$ rpki-client -vvf rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft File: jGz7q86HuhmiCnuH8oZS21tKfVI.mft (raw, json) Hash identifier: 9od0G0sBJ1H3PxHHmCAiepy2ic3Cut0cHzNLHKsav5w= Subject key identifier: 4B:35:B6:63:F3:02:0C:03:DF:03:2F:3B:D8:F5:D0:3F:E9:89:45:1E Authority key identifier: 8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 Certificate issuer: /CN=A912A39C/serialNumber=8C6CFBABCE87BA19A20A7B87F28652DB5B4A7D52 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft Manifest number: 22 Signing time: Sun 19 May 2024 08:34:08 +0000 Manifest this update: Sun 19 May 2024 08:34:08 +0000 Manifest next update: Sun 26 May 2024 08:34:07 +0000 Files and hashes: 1: jGz7q86HuhmiCnuH8oZS21tKfVI.crl (hash: aDWwSVW9syRTSXpEZu3E4ai8Y6X72MFSbVvmKwS2Phk=) 2: F2F9933AE1FF11EE9A5D8C25C4F9AE02.roa (hash: xbHnwlsEfntbRIZRWTOcVT7U6zL7m6x1cvw0eilA3qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A39C/serialNumber=8C6CFBABCE87BA19A20A7B87F28652DB5B4A7D52 Validity Not Before: May 19 08:34:08 2024 GMT Not After : May 26 08:34:07 2024 GMT Subject: CN=6649b980-b6c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:8b:f0:26:f0:5c:a3:02:e0:75:5d:c4:0d:bf: ea:d1:eb:eb:ab:cc:01:d7:33:f6:20:af:85:ab:6e: 8f:e6:4e:af:6d:41:83:02:3b:09:97:53:df:4b:7d: 88:8e:ff:f7:ab:80:8b:43:29:74:01:2e:6e:6c:10: 04:17:96:41:e8:6a:e3:57:d0:93:65:20:e0:d8:91: 33:d4:24:1e:df:e7:eb:2e:8b:c4:56:d1:4f:a2:db: 31:8f:bc:34:91:7e:6c:ea:0d:a5:d6:47:aa:21:43: bf:7f:c0:c7:cb:70:88:1e:d9:20:1d:71:00:10:31: e3:3f:75:a9:6b:9d:fb:d4:52:05:ef:69:d3:f5:d9: 20:52:39:f1:06:65:1c:e3:51:e9:af:e6:ca:5b:e2: 2c:40:c1:0d:33:94:55:c9:cc:44:16:1c:72:3c:e7: 70:4d:bf:8a:37:8b:a3:9e:3c:e7:32:0e:a1:bb:13: 55:7d:43:d7:8e:2f:6b:8c:1b:71:72:53:16:e5:ae: a0:11:76:9d:80:ca:e9:a4:c3:19:7a:1a:78:6e:f6: 6a:95:70:26:c6:23:44:74:bd:d6:f8:4a:f1:18:ae: 9c:16:b3:85:43:8a:ba:4c:74:65:af:1a:3e:88:e0: bc:84:30:8e:4b:3c:af:a0:87:10:ad:3e:67:d7:97: 45:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:35:B6:63:F3:02:0C:03:DF:03:2F:3B:D8:F5:D0:3F:E9:89:45:1E X509v3 Authority Key Identifier: keyid:8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bf:b7:07:67:9a:83:de:93:c1:e6:91:64:22:7d:5c:1a:9d: b0:7a:c9:7a:fb:cf:d1:b3:b5:f8:b6:00:ef:0d:4d:7d:98:e2: 7c:59:78:70:f8:fa:0a:fb:c1:c3:0d:ec:fc:ca:a0:2f:2b:6d: 43:1d:15:c5:fe:78:de:e6:1f:53:07:09:69:9c:e6:35:5b:3b: 6e:02:81:63:c9:48:6e:89:fa:6b:6b:af:9f:38:01:5d:70:f8: 23:ba:bf:b2:61:1f:a0:9c:85:38:22:d5:22:dd:09:0e:b2:bf: 60:2d:16:d4:67:c9:3f:b4:28:8e:9f:96:f2:83:e2:f6:fb:1e: 6b:c8:d4:0c:c4:cd:22:88:0d:3c:f9:ec:a0:a6:98:f1:24:c5: f1:11:9c:ad:fc:70:95:35:dd:06:9d:d9:99:8f:c9:3e:0a:7a: 28:e1:3c:ff:75:41:98:85:ef:d4:c6:3a:0f:97:ce:4c:38:9a: 5f:58:40:d3:b6:25:24:37:92:24:24:cd:ee:59:aa:b4:9f:e6: 57:10:11:6c:33:53:ae:7d:3c:f6:be:6f:64:c5:5d:f6:51:19: 84:f2:8b:86:e3:64:9b:b1:ad:bf:7a:c3:95:36:cf:2c:8e:d0: b3:4a:d6:47:1b:b9:1e:13:eb:83:d9:fd:9b:fd:db:3d:31:0c: ec:c0:70:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTM5QzExMC8GA1UEBRMoOEM2Q0ZCQUJDRTg3QkExOUEyMEE3Qjg3RjI4NjUyREI1 QjRBN0Q1MjAeFw0yNDA1MTkwODM0MDhaFw0yNDA1MjYwODM0MDdaMBgxFjAUBgNV BAMTDTY2NDliOTgwLWI2YzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2i/Am8FyjAuB1XcQNv+rR6+urzAHXM/Ygr4Wrbo/mTq9tQYMCOwmXU99LfYiO //ergItDKXQBLm5sEAQXlkHoauNX0JNlIODYkTPUJB7f5+sui8RW0U+i2zGPvDSR fmzqDaXWR6ohQ79/wMfLcIge2SAdcQAQMeM/dalrnfvUUgXvadP12SBSOfEGZRzj Uemv5spb4ixAwQ0zlFXJzEQWHHI853BNv4o3i6OePOcyDqG7E1V9Q9eOL2uMG3Fy UxblrqARdp2Ayumkwxl6Gnhu9mqVcCbGI0R0vdb4SvEYrpwWs4VDirpMdGWvGj6I 4LyEMI5LPK+ghxCtPmfXl0V5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSzW2Y/MC DAPfAy872PXQP+mJRR4wHwYDVR0jBBgwFoAUjGz7q86HuhmiCnuH8oZS21tKfVIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBMzlDLzlENTg0RDY4RTFG RjExRUVCMkExQ0UyNEM0RjlBRTAyL2pHejdxODZIdWhtaUNudUg4b1pTMjF0S2ZW SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvakd6N3E4Nkh1aG1pQ251SDhvWlMyMXRLZlZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJB MzlDLzlENTg0RDY4RTFGRjExRUVCMkExQ0UyNEM0RjlBRTAyL2pHejdxODZIdWht aUNudUg4b1pTMjF0S2ZWSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE+/twdnmoPek8HmkWQifVwanbB6yXr7z9Gztfi2AO8NTX2Y4nxZeHD4 +gr7wcMN7PzKoC8rbUMdFcX+eN7mH1MHCWmc5jVbO24CgWPJSG6J+mtrr584AV1w +CO6v7JhH6CchTgi1SLdCQ6yv2AtFtRnyT+0KI6flvKD4vb7HmvI1AzEzSKIDTz5 7KCmmPEkxfERnK38cJU13Qad2ZmPyT4KeijhPP91QZiF79TGOg+Xzkw4ml9YQNO2 JSQ3kiQkze5ZqrSf5lcQEWwzU659PPa+b2TFXfZRGYTyi4bjZJuxrb96w5U2zyyO 0LNK1kcbuR4T64PZ/Zv92z0xDOzAcOc= -----END CERTIFICATE-----Generated at Sun May 19 09:32:15 2024 by rpki-client on console-ams.rpki-client.org