$ rpki-client -vvf rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft File: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft (raw, json) Hash identifier: YY/KKWhhG9GPgFz3MJ08qReJ0jAnDGGiRQ3h5Y7+Yp8= Subject key identifier: F8:81:8E:4E:B3:0D:4C:A6:93:41:C2:75:84:1D:DF:C2:1C:8F:92:5F Authority key identifier: 1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 Certificate issuer: /CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Certificate serial: 0AF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft Manifest number: 0AEF Signing time: Sat 18 May 2024 20:00:26 +0000 Manifest this update: Sat 18 May 2024 20:00:25 +0000 Manifest next update: Sat 25 May 2024 20:00:25 +0000 Files and hashes: 1: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl (hash: byGBk7xuKovM13sO4rIKFtkIqGtNYOEBpt7XDi1LULY=) 2: 1407117C216311EA90D74C52C4F9AE02.roa (hash: 4a+tMAEiWkCKQaegnjxPyUcAuZa9uA285YsrVwUzfCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2804 (0xaf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Validity Not Before: May 18 20:00:25 2024 GMT Not After : May 25 20:00:25 2024 GMT Subject: CN=664908d9-8902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2e:10:6b:6b:e4:dc:23:b5:1b:69:e5:da:53: e6:57:ac:4e:e1:f5:5f:f5:79:dc:a1:80:05:fe:46: b0:9a:f1:31:c8:33:d6:d0:23:ae:cf:1b:39:57:f2: 81:71:ce:2d:60:4c:1b:78:f2:a6:35:67:aa:68:86: 21:3c:88:ce:db:b0:2c:c1:62:4f:f5:17:88:be:6f: 3f:e1:c0:f0:f4:d3:8d:3e:23:1d:a5:ac:2e:c3:62: e0:28:c9:07:b0:1e:6e:dc:ec:71:53:3f:41:7a:85: f3:26:97:b1:6b:ad:38:ce:be:39:58:57:63:9c:39: 2f:47:e2:27:73:03:d1:f5:79:96:31:1d:07:68:01: bb:20:c0:49:de:01:14:3a:60:5d:58:4c:fd:44:cd: 66:6a:ae:eb:00:ef:48:73:05:34:bb:54:9c:d4:8e: 0b:63:15:5d:02:48:83:b1:3e:9e:ec:32:3f:6d:32: 76:f4:27:cb:af:97:1c:04:92:65:93:b8:42:f8:c6: a0:0e:45:cc:06:01:dd:30:7e:67:ea:2b:22:9f:f6: 3c:22:33:3b:6b:dc:8d:70:f3:c1:79:ed:f5:18:c9: ed:36:43:2f:db:6b:3e:2c:32:95:60:cb:7b:65:92: 43:ae:16:07:9f:83:ee:5e:b4:26:10:7f:b2:86:ad: 02:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:81:8E:4E:B3:0D:4C:A6:93:41:C2:75:84:1D:DF:C2:1C:8F:92:5F X509v3 Authority Key Identifier: keyid:1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:33:3a:35:e3:5c:89:8f:e1:a3:75:b0:0d:80:df:9a:3a:32: c7:21:4c:48:f1:d4:5e:d1:a7:67:f1:15:94:4d:39:38:19:b9: 78:07:2c:59:2a:1f:46:da:72:62:19:14:d2:78:c3:28:1a:26: 53:06:09:35:7f:f1:59:da:c9:c2:6a:81:35:96:63:35:28:96: e8:3b:f5:d6:ed:80:20:0a:21:79:40:dd:de:f9:8d:cc:bc:2c: 34:79:02:de:cb:37:52:b4:d4:50:2c:67:5b:dc:09:59:9b:fb: e2:5e:42:bd:47:27:87:15:bb:32:d0:12:67:5f:e8:30:db:36: 5f:21:28:b8:f4:70:c5:2a:ef:56:02:2b:62:6e:76:be:d1:1e: 65:50:38:e7:5e:28:3a:90:34:2b:91:09:8f:df:70:37:c5:46: e7:48:a8:ae:d7:e5:de:4e:a2:de:b0:dc:f6:0c:74:e5:d6:10: c0:e9:df:cd:b8:27:0f:fd:85:27:d6:82:ba:75:7c:a3:88:a6: 85:aa:df:32:25:30:a9:5d:86:49:7d:c7:81:c9:f4:16:3f:47: dd:a5:a2:3f:59:a8:93:80:08:4a:85:31:40:bf:63:18:d5:75: da:0c:88:3e:9d:40:62:2f:b0:26:06:89:0d:62:f6:d1:55:20: d2:00:33:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBNjkxMTAvBgNVBAUTKDFCNkUzMjkyQzgzNTY1NEU0OTE0OTJFNTU4NENGOTkz RjA1QkQ5OTAwHhcNMjQwNTE4MjAwMDI1WhcNMjQwNTI1MjAwMDI1WjAYMRYwFAYD VQQDEw02NjQ5MDhkOS04OTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0C4Qa2vk3CO1G2nl2lPmV6xO4fVf9XncoYAF/kawmvExyDPW0COuzxs5V/KB cc4tYEwbePKmNWeqaIYhPIjO27AswWJP9ReIvm8/4cDw9NONPiMdpawuw2LgKMkH sB5u3OxxUz9BeoXzJpexa604zr45WFdjnDkvR+IncwPR9XmWMR0HaAG7IMBJ3gEU OmBdWEz9RM1maq7rAO9IcwU0u1Sc1I4LYxVdAkiDsT6e7DI/bTJ29CfLr5ccBJJl k7hC+MagDkXMBgHdMH5n6isin/Y8IjM7a9yNcPPBee31GMntNkMv22s+LDKVYMt7 ZZJDrhYHn4PuXrQmEH+yhq0CHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiBjk6z DUymk0HCdYQd38Icj5JfMB8GA1UdIwQYMBaAFBtuMpLINWVOSRSS5VhM+ZPwW9mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEE2OS9FM0FCRDA0MjIx NDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpVNUpGSkxsV0V6NWtfQmIy WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyNHlrc2cxWlU1SkZKTGxXRXo1a19CYjJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEE2OS9FM0FCRDA0MjIxNDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpV NUpGSkxsV0V6NWtfQmIyWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKMzo141yJj+GjdbANgN+aOjLHIUxI8dRe0adn8RWUTTk4Gbl4ByxZ Kh9G2nJiGRTSeMMoGiZTBgk1f/FZ2snCaoE1lmM1KJboO/XW7YAgCiF5QN3e+Y3M vCw0eQLeyzdStNRQLGdb3AlZm/viXkK9RyeHFbsy0BJnX+gw2zZfISi49HDFKu9W Aitibna+0R5lUDjnXig6kDQrkQmP33A3xUbnSKiu1+XeTqLesNz2DHTl1hDA6d/N uCcP/YUn1oK6dXyjiKaFqt8yJTCpXYZJfceByfQWP0fdpaI/WaiTgAhKhTFAv2MY 1XXaDIg+nUBiL7AmBokNYvbRVSDSADNK -----END CERTIFICATE-----Generated at Sat May 18 21:31:24 2024 by rpki-client on console-ams.rpki-client.org