$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft File: CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft (raw, json) Hash identifier: R7GHu36/hGSW3xoBc+QIzpk6A17OsjPWFZjfkc0eaXI= Subject key identifier: CB:F8:4A:69:00:D7:24:6A:FF:DB:15:62:16:F3:05:A5:A4:E9:DF:C8 Authority key identifier: 0A:45:C5:0E:37:23:5A:2A:A2:23:E9:F3:13:31:F6:94:28:E0:D9:46 Certificate issuer: /CN=A9128C53/serialNumber=0A45C50E37235A2AA223E9F31331F69428E0D946 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft Manifest number: 5C Signing time: Wed 29 May 2024 08:27:36 +0000 Manifest this update: Wed 29 May 2024 08:27:36 +0000 Manifest next update: Wed 05 Jun 2024 08:27:36 +0000 Files and hashes: 1: CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl (hash: GJJ262ktA3wzE3BB6DoRdGMxQqVVpNEX+JvbKXn/3oE=) 2: 04A9BC6EDAC011EE94B8705AC4F9AE02.roa (hash: JewwegL8zF4TM37jWjT/0vufl48ueupuuJhXef1EC1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C53/serialNumber=0A45C50E37235A2AA223E9F31331F69428E0D946 Validity Not Before: May 29 08:27:36 2024 GMT Not After : Jun 5 08:27:36 2024 GMT Subject: CN=6656e6f8-b9fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:df:13:47:1d:ee:c1:f3:e7:0f:ce:73:06: 36:c2:1e:e4:6b:1c:ec:58:36:ef:4e:7b:49:31:20: 8f:59:8f:f1:20:69:99:42:eb:0a:09:e0:72:64:7c: a2:96:d9:86:2c:da:ea:8b:f1:cd:50:fa:f5:06:ff: cf:a8:ff:f7:6a:45:b3:b7:cc:13:94:2e:b8:ac:32: 49:c9:09:50:e3:ba:65:e2:91:6e:f9:a9:99:11:d2: e8:e4:a9:07:3e:8a:73:a2:cb:33:4a:43:84:35:7b: 52:ae:51:26:5b:fe:df:e8:f2:23:0e:45:5c:3f:dc: fb:f9:24:8f:89:24:05:7b:96:d0:ea:dc:4f:2b:d9: 0b:d4:34:92:73:34:11:e3:03:a3:c9:27:f4:5d:1b: 8b:32:a0:19:8f:c9:8c:70:76:6a:a6:06:b2:8c:0e: 6a:36:79:ea:a0:e6:f7:c5:70:3f:36:42:04:82:b0: 13:cb:e0:78:5c:ca:b5:31:1f:f6:da:0d:fe:88:ce: 83:6e:95:ae:ea:1d:09:f6:bb:4e:1f:b6:cf:14:9e: 1e:54:8c:72:fc:5e:7c:34:8b:e4:0c:1a:29:a4:36: c4:b3:2c:ea:c0:b9:0f:94:7c:96:89:43:a1:36:46: 5a:af:f7:44:7e:af:f8:08:0d:87:3d:b8:4a:64:31: 30:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F8:4A:69:00:D7:24:6A:FF:DB:15:62:16:F3:05:A5:A4:E9:DF:C8 X509v3 Authority Key Identifier: keyid:0A:45:C5:0E:37:23:5A:2A:A2:23:E9:F3:13:31:F6:94:28:E0:D9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:68:05:64:11:26:28:b3:dc:37:66:d9:a4:9f:f2:42:c1:e3: ea:33:60:c5:2a:6b:56:df:50:35:b2:b9:69:a7:9c:40:24:44: c7:26:38:a2:2b:0d:ad:84:ea:0b:1d:e7:1f:4a:49:75:a5:4a: 6c:31:e0:43:91:80:41:8a:76:83:75:95:db:0c:2b:d6:55:cd: 3b:e9:75:da:37:14:2c:11:c0:d3:64:6d:b6:a4:89:0d:16:e9: 2c:bf:82:5a:cb:63:c3:4f:6d:80:57:e1:b3:95:14:46:89:68: 04:f6:f1:38:14:fa:b6:88:75:2a:32:2a:c6:56:f9:a1:0b:dd: a7:39:c5:b4:ab:9b:f5:96:bd:e0:1d:8a:d3:22:92:9f:85:73: 88:9c:e6:e1:f6:86:32:5d:c6:50:84:03:20:49:4b:6d:9c:1c: b0:fc:60:51:8c:b5:9f:07:44:dc:39:9c:bc:f3:7e:93:34:71: 31:6b:11:65:4e:cd:89:c8:8e:a0:d3:11:46:bc:50:a5:1e:6f: db:ec:e2:eb:e9:cf:0b:3e:6a:89:52:d9:97:4c:9d:07:71:3a: 10:3d:d4:c0:4b:cd:b5:39:7c:fe:5d:49:aa:b3:5f:30:52:d3: 7b:84:26:b3:50:59:24:7f:b9:ad:38:ec:c0:7d:34:ea:cf:9e: ae:11:6d:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy OEM1MzExMC8GA1UEBRMoMEE0NUM1MEUzNzIzNUEyQUEyMjNFOUYzMTMzMUY2OTQy OEUwRDk0NjAeFw0yNDA1MjkwODI3MzZaFw0yNDA2MDUwODI3MzZaMBgxFjAUBgNV BAMTDTY2NTZlNmY4LWI5ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLTN8TRx3uwfPnD85zBjbCHuRrHOxYNu9Oe0kxII9Zj/EgaZlC6woJ4HJkfKKW 2YYs2uqL8c1Q+vUG/8+o//dqRbO3zBOULrisMknJCVDjumXikW75qZkR0ujkqQc+ inOiyzNKQ4Q1e1KuUSZb/t/o8iMORVw/3Pv5JI+JJAV7ltDq3E8r2QvUNJJzNBHj A6PJJ/RdG4syoBmPyYxwdmqmBrKMDmo2eeqg5vfFcD82QgSCsBPL4HhcyrUxH/ba Df6IzoNula7qHQn2u04fts8Unh5UjHL8Xnw0i+QMGimkNsSzLOrAuQ+UfJaJQ6E2 Rlqv90R+r/gIDYc9uEpkMTA/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy/hKaQDX JGr/2xViFvMFpaTp38gwHwYDVR0jBBgwFoAUCkXFDjcjWiqiI+nzEzH2lCjg2UYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4QzUzL0VBNkVDRTBBOTM4 MTExRUVCRkNCRkYyNEM0RjlBRTAyL0NrWEZEamNqV2lxaUktbnpFekgybENqZzJV WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2tYRkRqY2pXaXFpSS1uekV6SDJsQ2pnMlVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4 QzUzL0VBNkVDRTBBOTM4MTExRUVCRkNCRkYyNEM0RjlBRTAyL0NrWEZEamNqV2lx aUktbnpFekgybENqZzJVWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACxoBWQRJiiz3Ddm2aSf8kLB4+ozYMUqa1bfUDWyuWmnnEAkRMcmOKIr Da2E6gsd5x9KSXWlSmwx4EORgEGKdoN1ldsMK9ZVzTvpddo3FCwRwNNkbbakiQ0W 6Sy/glrLY8NPbYBX4bOVFEaJaAT28TgU+raIdSoyKsZW+aEL3ac5xbSrm/WWveAd itMikp+Fc4ic5uH2hjJdxlCEAyBJS22cHLD8YFGMtZ8HRNw5nLzzfpM0cTFrEWVO zYnIjqDTEUa8UKUeb9vs4uvpzws+aolS2ZdMnQdxOhA91MBLzbU5fP5dSaqzXzBS 03uEJrNQWSR/ua047MB9NOrPnq4Rbd4= -----END CERTIFICATE-----Generated at Wed May 29 10:43:04 2024 by rpki-client on console-ams.rpki-client.org