$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: kzyUc1U58tpedDVZC5M30+/qe/0L6/0UMVBuJgcLhJQ= Subject key identifier: F4:C5:08:1B:14:CF:01:58:2F:24:86:6A:15:C4:6C:D7:53:80:5E:9D Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 0525 Signing time: Sun 19 May 2024 01:00:06 +0000 Manifest this update: Sun 19 May 2024 01:00:05 +0000 Manifest next update: Sun 26 May 2024 01:00:05 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: hfRCtQxWsX33J+PGNTW/u5aC4srWQj/9whDxadzeevQ=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Validity Not Before: May 19 01:00:05 2024 GMT Not After : May 26 01:00:05 2024 GMT Subject: CN=66494f15-5811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7e:f6:7d:8f:4e:8f:99:83:d0:7e:af:01:27: 82:fc:39:6b:b6:2d:f5:4d:a2:fd:92:19:78:a5:33: 20:98:6d:c8:b6:c0:02:44:7f:50:34:5b:ce:e9:49: d9:e5:38:f2:1b:91:1e:1c:42:75:b1:f4:f9:7f:8c: b8:bd:56:ee:0c:8b:ca:5e:b0:77:f1:f4:c2:74:5d: e8:55:e8:06:b2:fb:f5:b5:87:07:62:cf:66:df:4b: 9d:78:2b:4b:1d:59:b7:81:e4:f7:28:c1:e9:62:8e: 37:87:6b:07:57:c6:d4:35:e6:8f:27:60:1d:39:89: d9:32:8d:11:f1:00:74:e8:a0:f8:9f:1f:11:3c:25: c2:c6:c0:b2:9e:b5:5c:61:3d:01:64:3a:5e:aa:a5: b2:37:7f:df:7f:f5:3c:46:50:d2:65:14:8a:54:d9: 39:cd:9a:6a:d5:d4:21:79:89:2b:a9:14:e9:48:08: 2a:11:4b:fd:b8:ed:a6:8a:35:45:7c:8f:a0:45:14: 8f:b8:7a:29:66:51:80:2b:f3:2e:1a:a1:7e:a4:5a: 11:2b:97:b3:14:48:5f:01:98:96:43:27:69:19:1f: 57:42:3f:61:f9:ac:4f:89:82:9a:fc:00:e7:6f:54: 5b:5a:9b:e4:41:b0:46:20:a8:da:42:ac:09:44:42: 09:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C5:08:1B:14:CF:01:58:2F:24:86:6A:15:C4:6C:D7:53:80:5E:9D X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:5c:98:be:0f:60:e5:c4:aa:41:9f:e1:4f:8e:d5:a4:91:04: bf:9d:a4:f0:ba:a5:e0:ec:a3:e4:98:87:b7:3d:02:07:1d:de: 67:ee:e2:cc:12:c4:82:ad:85:64:92:52:13:4e:12:41:e0:3e: c4:ae:a6:fd:07:d0:41:1e:83:df:ce:78:16:d3:c7:92:82:13: b6:e4:e2:46:a6:82:47:f3:6c:e0:eb:b3:44:e3:10:2d:a5:70: 66:b6:77:d6:e8:63:d0:40:1a:88:e2:f4:72:7d:3a:d4:83:f1: 90:c3:54:ab:e3:a4:1d:aa:51:d5:ba:32:72:60:87:27:cf:a2: 00:2c:c3:f3:fa:9a:ee:1f:b1:e7:0c:50:a7:80:72:68:09:81: 3a:0e:10:47:3d:20:41:25:57:2c:2c:6f:cf:c3:b5:19:77:6d: d4:9b:5c:5b:5a:71:b4:d7:be:81:e7:e5:6e:fe:58:15:91:a8: f7:82:44:98:5e:91:f8:86:e1:3b:63:78:1d:34:60:42:f9:9a: 58:5a:db:2d:7e:bd:e6:11:34:82:00:8d:ac:e6:fb:e7:8b:f1: fc:a3:0f:a0:7d:53:2a:02:15:c2:38:a9:68:fa:3c:a8:2a:23: 88:f5:c8:09:b1:f0:9f:7f:8b:76:81:a8:49:63:e4:36:96:22: e4:5b:ff:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjQwNTE5MDEwMDA1WhcNMjQwNTI2MDEwMDA1WjAYMRYwFAYD VQQDEw02NjQ5NGYxNS01ODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzX72fY9Oj5mD0H6vASeC/Dlrti31TaL9khl4pTMgmG3ItsACRH9QNFvO6UnZ 5TjyG5EeHEJ1sfT5f4y4vVbuDIvKXrB38fTCdF3oVegGsvv1tYcHYs9m30udeCtL HVm3geT3KMHpYo43h2sHV8bUNeaPJ2AdOYnZMo0R8QB06KD4nx8RPCXCxsCynrVc YT0BZDpeqqWyN3/ff/U8RlDSZRSKVNk5zZpq1dQheYkrqRTpSAgqEUv9uO2mijVF fI+gRRSPuHopZlGAK/MuGqF+pFoRK5ezFEhfAZiWQydpGR9XQj9h+axPiYKa/ADn b1RbWpvkQbBGIKjaQqwJREIJ6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTFCBsU zwFYLySGahXEbNdTgF6dMB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlXJi+D2DlxKpBn+FPjtWkkQS/naTwuqXg7KPkmIe3PQIHHd5n7uLM EsSCrYVkklITThJB4D7Erqb9B9BBHoPfzngW08eSghO25OJGpoJH82zg67NE4xAt pXBmtnfW6GPQQBqI4vRyfTrUg/GQw1Sr46QdqlHVujJyYIcnz6IALMPz+pruH7Hn DFCngHJoCYE6DhBHPSBBJVcsLG/Pw7UZd23Um1xbWnG0176B5+Vu/lgVkaj3gkSY XpH4huE7Y3gdNGBC+ZpYWtstfr3mETSCAI2s5vvni/H8ow+gfVMqAhXCOKlo+jyo KiOI9cgJsfCff4t2gahJY+Q2liLkW/97 -----END CERTIFICATE-----Generated at Sun May 19 01:47:08 2024 by rpki-client on console-ams.rpki-client.org