$ rpki-client -vvf rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft File: 77_xazqfbkTaHnWOk5XRxbcUR1o.mft (raw, json) Hash identifier: 3MHdBbkVLRlTJtwLktffhOLF99zzLgIvKjQlvwB0AVw= Subject key identifier: 18:B4:6D:40:A3:DD:01:E5:86:90:F4:69:F4:2E:A6:D5:40:BB:7C:A5 Authority key identifier: EF:BF:F1:6B:3A:9F:6E:44:DA:1E:75:8E:93:95:D1:C5:B7:14:47:5A Certificate issuer: /CN=A9136B8D/serialNumber=EFBFF16B3A9F6E44DA1E758E9395D1C5B714475A Certificate serial: 05A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft Manifest number: 05A0 Signing time: Sun 19 May 2024 00:23:08 +0000 Manifest this update: Sun 19 May 2024 00:23:08 +0000 Manifest next update: Sun 26 May 2024 00:23:08 +0000 Files and hashes: 1: 77_xazqfbkTaHnWOk5XRxbcUR1o.crl (hash: gt4vaMEpYBpISMR1N+k8PsFpbUO0RA8FQkiNHO8XwlI=) 2: 3ADF4748836D11EBAD2CDC13C4F9AE02.roa (hash: gCEgPezqeHJOUfLbqrO/hd2fxgGI7Zl4e741pIVAPGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.crl rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1448 (0x5a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136B8D/serialNumber=EFBFF16B3A9F6E44DA1E758E9395D1C5B714475A Validity Not Before: May 19 00:23:08 2024 GMT Not After : May 26 00:23:08 2024 GMT Subject: CN=6649466c-dcc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9d:a8:e6:ad:52:c6:d4:c9:2b:db:b0:4b:7f: cd:fe:94:1a:4b:3b:2f:db:0f:77:1e:a1:71:9c:08: 75:2c:8f:5f:24:eb:d6:1f:71:aa:75:fd:ae:a2:e5: dc:a7:44:6c:36:c6:13:4a:a2:50:e9:a9:e5:a2:bf: 72:91:13:83:7a:a4:a7:72:bb:21:eb:65:e2:68:20: eb:f2:91:7a:29:d5:65:3f:0d:8d:37:38:ba:4e:cd: 5b:7c:4b:c7:6c:23:6c:0f:2f:f3:e8:49:66:c2:b8: a2:85:0c:45:af:f0:01:8f:7e:53:90:d2:f1:9f:f8: 99:09:ca:a4:8d:31:b6:35:81:ab:12:42:0c:05:6c: 41:78:8a:0d:b1:38:ac:18:ee:5f:e0:7c:45:da:be: 22:94:4c:fd:c4:fa:42:ce:be:6a:62:7e:ab:da:46: 15:ad:6d:a6:76:05:34:dc:fc:76:98:f8:d1:9c:f2: 81:16:a5:c5:85:49:71:4d:aa:a4:d3:fa:38:1b:0e: a2:2b:c5:b8:aa:01:a3:87:99:67:92:ea:23:42:78: 25:d0:83:aa:14:ad:e9:fc:cc:ba:4e:8f:fd:1a:76: cf:fa:0b:39:1b:5a:15:80:58:96:d3:fd:c2:e0:5b: ea:c6:50:00:0c:32:3b:0b:90:3f:d6:11:70:cf:83: 07:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B4:6D:40:A3:DD:01:E5:86:90:F4:69:F4:2E:A6:D5:40:BB:7C:A5 X509v3 Authority Key Identifier: keyid:EF:BF:F1:6B:3A:9F:6E:44:DA:1E:75:8E:93:95:D1:C5:B7:14:47:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:91:f9:cc:ea:e6:85:6e:13:d4:5c:4e:11:63:69:1d:ee:62: 33:82:84:ff:ce:4f:02:b2:f5:2d:9c:37:1e:60:50:89:69:bc: ee:d5:bb:8a:66:c3:f6:a9:c1:82:53:35:3b:90:2a:c4:ba:e9: 93:b5:4a:0d:f3:38:b0:da:a3:76:76:7d:76:b0:2a:39:f4:b8: f9:61:9d:39:23:c6:b0:ae:88:c0:71:3b:23:8c:23:50:2d:fa: 0e:62:d2:67:c4:74:3f:5a:51:b1:5a:65:42:03:68:ee:99:52: 10:1d:0d:ff:25:ef:91:e5:95:93:54:5b:b3:22:3b:c8:c8:6a: 0c:8f:e6:49:b6:41:22:f9:52:db:47:76:69:13:fa:d8:ab:d6: 14:bd:13:46:0e:61:91:73:49:c2:15:bf:4a:1a:f9:cc:ef:af: a9:11:f1:3a:bb:f6:fb:da:e3:76:ea:4f:bc:9f:f2:10:75:85: 57:48:92:ea:7a:cd:da:10:87:4a:53:84:65:db:9b:22:ad:8e: 2f:92:fd:77:b3:d6:10:ca:91:ea:3c:aa:98:f3:6b:25:d8:3f: e2:b6:3c:41:46:23:22:82:29:e6:e8:08:a4:d6:66:4e:10:e8: 9b:fb:2c:56:c5:36:fb:08:47:d6:aa:d0:5a:d8:0b:4f:e6:32: 95:35:a9:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCOEQxMTAvBgNVBAUTKEVGQkZGMTZCM0E5RjZFNDREQTFFNzU4RTkzOTVEMUM1 QjcxNDQ3NUEwHhcNMjQwNTE5MDAyMzA4WhcNMjQwNTI2MDAyMzA4WjAYMRYwFAYD VQQDEw02NjQ5NDY2Yy1kY2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv52o5q1SxtTJK9uwS3/N/pQaSzsv2w93HqFxnAh1LI9fJOvWH3Gqdf2uouXc p0RsNsYTSqJQ6anlor9ykRODeqSncrsh62XiaCDr8pF6KdVlPw2NNzi6Ts1bfEvH bCNsDy/z6ElmwriihQxFr/ABj35TkNLxn/iZCcqkjTG2NYGrEkIMBWxBeIoNsTis GO5f4HxF2r4ilEz9xPpCzr5qYn6r2kYVrW2mdgU03Px2mPjRnPKBFqXFhUlxTaqk 0/o4Gw6iK8W4qgGjh5lnkuojQngl0IOqFK3p/My6To/9GnbP+gs5G1oVgFiW0/3C 4FvqxlAADDI7C5A/1hFwz4MH0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBi0bUCj 3QHlhpD0afQuptVAu3ylMB8GA1UdIwQYMBaAFO+/8Ws6n25E2h51jpOV0cW3FEda MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkI4RC8wREI4OTNFQzgz NkMxMUVCOEMxQTk4MTNDNEY5QUUwMi83N194YXpxZmJrVGFIbldPazVYUnhiY1VS MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc3X3hhenFmYmtUYUhuV09rNVhSeGJjVVIxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkI4RC8wREI4OTNFQzgzNkMxMUVCOEMxQTk4MTNDNEY5QUUwMi83N194YXpxZmJr VGFIbldPazVYUnhiY1VSMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6kfnM6uaFbhPUXE4RY2kd7mIzgoT/zk8CsvUtnDceYFCJabzu1buK ZsP2qcGCUzU7kCrEuumTtUoN8ziw2qN2dn12sCo59Lj5YZ05I8awrojAcTsjjCNQ LfoOYtJnxHQ/WlGxWmVCA2jumVIQHQ3/Je+R5ZWTVFuzIjvIyGoMj+ZJtkEi+VLb R3ZpE/rYq9YUvRNGDmGRc0nCFb9KGvnM76+pEfE6u/b72uN26k+8n/IQdYVXSJLq es3aEIdKU4Rl25sirY4vkv13s9YQypHqPKqY82sl2D/itjxBRiMiginm6Aik1mZO EOib+yxWxTb7CEfWqtBa2AtP5jKVNakP -----END CERTIFICATE-----Generated at Sun May 19 01:47:09 2024 by rpki-client on console-ams.rpki-client.org