$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: QEtRUnAauN0ZaNxlQkJEWQN3glrtaO9khxBdtV8+8/0= Subject key identifier: A9:13:24:51:5D:1F:B1:62:37:C6:BE:CE:C8:63:1E:D8:1E:16:39:44 Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: 32 Signing time: Sun 19 May 2024 08:20:51 +0000 Manifest this update: Sun 19 May 2024 08:20:50 +0000 Manifest next update: Sun 26 May 2024 08:20:50 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: aEO97IINUj95OKlnRLbXbCqgFUGYgVkympg+z9iHniw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: May 19 08:20:50 2024 GMT Not After : May 26 08:20:50 2024 GMT Subject: CN=6649b662-a2e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9c:39:1a:7e:e0:95:e9:1b:a7:2f:59:34:a3: 28:f9:03:c8:2f:4a:b3:6d:b8:48:d0:97:0a:a5:06: 56:ef:4c:43:a6:85:3b:93:67:a1:da:59:f5:97:03: 45:76:60:37:71:02:dd:f4:74:18:9f:65:8b:03:61: c4:cb:23:92:da:ca:ae:7b:47:2d:82:10:3b:02:ce: e6:3a:02:19:82:fd:7d:7c:58:65:24:dc:d3:5b:cc: f3:dc:6f:bb:1c:55:10:92:bc:2d:cf:a4:b6:e3:25: cb:f6:46:b3:9a:66:57:81:87:81:2f:86:50:64:a1: f5:bb:9b:0f:e2:a0:fc:cc:3f:f4:da:03:ba:1c:25: 6a:59:cf:fe:97:4c:0b:70:be:c3:a0:75:da:cf:b0: c5:df:5c:d7:0f:1b:91:fc:4d:81:b2:6c:f5:08:e4: 1d:dd:58:77:04:a7:c4:64:f2:18:81:9e:53:d4:17: 11:7e:02:9c:c2:a1:e4:55:87:b8:90:7e:7d:d5:c3: 11:70:a5:ec:1e:39:3f:2e:9d:21:21:77:26:da:69: d1:07:52:66:29:d8:88:0b:39:e9:cd:61:68:5e:99: e8:8b:a1:1e:60:26:19:ac:00:05:34:c0:e4:df:f8: 58:5c:97:04:d9:90:8b:47:17:b4:96:e6:31:87:1c: 47:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:13:24:51:5D:1F:B1:62:37:C6:BE:CE:C8:63:1E:D8:1E:16:39:44 X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:28:53:ec:d4:3f:13:5c:23:13:5c:63:39:e0:cd:95:88:7c: d5:65:f0:df:69:61:30:0c:aa:c2:7e:ce:31:a8:68:21:b9:46: b4:a7:14:f7:19:6c:be:47:d2:cf:cd:9b:8b:bf:a0:8f:c4:d6: b0:a1:1a:b9:9c:21:f6:a8:b7:40:4a:ba:0f:27:87:c6:79:b5: 0c:26:a2:f3:20:ff:2b:f4:d6:b8:ed:37:e8:5a:f4:78:5e:c4: 56:23:ca:be:66:0b:7c:ec:53:78:25:59:79:9d:ec:25:dd:52: 88:f0:02:eb:9b:c4:56:5a:d2:fa:85:ab:07:c2:7c:07:7f:28: d3:87:b2:ae:f0:06:cb:b2:c0:59:ae:f0:d0:9b:55:cb:7e:10: 3d:83:f9:2b:45:82:c6:6b:8b:30:7f:46:e8:64:09:94:39:ae: 8c:81:8a:a9:b7:5c:c6:c7:cd:d6:d5:65:c1:6a:29:66:61:ee: f1:9c:1f:01:29:ff:8e:dc:2c:a3:e9:bd:3a:0c:35:c3:86:be: d4:bf:ec:31:42:ad:24:ae:db:73:6a:42:56:a3:08:4c:ac:3b: 4d:e3:10:95:45:b9:9f:8f:c0:22:18:e6:8b:ed:a6:f9:4c:83: 37:2b:90:01:7e:64:90:88:73:53:33:4e:7d:4d:17:e8:2d:cc: 80:d3:3a:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTcxMTExMC8GA1UEBRMoRjFBREJEMEU3MTM5MURGMjEwREUzNDYxRTc2NTc4QjQ3 QTAxNjI0QTAeFw0yNDA1MTkwODIwNTBaFw0yNDA1MjYwODIwNTBaMBgxFjAUBgNV BAMTDTY2NDliNjYyLWEyZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCknDkafuCV6RunL1k0oyj5A8gvSrNtuEjQlwqlBlbvTEOmhTuTZ6HaWfWXA0V2 YDdxAt30dBifZYsDYcTLI5Layq57Ry2CEDsCzuY6AhmC/X18WGUk3NNbzPPcb7sc VRCSvC3PpLbjJcv2RrOaZleBh4EvhlBkofW7mw/ioPzMP/TaA7ocJWpZz/6XTAtw vsOgddrPsMXfXNcPG5H8TYGybPUI5B3dWHcEp8Rk8hiBnlPUFxF+ApzCoeRVh7iQ fn3VwxFwpeweOT8unSEhdybaadEHUmYp2IgLOenNYWhemeiLoR5gJhmsAAU0wOTf +FhclwTZkItHF7SW5jGHHEcdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqRMkUV0f sWI3xr7OyGMe2B4WOUQwHwYDVR0jBBgwFoAU8a29DnE5HfIQ3jRh52V4tHoBYkow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxNzExL0E5NTBERkRBQzk5 MTExRUU4OTFCQTQxOUM0RjlBRTAyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllr by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOGEyOURuRTVIZklRM2pSaDUyVjR0SG9CWWtvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMx NzExL0E5NTBERkRBQzk5MTExRUU4OTFCQTQxOUM0RjlBRTAyLzhhMjlEbkU1SGZJ UTNqUmg1MlY0dEhvQllrby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGYoU+zUPxNcIxNcYzngzZWIfNVl8N9pYTAMqsJ+zjGoaCG5RrSnFPcZ bL5H0s/Nm4u/oI/E1rChGrmcIfaot0BKug8nh8Z5tQwmovMg/yv01rjtN+ha9Hhe xFYjyr5mC3zsU3glWXmd7CXdUojwAuubxFZa0vqFqwfCfAd/KNOHsq7wBsuywFmu 8NCbVct+ED2D+StFgsZrizB/RuhkCZQ5royBiqm3XMbHzdbVZcFqKWZh7vGcHwEp /47cLKPpvToMNcOGvtS/7DFCrSSu23NqQlajCEysO03jEJVFuZ+PwCIY5ovtpvlM gzcrkAF+ZJCIc1MzTn1NF+gtzIDTOg4= -----END CERTIFICATE-----Generated at Sun May 19 09:32:15 2024 by rpki-client on console-ams.rpki-client.org