$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: Tv+Z3yLeDJu8yl7je/7oV0MCWcv6FIDWzf/jGTDt3gU= Subject key identifier: A4:0B:F5:01:38:D3:FA:F0:CD:97:79:C0:7C:47:1E:B3:98:B6:42:C1 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 0685 Signing time: Sat 18 May 2024 23:23:16 +0000 Manifest this update: Sat 18 May 2024 23:23:15 +0000 Manifest next update: Sat 25 May 2024 23:23:15 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: T561Gh/Z1o1NMgDWkQ/f7lzWEW4sv9bE0Ol9cB/ENPk=) 2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: i3UeQiX+tUDSOr3LtoockwiB3n+oKf6dv798PZf6kHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: May 18 23:23:15 2024 GMT Not After : May 25 23:23:15 2024 GMT Subject: CN=66493863-618c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:37:c8:93:b9:ac:5e:09:d4:38:8c:e8:54:9b: 47:ca:5e:7c:ee:ae:8f:26:aa:d2:c2:30:b7:5c:fe: 52:a2:ea:06:95:ca:a6:e3:ef:2b:95:8a:a2:94:30: 6e:8b:9e:e2:4e:d3:54:ad:0c:61:d7:ae:25:ca:75: 04:02:82:dd:d3:ee:1d:19:81:e6:2d:f3:82:49:21: 7d:d4:37:0f:63:11:30:17:01:e3:9f:0f:1f:f6:8a: 02:e7:06:b7:61:98:76:0a:ca:be:64:2d:93:91:9e: bc:b3:d9:d4:34:fa:f4:1a:64:4b:b8:a4:ea:99:42: 8f:ca:b2:9a:fd:ba:36:2c:92:5b:ec:57:b7:15:f0: f3:12:5a:33:ed:cd:f4:fd:b3:b5:fe:0c:5d:78:6e: 29:05:e0:f4:7c:bf:e0:b5:34:2b:93:ca:39:13:00: 08:e0:86:20:df:70:b6:71:77:23:1b:59:a8:0b:94: 8d:de:ac:94:51:c8:d3:bd:90:17:1c:6c:ea:e0:dc: 67:b0:e7:1a:2f:37:e9:3c:ae:c7:96:f0:f9:de:01: 87:20:18:97:07:a0:8d:48:1d:6e:d6:ac:6d:30:9c: 00:42:4f:3b:96:6e:4e:ef:28:27:ab:c2:09:f3:00: 63:e0:a0:00:8f:9d:ef:e0:4d:4e:ac:59:58:fc:db: ff:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0B:F5:01:38:D3:FA:F0:CD:97:79:C0:7C:47:1E:B3:98:B6:42:C1 X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:be:89:f4:97:d1:70:2d:62:27:b9:f0:eb:b8:18:93:ac:c6: 55:92:b6:ab:40:46:c4:fc:b2:ae:8a:6f:76:5f:f6:08:48:7c: d6:34:44:b7:0c:00:ca:c7:5a:02:5b:00:71:39:ae:86:a2:a8: 93:fd:5f:2a:8c:4d:2e:f0:ca:2a:be:17:e4:67:f5:a8:64:07: 1d:b9:db:2c:32:f0:35:50:6b:34:c2:fe:e7:fa:83:45:73:1e: 66:ae:0d:c2:38:7f:6e:47:84:a1:de:54:06:49:77:b3:1f:a4: 77:c7:9a:db:ba:50:bc:e6:e2:f0:16:5f:97:6f:23:8f:7f:d0: 4d:8e:23:d1:d6:56:6f:2d:3d:bd:2a:78:81:83:ec:c1:ca:1f: bc:07:18:ef:fd:94:c5:9c:81:b6:b8:59:59:29:d0:5a:30:da: 4d:16:02:7c:b3:27:47:d6:cd:21:40:fb:db:32:a6:27:8f:bb: 34:28:34:88:f2:97:bb:8e:ad:bb:0e:a8:db:1f:a5:e8:9f:97: 57:0c:f8:68:02:38:72:5f:29:94:f9:e1:8d:9a:ee:8a:a1:64: 3c:84:13:07:d8:77:59:75:13:7b:a6:f2:45:25:2e:42:0a:e4: e6:e5:78:c4:96:fe:74:9d:7a:24:db:1d:35:23:d3:31:39:7d: 41:17:3e:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjQwNTE4MjMyMzE1WhcNMjQwNTI1MjMyMzE1WjAYMRYwFAYD VQQDEw02NjQ5Mzg2My02MThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDfIk7msXgnUOIzoVJtHyl587q6PJqrSwjC3XP5SouoGlcqm4+8rlYqilDBu i57iTtNUrQxh164lynUEAoLd0+4dGYHmLfOCSSF91DcPYxEwFwHjnw8f9ooC5wa3 YZh2Csq+ZC2TkZ68s9nUNPr0GmRLuKTqmUKPyrKa/bo2LJJb7Fe3FfDzEloz7c30 /bO1/gxdeG4pBeD0fL/gtTQrk8o5EwAI4IYg33C2cXcjG1moC5SN3qyUUcjTvZAX HGzq4NxnsOcaLzfpPK7HlvD53gGHIBiXB6CNSB1u1qxtMJwAQk87lm5O7ygnq8IJ 8wBj4KAAj53v4E1OrFlY/Nv/QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQL9QE4 0/rwzZd5wHxHHrOYtkLBMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDgvon0l9FwLWInufDruBiTrMZVkrarQEbE/LKuim92X/YISHzWNES3 DADKx1oCWwBxOa6GoqiT/V8qjE0u8MoqvhfkZ/WoZAcdudssMvA1UGs0wv7n+oNF cx5mrg3COH9uR4Sh3lQGSXezH6R3x5rbulC85uLwFl+XbyOPf9BNjiPR1lZvLT29 KniBg+zByh+8Bxjv/ZTFnIG2uFlZKdBaMNpNFgJ8sydH1s0hQPvbMqYnj7s0KDSI 8pe7jq27DqjbH6Xon5dXDPhoAjhyXymU+eGNmu6KoWQ8hBMH2HdZdRN7pvJFJS5C CuTm5XjElv50nXok2x01I9MxOX1BFz5G -----END CERTIFICATE-----Generated at Sun May 19 00:30:14 2024 by rpki-client on console-ams.rpki-client.org