$ rpki-client -vvf rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft File: SslcipdeTPMQhCyVVkBRdT3rAok.mft (raw, json) Hash identifier: tl/Kcxz7pZYCZZ2ycWlfx5guUrq3VaKMyQABh2oM34A= Subject key identifier: 9E:EE:8D:B9:2C:96:D7:F6:51:0A:8C:DC:68:07:9B:C0:5B:92:1C:75 Authority key identifier: 4A:C9:5C:8A:97:5E:4C:F3:10:84:2C:95:56:40:51:75:3D:EB:02:89 Certificate issuer: /CN=A9110D07/serialNumber=4AC95C8A975E4CF310842C95564051753DEB0289 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft Manifest number: 7F Signing time: Fri 31 May 2024 08:36:36 +0000 Manifest this update: Fri 31 May 2024 08:36:36 +0000 Manifest next update: Fri 07 Jun 2024 08:36:36 +0000 Files and hashes: 1: SslcipdeTPMQhCyVVkBRdT3rAok.crl (hash: u1nZrbwgEVoOyIJQQaqa1gDVELO/pr0qLRblmwoVsT8=) 2: 9B21ED20F77011EE87C1441EC4F9AE02.roa (hash: Wodi/aL4KJznaBMPDgongcuJuplEc+TWjWZ5laDUzfY=) 3: BDCB3EACF77111EE9EC79E3EC4F9AE02.roa (hash: J+cWYFnRPsomMj8YzX4tFDktMq39GqtE9P70ShmV2Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.crl rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110D07/serialNumber=4AC95C8A975E4CF310842C95564051753DEB0289 Validity Not Before: May 31 08:36:36 2024 GMT Not After : Jun 7 08:36:36 2024 GMT Subject: CN=66598c14-b595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a6:b4:da:f8:30:cc:e6:b9:89:cb:d2:a7:3d: e9:56:5e:d9:fe:4d:01:d0:ce:8c:02:81:17:29:83: 5a:a1:e0:8b:e4:47:56:8e:1a:c8:3d:91:2f:7a:b0: eb:a5:96:17:bd:57:4f:db:b8:1c:d8:01:46:45:c7: 1c:f2:9e:76:f1:9b:f2:c2:4f:55:c7:b0:0f:ec:70: 38:99:3c:23:c3:bd:5a:95:3e:d5:06:0c:b4:a7:7f: 1e:34:c1:d4:c0:0a:c2:44:62:88:02:8f:10:e3:de: c4:76:23:90:04:cf:92:f6:67:2a:b8:46:e1:0c:70: 61:37:61:be:56:91:ff:0b:e5:b0:71:0d:b1:e8:25: a5:db:67:d6:4a:99:14:d4:e8:14:ab:9f:c2:61:50: da:03:c0:a1:ea:a2:20:49:d9:5d:93:5d:e5:15:e2: 39:44:65:11:ca:31:8b:44:da:28:01:67:df:5b:fe: 81:84:ed:3b:47:69:c7:e4:dd:92:97:0b:2b:c3:15: 07:1d:0c:3b:4d:ab:dd:c9:af:33:ce:af:4e:8f:c0: 07:db:68:2d:6e:6a:74:80:f6:8f:c7:a4:89:e6:2b: 4c:ae:ee:20:38:dc:21:0b:e3:69:ac:f0:9b:e9:ed: a7:b4:19:ce:96:2c:85:ca:cb:16:7f:7d:46:a8:8a: 55:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:EE:8D:B9:2C:96:D7:F6:51:0A:8C:DC:68:07:9B:C0:5B:92:1C:75 X509v3 Authority Key Identifier: keyid:4A:C9:5C:8A:97:5E:4C:F3:10:84:2C:95:56:40:51:75:3D:EB:02:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:02:56:3a:bb:f6:84:3c:87:d8:22:83:d6:85:47:4b:87:81: 21:55:d6:51:24:3e:48:12:fa:30:3d:7e:89:fd:c8:70:d4:4e: 3e:d4:f9:d5:e9:6e:94:ca:53:69:8e:fe:e2:9a:41:97:59:9e: 32:64:e3:46:47:cc:bd:72:f1:8c:3a:87:86:8a:2b:27:06:2d: 19:9b:60:e3:d4:04:b1:4f:23:23:4f:81:3f:f3:69:70:5a:38: 0c:87:0c:11:c5:ec:8e:67:3d:b4:08:26:cd:ae:23:a8:54:83: 21:dd:b6:68:59:ff:82:59:1c:3d:c4:17:44:3d:df:a5:a3:24: 73:8c:12:26:07:55:4b:e1:47:02:ed:a3:40:03:ab:f9:3d:4f: 81:68:fa:d8:fa:f5:b2:b6:ff:b1:65:fb:ef:61:67:0d:07:ba: 79:0f:0f:f9:ad:49:49:11:ae:8c:a8:bc:20:1a:2c:8a:fb:65: e1:c1:af:75:94:75:0b:dc:69:0f:13:66:23:3e:a5:d5:87:fd: 18:4c:ba:40:30:e3:24:92:1c:78:48:52:cf:7b:65:49:63:0c: 8e:0c:93:ce:08:c7:be:64:94:3f:16:1f:f4:a5:2f:35:bb:14: c9:6a:6c:d2:26:60:ad:5b:19:1b:5e:00:ae:df:76:67:cf:79: cf:6f:9a:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBEMDcxMTAvBgNVBAUTKDRBQzk1QzhBOTc1RTRDRjMxMDg0MkM5NTU2NDA1MTc1 M0RFQjAyODkwHhcNMjQwNTMxMDgzNjM2WhcNMjQwNjA3MDgzNjM2WjAYMRYwFAYD VQQDEw02NjU5OGMxNC1iNTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6a02vgwzOa5icvSpz3pVl7Z/k0B0M6MAoEXKYNaoeCL5EdWjhrIPZEverDr pZYXvVdP27gc2AFGRccc8p528Zvywk9Vx7AP7HA4mTwjw71alT7VBgy0p38eNMHU wArCRGKIAo8Q497EdiOQBM+S9mcquEbhDHBhN2G+VpH/C+WwcQ2x6CWl22fWSpkU 1OgUq5/CYVDaA8Ch6qIgSdldk13lFeI5RGURyjGLRNooAWffW/6BhO07R2nH5N2S lwsrwxUHHQw7Tavdya8zzq9Oj8AH22gtbmp0gPaPx6SJ5itMru4gONwhC+NprPCb 6e2ntBnOliyFyssWf31GqIpVUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7ujbks ltf2UQqM3GgHm8Bbkhx1MB8GA1UdIwQYMBaAFErJXIqXXkzzEIQslVZAUXU96wKJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEQwNy9EM0U4ODlENDhF N0YxMUVFOEU5N0I0ODRDNEY5QUUwMi9Tc2xjaXBkZVRQTVFoQ3lWVmtCUmRUM3JB b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NzbGNpcGRlVFBNUWhDeVZWa0JSZFQzckFvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEQwNy9EM0U4ODlENDhFN0YxMUVFOEU5N0I0ODRDNEY5QUUwMi9Tc2xjaXBkZVRQ TVFoQ3lWVmtCUmRUM3JBb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClAlY6u/aEPIfYIoPWhUdLh4EhVdZRJD5IEvowPX6J/chw1E4+1PnV 6W6UylNpjv7imkGXWZ4yZONGR8y9cvGMOoeGiisnBi0Zm2Dj1ASxTyMjT4E/82lw WjgMhwwRxeyOZz20CCbNriOoVIMh3bZoWf+CWRw9xBdEPd+loyRzjBImB1VL4UcC 7aNAA6v5PU+BaPrY+vWytv+xZfvvYWcNB7p5Dw/5rUlJEa6MqLwgGiyK+2Xhwa91 lHUL3GkPE2YjPqXVh/0YTLpAMOMkkhx4SFLPe2VJYwyODJPOCMe+ZJQ/Fh/0pS81 uxTJamzSJmCtWxkbXgCu33Znz3nPb5rJ -----END CERTIFICATE-----Generated at Fri May 31 10:01:35 2024 by rpki-client on console-ams.rpki-client.org