$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft File: vIYhQTCXFsDk3Dff_zPlqwxVStA.mft (raw, json) Hash identifier: n93wjYtGozcNWA+mtmatJPPkspR+O6kgPdUNlO1lzAM= Subject key identifier: 9F:EF:52:F0:2E:49:C7:AE:4E:94:D6:B4:B5:68:C7:EF:B0:D2:FE:24 Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft Manifest number: 0131 Signing time: Sun 19 May 2024 05:00:00 +0000 Manifest this update: Sun 19 May 2024 05:00:00 +0000 Manifest next update: Sun 26 May 2024 05:00:00 +0000 Files and hashes: 1: vIYhQTCXFsDk3Dff_zPlqwxVStA.crl (hash: EVFimyRmty854RCytlNMNNJJviIk9//lkVktBhoJSIE=) 2: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (hash: 3RREB5BVIX2iHbhQfmXVwStIA7fIlvhJpUbqjRjdhIU=) 3: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (hash: FrIFGxVfxISPDp5twHCcyob4YmRoRTzks+oq4BVbGDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: May 19 05:00:00 2024 GMT Not After : May 26 05:00:00 2024 GMT Subject: CN=66498750-06b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:e6:57:0d:ec:99:c3:d6:3d:1d:a8:1d:fd: 88:e6:c8:65:ae:f3:4d:e9:22:b6:ea:c1:86:25:5b: e4:32:dd:b7:4a:60:0b:3b:8e:ee:1f:18:5c:d2:0e: 71:02:49:ab:76:08:20:02:c6:38:94:2e:a4:de:25: 46:25:fc:ba:79:2a:74:2b:ca:1d:25:85:75:84:04: 0d:15:8f:33:95:ff:01:4f:61:a7:1e:68:c8:39:07: bb:b6:e2:65:43:cc:c6:8a:e4:4d:2a:9f:80:7d:d7: 18:7c:79:12:4b:b0:13:e1:f0:57:af:d2:7b:68:4c: 84:fc:74:33:df:3b:39:71:ae:18:d1:39:c9:64:91: cc:2a:4e:13:26:2e:8c:41:aa:b4:e7:a2:76:c7:5c: ee:45:31:a7:53:01:9a:c6:75:00:ad:7d:64:4c:d7: 9e:a9:f4:86:e7:c9:97:a6:f5:c4:2e:27:3f:30:65: 5e:35:42:35:a5:44:1b:73:e8:fa:48:52:0b:3f:c7: 0e:87:31:77:55:c0:46:5b:9b:cd:21:a2:14:e5:f0: d8:ea:8b:fb:53:5f:5b:24:12:fd:6d:65:b9:c5:59: 5c:eb:5f:b2:8a:8e:74:19:23:90:36:9a:be:4b:45: 20:d6:a2:e9:5e:ea:da:ea:2b:db:3e:78:cf:5f:08: c1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:EF:52:F0:2E:49:C7:AE:4E:94:D6:B4:B5:68:C7:EF:B0:D2:FE:24 X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:6d:99:56:67:76:c6:ad:43:a0:ad:54:ec:fc:49:45:3b:7c: a6:ac:ae:cb:b8:c0:0d:87:1b:5c:b1:3e:f4:9c:c4:dd:8f:66: 72:cc:ca:21:94:11:d4:ab:94:68:79:1f:c7:aa:d6:5d:37:f2: 45:a3:4d:a1:db:08:61:f1:91:ae:78:c4:10:14:ee:81:8d:79: b0:3f:14:40:d9:58:51:05:64:86:94:81:3d:13:e9:76:4e:62: 3d:b8:2a:e2:e8:7e:2a:62:a3:27:32:43:62:1d:2b:f9:8c:08: 46:ef:22:9e:8c:2b:fd:25:e1:99:84:7f:dc:1b:55:16:8e:17: 4d:d0:cf:f9:4c:a8:4e:fa:ac:78:d8:28:a7:01:32:eb:9b:5e: 74:e0:47:c3:df:29:85:f3:93:0f:21:51:16:80:ce:7e:d8:f2: fd:a9:3a:e0:9d:34:6c:d1:c8:79:a8:c3:16:27:e8:24:17:fd: 43:c9:e8:d1:0b:72:04:04:53:22:b3:21:c3:98:77:43:2e:b6: b4:d3:88:b7:da:84:8d:66:47:92:d9:ef:29:5f:9c:92:18:9c: 1a:12:e2:08:38:c3:91:93:14:09:8d:16:cb:b4:43:97:6d:c5: 25:ed:0b:f8:d7:7a:4f:ca:48:00:70:e9:d3:79:12:1f:4d:47: a9:c7:93:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjQwNTE5MDUwMDAwWhcNMjQwNTI2MDUwMDAwWjAYMRYwFAYD VQQDEw02NjQ5ODc1MC0wNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskDmVw3smcPWPR2oHf2I5shlrvNN6SK26sGGJVvkMt23SmALO47uHxhc0g5x AkmrdgggAsY4lC6k3iVGJfy6eSp0K8odJYV1hAQNFY8zlf8BT2GnHmjIOQe7tuJl Q8zGiuRNKp+AfdcYfHkSS7AT4fBXr9J7aEyE/HQz3zs5ca4Y0TnJZJHMKk4TJi6M Qaq056J2x1zuRTGnUwGaxnUArX1kTNeeqfSG58mXpvXELic/MGVeNUI1pUQbc+j6 SFILP8cOhzF3VcBGW5vNIaIU5fDY6ov7U19bJBL9bWW5xVlc61+yio50GSOQNpq+ S0Ug1qLpXura6ivbPnjPXwjBIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/vUvAu SceuTpTWtLVox++w0v4kMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUEyNy82QThCRDA4QzQ0NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZz RGszRGZmX3pQbHF3eFZTdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2bZlWZ3bGrUOgrVTs/ElFO3ymrK7LuMANhxtcsT70nMTdj2ZyzMoh lBHUq5RoeR/HqtZdN/JFo02h2whh8ZGueMQQFO6BjXmwPxRA2VhRBWSGlIE9E+l2 TmI9uCri6H4qYqMnMkNiHSv5jAhG7yKejCv9JeGZhH/cG1UWjhdN0M/5TKhO+qx4 2CinATLrm1504EfD3ymF85MPIVEWgM5+2PL9qTrgnTRs0ch5qMMWJ+gkF/1DyejR C3IEBFMisyHDmHdDLra004i32oSNZkeS2e8pX5ySGJwaEuIIOMORkxQJjRbLtEOX bcUl7Qv413pPykgAcOnTeRIfTUepx5Nf -----END CERTIFICATE-----Generated at Sun May 19 06:14:32 2024 by rpki-client on console-ams.rpki-client.org