$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: jPVAB/olDJ4bN2Fe25OT1Uqx0AfP4L4muPuAIL5cwy0= Subject key identifier: 04:E9:02:00:73:68:83:73:16:28:4F:DB:D1:48:7B:16:7E:07:27:79 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 01A2 Signing time: Sat 01 Jun 2024 05:52:52 +0000 Manifest this update: Sat 01 Jun 2024 05:52:51 +0000 Manifest next update: Sat 08 Jun 2024 05:52:51 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: BILJeHJaQKRw9+q0S42XtaVRbThyc7ocQVAbS9n5pRU=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: b4ViKHGezGw+5NXjeUCkvO49CZT0iW2nZTWY802a/24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Jun 1 05:52:51 2024 GMT Not After : Jun 8 05:52:51 2024 GMT Subject: CN=665ab734-2326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:85:7f:90:fd:ca:f8:75:5a:6c:3b:71:0d:e1: e2:dd:c7:78:e0:99:be:f0:b0:e7:f6:bb:26:fd:8f: ad:78:98:0a:4b:7f:99:66:5b:2a:29:42:de:7d:12: d7:35:e5:d3:4e:f0:14:ac:9e:96:77:37:d5:9c:35: 2d:fa:04:70:4a:bb:67:5d:c0:79:42:ef:1c:86:5e: 7d:d6:c9:71:08:90:23:21:f7:7c:39:ff:20:17:a1: f7:fb:cd:50:fa:58:05:b2:34:12:58:fc:13:7e:df: 60:1f:ed:e9:7e:95:fa:b7:3e:82:fb:75:70:d5:7a: ad:e4:90:de:f5:8e:89:4a:b0:93:25:dd:99:c8:d0: c1:62:48:28:d5:0b:b0:85:97:40:50:c6:28:fa:61: d8:8b:e9:cc:25:ee:4c:1f:dc:76:74:81:dc:e6:e9: 5b:15:5f:4e:81:0d:45:39:09:60:9e:3d:1b:c8:f9: 51:15:a9:1b:7d:43:82:8e:da:4b:26:28:59:d7:73: 2d:0c:b7:be:25:16:c9:11:e0:da:95:0c:b9:e5:71: cb:a0:9f:d1:e4:0f:e1:09:7b:8c:7c:d4:19:a7:0b: bb:a1:99:49:4c:a1:4b:7b:91:3e:87:5d:1d:22:05: b9:b9:3e:55:ef:a9:be:53:b9:f7:eb:3f:90:79:5f: ac:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E9:02:00:73:68:83:73:16:28:4F:DB:D1:48:7B:16:7E:07:27:79 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:1b:80:38:8e:4d:11:cd:12:7c:dd:4e:1b:65:c0:ee:f4:2b: b0:53:b3:35:ce:7e:37:3d:fa:c2:57:c6:94:a9:a3:13:a0:59: 57:f6:5b:db:0a:48:2b:d7:60:a6:c7:f8:23:45:06:8e:38:62: 03:63:26:af:86:d3:2c:76:1d:38:51:4c:f0:01:43:a0:ee:0b: 1d:ae:c1:b6:7f:41:87:cf:56:99:5b:9e:e3:45:e3:4a:17:0a: ec:10:db:c7:2e:6a:f8:df:0c:63:6e:ce:a4:2c:6d:47:4e:d4: ce:29:0b:11:87:82:70:8d:64:d3:fd:e3:e3:bb:80:3a:72:9a: 64:1f:2f:28:26:a3:a0:fb:89:b2:6c:65:0d:71:74:af:48:ea: a9:53:b6:1d:41:fe:86:23:da:0e:9b:e3:65:81:b2:8c:26:56: d1:a6:b0:a2:b4:54:76:8a:59:5d:a5:ce:5d:03:f2:a8:d5:28: 65:fb:90:b7:b4:3b:18:88:54:3a:24:8e:eb:0c:2d:6b:33:55: 11:8f:ef:f4:c3:c7:fa:cc:f6:a9:ec:26:c8:22:10:d7:97:79: 7d:47:86:b6:f3:22:09:ff:3d:e0:93:93:ae:6d:3b:0d:0e:14: 18:5f:0c:9f:20:5b:75:0f:eb:90:0d:4f:c5:8c:24:16:4b:42: 55:9c:4d:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjQwNjAxMDU1MjUxWhcNMjQwNjA4MDU1MjUxWjAYMRYwFAYD VQQDEw02NjVhYjczNC0yMzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYV/kP3K+HVabDtxDeHi3cd44Jm+8LDn9rsm/Y+teJgKS3+ZZlsqKULefRLX NeXTTvAUrJ6WdzfVnDUt+gRwSrtnXcB5Qu8chl591slxCJAjIfd8Of8gF6H3+81Q +lgFsjQSWPwTft9gH+3pfpX6tz6C+3Vw1Xqt5JDe9Y6JSrCTJd2ZyNDBYkgo1Quw hZdAUMYo+mHYi+nMJe5MH9x2dIHc5ulbFV9OgQ1FOQlgnj0byPlRFakbfUOCjtpL JihZ13MtDLe+JRbJEeDalQy55XHLoJ/R5A/hCXuMfNQZpwu7oZlJTKFLe5E+h10d IgW5uT5V76m+U7n36z+QeV+sYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATpAgBz aINzFihP29FIexZ+Byd5MB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhG4A4jk0RzRJ83U4bZcDu9CuwU7M1zn43PfrCV8aUqaMToFlX9lvb Ckgr12Cmx/gjRQaOOGIDYyavhtMsdh04UUzwAUOg7gsdrsG2f0GHz1aZW57jReNK FwrsENvHLmr43wxjbs6kLG1HTtTOKQsRh4JwjWTT/ePju4A6cppkHy8oJqOg+4my bGUNcXSvSOqpU7YdQf6GI9oOm+NlgbKMJlbRprCitFR2illdpc5dA/Ko1Shl+5C3 tDsYiFQ6JI7rDC1rM1URj+/0w8f6zPap7CbIIhDXl3l9R4a28yIJ/z3gk5OubTsN DhQYXwyfIFt1D+uQDU/FjCQWS0JVnE27 -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:14 2024 by rpki-client on console-ams.rpki-client.org