$ rpki-client -vvf rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft File: iUNmPc-DCfonSkZS-oOr0m2EJk8.mft (raw, json) Hash identifier: VVPJq4lipOsGVVxS6YBxfXTEUlykg0ZZyuCmZUtn+rA= Subject key identifier: 00:B4:26:8D:80:39:7F:53:29:CC:8D:DE:96:87:7E:CB:AB:C2:47:2A Authority key identifier: 89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F Certificate issuer: /CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft Manifest number: 03D6 Signing time: Fri 31 May 2024 02:57:25 +0000 Manifest this update: Fri 31 May 2024 02:57:24 +0000 Manifest next update: Fri 07 Jun 2024 02:57:24 +0000 Files and hashes: 1: iUNmPc-DCfonSkZS-oOr0m2EJk8.crl (hash: SmqoAUhLuAk4423VvYMO9RTv1DIZYN/RoBowFCPe9uo=) 2: F9343F063B0911EC82AE0828C4F9AE02.roa (hash: CzHI28CCaBsGQBg9b/qiN/Th7PDfPduzO6PUB1Bt+X0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Validity Not Before: May 31 02:57:24 2024 GMT Not After : Jun 7 02:57:24 2024 GMT Subject: CN=66593c94-6bb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:2c:f4:ad:1d:58:b8:eb:27:a6:dd:93:49: b5:45:3c:af:01:6e:fc:3e:36:68:97:eb:03:4e:69: c4:05:7a:81:91:5a:1d:30:0d:fa:75:2c:dc:65:67: bb:e8:3f:b7:d7:74:7f:94:8b:f2:db:7d:40:d6:c7: 1d:34:f0:24:c4:2b:6d:5b:fa:5e:56:be:44:55:67: c5:3e:88:a8:02:fc:80:96:7b:e5:d2:15:0a:4e:d8: 94:91:67:7c:41:e5:a6:39:da:1b:30:0e:b7:c3:27: e9:9f:db:8c:fa:90:66:54:60:2b:0e:7a:d9:66:5a: 17:40:2d:b2:ce:e2:6e:e7:44:48:b5:44:ef:2c:a9: 88:4a:8f:88:4e:76:a4:0d:6a:bc:68:1b:61:80:b3: 5c:a9:d2:bb:c0:71:9e:8e:10:1a:d1:27:19:a1:36: 52:4e:d6:d3:10:3b:d7:12:79:c1:a7:d9:dd:f9:60: 8d:57:5c:ef:76:9d:28:6d:ca:5f:0a:8a:f0:d5:a6: e9:5b:9f:8b:df:6f:a6:37:74:b8:82:f3:c0:b1:6a: a7:a7:14:ae:78:79:5a:0f:35:63:e0:cf:29:f3:9d: 7d:c0:17:41:66:56:41:19:5b:77:3c:eb:cc:d0:ca: 15:d5:14:69:cb:d2:fd:2f:e6:39:35:9b:4f:4d:fd: b7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B4:26:8D:80:39:7F:53:29:CC:8D:DE:96:87:7E:CB:AB:C2:47:2A X509v3 Authority Key Identifier: keyid:89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:f3:6b:f5:a0:0e:b8:6f:94:63:aa:e1:cb:90:ea:1a:eb:e2: c6:38:37:e6:46:1c:29:c7:9a:4f:7a:3a:be:56:4d:5b:d9:6b: 9f:3b:f7:28:97:ec:5b:4f:ce:6e:f9:38:11:96:c7:fb:e7:37: 25:88:27:68:c0:b9:37:ce:a1:2a:ca:5b:e0:e5:4a:ff:ba:ed: b2:94:33:69:5c:c7:a0:2e:f5:ab:d6:36:ef:0a:4c:e3:d9:ec: 89:70:ae:07:bc:93:15:5c:bb:43:a4:a3:4a:66:08:b7:dc:eb: 22:27:50:3e:55:8b:29:04:ba:4f:cc:d1:cc:51:10:58:70:55: 13:ac:52:d7:4e:60:d2:52:d8:16:8c:f5:ec:b0:7c:74:58:2a: e6:d1:8d:52:7e:fd:0c:7f:d5:44:cf:e0:c0:b3:e0:ad:51:07: a1:bf:d6:e0:52:61:ec:5e:44:14:cf:98:7a:c9:b1:12:14:60: 79:e4:f9:ee:fc:c8:1d:0e:29:eb:de:51:74:e1:32:14:89:1c: bc:83:22:9f:4c:9c:27:d1:22:a2:15:fe:db:2b:67:cb:f5:da: 59:27:37:ef:b2:b7:d9:43:b8:07:f5:70:a7:f9:ad:f0:d1:42: f5:65:0e:f6:5b:6e:c0:66:f1:01:c4:b0:8a:94:c7:4d:05:13: da:ea:3d:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA5N0ExMTAvBgNVBAUTKDg5NDM2NjNEQ0Y4MzA5RkEyNzRBNDY1MkZBODNBQkQy NkQ4NDI2NEYwHhcNMjQwNTMxMDI1NzI0WhcNMjQwNjA3MDI1NzI0WjAYMRYwFAYD VQQDEw02NjU5M2M5NC02YmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb0s9K0dWLjrJ6bdk0m1RTyvAW78PjZol+sDTmnEBXqBkVodMA36dSzcZWe7 6D+313R/lIvy231A1scdNPAkxCttW/peVr5EVWfFPoioAvyAlnvl0hUKTtiUkWd8 QeWmOdobMA63wyfpn9uM+pBmVGArDnrZZloXQC2yzuJu50RItUTvLKmISo+ITnak DWq8aBthgLNcqdK7wHGejhAa0ScZoTZSTtbTEDvXEnnBp9nd+WCNV1zvdp0obcpf Corw1abpW5+L32+mN3S4gvPAsWqnpxSueHlaDzVj4M8p8519wBdBZlZBGVt3POvM 0MoV1RRpy9L9L+Y5NZtPTf23CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAC0Jo2A OX9TKcyN3paHfsurwkcqMB8GA1UdIwQYMBaAFIlDZj3Pgwn6J0pGUvqDq9JthCZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDk3QS82MTY3QTZEMjNC MDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENmb25Ta1pTLW9PcjBtMkVK azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVTm1QYy1EQ2ZvblNrWlMtb09yMG0yRUprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDk3QS82MTY3QTZEMjNCMDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENm b25Ta1pTLW9PcjBtMkVKazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ82v1oA64b5RjquHLkOoa6+LGODfmRhwpx5pPejq+Vk1b2WufO/co l+xbT85u+TgRlsf75zcliCdowLk3zqEqylvg5Ur/uu2ylDNpXMegLvWr1jbvCkzj 2eyJcK4HvJMVXLtDpKNKZgi33OsiJ1A+VYspBLpPzNHMURBYcFUTrFLXTmDSUtgW jPXssHx0WCrm0Y1Sfv0Mf9VEz+DAs+CtUQehv9bgUmHsXkQUz5h6ybESFGB55Pnu /MgdDinr3lF04TIUiRy8gyKfTJwn0SKiFf7bK2fL9dpZJzfvsrfZQ7gH9XCn+a3w 0UL1ZQ72W27AZvEBxLCKlMdNBRPa6j19 -----END CERTIFICATE-----Generated at Fri May 31 06:49:08 2024 by rpki-client on console-ams.rpki-client.org