$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft File: tUMZgoesmRJSAHhil7k2l_jySK4.mft (raw, json) Hash identifier: NL5aZ2/vP6gVZSgGQnwOELwS5yjCU2su5xoAG6ky9Rs= Subject key identifier: 09:C7:02:1A:CF:79:CF:69:F6:FC:38:08:03:6B:F6:28:47:A7:F6:1D Authority key identifier: B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE Certificate issuer: /CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft Manifest number: 0B6D Signing time: Sat 18 May 2024 19:34:34 +0000 Manifest this update: Sat 18 May 2024 19:34:34 +0000 Manifest next update: Sat 25 May 2024 19:34:34 +0000 Files and hashes: 1: tUMZgoesmRJSAHhil7k2l_jySK4.crl (hash: f1pQZ+RSDgHf79YLMP/pWkC+bVQHxPieOhLMdbqWrY0=) 2: DBE709060AA511EA86C8E31DC4F9AE02.roa (hash: zgjsHos2MHOxvntym+ulSXBT66zLuQ8zyiMRNeqJYvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Validity Not Before: May 18 19:34:34 2024 GMT Not After : May 25 19:34:34 2024 GMT Subject: CN=664902ca-4861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:55:8c:cd:a9:0e:87:f6:fd:3c:8b:c9:d8:9f: 35:67:3e:8b:44:53:73:89:94:30:2b:d8:89:2d:18: 2c:c8:1c:63:90:cb:68:a2:9d:46:be:70:54:29:44: 44:fa:02:14:ba:9c:89:53:e1:20:c4:6b:c1:58:b4: 4e:62:98:46:1c:27:6b:2e:c9:41:ca:e1:b3:49:32: d8:56:f0:96:bc:11:9a:80:ba:7a:29:57:a5:3b:40: 03:ea:d5:08:ec:9a:e5:b5:84:a4:c2:b4:56:17:c9: 9f:d4:e4:99:a3:6d:5f:c3:c1:f1:21:0b:73:9b:4e: 8e:a4:29:ef:b7:f5:9f:ec:7d:0d:f1:6c:e4:76:7e: 55:93:53:7d:bd:b4:a2:4d:2f:91:3d:3b:72:eb:46: e7:3a:6e:ea:40:5e:a5:a9:14:01:ef:7f:0b:b3:10: e9:a3:05:b9:5c:e1:cc:ca:36:03:13:de:e4:fd:39: c3:d8:aa:f1:31:c5:74:55:03:48:2e:b6:4c:91:ac: e5:9a:95:3b:61:29:a3:4a:f1:0f:69:2b:b3:63:70: 1f:3c:6c:81:85:9a:19:56:70:d2:e5:56:e8:b7:85: ff:b3:1e:08:b6:bf:8d:6c:9f:b5:34:ea:41:05:f0: 2c:35:61:b9:12:fe:e4:a9:d1:e2:5b:ef:2d:66:00: 79:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C7:02:1A:CF:79:CF:69:F6:FC:38:08:03:6B:F6:28:47:A7:F6:1D X509v3 Authority Key Identifier: keyid:B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:98:6e:84:d5:38:6a:f0:94:96:3f:8c:3e:59:9f:f9:9a:55: 37:88:8e:9d:11:ca:b0:45:01:75:a9:c2:03:8c:69:ae:bb:5c: d0:93:13:9c:31:0d:0f:ce:25:c3:8b:b0:83:70:46:1c:a6:5a: 36:76:a5:1b:bb:2c:d8:01:1c:f4:b2:d0:33:55:64:b7:3c:70: b3:d2:35:2d:7a:a4:76:ef:21:09:2c:56:b2:99:8c:44:ec:b3: 02:f7:15:00:12:8e:d4:0a:ea:54:4d:3d:9e:f0:8c:f2:03:a3: 25:c9:9b:90:ec:d4:1b:a4:37:7a:cb:05:5d:bf:aa:9a:b2:38: 65:76:95:29:f6:8e:44:49:9a:48:cc:7e:f4:56:8e:1a:9c:c6: 53:9e:7b:b5:90:a3:fa:33:32:d4:36:c0:ec:d9:a4:ab:b5:d9: 9b:bc:5d:29:de:b9:87:9b:3e:42:30:3e:66:47:e5:5d:97:e6: 32:9a:e3:c6:70:04:3b:2a:c3:6a:1d:40:c3:8d:56:1a:b6:4a: 59:fd:ba:a9:3c:46:3c:78:44:9f:50:53:f8:eb:44:3f:97:f4: c6:2b:1f:fa:ca:4c:d5:3f:c7:2a:d7:6e:c4:61:2c:68:0f:9b: 33:de:7a:8e:91:61:70:d1:31:c1:41:3f:d2:2f:9c:14:e6:f6: 51:b2:10:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQkMxMTAvBgNVBAUTKEI1NDMxOTgyODdBQzk5MTI1MjAwNzg2Mjk3QjkzNjk3 RjhGMjQ4QUUwHhcNMjQwNTE4MTkzNDM0WhcNMjQwNTI1MTkzNDM0WjAYMRYwFAYD VQQDEw02NjQ5MDJjYS00ODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FWMzakOh/b9PIvJ2J81Zz6LRFNziZQwK9iJLRgsyBxjkMtoop1GvnBUKURE +gIUupyJU+EgxGvBWLROYphGHCdrLslByuGzSTLYVvCWvBGagLp6KVelO0AD6tUI 7JrltYSkwrRWF8mf1OSZo21fw8HxIQtzm06OpCnvt/Wf7H0N8Wzkdn5Vk1N9vbSi TS+RPTty60bnOm7qQF6lqRQB738LsxDpowW5XOHMyjYDE97k/TnD2KrxMcV0VQNI LrZMkazlmpU7YSmjSvEPaSuzY3AfPGyBhZoZVnDS5Vbot4X/sx4Itr+NbJ+1NOpB BfAsNWG5Ev7kqdHiW+8tZgB5qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnHAhrP ec9p9vw4CANr9ihHp/YdMB8GA1UdIwQYMBaAFLVDGYKHrJkSUgB4Ype5Npf48kiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRCQy82OUZBMjU2ODBB QTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21SSlNBSGhpbDdrMmxfanlT SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVTVpnb2VzbVJKU0FIaGlsN2sybF9qeVNLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRCQy82OUZBMjU2ODBBQTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21S SlNBSGhpbDdrMmxfanlTSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlmG6E1Thq8JSWP4w+WZ/5mlU3iI6dEcqwRQF1qcIDjGmuu1zQkxOc MQ0PziXDi7CDcEYcplo2dqUbuyzYARz0stAzVWS3PHCz0jUteqR27yEJLFaymYxE 7LMC9xUAEo7UCupUTT2e8IzyA6MlyZuQ7NQbpDd6ywVdv6qasjhldpUp9o5ESZpI zH70Vo4anMZTnnu1kKP6MzLUNsDs2aSrtdmbvF0p3rmHmz5CMD5mR+Vdl+YymuPG cAQ7KsNqHUDDjVYatkpZ/bqpPEY8eESfUFP460Q/l/TGKx/6ykzVP8cq127EYSxo D5sz3nqOkWFw0THBQT/SL5wU5vZRshDY -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org