VF8NzQAT AvfcOJLEZIGeETd9R2yIK3BWkzGpLjWuXAiZiEyje6I5JJtiQcEXR338p/Td2a8I LxNC1ctSgo+UtlrJWqc5d5RZnfHXPpy6 -----END CERTIFICATE-----Generated at Tue May 7 00:53:21 2024 by rpki-client on console-ams.rpki-client.org