$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: sgCjjucBZQ76Geg7fU5Z6P265C74iRxhxEZzAsIr8no= Subject key identifier: 8B:5F:37:21:71:F3:F2:2C:DF:7B:B8:A2:B4:83:4F:82:DE:41:48:71 Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 0109 Signing time: Sun 19 May 2024 05:32:25 +0000 Manifest this update: Sun 19 May 2024 05:32:24 +0000 Manifest next update: Sun 26 May 2024 05:32:24 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: yDaSa5A+1Y81zqCbPeLVaxStkZ66I5FtRrUa9On+hqc=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: cffAuKq9HaGiQsNFqO87KLS6SLeAfxSzdhQJwAVBE4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: May 19 05:32:24 2024 GMT Not After : May 26 05:32:24 2024 GMT Subject: CN=66498ee8-23f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:e2:21:3c:e0:1a:d6:2c:1d:96:84:85:43: 92:62:c4:bd:f1:11:c2:6a:ea:95:a7:1b:2c:5e:ef: f0:fb:c6:99:83:e0:6a:b9:9d:62:9b:57:10:f3:b1: 0e:43:56:eb:c9:bc:67:59:e4:00:ce:6f:70:56:7f: 48:75:f7:cb:af:cf:66:7b:b1:a7:24:97:ad:f1:94: ca:c6:d8:07:4e:ae:02:b7:72:7f:67:e4:da:43:f6: 8b:89:71:47:f8:dd:32:5f:2f:14:78:fe:1c:b6:28: 27:1e:9f:3b:cf:b7:6e:22:86:a2:aa:d2:41:3f:30: 7f:6e:e8:00:1a:4e:bb:0f:40:5f:e8:1f:c5:98:fb: 20:14:9f:1e:5a:e5:17:a0:e8:4c:f4:dc:aa:9b:77: 8d:07:f7:5f:24:ce:ec:a0:68:f6:8f:75:a6:b6:64: c2:60:17:59:b1:b8:87:4f:23:33:6d:a1:2e:f4:66: 05:81:a4:22:b3:99:c3:69:32:c2:f1:47:46:4b:8d: 11:59:ef:46:a7:65:fa:80:5c:31:9a:6a:25:67:01: 51:7f:6a:85:78:e7:7f:3f:a4:f6:09:be:e2:6e:81: 76:73:5e:51:97:dd:c9:fd:cc:a4:00:85:e2:df:9f: e8:89:31:1d:63:5c:73:70:e1:62:40:17:17:b9:7e: e9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5F:37:21:71:F3:F2:2C:DF:7B:B8:A2:B4:83:4F:82:DE:41:48:71 X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:57:7d:e1:bc:1c:cc:0f:a6:0b:29:ce:d3:6d:cf:3c:98:b9: c4:ed:cb:a2:5c:21:10:8f:d2:b6:88:39:bd:71:72:85:3c:28: dd:ff:d5:76:fe:78:8a:72:cd:89:6d:bc:c3:9d:46:91:3a:77: b4:04:5f:c6:62:fb:80:35:41:36:cb:83:2b:1e:de:86:1f:4e: 5d:03:16:9a:b8:4d:02:6f:97:e7:1c:34:47:ed:29:fb:1c:15: 13:d6:ac:07:c3:a8:59:6d:28:8a:a5:2e:d2:1a:0b:ce:a8:ce: 1a:6b:4d:6c:7d:cf:c4:f4:9b:4a:c3:ef:c8:a6:8d:19:30:c9: 9a:b4:09:91:eb:c2:c0:c7:39:6a:4d:d3:aa:28:66:71:fe:ec: 70:bd:c6:8e:a4:9d:cf:19:b2:ad:b7:a3:97:86:e7:c3:87:2b: d0:c5:da:c2:08:b2:d3:fa:fc:70:32:c6:cc:5b:2b:9f:07:e6: 5d:c5:5b:a3:06:43:6f:9b:d8:1b:64:5e:95:16:00:74:43:a6: ed:30:6c:e2:14:f1:69:13:f2:4f:00:6f:86:e2:24:dd:0f:6e: 67:0b:25:86:08:bc:95:af:c4:63:f9:3a:35:e5:ab:ce:13:7f: 7f:28:df:13:62:3e:0e:cf:c4:d9:3d:60:68:74:91:91:6c:2c: 2c:6f:fd:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjQwNTE5MDUzMjI0WhcNMjQwNTI2MDUzMjI0WjAYMRYwFAYD VQQDEw02NjQ5OGVlOC0yM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPXiITzgGtYsHZaEhUOSYsS98RHCauqVpxssXu/w+8aZg+BquZ1im1cQ87EO Q1brybxnWeQAzm9wVn9IdffLr89me7GnJJet8ZTKxtgHTq4Ct3J/Z+TaQ/aLiXFH +N0yXy8UeP4ctignHp87z7duIoaiqtJBPzB/bugAGk67D0Bf6B/FmPsgFJ8eWuUX oOhM9Nyqm3eNB/dfJM7soGj2j3WmtmTCYBdZsbiHTyMzbaEu9GYFgaQis5nDaTLC 8UdGS40RWe9Gp2X6gFwxmmolZwFRf2qFeOd/P6T2Cb7iboF2c15Rl93J/cykAIXi 35/oiTEdY1xzcOFiQBcXuX7p7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItfNyFx 8/Is33u4orSDT4LeQUhxMB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2V33hvBzMD6YLKc7Tbc88mLnE7cuiXCEQj9K2iDm9cXKFPCjd/9V2 /niKcs2JbbzDnUaROne0BF/GYvuANUE2y4MrHt6GH05dAxaauE0Cb5fnHDRH7Sn7 HBUT1qwHw6hZbSiKpS7SGgvOqM4aa01sfc/E9JtKw+/Ipo0ZMMmatAmR68LAxzlq TdOqKGZx/uxwvcaOpJ3PGbKtt6OXhufDhyvQxdrCCLLT+vxwMsbMWyufB+ZdxVuj BkNvm9gbZF6VFgB0Q6btMGziFPFpE/JPAG+G4iTdD25nCyWGCLyVr8Rj+To15avO E39/KN8TYj4Oz8TZPWBodJGRbCwsb/2J -----END CERTIFICATE-----Generated at Sun May 19 06:14:32 2024 by rpki-client on console-ams.rpki-client.org