$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft File: xpA79e8aQHD8mDw02cUDz0MT_Is.mft (raw, json) Hash identifier: OQwwpvQdziT8T6s7vDD+hc3dJoFNwyhmVcb3FXrsk9c= Subject key identifier: 7E:D4:F3:4F:D8:89:AC:51:E5:90:EE:BA:AE:26:68:2B:F3:62:67:97 Authority key identifier: C6:90:3B:F5:EF:1A:40:70:FC:98:3C:34:D9:C5:03:CF:43:13:FC:8B Certificate issuer: /CN=A9111A96/serialNumber=C6903BF5EF1A4070FC983C34D9C503CF4313FC8B Certificate serial: 0440 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft Manifest number: 043D Signing time: Sun 19 May 2024 01:57:16 +0000 Manifest this update: Sun 19 May 2024 01:57:15 +0000 Manifest next update: Sun 26 May 2024 01:57:15 +0000 Files and hashes: 1: xpA79e8aQHD8mDw02cUDz0MT_Is.crl (hash: ZfLkp1ysW9OakwMvWzI7Ptsjs8hsU1a5fpwq9GW/4N4=) 2: ABB5B52C0EF211ECBE14BD4FC4F9AE02.roa (hash: hHFsEibxFmfGBgF40FeRIvgD0ColRb+tpcQ8s+0vLA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.crl rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A96/serialNumber=C6903BF5EF1A4070FC983C34D9C503CF4313FC8B Validity Not Before: May 19 01:57:15 2024 GMT Not After : May 26 01:57:15 2024 GMT Subject: CN=66495c7c-ca66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e4:a4:06:f9:18:9f:14:89:af:c9:b6:13:93: d2:6f:1b:b5:f8:23:c6:25:6a:ed:a6:d0:a2:57:ee: b9:bc:14:6e:e4:8e:5c:b6:26:3f:bf:88:f9:21:82: d0:5e:08:a7:40:b3:85:e5:e4:f8:da:11:c3:13:08: a9:6c:ee:93:8a:2b:41:d5:9b:d2:1c:ac:05:07:dd: 0c:27:97:dd:d6:0c:ae:34:ea:d4:6c:b9:21:80:b7: 5e:81:bb:20:58:df:d0:5f:b9:e2:ec:6f:01:86:58: 0e:b8:37:31:f6:e6:bc:ae:c5:cd:ec:d5:e0:1f:35: 04:c3:01:06:de:5f:06:1e:ad:7c:9a:ef:b1:11:d0: 99:cf:19:2d:50:cb:6f:ff:b1:44:41:36:d9:5c:92: 84:9c:16:2d:47:04:e0:b8:f3:59:7c:0c:cb:f0:b3: 5c:3d:dc:72:0a:3d:b4:30:77:42:9a:a2:0d:54:00: 2b:35:8e:99:96:2c:e6:c9:9f:7b:ac:5d:f7:01:f3: b2:23:1d:2d:44:40:0f:fe:aa:9d:ca:55:4f:9a:4a: b5:51:4f:71:8c:d4:6b:28:ba:23:47:77:1c:3b:07: 9f:02:ec:12:fb:0a:ed:32:84:1a:6b:ea:3d:98:01: c1:1c:af:1e:0a:e2:fc:49:c3:e7:4e:2a:ee:96:3f: 0e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:D4:F3:4F:D8:89:AC:51:E5:90:EE:BA:AE:26:68:2B:F3:62:67:97 X509v3 Authority Key Identifier: keyid:C6:90:3B:F5:EF:1A:40:70:FC:98:3C:34:D9:C5:03:CF:43:13:FC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:1a:72:6d:31:c6:b7:a5:7d:43:62:c4:1f:24:05:68:dc:6a: ad:a6:dd:08:7d:2a:e9:12:1c:05:18:d7:ac:c3:e8:d1:fc:b7: 64:a5:a5:9b:ec:54:da:78:32:bc:66:b3:eb:a3:3f:d0:7e:dc: 7b:a5:f9:77:a6:de:5c:c4:b8:1c:44:bd:89:bd:f6:e2:d2:2e: cb:c5:a5:33:14:d8:ad:15:d9:b7:54:67:34:20:38:b3:83:aa: af:dd:73:65:c0:92:cd:1f:99:59:9c:e4:1a:20:73:c8:d6:b3: 28:2d:61:b9:f6:12:09:45:f0:31:ef:b0:7f:9b:95:d6:8c:22: 83:91:fd:fe:8b:90:0e:78:55:e8:1a:f5:36:d6:ac:09:cc:e9: 23:2f:f9:e5:fb:c0:18:ab:fa:df:c8:44:a3:80:3d:74:e0:ea: 5e:f7:d2:6f:31:44:c8:b1:54:21:23:3e:99:cf:df:64:25:99: 90:fa:6f:bb:c7:a6:cd:07:3a:e1:b8:29:94:25:b9:6b:be:3c: 24:13:ac:58:08:4d:c6:b2:6c:d8:0c:1c:10:92:a7:25:97:0a: 23:e3:1a:3e:a5:2a:60:44:7e:51:34:2b:5d:53:6d:b7:3c:27: 35:8e:fd:23:4f:29:da:12:7f:6f:5a:8b:dd:bd:54:cd:92:ef: 25:e4:64:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBOTYxMTAvBgNVBAUTKEM2OTAzQkY1RUYxQTQwNzBGQzk4M0MzNEQ5QzUwM0NG NDMxM0ZDOEIwHhcNMjQwNTE5MDE1NzE1WhcNMjQwNTI2MDE1NzE1WjAYMRYwFAYD VQQDEw02NjQ5NWM3Yy1jYTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweSkBvkYnxSJr8m2E5PSbxu1+CPGJWrtptCiV+65vBRu5I5ctiY/v4j5IYLQ XginQLOF5eT42hHDEwipbO6TiitB1ZvSHKwFB90MJ5fd1gyuNOrUbLkhgLdegbsg WN/QX7ni7G8BhlgOuDcx9ua8rsXN7NXgHzUEwwEG3l8GHq18mu+xEdCZzxktUMtv /7FEQTbZXJKEnBYtRwTguPNZfAzL8LNcPdxyCj20MHdCmqINVAArNY6ZlizmyZ97 rF33AfOyIx0tREAP/qqdylVPmkq1UU9xjNRrKLojR3ccOwefAuwS+wrtMoQaa+o9 mAHBHK8eCuL8ScPnTirulj8OzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7U80/Y iaxR5ZDuuq4maCvzYmeXMB8GA1UdIwQYMBaAFMaQO/XvGkBw/Jg8NNnFA89DE/yL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUE5Ni80NTg5QzYzODBF RUYxMUVDODZBREUwNEJDNEY5QUUwMi94cEE3OWU4YVFIRDhtRHcwMmNVRHowTVRf SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwQTc5ZThhUUhEOG1EdzAyY1VEejBNVF9Jcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUE5Ni80NTg5QzYzODBFRUYxMUVDODZBREUwNEJDNEY5QUUwMi94cEE3OWU4YVFI RDhtRHcwMmNVRHowTVRfSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3GnJtMca3pX1DYsQfJAVo3Gqtpt0IfSrpEhwFGNesw+jR/LdkpaWb 7FTaeDK8ZrProz/Qftx7pfl3pt5cxLgcRL2Jvfbi0i7LxaUzFNitFdm3VGc0IDiz g6qv3XNlwJLNH5lZnOQaIHPI1rMoLWG59hIJRfAx77B/m5XWjCKDkf3+i5AOeFXo GvU21qwJzOkjL/nl+8AYq/rfyESjgD104Ope99JvMUTIsVQhIz6Zz99kJZmQ+m+7 x6bNBzrhuCmUJblrvjwkE6xYCE3GsmzYDBwQkqcllwoj4xo+pSpgRH5RNCtdU223 PCc1jv0jTynaEn9vWovdvVTNku8l5GQr -----END CERTIFICATE-----Generated at Sun May 19 02:59:04 2024 by rpki-client on console-ams.rpki-client.org