$ rpki-client -vvf rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft File: 8n_4duRl5zyaUv04SNvXZb-yNdQ.mft (raw, json) Hash identifier: h7Zwcq1CRc5ne1II/CZX+q++ywZ3tl0POzAzg0rxQaQ= Subject key identifier: 47:08:AA:9B:6F:85:85:D4:A4:52:2F:64:9D:71:6E:6A:8D:5A:1D:B5 Authority key identifier: F2:7F:F8:76:E4:65:E7:3C:9A:52:FD:38:48:DB:D7:65:BF:B2:35:D4 Certificate issuer: /CN=A91175FF/serialNumber=F27FF876E465E73C9A52FD3848DBD765BFB235D4 Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft Manifest number: 0C8C Signing time: Sat 18 May 2024 18:51:10 +0000 Manifest this update: Sat 18 May 2024 18:51:10 +0000 Manifest next update: Sat 25 May 2024 18:51:09 +0000 Files and hashes: 1: 8n_4duRl5zyaUv04SNvXZb-yNdQ.crl (hash: D1UJX9IxQvW889w9gKE6DOxpUZZG1KfCGOPV1RL2ScU=) 2: 3833FD20D09711E987F73A60C4F9AE02.roa (hash: q9QaJpJcAgaUxI19STDbfcWDCm+iJARRkO8jzMuvblw=) 3: 8A00E9284FB111EDBE702516C4F9AE02.roa (hash: gXKStnxAkArCvz0847iZVEsXQyjFAkhwmmc8yeEAlMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.crl rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175FF/serialNumber=F27FF876E465E73C9A52FD3848DBD765BFB235D4 Validity Not Before: May 18 18:51:10 2024 GMT Not After : May 25 18:51:09 2024 GMT Subject: CN=6648f89e-94d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:66:50:c0:8b:53:fa:40:9e:ac:0d:0d:b9:68: e4:8f:10:8d:12:59:af:5c:7a:d9:4e:89:4c:b4:66: a7:3f:1e:c7:74:34:c9:79:df:c6:79:fc:b8:7e:69: 42:13:c1:fa:51:8d:7b:15:7a:13:4a:ac:e9:f4:23: 20:a1:e5:1b:dd:6b:bf:9d:48:f9:51:c2:ed:7a:6f: e0:6f:ea:3c:2a:83:3d:25:d5:62:76:fb:cd:fd:18: 0b:91:36:4b:34:8c:3a:c9:d5:f3:c0:54:07:59:60: c5:be:40:1c:24:de:a7:78:99:08:96:29:80:07:08: a4:70:57:89:e2:a0:4b:02:48:e3:86:87:fe:73:9f: 88:96:f1:9d:ec:8d:91:90:d6:82:af:ac:83:4c:e9: 4d:bc:0f:5f:fb:f6:8e:12:8e:96:a3:7b:4e:37:f1: 15:82:d5:f8:6e:2e:13:d5:d6:5c:67:b1:07:3f:13: 2c:93:f2:5c:4a:41:97:9b:45:ad:d7:dc:c9:5a:98: 43:c6:ab:f0:ad:3f:40:fc:a4:cc:af:d4:53:c0:35: 25:66:84:70:7e:ab:2f:27:0f:a6:a4:06:b2:04:f5: bd:c9:86:a0:ff:70:3b:f6:f5:d9:2b:2f:78:60:54: f6:8e:38:43:a5:0b:63:91:72:f2:ef:91:80:9e:03: 4f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:08:AA:9B:6F:85:85:D4:A4:52:2F:64:9D:71:6E:6A:8D:5A:1D:B5 X509v3 Authority Key Identifier: keyid:F2:7F:F8:76:E4:65:E7:3C:9A:52:FD:38:48:DB:D7:65:BF:B2:35:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8d:c8:63:ee:a8:0c:39:06:02:ee:80:b3:3d:4b:0b:4e:77: a7:f8:4c:15:90:b8:82:5b:6f:24:3d:a0:b8:4d:53:28:1d:52: d5:71:5d:30:33:a3:fe:13:a3:fd:81:5f:e8:5d:9f:03:9c:c6: ca:30:bf:6a:14:fe:cd:42:0a:c1:da:99:55:73:b9:84:a6:2e: 38:17:3a:a1:65:11:06:87:34:ab:44:d6:9a:bb:d0:bc:d4:e1: f9:ed:15:1b:ad:20:33:51:3b:0f:0d:79:e5:28:00:d7:ec:8a: d6:45:e3:00:36:1f:62:58:62:f5:b5:ae:be:55:b6:4c:6e:c0: 8d:b7:31:5a:1c:8b:00:2a:03:32:7e:ba:f7:6f:bd:1a:7d:8d: 8c:f3:70:3f:2e:26:ec:ef:7c:af:a7:63:a8:60:9a:d8:a8:1a: c6:bd:99:61:95:be:3b:8b:50:0f:66:1d:af:ea:87:35:6f:f6: 81:8b:c9:b1:76:1e:59:31:04:2a:31:4e:ef:27:01:eb:2e:39: 2e:48:07:97:2e:5d:41:eb:c1:70:6b:9f:18:d6:fc:53:7d:c3: fa:93:a6:41:fa:65:fa:fa:52:24:92:17:52:24:39:6c:35:ba: cf:1e:8c:8e:d5:b3:0b:0b:f3:e2:6d:50:a5:b6:76:46:2c:71: 40:eb:99:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RkYxMTAvBgNVBAUTKEYyN0ZGODc2RTQ2NUU3M0M5QTUyRkQzODQ4REJENzY1 QkZCMjM1RDQwHhcNMjQwNTE4MTg1MTEwWhcNMjQwNTI1MTg1MTA5WjAYMRYwFAYD VQQDEw02NjQ4Zjg5ZS05NGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mZQwItT+kCerA0NuWjkjxCNElmvXHrZTolMtGanPx7HdDTJed/Gefy4fmlC E8H6UY17FXoTSqzp9CMgoeUb3Wu/nUj5UcLtem/gb+o8KoM9JdVidvvN/RgLkTZL NIw6ydXzwFQHWWDFvkAcJN6neJkIlimABwikcFeJ4qBLAkjjhof+c5+IlvGd7I2R kNaCr6yDTOlNvA9f+/aOEo6Wo3tON/EVgtX4bi4T1dZcZ7EHPxMsk/JcSkGXm0Wt 19zJWphDxqvwrT9A/KTMr9RTwDUlZoRwfqsvJw+mpAayBPW9yYag/3A79vXZKy94 YFT2jjhDpQtjkXLy75GAngNPvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcIqptv hYXUpFIvZJ1xbmqNWh21MB8GA1UdIwQYMBaAFPJ/+HbkZec8mlL9OEjb12W/sjXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGRi9FMTc2RDY3QUQw OTUxMUU5QjM0NUEwNURDNEY5QUUwMi84bl80ZHVSbDV6eWFVdjA0U052WFpiLXlO ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhuXzRkdVJsNXp5YVV2MDRTTnZYWmIteU5kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGRi9FMTc2RDY3QUQwOTUxMUU5QjM0NUEwNURDNEY5QUUwMi84bl80ZHVSbDV6 eWFVdjA0U052WFpiLXlOZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBojchj7qgMOQYC7oCzPUsLTnen+EwVkLiCW28kPaC4TVMoHVLVcV0w M6P+E6P9gV/oXZ8DnMbKML9qFP7NQgrB2plVc7mEpi44FzqhZREGhzSrRNaau9C8 1OH57RUbrSAzUTsPDXnlKADX7IrWReMANh9iWGL1ta6+VbZMbsCNtzFaHIsAKgMy frr3b70afY2M83A/Libs73yvp2OoYJrYqBrGvZlhlb47i1APZh2v6oc1b/aBi8mx dh5ZMQQqMU7vJwHrLjkuSAeXLl1B68Fwa58Y1vxTfcP6k6ZB+mX6+lIkkhdSJDls NbrPHoyO1bMLC/PibVCltnZGLHFA65kg -----END CERTIFICATE-----Generated at Sat May 18 20:15:58 2024 by rpki-client on console-ams.rpki-client.org