$ rpki-client -vvf rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft File: 2-ETC8fG27LbfLvxTgH2GG_9vRA.mft (raw, json) Hash identifier: vMi8pkMKdBG5kEKSUDlDIMBQYxkcXnQxywLgHTGZ3Fo= Subject key identifier: 80:DE:E5:06:10:F6:AF:D2:CD:BC:58:CE:5F:6D:33:00:BA:16:B9:DA Authority key identifier: DB:E1:13:0B:C7:C6:DB:B2:DB:7C:BB:F1:4E:01:F6:18:6F:FD:BD:10 Certificate issuer: /CN=A9115480/serialNumber=DBE1130BC7C6DBB2DB7CBBF14E01F6186FFDBD10 Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft Manifest number: 01B4 Signing time: Fri 31 May 2024 05:13:37 +0000 Manifest this update: Fri 31 May 2024 05:13:37 +0000 Manifest next update: Fri 07 Jun 2024 05:13:37 +0000 Files and hashes: 1: 2-ETC8fG27LbfLvxTgH2GG_9vRA.crl (hash: CyLZQhewTnOm2CwvaZuUo3W0PbckzEMro+9iyRO6VvY=) 2: D1D6719A10DD11EDBC7EA35FC4F9AE02.roa (hash: Fz/RMpDk968TAdjUDidOKmO8sac8I+wSxBaTE4As/E0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.crl rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 05:13:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115480/serialNumber=DBE1130BC7C6DBB2DB7CBBF14E01F6186FFDBD10 Validity Not Before: May 31 05:13:37 2024 GMT Not After : Jun 7 05:13:37 2024 GMT Subject: CN=66595c81-160a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ab:f8:15:f3:e0:5b:3a:bf:57:d5:c2:19:8c: 7e:96:f8:ab:0b:d0:66:9d:5c:71:fb:88:b4:6f:00: bc:a8:8f:cd:1f:14:38:8a:1e:91:be:91:16:66:63: 21:48:87:bd:db:a0:90:d6:5a:a1:49:79:54:5f:69: c7:82:12:33:25:d8:f0:b1:be:de:3a:c6:27:69:48: 94:dd:c9:72:d8:dc:d5:0a:cf:2d:cc:79:a6:2f:fa: 55:c4:1e:b3:da:2a:5d:ae:12:38:ef:0f:c3:9d:18: 1e:1b:85:19:92:73:53:8a:f8:31:7e:58:e5:51:8d: 4d:30:e0:5c:65:40:a3:30:3b:ea:b0:8c:87:2c:fd: 4b:14:9c:55:a8:6f:ac:f6:ac:48:46:80:46:d4:39: ed:00:eb:fa:7c:3e:d2:89:72:36:25:39:47:91:90: 60:f4:56:67:2b:3f:5a:bd:f5:8c:5e:d3:09:8f:a7: 72:b5:d0:e4:b2:10:65:80:e0:9c:29:05:a4:90:7d: 15:bc:03:fa:74:be:22:04:00:14:56:27:6c:27:63: 92:42:fc:d2:62:09:a9:70:24:3a:27:1d:b7:1c:90: 80:b0:d5:7e:67:2c:a4:58:fa:5f:b8:ad:c1:61:81: 76:11:9f:af:6b:5a:92:4a:d6:65:d5:ba:8f:63:22: 74:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DE:E5:06:10:F6:AF:D2:CD:BC:58:CE:5F:6D:33:00:BA:16:B9:DA X509v3 Authority Key Identifier: keyid:DB:E1:13:0B:C7:C6:DB:B2:DB:7C:BB:F1:4E:01:F6:18:6F:FD:BD:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-ETC8fG27LbfLvxTgH2GG_9vRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115480/96F28AC610DA11ED8A699E32C4F9AE02/2-ETC8fG27LbfLvxTgH2GG_9vRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:04:31:4d:80:40:cf:24:9a:67:41:db:7e:e7:95:fd:64:72: f1:0c:88:be:e1:21:6d:20:a1:d2:fc:18:e0:3c:dd:b8:e3:16: 55:93:a5:3c:39:23:2b:e4:32:ec:43:b3:aa:b3:7b:b0:7c:16: 20:9f:05:e9:a7:3a:0e:58:58:69:5b:17:b9:21:60:47:40:6b: 74:f7:ef:e3:46:62:f6:a4:ae:25:26:9c:f8:fc:db:8e:73:25: a2:7f:b9:a6:e9:d5:5e:ff:be:86:46:32:5d:1b:53:36:fa:06: b7:85:08:d8:54:61:f9:2f:7f:ef:d7:2c:7f:10:f7:f0:e7:e5: b4:57:d7:cb:7c:2f:9a:0f:ff:ca:33:18:c1:f4:72:fc:85:de: 70:8e:40:d0:7d:b1:a4:b7:53:22:28:9d:20:47:0a:b0:bd:2f: c0:a7:e3:18:a3:a0:a6:07:47:11:df:4b:db:89:2c:a5:21:4c: 11:8e:65:79:80:ea:64:10:d3:fc:75:b8:0f:66:4c:6e:e1:c6: ae:44:30:2e:ae:95:b8:de:29:1b:b1:12:cd:e6:9c:78:4d:83: 29:df:d8:6c:59:f9:09:cc:43:f3:cb:1d:94:91:dc:8a:dc:ed: 50:02:91:c0:7a:12:70:b6:e1:d7:e0:5c:d8:c4:74:14:09:f0: 80:27:d3:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU0ODAxMTAvBgNVBAUTKERCRTExMzBCQzdDNkRCQjJEQjdDQkJGMTRFMDFGNjE4 NkZGREJEMTAwHhcNMjQwNTMxMDUxMzM3WhcNMjQwNjA3MDUxMzM3WjAYMRYwFAYD VQQDEw02NjU5NWM4MS0xNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqv4FfPgWzq/V9XCGYx+lvirC9BmnVxx+4i0bwC8qI/NHxQ4ih6RvpEWZmMh SIe926CQ1lqhSXlUX2nHghIzJdjwsb7eOsYnaUiU3cly2NzVCs8tzHmmL/pVxB6z 2ipdrhI47w/DnRgeG4UZknNTivgxfljlUY1NMOBcZUCjMDvqsIyHLP1LFJxVqG+s 9qxIRoBG1DntAOv6fD7SiXI2JTlHkZBg9FZnKz9avfWMXtMJj6dytdDkshBlgOCc KQWkkH0VvAP6dL4iBAAUVidsJ2OSQvzSYgmpcCQ6Jx23HJCAsNV+ZyykWPpfuK3B YYF2EZ+va1qSStZl1bqPYyJ0lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDe5QYQ 9q/SzbxYzl9tMwC6FrnaMB8GA1UdIwQYMBaAFNvhEwvHxtuy23y78U4B9hhv/b0Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTQ4MC85NkYyOEFDNjEw REExMUVEOEE2OTlFMzJDNEY5QUUwMi8yLUVUQzhmRzI3TGJmTHZ4VGdIMkdHXzl2 UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItRVRDOGZHMjdMYmZMdnhUZ0gyR0dfOXZSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTQ4MC85NkYyOEFDNjEwREExMUVEOEE2OTlFMzJDNEY5QUUwMi8yLUVUQzhmRzI3 TGJmTHZ4VGdIMkdHXzl2UkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfBDFNgEDPJJpnQdt+55X9ZHLxDIi+4SFtIKHS/BjgPN244xZVk6U8 OSMr5DLsQ7Oqs3uwfBYgnwXppzoOWFhpWxe5IWBHQGt09+/jRmL2pK4lJpz4/NuO cyWif7mm6dVe/76GRjJdG1M2+ga3hQjYVGH5L3/v1yx/EPfw5+W0V9fLfC+aD//K MxjB9HL8hd5wjkDQfbGkt1MiKJ0gRwqwvS/Ap+MYo6CmB0cR30vbiSylIUwRjmV5 gOpkENP8dbgPZkxu4cauRDAurpW43ikbsRLN5px4TYMp39hsWfkJzEPzyx2UkdyK 3O1QApHAehJwtuHX4FzYxHQUCfCAJ9Ok -----END CERTIFICATE-----Generated at Fri May 31 06:49:03 2024 by rpki-client on console-ams.rpki-client.org