$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: gv6TVwYZIyD+FXoC2oTrSlh62M6T4z/yYAfir/k79Og= Subject key identifier: 42:CE:39:0B:AD:20:82:EE:E4:05:2B:46:00:48:0F:FD:22:5B:B0:0D Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2CBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2C5A Signing time: Sat 18 May 2024 15:47:36 +0000 Manifest this update: Sat 18 May 2024 15:47:35 +0000 Manifest next update: Sat 25 May 2024 15:47:35 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: eaJB7mW3PXaJQ/uw1Pfyz93hGzAebNAukpYWDdTw8Lg=) 2: B98FDC9C012D11EA99FBD824C4F9AE02.roa (hash: 4CDMDervvfKbg91Pt4DNYQyZpzoDFgFlLcdrIby4ls8=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: ezooYl/c+wjopILKX1z5agSeWOeibdAC4+U9dh0uw1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11452 (0x2cbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: May 18 15:47:35 2024 GMT Not After : May 25 15:47:35 2024 GMT Subject: CN=6648cd97-9669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3a:86:87:a2:fa:69:60:b0:26:50:44:1e:60: 95:c3:6a:6b:d3:68:20:ef:bf:a9:cc:e0:5c:4e:6b: 6f:49:33:b8:97:94:51:46:19:ed:c5:31:bd:b4:03: 31:77:68:dd:c7:96:85:7d:b1:ab:82:b7:d6:72:71: f7:e6:ed:a6:b4:dd:0a:77:4e:bc:82:c1:e1:cc:50: 75:11:79:69:55:1c:1c:5d:e6:26:e5:bd:20:f1:98: aa:e1:fa:23:bb:e2:fc:9c:71:cb:f6:00:19:c8:9f: ed:75:3a:1b:de:25:75:0e:8d:44:df:40:61:67:05: 69:32:c0:50:86:69:5e:54:01:fe:5c:be:2d:7a:0c: a3:0e:a9:29:79:a5:ab:db:91:de:62:9f:e5:cb:5f: 70:71:29:87:bb:5f:70:40:52:3d:f6:ae:80:7f:96: 1e:3b:de:61:62:be:b3:f6:ae:28:e6:50:30:a6:b4: 3b:2e:65:0e:98:53:ea:f1:c5:ba:b8:cf:ba:c0:99: 8d:1c:f9:a3:45:57:09:1c:84:63:7c:36:8c:75:6e: 98:91:f3:a9:da:b5:6d:74:2b:91:d6:bd:1d:6a:86: 19:45:c4:84:11:94:97:31:b8:8f:72:72:7c:3a:a9: b4:04:cf:c7:c0:bb:81:1a:6f:97:14:0f:52:8c:43: f4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CE:39:0B:AD:20:82:EE:E4:05:2B:46:00:48:0F:FD:22:5B:B0:0D X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:7e:50:99:a9:01:81:0b:1f:57:b1:66:e8:14:73:13:2d:52: ba:30:2f:27:65:ba:f8:c2:c2:e3:13:0e:eb:25:01:96:e5:ae: 2f:e5:57:04:2f:6d:31:38:3d:00:c7:2c:22:00:00:0f:d9:89: f3:77:6f:39:cf:2f:be:31:66:39:d2:65:c1:5b:ca:a8:4b:c6: 3a:cf:60:e4:02:f1:c4:5f:5d:ca:93:96:c8:5f:1e:7c:10:3b: 91:4e:ec:2f:ba:c2:10:56:af:0f:88:a9:06:5e:1a:7b:2d:87: b0:ab:94:c1:9c:ee:c3:35:f8:ec:87:5a:53:2b:a9:a0:5e:63: 3e:34:fa:12:4c:be:7b:df:53:5a:a6:c5:c7:c6:28:50:11:16: 12:12:88:1c:44:65:63:6d:6e:23:a4:ff:3c:53:7e:cd:4a:d8: 4a:bc:53:da:31:84:35:55:02:e1:ab:42:ea:d0:0b:7d:af:dd: a0:04:3a:f7:61:ce:31:b4:d8:92:9e:02:68:4f:5e:48:8e:f8: 8e:8e:3a:68:8c:ab:49:5f:c8:2c:c4:e2:65:d4:d6:5e:95:ce: 20:75:b1:a6:4b:5d:e5:79:ed:80:e9:6f:2c:da:10:a4:0d:cb: ff:e8:2e:01:71:92:44:ef:53:a1:13:f6:55:bc:06:02:62:ce: 5e:c3:15:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjQwNTE4MTU0NzM1WhcNMjQwNTI1MTU0NzM1WjAYMRYwFAYD VQQDEw02NjQ4Y2Q5Ny05NjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTqGh6L6aWCwJlBEHmCVw2pr02gg77+pzOBcTmtvSTO4l5RRRhntxTG9tAMx d2jdx5aFfbGrgrfWcnH35u2mtN0Kd068gsHhzFB1EXlpVRwcXeYm5b0g8Ziq4foj u+L8nHHL9gAZyJ/tdTob3iV1Do1E30BhZwVpMsBQhmleVAH+XL4tegyjDqkpeaWr 25HeYp/ly19wcSmHu19wQFI99q6Af5YeO95hYr6z9q4o5lAwprQ7LmUOmFPq8cW6 uM+6wJmNHPmjRVcJHIRjfDaMdW6YkfOp2rVtdCuR1r0daoYZRcSEEZSXMbiPcnJ8 Oqm0BM/HwLuBGm+XFA9SjEP01wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELOOQut IILu5AUrRgBID/0iW7ANMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARflCZqQGBCx9XsWboFHMTLVK6MC8nZbr4wsLjEw7rJQGW5a4v5VcE L20xOD0AxywiAAAP2Ynzd285zy++MWY50mXBW8qoS8Y6z2DkAvHEX13Kk5bIXx58 EDuRTuwvusIQVq8PiKkGXhp7LYewq5TBnO7DNfjsh1pTK6mgXmM+NPoSTL5731Na psXHxihQERYSEogcRGVjbW4jpP88U37NSthKvFPaMYQ1VQLhq0Lq0At9r92gBDr3 Yc4xtNiSngJoT15IjviOjjpojKtJX8gsxOJl1NZelc4gdbGmS13lee2A6W8s2hCk Dcv/6C4BcZJE71OhE/ZVvAYCYs5ewxXu -----END CERTIFICATE-----Generated at Sat May 18 17:20:03 2024 by rpki-client on console-ams.rpki-client.org