$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: FzVUfHneVowmvUKEve4SkMhBDHO6oyO/jE77anaTIvg= Subject key identifier: 11:2D:14:81:8D:F6:C3:BD:AB:FE:5B:E2:3E:E5:E0:D1:B4:F7:A5:60 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 63 Signing time: Wed 15 May 2024 07:44:52 +0000 Manifest this update: Wed 15 May 2024 07:44:51 +0000 Manifest next update: Wed 22 May 2024 07:44:51 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: yZ7/8TihSkrkzhHtPI9t2No+aX+gi6mEcjQeMqk5QgE=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: dlwOj4FYpkxuhIeKvStrEhf1vAXV9Elx/evRiZVIqZQ=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: 4s4KqtM3O9MyREm28rKTbjU5mDZCAqpfugH+QXCTwx4=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: dBZom9K71goZ6r1wPCl3KmS9B9cfiVF+gA//IKBCQjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: May 15 07:44:51 2024 GMT Not After : May 22 07:44:51 2024 GMT Subject: CN=664467f4-a439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b8:50:14:5b:95:b0:11:6b:6a:3c:41:64:fb: fb:94:4f:ed:0c:7f:f9:30:a9:83:d1:f0:f3:00:a1: 7b:9e:10:e0:93:d2:c8:4d:f6:82:0d:32:4a:f1:93: 0e:27:19:5d:ea:96:aa:15:eb:da:03:c8:fa:c7:20: 43:5b:8d:44:f7:43:82:cf:a0:ba:8d:e4:16:af:d5: 99:98:a5:a7:33:01:bf:7c:36:f0:44:20:5a:81:da: bf:9f:b8:21:03:f7:af:fa:63:14:e8:30:e3:b3:ed: 5c:c8:b9:61:dd:1a:1c:8c:a8:a5:7b:ef:e8:ac:6e: ad:9c:d1:e9:2c:10:f8:a7:c4:27:f5:c8:bc:9f:7b: 59:96:02:ce:1f:18:5b:7f:c5:b9:77:ab:3d:a2:d8: 45:61:c1:82:f7:a6:54:b1:5d:c5:07:2f:61:de:ec: 07:e6:7b:db:29:53:d1:3b:f3:32:f3:d1:68:35:79: 84:ab:61:40:31:7b:20:5a:8d:d6:d8:e4:ef:20:47: 5a:82:6a:ce:7f:12:0b:fd:d6:a6:9b:c7:89:08:ef: 60:70:e0:5f:3c:c9:40:ea:25:d5:d2:11:fb:62:c5: 99:67:a2:c5:63:b5:f9:9c:db:5a:08:00:9e:c0:50: 24:a2:55:f9:c9:f4:de:ca:9b:83:32:57:ee:97:a6: ea:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:2D:14:81:8D:F6:C3:BD:AB:FE:5B:E2:3E:E5:E0:D1:B4:F7:A5:60 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:83:df:9a:51:1f:b4:a5:b3:41:58:f0:89:2a:30:3d:00:4a: 5d:b8:bf:17:71:b7:e9:d6:06:3e:81:63:26:9e:f4:09:02:de: 1e:89:56:2b:17:12:fb:a5:f2:d5:a1:cb:85:e0:1a:66:c8:ca: 01:71:a1:00:0e:c1:08:84:92:f7:51:5d:08:dd:ce:5e:f5:e9: c4:cc:93:95:d5:28:70:2c:58:b3:93:25:3e:02:db:e2:1d:25: bd:3b:7d:82:d3:23:4a:7e:19:cf:25:9c:2c:7e:0e:64:7d:d0: 3f:4c:9a:97:2a:37:19:97:f6:7e:09:26:e3:56:b4:75:ba:a9: 43:61:03:40:67:4b:cd:af:f9:12:03:fc:31:eb:f6:e6:62:0c: b9:98:05:0d:99:f6:45:61:83:95:e1:0e:9d:27:e8:a9:0a:51: e3:30:df:3a:c8:86:33:a5:d7:32:8e:67:fb:38:2e:a1:6b:b6: 8f:bb:bf:50:c8:6f:38:92:e2:17:44:3f:08:8e:54:5d:04:ec: 46:6a:cb:d4:0d:e9:71:20:0a:c7:ca:3f:4e:f5:8f:b2:87:0a: 74:8b:9d:1f:9e:4a:33:59:5f:b8:85:bd:c6:18:86:f1:eb:1a: e9:e8:8e:85:09:6f:fb:6b:98:fb:32:0f:3d:f4:f4:4a:da:dc: 49:77:6a:96 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QTdDQTExMC8GA1UEBRMoREExREIyQ0QzMUY0NTRGNjk1NjFEODY2NURDOTNFRjgx MkYzOTdCMDAeFw0yNDA1MTUwNzQ0NTFaFw0yNDA1MjIwNzQ0NTFaMBgxFjAUBgNV BAMTDTY2NDQ2N2Y0LWE0MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKuFAUW5WwEWtqPEFk+/uUT+0Mf/kwqYPR8PMAoXueEOCT0shN9oINMkrxkw4n GV3qlqoV69oDyPrHIENbjUT3Q4LPoLqN5Bav1ZmYpaczAb98NvBEIFqB2r+fuCED 96/6YxToMOOz7VzIuWHdGhyMqKV77+isbq2c0eksEPinxCf1yLyfe1mWAs4fGFt/ xbl3qz2i2EVhwYL3plSxXcUHL2He7Afme9spU9E78zLz0Wg1eYSrYUAxeyBajdbY 5O8gR1qCas5/Egv91qabx4kI72Bw4F88yUDqJdXSEftixZlnosVjtfmc21oIAJ7A UCSiVfnJ9N7Km4MyV+6Xpuq5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUES0UgY32 w72r/lviPuXg0bT3pWAwHwYDVR0jBBgwFoAU2h2yzTH0VPaVYdhmXck++BLzl7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBN0NBLzRDRjdGMTU4N0VC NzExRUU5NjIzRTkxQUM0RjlBRTAyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMmgyeXpUSDBWUGFWWWRobVhjay0tQkx6bDdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlB N0NBLzRDRjdGMTU4N0VCNzExRUU5NjIzRTkxQUM0RjlBRTAyLzJoMnl6VEgwVlBh VllkaG1YY2stLUJMemw3QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJGD35pRH7Sls0FY8IkqMD0ASl24vxdxt+nWBj6BYyae9AkC3h6JVisX Evul8tWhy4XgGmbIygFxoQAOwQiEkvdRXQjdzl716cTMk5XVKHAsWLOTJT4C2+Id Jb07fYLTI0p+Gc8lnCx+DmR90D9MmpcqNxmX9n4JJuNWtHW6qUNhA0BnS82v+RID /DHr9uZiDLmYBQ2Z9kVhg5XhDp0n6KkKUeMw3zrIhjOl1zKOZ/s4LqFrto+7v1DI bziS4hdEPwiOVF0E7EZqy9QN6XEgCsfKP071j7KHCnSLnR+eSjNZX7iFvcYYhvHr GunojoUJb/trmPsyDz309Era3El3apY= -----END CERTIFICATE-----Generated at Wed May 15 09:04:41 2024 by rpki-client on console-ams.rpki-client.org