$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft File: s9da4ezu9vkr0X0MSzZRjVvndvE.mft (raw, json) Hash identifier: L5Rk63U+GFVvC6c/OVggU7VPqzyk3vlBOGxNPEXwWyY= Subject key identifier: 87:59:39:BA:76:3C:D5:83:85:FD:97:75:2E:71:D2:22:C2:4A:49:C4 Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft Manifest number: 0D Signing time: Sun 19 May 2024 08:51:56 +0000 Manifest this update: Sun 19 May 2024 08:51:56 +0000 Manifest next update: Sun 26 May 2024 08:51:56 +0000 Files and hashes: 1: s9da4ezu9vkr0X0MSzZRjVvndvE.crl (hash: bSMQeh8kEntp5yCw8TtEvQvNCi4IOBHivFa7lBk1gYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Validity Not Before: May 19 08:51:56 2024 GMT Not After : May 26 08:51:56 2024 GMT Subject: CN=6649bdac-1667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dd:1e:a0:b7:d6:66:18:da:42:7b:6c:4a:1e: de:9b:9b:61:e9:02:28:e2:5d:41:55:8c:36:9e:13: 41:02:41:31:ff:2b:5f:4e:23:76:20:b7:ce:d7:0d: 4e:37:95:f9:4f:fa:94:69:98:a0:86:aa:46:d0:de: 0c:ef:74:80:b7:2e:a0:f7:1a:1e:20:64:46:fd:17: 56:0d:75:9d:2b:8f:e8:54:d2:28:f1:7e:69:00:03: f6:8f:1e:fa:4f:a7:87:ec:bd:5f:0d:f7:5b:8e:9d: 3d:92:fd:50:18:07:d6:f9:d8:5e:f3:5e:2e:56:53: 73:e9:f5:dd:5c:5a:c8:81:ad:13:ee:67:41:bd:bb: ec:80:3e:84:90:60:79:f0:a4:4c:ab:23:0e:28:97: f0:18:af:1e:ad:28:22:09:56:0f:03:4a:b4:f1:f2: c1:45:20:f0:d7:3d:c6:7f:de:6c:bb:e1:18:fa:47: f1:0f:ca:67:d4:d9:1e:1a:90:e1:cc:08:44:a9:4b: ed:f0:72:a8:a8:34:35:97:f6:04:c2:74:65:8e:52: 98:c4:2b:03:0e:ac:6d:ef:db:ef:b5:fe:03:f7:b4: 12:bb:45:7b:4b:33:5a:7d:0e:c8:97:95:80:53:40: 88:07:18:1a:04:f4:0d:8b:2e:4d:09:38:39:09:2f: 2e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:59:39:BA:76:3C:D5:83:85:FD:97:75:2E:71:D2:22:C2:4A:49:C4 X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:79:19:9a:92:64:31:a7:31:b1:50:58:6f:1a:9e:d2:41:80: 3a:b9:55:60:8d:6a:40:0f:26:9d:ef:81:76:c5:86:12:73:c4: c1:b8:63:22:1f:80:66:ba:42:83:98:35:a9:0f:5b:f6:d0:c1: 39:fb:9e:b9:11:4d:33:01:c7:d9:e0:dc:ab:b5:c0:7c:bb:e0: 6b:30:db:8b:4c:99:7e:9c:df:04:ba:d7:d1:69:5e:90:3b:e1: a9:2c:4f:8a:2f:cc:82:4c:24:10:6f:72:e8:b6:4a:ac:2b:fb: c9:5f:90:41:52:bf:18:f5:9a:9c:c4:f1:06:97:67:ca:f0:27: 8d:3e:76:1d:76:2e:72:46:71:74:8f:e1:20:8a:e8:43:23:d4: 0c:97:d2:a9:f8:7b:7a:bb:44:ee:6f:48:6f:11:d3:c0:8c:78: 2c:a8:f6:f2:f0:57:bc:9d:94:27:14:45:6f:8c:cf:72:07:8b: 69:57:4b:10:c8:6c:db:1e:52:ed:06:26:0b:cb:e1:38:8b:04: 8b:f4:c9:f1:87:ca:7b:2d:9c:ef:1f:9d:98:e1:45:e4:4a:f8: 61:a7:58:20:a3:ee:9a:2a:5c:26:ba:b3:e6:01:ef:a7:0e:31: 1f:49:43:df:c4:17:cf:e1:c3:98:1d:11:06:a2:cc:ec:f7:d9: 4f:86:d8:ec -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjVDQTExMC8GA1UEBRMoQjNENzVBRTFFQ0VFRjZGOTJCRDE3RDBDNEIzNjUxOEQ1 QkU3NzZGMTAeFw0yNDA1MTkwODUxNTZaFw0yNDA1MjYwODUxNTZaMBgxFjAUBgNV BAMTDTY2NDliZGFjLTE2NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr3R6gt9ZmGNpCe2xKHt6bm2HpAijiXUFVjDaeE0ECQTH/K19OI3Ygt87XDU43 lflP+pRpmKCGqkbQ3gzvdIC3LqD3Gh4gZEb9F1YNdZ0rj+hU0ijxfmkAA/aPHvpP p4fsvV8N91uOnT2S/VAYB9b52F7zXi5WU3Pp9d1cWsiBrRPuZ0G9u+yAPoSQYHnw pEyrIw4ol/AYrx6tKCIJVg8DSrTx8sFFIPDXPcZ/3my74Rj6R/EPymfU2R4akOHM CESpS+3wcqioNDWX9gTCdGWOUpjEKwMOrG3v2++1/gP3tBK7RXtLM1p9DsiXlYBT QIgHGBoE9A2LLk0JODkJLy5TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh1k5unY8 1YOF/Zd1LnHSIsJKScQwHwYDVR0jBBgwFoAUs9da4ezu9vkr0X0MSzZRjVvndvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNUNBLzlFN0MyQ0VFMDI0 RjExRUZBQzY1RjU3N0M0RjlBRTAyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvczlkYTRlenU5dmtyMFgwTVN6WlJqVnZuZHZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG NUNBLzlFN0MyQ0VFMDI0RjExRUZBQzY1RjU3N0M0RjlBRTAyL3M5ZGE0ZXp1OXZr cjBYME1TelpSalZ2bmR2RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFJ5GZqSZDGnMbFQWG8antJBgDq5VWCNakAPJp3vgXbFhhJzxMG4YyIf gGa6QoOYNakPW/bQwTn7nrkRTTMBx9ng3Ku1wHy74Gsw24tMmX6c3wS619FpXpA7 4aksT4ovzIJMJBBvcui2Sqwr+8lfkEFSvxj1mpzE8QaXZ8rwJ40+dh12LnJGcXSP 4SCK6EMj1AyX0qn4e3q7RO5vSG8R08CMeCyo9vLwV7ydlCcURW+Mz3IHi2lXSxDI bNseUu0GJgvL4TiLBIv0yfGHynstnO8fnZjhReRK+GGnWCCj7poqXCa6s+YB76cO MR9JQ9/EF8/hw5gdEQaizOz32U+G2Ow= -----END CERTIFICATE-----Generated at Sun May 19 09:32:15 2024 by rpki-client on console-ams.rpki-client.org