$ rpki-client -vvf rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft File: --bA8ysvL8RXYKA0LkO79VK03oU.mft (raw, json) Hash identifier: TDDAdCKlSAECGEvDw8vlcG1pHMPGJjapUDgz3mnAyX0= Subject key identifier: 01:30:E6:4A:29:77:18:1A:39:2E:97:4A:32:7C:6B:C9:7B:9B:14:E5 Authority key identifier: FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 Certificate issuer: /CN=A9124BD3/serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Certificate serial: 0CDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft Manifest number: 0CC8 Signing time: Sat 18 May 2024 18:48:08 +0000 Manifest this update: Sat 18 May 2024 18:48:08 +0000 Manifest next update: Sat 25 May 2024 18:48:08 +0000 Files and hashes: 1: --bA8ysvL8RXYKA0LkO79VK03oU.crl (hash: XloDglQMsAwh0oATsaoLHHOzKEdfppedDjfoPxh6QQY=) 2: 4C67EC06C68E11E983395515C4F9AE02.roa (hash: inb5WV8621/3BV44iygWcyRFomHcz+D1F+rJKLQ6nYE=) 3: CA761A36760A11EC8FB55C23C4F9AE02.roa (hash: fRPTxo1hNLZM3VzbxpBMmPtAzY9W9uOhqbbYRE+Vnz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3290 (0xcda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124BD3/serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Validity Not Before: May 18 18:48:08 2024 GMT Not After : May 25 18:48:08 2024 GMT Subject: CN=6648f7e8-5f94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:26:c7:37:97:16:12:1d:c2:4a:c8:ef:2e:6b: eb:c2:6d:02:37:39:85:fa:c6:7c:0d:cb:c2:77:0b: a5:96:db:11:f7:da:88:3d:ce:9c:9b:06:a6:ae:9b: 81:62:99:39:b8:df:87:40:2d:71:1d:16:88:5a:12: b8:1c:d6:58:ee:b5:82:dc:86:85:35:27:08:17:70: d9:b8:76:3d:4f:a8:51:54:8f:47:8e:60:b4:ed:cd: da:47:fe:dd:9c:e9:18:57:0c:f4:3d:c7:0d:53:bf: 66:9b:13:ba:35:e2:55:1d:cf:52:06:8b:b3:29:61: a1:aa:34:42:e2:ec:43:36:ed:fa:d2:97:f3:27:5e: ee:5e:ec:a9:98:49:48:c8:a4:6f:96:8f:78:21:1a: 57:b5:74:7d:c3:aa:37:36:e0:3f:80:99:d3:63:2b: a9:94:eb:c8:73:0a:26:29:54:8c:f2:7f:d3:79:27: ab:1a:62:2b:c4:d7:98:63:55:64:26:6a:d5:2f:3d: 14:86:03:b8:5c:73:06:f1:b3:16:a0:27:54:25:52: 69:0d:47:bd:e6:36:f4:2c:d6:62:6a:74:96:ab:9a: d9:1d:52:5b:f8:90:33:5c:17:bb:49:63:5d:ab:bc: 82:6d:6b:16:0d:af:0a:8c:0d:c7:03:85:86:ec:ca: 20:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:30:E6:4A:29:77:18:1A:39:2E:97:4A:32:7C:6B:C9:7B:9B:14:E5 X509v3 Authority Key Identifier: keyid:FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:bf:ab:27:b6:d2:2e:75:9f:ef:d0:c6:b1:8b:55:3e:c5:d7: 67:cd:08:cd:c3:a2:98:6b:fa:97:df:e9:84:64:b0:f2:5d:ce: 2d:2a:f8:01:21:6a:b5:30:80:e1:31:5a:73:af:84:e5:7b:be: fa:7f:46:2b:e8:51:47:f6:9d:10:dd:15:7a:22:8d:39:2c:4d: 5a:d4:99:01:a9:bf:e1:72:52:5f:f8:0f:17:bf:ec:54:b8:95: 96:da:20:ab:8e:3b:f8:9e:aa:20:71:98:a6:18:7a:a0:61:c0: f1:02:9a:87:c7:aa:01:1c:cd:8f:4f:50:ad:18:9e:78:85:45: 16:48:b7:58:a7:f4:ee:9a:c1:0c:25:84:85:4b:c5:b0:61:db: 33:ca:ff:bf:19:fb:c1:a6:7c:c7:69:81:9c:15:5a:b6:5b:96: 49:45:89:4d:81:d6:e2:98:40:af:8c:83:6f:60:de:12:63:66: 0c:10:ea:8c:4a:88:96:31:b3:93:3d:c5:42:6d:af:63:8a:dc: 98:da:ab:4f:32:06:fd:a6:cd:66:9b:37:1e:bd:2a:32:bc:0a: 6d:45:b6:43:cf:d3:4e:68:8d:dd:df:18:e0:b4:1d:82:2d:57: ee:e2:bb:9d:4e:ed:04:cf:10:07:4f:ec:08:b6:a6:e5:66:fe: d2:bd:45:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjRCRDMxMTAvBgNVBAUTKEZCRTZDMEYzMkIyRjJGQzQ1NzYwQTAzNDJFNDNCQkY1 NTJCNERFODUwHhcNMjQwNTE4MTg0ODA4WhcNMjQwNTI1MTg0ODA4WjAYMRYwFAYD VQQDEw02NjQ4ZjdlOC01Zjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArybHN5cWEh3CSsjvLmvrwm0CNzmF+sZ8DcvCdwulltsR99qIPc6cmwamrpuB Ypk5uN+HQC1xHRaIWhK4HNZY7rWC3IaFNScIF3DZuHY9T6hRVI9HjmC07c3aR/7d nOkYVwz0PccNU79mmxO6NeJVHc9SBouzKWGhqjRC4uxDNu360pfzJ17uXuypmElI yKRvlo94IRpXtXR9w6o3NuA/gJnTYyuplOvIcwomKVSM8n/TeSerGmIrxNeYY1Vk JmrVLz0UhgO4XHMG8bMWoCdUJVJpDUe95jb0LNZianSWq5rZHVJb+JAzXBe7SWNd q7yCbWsWDa8KjA3HA4WG7MogowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEw5kop dxgaOS6XSjJ8a8l7mxTlMB8GA1UdIwQYMBaAFPvmwPMrLy/EV2CgNC5Du/VStN6F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNEJEMy8wRTREODY3QUM2 OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4UlhZS0EwTGtPNzlWSzAz b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0tYkE4eXN2TDhSWFlLQTBMa083OVZLMDNvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NEJEMy8wRTREODY3QUM2OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4 UlhZS0EwTGtPNzlWSzAzb1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0v6snttIudZ/v0Maxi1U+xddnzQjNw6KYa/qX3+mEZLDyXc4tKvgB IWq1MIDhMVpzr4Tle776f0Yr6FFH9p0Q3RV6Io05LE1a1JkBqb/hclJf+A8Xv+xU uJWW2iCrjjv4nqogcZimGHqgYcDxApqHx6oBHM2PT1CtGJ54hUUWSLdYp/TumsEM JYSFS8WwYdszyv+/GfvBpnzHaYGcFVq2W5ZJRYlNgdbimECvjINvYN4SY2YMEOqM SoiWMbOTPcVCba9jityY2qtPMgb9ps1mmzcevSoyvAptRbZDz9NOaI3d3xjgtB2C LVfu4rudTu0EzxAHT+wItqblZv7SvUUI -----END CERTIFICATE-----Generated at Sat May 18 20:15:58 2024 by rpki-client on console-ams.rpki-client.org