$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: z5a+zSbUyVP4l7GEmj58SH7fBtnzJPRPEueMoB4KVac= Subject key identifier: DD:1A:58:93:D4:A7:AE:81:9E:30:D3:1B:5D:CB:4C:72:42:B8:F4:C3 Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0B85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0B7D Signing time: Sat 18 May 2024 19:25:57 +0000 Manifest this update: Sat 18 May 2024 19:25:57 +0000 Manifest next update: Sat 25 May 2024 19:25:57 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: IT1RVS32H2h/HI15VQyzfp53VWnNVlMx/zhqaEHqYGk=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: 98z7eq8qy5jy8+qW71SkmYvKbgUCe8/WSIk7jnhoIiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2949 (0xb85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Validity Not Before: May 18 19:25:57 2024 GMT Not After : May 25 19:25:57 2024 GMT Subject: CN=664900c5-8066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9d:36:52:95:20:d7:b5:8e:38:7f:0d:5a:73: ce:6c:91:4e:db:b0:a4:7c:29:b2:eb:9f:fe:6c:3e: b3:77:f3:57:6b:1d:32:69:4f:0f:a3:26:16:a5:18: 09:7f:5a:65:ed:5a:18:91:60:27:e0:06:6e:27:3a: 54:68:fa:f1:b4:72:fe:32:c1:33:93:23:e4:2c:f8: 3a:0c:ab:d2:16:75:ab:2a:a0:53:1f:d4:3d:9d:bb: 02:4a:d4:de:b4:df:31:0c:a5:78:9d:42:47:9a:f3: 21:51:67:a5:1f:ef:6a:cc:7b:15:e9:9e:7c:84:79: bb:58:a7:2a:38:dc:73:78:72:4f:36:d2:3d:ec:54: a7:04:93:bb:95:34:59:3c:28:08:6e:b4:2c:06:6e: 76:ba:d8:44:0c:e7:aa:e6:88:1d:04:17:5c:a5:35: 4f:08:d5:c5:53:d5:c9:51:c9:b6:d9:da:a3:9d:3a: 79:71:01:fb:a6:f8:a8:8e:ce:67:2e:11:ae:5a:a7: f5:1b:2b:14:84:40:e2:20:77:de:f7:bc:85:9c:b7: a1:76:70:01:37:17:34:89:aa:77:bf:ce:26:e8:9c: d9:bf:c3:e7:6f:67:30:8f:05:0b:a9:bc:75:00:a2: 72:c3:8d:3e:ef:e7:5d:c6:a4:c9:82:3d:c1:8a:31: ac:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1A:58:93:D4:A7:AE:81:9E:30:D3:1B:5D:CB:4C:72:42:B8:F4:C3 X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f9:bd:db:21:d8:26:8a:40:87:fb:b8:78:f4:d3:da:f6:6e: 77:2f:0f:94:b0:5c:34:a4:10:b0:4c:fe:1a:e2:29:11:a5:b8: 0b:ea:1e:29:d6:22:87:bd:dc:dc:fa:bf:a9:29:aa:1c:44:64: ae:82:cc:4e:7e:14:e8:20:d1:46:23:59:8c:96:f9:b3:8a:64: 43:db:32:84:45:eb:74:ee:57:01:f5:f6:65:e6:4b:2a:f9:7c: dd:c0:5e:3e:44:c7:16:b8:b2:21:94:93:9d:c6:ba:c4:08:45: b8:41:06:c6:31:2a:79:fc:64:ed:e9:d8:68:a7:21:f8:6a:a0: 4a:29:d1:61:32:a4:af:d2:2c:2d:20:c8:39:6c:21:77:6b:3e: e7:78:48:e0:78:07:5e:ee:a5:56:b8:52:13:23:7a:0a:9e:aa: 25:08:64:a6:96:7a:c6:cb:5b:ad:a5:4b:56:b8:e8:2b:37:6c: fa:eb:c7:3a:ef:f6:f5:b6:cc:f2:02:f8:28:a8:b1:3f:63:97: 25:a4:65:74:63:ac:ee:95:b7:9d:61:4f:13:13:30:b5:d5:46: 22:22:09:4b:f4:d5:95:83:ef:2c:4b:ac:51:8c:41:d3:6b:6f: bd:b8:8d:f9:05:be:d2:8a:3e:dc:ad:f8:07:f7:b9:fc:ba:89: 14:04:92:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjQwNTE4MTkyNTU3WhcNMjQwNTI1MTkyNTU3WjAYMRYwFAYD VQQDEw02NjQ5MDBjNS04MDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup02UpUg17WOOH8NWnPObJFO27CkfCmy65/+bD6zd/NXax0yaU8PoyYWpRgJ f1pl7VoYkWAn4AZuJzpUaPrxtHL+MsEzkyPkLPg6DKvSFnWrKqBTH9Q9nbsCStTe tN8xDKV4nUJHmvMhUWelH+9qzHsV6Z58hHm7WKcqONxzeHJPNtI97FSnBJO7lTRZ PCgIbrQsBm52uthEDOeq5ogdBBdcpTVPCNXFU9XJUcm22dqjnTp5cQH7pviojs5n LhGuWqf1GysUhEDiIHfe97yFnLehdnABNxc0iap3v84m6JzZv8Pnb2cwjwULqbx1 AKJyw40+7+ddxqTJgj3BijGs7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0aWJPU p66BnjDTG13LTHJCuPTDMB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW+b3bIdgmikCH+7h49NPa9m53Lw+UsFw0pBCwTP4a4ikRpbgL6h4p 1iKHvdzc+r+pKaocRGSugsxOfhToINFGI1mMlvmzimRD2zKERet07lcB9fZl5ksq +XzdwF4+RMcWuLIhlJOdxrrECEW4QQbGMSp5/GTt6dhopyH4aqBKKdFhMqSv0iwt IMg5bCF3az7neEjgeAde7qVWuFITI3oKnqolCGSmlnrGy1utpUtWuOgrN2z668c6 7/b1tszyAvgoqLE/Y5clpGV0Y6zulbedYU8TEzC11UYiIglL9NWVg+8sS6xRjEHT a2+9uI35Bb7Sij7crfgH97n8uokUBJLP -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org