$ rpki-client -vvf rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft File: rCP1TTAVC0YAnBoCnl7s224FVlY.mft (raw, json) Hash identifier: 2IRFy39qBzEujD1Ncl8oKmw6F3kcbE9kqQEA+pqBDRg= Subject key identifier: 36:11:20:8B:B1:CA:D4:77:3C:C5:29:75:C4:2B:35:E1:D2:2F:54:43 Authority key identifier: AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 Certificate issuer: /CN=A9141586/serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft Manifest number: 01C0 Signing time: Sun 19 May 2024 04:28:00 +0000 Manifest this update: Sun 19 May 2024 04:27:59 +0000 Manifest next update: Sun 26 May 2024 04:27:59 +0000 Files and hashes: 1: rCP1TTAVC0YAnBoCnl7s224FVlY.crl (hash: q+NAcAcdqYfFjeO0akK3PzaWquq8hXsIufCwf0gjMyQ=) 2: CA08C348098D11EDAB30E934C4F9AE02.roa (hash: wk4FNHWSIyIsPuLHnvDSegYUJ/QvZebAuM5TzFH/P5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141586/serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Validity Not Before: May 19 04:27:59 2024 GMT Not After : May 26 04:27:59 2024 GMT Subject: CN=66497fcf-379c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:84:cd:75:4d:6d:63:b5:0f:f1:ac:14:0e:c7: d8:f6:43:39:58:09:c2:bb:ae:c6:82:b5:ca:fd:0c: 6c:87:b0:69:84:84:51:c8:8c:f0:94:ce:ef:64:74: 4d:aa:20:cf:73:70:d6:b5:8d:ba:d1:64:03:41:35: 0c:3b:2a:82:5b:26:69:34:7f:18:f7:8d:e2:4b:55: db:51:dd:2f:38:28:f7:a6:5e:f3:28:df:66:da:57: b5:0c:91:34:59:4c:22:9c:08:94:a7:4f:33:da:c1: 98:7a:eb:f0:dd:5d:65:04:d7:91:61:b6:e2:95:48: 7c:f9:d2:e1:1a:b4:98:1f:7b:5a:01:49:4f:ae:45: 20:45:08:9a:03:f5:21:06:f5:08:03:95:3c:94:2a: 15:0a:ac:58:3e:c2:da:6b:5c:f3:4b:e9:cb:b6:45: 92:e6:8b:a9:62:c7:96:92:78:8c:9e:63:0c:3c:2a: f5:33:62:47:d8:9c:36:e2:22:dd:31:0e:70:40:0b: 11:86:d3:5a:92:a6:67:ef:e4:a6:ae:af:40:8f:d2: db:49:d9:fe:89:f6:7e:92:e6:18:90:64:3b:4b:53: 8b:18:db:6d:cf:ee:8f:5c:48:af:6c:5c:40:64:c6: 41:74:1c:68:84:95:eb:41:57:1a:34:35:ac:e7:56: 64:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:11:20:8B:B1:CA:D4:77:3C:C5:29:75:C4:2B:35:E1:D2:2F:54:43 X509v3 Authority Key Identifier: keyid:AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:32:4a:70:c5:53:b2:65:3d:58:b5:51:a3:13:ce:83:f7:8a: 8c:9c:49:f6:36:c4:cb:bb:27:de:40:cc:c2:7a:8c:16:7f:64: 00:84:fb:ee:23:82:4b:cd:d6:57:d5:fc:41:0d:ae:f5:88:86: 8a:33:ef:1e:bd:70:5f:9b:7e:6e:61:4c:ee:fd:91:a6:be:a5: 2b:b4:1e:7e:71:18:e2:c3:53:d2:cc:ea:a1:87:16:6c:c4:e2: 9f:22:8b:f6:1d:75:4e:52:90:7f:2f:20:24:af:02:39:fe:b1: e0:87:9a:02:d7:c2:8a:cc:fa:7c:28:c2:48:46:3c:4f:cc:e7: d7:0b:96:ca:95:db:98:12:85:c2:2b:72:a7:23:3d:a8:05:ea: a9:08:4b:7f:85:11:db:29:50:0a:c3:0a:42:a3:c6:c6:94:21: 7b:3d:07:07:25:52:78:da:17:95:40:7b:4b:e8:9b:d0:81:8f: 7b:00:38:25:cb:bd:30:ef:40:b3:ff:c3:26:5b:18:9d:d1:75: 3b:e9:5b:42:a9:ea:ce:58:56:cf:76:5d:7e:8b:3c:d9:3a:d7: c3:83:c6:00:d8:e7:81:88:9e:80:57:85:78:54:6f:42:2d:9f: bc:63:40:af:59:0d:0e:44:34:43:4a:b3:df:04:7e:b6:af:f1: fc:0e:60:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1ODYxMTAvBgNVBAUTKEFDMjNGNTREMzAxNTBCNDYwMDlDMUEwMjlFNUVFQ0RC NkUwNTU2NTYwHhcNMjQwNTE5MDQyNzU5WhcNMjQwNTI2MDQyNzU5WjAYMRYwFAYD VQQDEw02NjQ5N2ZjZi0zNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYTNdU1tY7UP8awUDsfY9kM5WAnCu67GgrXK/Qxsh7BphIRRyIzwlM7vZHRN qiDPc3DWtY260WQDQTUMOyqCWyZpNH8Y943iS1XbUd0vOCj3pl7zKN9m2le1DJE0 WUwinAiUp08z2sGYeuvw3V1lBNeRYbbilUh8+dLhGrSYH3taAUlPrkUgRQiaA/Uh BvUIA5U8lCoVCqxYPsLaa1zzS+nLtkWS5oupYseWkniMnmMMPCr1M2JH2Jw24iLd MQ5wQAsRhtNakqZn7+Smrq9Aj9LbSdn+ifZ+kuYYkGQ7S1OLGNttz+6PXEivbFxA ZMZBdBxohJXrQVcaNDWs51ZkVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYRIIux ytR3PMUpdcQrNeHSL1RDMB8GA1UdIwQYMBaAFKwj9U0wFQtGAJwaAp5e7NtuBVZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTU4Ni8wRDYxOTE2ODA5 OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMwWUFuQm9Dbmw3czIyNEZW bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDUDFUVEFWQzBZQW5Cb0NubDdzMjI0RlZsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTU4Ni8wRDYxOTE2ODA5OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMw WUFuQm9Dbmw3czIyNEZWbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiMkpwxVOyZT1YtVGjE86D94qMnEn2NsTLuyfeQMzCeowWf2QAhPvu I4JLzdZX1fxBDa71iIaKM+8evXBfm35uYUzu/ZGmvqUrtB5+cRjiw1PSzOqhhxZs xOKfIov2HXVOUpB/LyAkrwI5/rHgh5oC18KKzPp8KMJIRjxPzOfXC5bKlduYEoXC K3KnIz2oBeqpCEt/hRHbKVAKwwpCo8bGlCF7PQcHJVJ42heVQHtL6JvQgY97ADgl y70w70Cz/8MmWxid0XU76VtCqerOWFbPdl1+izzZOtfDg8YA2OeBiJ6AV4V4VG9C LZ+8Y0CvWQ0ORDRDSrPfBH62r/H8DmBK -----END CERTIFICATE-----Generated at Sun May 19 05:08:04 2024 by rpki-client on console-ams.rpki-client.org