$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: xIWc75V5i1/VujmiUafk+BKM/ypcmkNbCKbdZ6OeeCU= Subject key identifier: CA:95:23:21:94:47:FB:66:24:9D:68:EE:CD:EB:38:0E:DD:5E:64:EE Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 0F6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 0F37 Signing time: Sat 18 May 2024 18:14:56 +0000 Manifest this update: Sat 18 May 2024 18:14:56 +0000 Manifest next update: Sat 25 May 2024 18:14:56 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: rnzY8AHMiDvZXO5ZILTgTqFPO/ZOVGY6P6F8W8xihUg=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: w8nz4+HMLp7W11uI2GyrfcewaVngpv2rIJSvZnCwRLI=) 3: B38547B48C1811ED95522F3EC4F9AE02.roa (hash: Sd/Ze6UGB6JXRYPNZvcaX6nAU4lnbvTUz3iH7f4x1vk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3946 (0xf6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: May 18 18:14:56 2024 GMT Not After : May 25 18:14:56 2024 GMT Subject: CN=6648f020-4a21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c3:2b:00:aa:6d:2b:6c:f0:ea:8b:4c:9b:38: e6:2d:04:d2:51:28:d7:5f:27:33:4e:ce:da:af:6f: 96:6c:7b:45:5c:8a:ed:64:f2:a8:aa:93:6b:44:7e: 82:15:99:e0:32:8e:9c:a3:5b:ef:b4:9d:b4:87:0d: 32:d9:b2:0d:7f:2a:95:5a:8c:cd:f1:b7:4d:81:ed: 08:d9:d0:1b:15:ba:11:0b:00:20:e7:cd:f8:f5:74: 63:5f:ba:ab:60:c3:6d:a5:10:d8:8a:58:0d:18:3c: 86:92:13:f0:2d:3d:01:85:23:e2:54:f4:ac:d5:16: 3c:7e:23:19:27:26:de:c3:11:e6:3a:14:75:81:d7: 47:09:a2:d4:47:74:32:9d:55:4d:9f:87:8a:3c:75: 45:63:e7:dd:e8:ba:92:3d:ba:5c:35:40:d8:23:04: 23:2e:49:cd:60:c2:88:59:55:23:bf:70:71:0b:f8: 94:70:df:36:8b:3f:e2:08:d7:a6:98:70:e3:6a:60: 5f:a9:01:46:0b:73:bb:65:22:b1:b9:e4:ab:34:72: fd:5b:50:13:5d:e2:c0:60:c9:2a:75:0b:ad:54:46: 23:5f:9e:55:be:40:9c:4d:56:18:5b:54:03:24:0e: 96:aa:17:7d:0d:d0:e4:2f:70:95:92:d6:a9:17:c2: 4c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:95:23:21:94:47:FB:66:24:9D:68:EE:CD:EB:38:0E:DD:5E:64:EE X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e0:e5:da:21:85:24:48:d7:a4:a6:bd:0a:a1:c4:c1:fe:36: 6d:51:82:b7:28:45:71:65:aa:63:f2:a7:72:11:95:29:8d:14: 08:bb:6f:17:09:f6:c0:79:9c:06:cf:1c:af:e5:e7:2d:31:18: 86:52:7a:e9:bb:65:c9:d8:d5:b5:74:c7:14:b7:65:de:77:83: 3d:c7:39:ad:5d:34:95:d7:e2:ac:ad:62:5b:c6:5e:8d:16:93: 2a:79:c5:1c:ab:65:90:2f:39:17:24:9d:af:c4:97:d4:cc:7e: fa:e3:74:40:ea:1d:b3:63:29:7d:b9:0f:c3:34:c4:04:19:59: ed:f4:b8:6a:1a:74:a5:41:0c:c0:41:2e:d4:74:cf:65:f1:0d: f5:23:e7:44:2b:a2:9a:38:11:fb:14:04:0d:23:8a:a5:48:17: 39:5c:ac:42:b7:1f:ba:c0:b7:02:4c:b0:ec:3c:9d:a0:28:2c: 86:a5:be:62:19:cd:a9:ca:fc:57:81:92:2e:66:c5:c1:b5:84: 12:27:57:2b:47:71:30:8e:8f:72:22:20:f5:96:32:2a:25:26: e5:03:61:e9:2f:a5:db:e5:52:58:34:38:a6:db:2a:a1:47:8c: f1:2d:ca:56:93:7a:30:f9:06:55:4d:e3:c9:d9:a0:bf:d1:ff: ad:c8:08:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjQwNTE4MTgxNDU2WhcNMjQwNTI1MTgxNDU2WjAYMRYwFAYD VQQDEw02NjQ4ZjAyMC00YTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsMrAKptK2zw6otMmzjmLQTSUSjXXyczTs7ar2+WbHtFXIrtZPKoqpNrRH6C FZngMo6co1vvtJ20hw0y2bINfyqVWozN8bdNge0I2dAbFboRCwAg58349XRjX7qr YMNtpRDYilgNGDyGkhPwLT0BhSPiVPSs1RY8fiMZJybewxHmOhR1gddHCaLUR3Qy nVVNn4eKPHVFY+fd6LqSPbpcNUDYIwQjLknNYMKIWVUjv3BxC/iUcN82iz/iCNem mHDjamBfqQFGC3O7ZSKxueSrNHL9W1ATXeLAYMkqdQutVEYjX55VvkCcTVYYW1QD JA6Wqhd9DdDkL3CVktapF8JM/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqVIyGU R/tmJJ1o7s3rOA7dXmTuMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ4OXaIYUkSNekpr0KocTB/jZtUYK3KEVxZapj8qdyEZUpjRQIu28X CfbAeZwGzxyv5ectMRiGUnrpu2XJ2NW1dMcUt2Xed4M9xzmtXTSV1+KsrWJbxl6N FpMqecUcq2WQLzkXJJ2vxJfUzH7643RA6h2zYyl9uQ/DNMQEGVnt9LhqGnSlQQzA QS7UdM9l8Q31I+dEK6KaOBH7FAQNI4qlSBc5XKxCtx+6wLcCTLDsPJ2gKCyGpb5i Gc2pyvxXgZIuZsXBtYQSJ1crR3Ewjo9yIiD1ljIqJSblA2HpL6Xb5VJYNDim2yqh R4zxLcpWk3ow+QZVTePJ2aC/0f+tyAi/ -----END CERTIFICATE-----Generated at Sat May 18 19:15:24 2024 by rpki-client on console-ams.rpki-client.org