$ rpki-client -vvf rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft File: P9UxYCV9sBsu4O8BPB4tQusaKI0.mft (raw, json) Hash identifier: mEIKvC4tH6kXZH6RB8hwdWXDf5sSN68o0SHVgAI8+V4= Subject key identifier: B8:90:0D:DE:AF:91:E5:B3:85:78:30:9E:2D:22:4B:56:22:FD:E9:5C Authority key identifier: 3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D Certificate issuer: /CN=A911D51C/serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D Certificate serial: 0431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft Manifest number: 042E Signing time: Sun 19 May 2024 01:59:32 +0000 Manifest this update: Sun 19 May 2024 01:59:31 +0000 Manifest next update: Sun 26 May 2024 01:59:31 +0000 Files and hashes: 1: P9UxYCV9sBsu4O8BPB4tQusaKI0.crl (hash: j5BoiZ6GJX9pTMY2re7oYzqq89PXxyW841lkPHZZkIY=) 2: A7493DA6145611ECAA3B5769C4F9AE02.roa (hash: vBMOEhbnWd+xBYIp5Uv0snS8ecDWCVpHFv4isRm25Is=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.crl rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D51C/serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D Validity Not Before: May 19 01:59:31 2024 GMT Not After : May 26 01:59:31 2024 GMT Subject: CN=66495d03-22fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6d:0f:8c:b4:b7:fc:bc:cd:70:ab:f1:2f:23: eb:c7:e9:62:23:8c:05:0d:1b:23:1d:be:85:67:22: 5c:95:a3:c8:26:0b:62:8a:a1:8c:c4:4a:61:86:df: ff:0d:1b:b6:01:62:6f:4f:c4:09:32:f4:09:de:85: 1d:74:16:4e:7a:42:fd:07:0b:9b:33:22:02:5d:b3: 31:08:92:18:73:1e:ec:cd:60:ee:53:bf:af:b8:dc: 24:29:df:c3:35:6f:f6:a0:0e:8e:80:3b:ff:1a:e3: 2e:90:88:cf:2e:18:1c:fe:fb:af:a3:16:ba:d7:0d: 19:2f:d7:c2:fd:a5:86:fb:b5:0f:65:e9:49:65:4b: 3b:20:21:3f:be:5f:a0:97:58:c8:aa:30:c6:21:a0: 88:53:99:db:7a:92:69:04:29:5e:53:7b:fe:c7:40: 69:55:5e:35:60:c2:37:6e:b9:5f:4a:ea:c6:f9:8d: 7a:3f:26:d8:e3:a0:1f:13:81:32:63:99:c2:68:86: 68:cc:b3:a6:25:dc:75:47:1a:98:6a:40:7e:eb:68: bb:94:5a:e6:8a:d8:a1:ea:8d:a5:1a:c2:c0:70:8a: 51:67:13:ac:00:95:de:fa:ea:e4:3c:65:b8:81:62: 81:33:0d:8b:e3:c3:5b:a9:e4:22:a4:da:b0:a9:14: de:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:90:0D:DE:AF:91:E5:B3:85:78:30:9E:2D:22:4B:56:22:FD:E9:5C X509v3 Authority Key Identifier: keyid:3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:18:ef:50:16:97:aa:0e:52:f9:72:f8:c1:18:89:ea:55:3f: 0c:6f:d1:37:15:9f:3d:62:a1:93:b0:aa:5b:95:ea:85:aa:29: c2:e7:af:7a:4f:5d:fc:4c:ad:14:13:2a:04:ca:92:2a:f1:46: e5:88:9c:9b:fd:fb:51:e8:da:e7:23:f9:7d:94:e5:07:97:03: 7d:5f:97:27:e2:ef:7d:a5:81:7d:9e:8d:1d:4b:bb:ad:24:5f: fc:6a:31:e6:04:57:90:f7:cc:8d:78:89:ad:cd:90:f0:78:15: 98:a2:1d:a7:db:05:9d:09:46:ba:a5:a4:9a:d0:11:e0:72:cb: 43:ac:a2:fd:c4:89:e0:f2:c0:94:4c:ce:5a:f1:b5:c1:7d:66: 0e:3d:af:1e:9a:2d:e3:da:d7:c6:23:c6:fc:82:d0:8a:3a:f0: 4b:df:a4:b3:9d:c9:be:b0:69:8c:59:a3:4c:bd:07:12:92:ae: 0d:da:03:13:07:84:04:30:9e:a6:26:f0:d8:e6:e7:83:96:d8: fe:67:16:c5:2c:17:50:6d:c0:a9:f6:48:5f:b3:55:e7:15:3d: 70:ce:f9:22:f6:78:8b:db:d2:3f:bc:0c:6e:8b:0d:ad:1f:c7: a9:89:bb:aa:53:15:6e:10:73:64:26:6d:de:e1:74:b8:98:f2: e8:38:11:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ1MUMxMTAvBgNVBAUTKDNGRDUzMTYwMjU3REIwMUIyRUUwRUYwMTNDMUUyRDQy RUIxQTI4OEQwHhcNMjQwNTE5MDE1OTMxWhcNMjQwNTI2MDE1OTMxWjAYMRYwFAYD VQQDEw02NjQ5NWQwMy0yMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp20PjLS3/LzNcKvxLyPrx+liI4wFDRsjHb6FZyJclaPIJgtiiqGMxEphht// DRu2AWJvT8QJMvQJ3oUddBZOekL9BwubMyICXbMxCJIYcx7szWDuU7+vuNwkKd/D NW/2oA6OgDv/GuMukIjPLhgc/vuvoxa61w0ZL9fC/aWG+7UPZelJZUs7ICE/vl+g l1jIqjDGIaCIU5nbepJpBCleU3v+x0BpVV41YMI3brlfSurG+Y16PybY46AfE4Ey Y5nCaIZozLOmJdx1RxqYakB+62i7lFrmitih6o2lGsLAcIpRZxOsAJXe+urkPGW4 gWKBMw2L48NbqeQipNqwqRTedQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiQDd6v keWzhXgwni0iS1Yi/elcMB8GA1UdIwQYMBaAFD/VMWAlfbAbLuDvATweLULrGiiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDUxQy9CRDMxMjcxNjE0 NTQxMUVDQTQ2ODcyNjhDNEY5QUUwMi9QOVV4WUNWOXNCc3U0TzhCUEI0dFF1c2FL STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5VXhZQ1Y5c0JzdTRPOEJQQjR0UXVzYUtJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDUxQy9CRDMxMjcxNjE0NTQxMUVDQTQ2ODcyNjhDNEY5QUUwMi9QOVV4WUNWOXNC c3U0TzhCUEI0dFF1c2FLSTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATGO9QFpeqDlL5cvjBGInqVT8Mb9E3FZ89YqGTsKpbleqFqinC5696 T138TK0UEyoEypIq8UbliJyb/ftR6NrnI/l9lOUHlwN9X5cn4u99pYF9no0dS7ut JF/8ajHmBFeQ98yNeImtzZDweBWYoh2n2wWdCUa6paSa0BHgcstDrKL9xIng8sCU TM5a8bXBfWYOPa8emi3j2tfGI8b8gtCKOvBL36Szncm+sGmMWaNMvQcSkq4N2gMT B4QEMJ6mJvDY5ueDltj+ZxbFLBdQbcCp9khfs1XnFT1wzvki9niL29I/vAxuiw2t H8epibuqUxVuEHNkJm3e4XS4mPLoOBHY -----END CERTIFICATE-----Generated at Sun May 19 02:59:04 2024 by rpki-client on console-ams.rpki-client.org