$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft File: t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft (raw, json) Hash identifier: s2H3dxJAAQ8/ce2SQUnmOURIxDXtLCB4sfSDwKVEThI= Subject key identifier: AC:73:66:D1:CD:E1:16:22:07:E3:E1:BF:A6:4F:CE:9C:70:DF:C7:D3 Authority key identifier: B7:C9:79:5F:FF:7F:69:CF:33:B7:65:1C:6B:99:26:A7:30:D9:75:9C Certificate issuer: /CN=A9142DB4/serialNumber=B7C9795FFF7F69CF33B7651C6B9926A730D9759C Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8l5X_9_ac8zt2Uca5kmpzDZdZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft Manifest number: 80 Signing time: Fri 31 May 2024 08:08:26 +0000 Manifest this update: Fri 31 May 2024 08:08:26 +0000 Manifest next update: Fri 07 Jun 2024 08:08:26 +0000 Files and hashes: 1: t8l5X_9_ac8zt2Uca5kmpzDZdZw.crl (hash: Uz0p9eCsK2ehCM7j6l5/W+ooveU/pa6r7x9L+k8SnMs=) 2: 9ADC9C8A5CE211EEBA4DBD15C4F9AE02.roa (hash: zms8u9wzpkFSLmRvDkTyoRIiatdqYJeCfoGbWIDPnr0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.crl rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8l5X_9_ac8zt2Uca5kmpzDZdZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DB4/serialNumber=B7C9795FFF7F69CF33B7651C6B9926A730D9759C Validity Not Before: May 31 08:08:26 2024 GMT Not After : Jun 7 08:08:26 2024 GMT Subject: CN=6659857a-9dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:58:17:d9:56:de:32:96:db:0a:50:b2:52:0e: 46:95:21:25:e7:4c:e5:ed:c4:1d:3c:6c:5d:11:d3: b3:30:fe:24:f7:60:9c:bd:c3:cb:fc:60:47:25:33: 9e:6a:ce:c1:50:dc:1b:3c:d7:6f:49:16:bd:53:1c: 4f:50:f8:57:1f:44:f8:ca:2f:ec:6a:b9:96:d9:0e: 32:3f:d1:8a:b6:be:85:90:5d:2a:cb:2f:cb:ab:d8: e7:dd:04:2f:02:05:38:a8:23:f5:c3:ab:a8:bb:8b: 25:c3:cc:e4:51:1a:b8:d2:f4:0b:17:e5:a7:dd:3b: 04:aa:9d:05:cf:ff:6e:7a:49:f3:d3:f7:2e:1b:24: 98:7e:83:31:7c:89:11:6a:3b:de:d0:13:e2:16:bc: 90:55:e6:a9:dd:e4:b3:6f:64:1e:49:27:4c:d1:6f: 11:4f:6d:9d:75:5e:a1:db:55:ea:c1:af:ed:79:0c: 4c:ad:ad:da:47:15:c1:4a:db:0c:91:c6:c8:15:36: e9:15:19:d3:41:b0:3b:3b:8f:7f:ea:bb:f2:1d:72: 12:ca:7b:8b:2e:af:f7:9d:ff:67:79:d5:eb:f9:15: 1f:36:c6:27:4b:95:9c:d0:97:8c:6d:5a:24:6a:5e: 48:4d:c1:21:b8:3c:86:6b:88:26:a6:7d:b5:fa:00: 10:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:73:66:D1:CD:E1:16:22:07:E3:E1:BF:A6:4F:CE:9C:70:DF:C7:D3 X509v3 Authority Key Identifier: keyid:B7:C9:79:5F:FF:7F:69:CF:33:B7:65:1C:6B:99:26:A7:30:D9:75:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t8l5X_9_ac8zt2Uca5kmpzDZdZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DB4/3C09B3FA5CE211EEAF42DE62C4F9AE02/t8l5X_9_ac8zt2Uca5kmpzDZdZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:ea:0a:71:78:a4:3e:3a:e9:bd:a9:63:96:fe:b9:51:2c:68: a6:33:50:83:1c:5c:83:d8:0b:c5:de:b3:c1:32:33:82:04:bb: d6:01:9b:cd:f0:f3:f9:84:fe:f2:6d:3e:1a:39:88:b2:eb:45: b6:f8:d1:33:71:33:5e:52:29:54:82:de:1b:96:9b:73:09:d2: 80:42:2b:fc:d7:45:54:1e:3b:ea:0f:cd:15:26:17:55:a8:4d: 00:13:0a:87:a1:5c:74:a4:4e:20:41:0c:b6:37:26:e6:04:71: 92:e0:7c:af:52:ba:8d:62:72:64:69:d1:a9:0a:c5:f3:3e:cf: 8a:20:48:cb:44:63:9c:ad:54:3e:25:b5:7f:2b:4f:fb:a3:72: a4:92:37:5a:d2:f4:24:e2:34:4c:51:eb:b3:9d:33:9d:51:5b: c1:76:65:6d:00:85:d8:bf:03:27:78:b3:22:ce:4b:8a:fc:fc: 31:c3:c1:25:11:82:8d:26:88:fa:3c:62:d6:9b:53:14:3d:87: 5d:68:3f:3d:4b:f1:8f:2a:ec:ab:d3:08:79:97:b2:82:03:ad: 9f:0a:23:9b:87:d6:2d:80:78:99:b5:80:90:53:de:5f:d1:8f: 68:2c:5b:bc:f0:f0:ea:bf:bc:2e:10:80:82:95:c1:cf:d9:e5: 10:6e:85:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQjQxMTAvBgNVBAUTKEI3Qzk3OTVGRkY3RjY5Q0YzM0I3NjUxQzZCOTkyNkE3 MzBEOTc1OUMwHhcNMjQwNTMxMDgwODI2WhcNMjQwNjA3MDgwODI2WjAYMRYwFAYD VQQDEw02NjU5ODU3YS05ZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlgX2VbeMpbbClCyUg5GlSEl50zl7cQdPGxdEdOzMP4k92CcvcPL/GBHJTOe as7BUNwbPNdvSRa9UxxPUPhXH0T4yi/sarmW2Q4yP9GKtr6FkF0qyy/Lq9jn3QQv AgU4qCP1w6uou4slw8zkURq40vQLF+Wn3TsEqp0Fz/9ueknz0/cuGySYfoMxfIkR ajve0BPiFryQVeap3eSzb2QeSSdM0W8RT22ddV6h21Xqwa/teQxMra3aRxXBStsM kcbIFTbpFRnTQbA7O49/6rvyHXISynuLLq/3nf9nedXr+RUfNsYnS5Wc0JeMbVok al5ITcEhuDyGa4gmpn21+gAQ/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxzZtHN 4RYiB+Phv6ZPzpxw38fTMB8GA1UdIwQYMBaAFLfJeV//f2nPM7dlHGuZJqcw2XWc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRCNC8zQzA5QjNGQTVD RTIxMUVFQUY0MkRFNjJDNEY5QUUwMi90OGw1WF85X2FjOHp0MlVjYTVrbXB6RFpk WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q4bDVYXzlfYWM4enQyVWNhNWttcHpEWmRady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRCNC8zQzA5QjNGQTVDRTIxMUVFQUY0MkRFNjJDNEY5QUUwMi90OGw1WF85X2Fj OHp0MlVjYTVrbXB6RFpkWncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT6gpxeKQ+Oum9qWOW/rlRLGimM1CDHFyD2AvF3rPBMjOCBLvWAZvN 8PP5hP7ybT4aOYiy60W2+NEzcTNeUilUgt4blptzCdKAQiv810VUHjvqD80VJhdV qE0AEwqHoVx0pE4gQQy2NybmBHGS4HyvUrqNYnJkadGpCsXzPs+KIEjLRGOcrVQ+ JbV/K0/7o3Kkkjda0vQk4jRMUeuznTOdUVvBdmVtAIXYvwMneLMizkuK/Pwxw8El EYKNJoj6PGLWm1MUPYddaD89S/GPKuyr0wh5l7KCA62fCiObh9YtgHiZtYCQU95f 0Y9oLFu88PDqv7wuEICClcHP2eUQboX1 -----END CERTIFICATE-----Generated at Fri May 31 10:01:43 2024 by rpki-client on console-ams.rpki-client.org