$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: dbAt4ZUsE2Uiqx5bJZxs1I1SnZs5voQkUJ4bIbDZlgc= Subject key identifier: 4A:AE:97:0D:9C:E7:24:64:54:22:55:E5:2D:04:6E:43:EB:73:64:57 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 08CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 08C3 Signing time: Sat 18 May 2024 21:26:53 +0000 Manifest this update: Sat 18 May 2024 21:26:53 +0000 Manifest next update: Sat 25 May 2024 21:26:53 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: M2vKI6wgZa73bWa049wnnpjeflENtaideYAJVeZo9mg=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: L4PZLtK5gV9MGLgQdeJJjS/yiPhtcCFrLkTSYObN7Oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: May 18 21:26:53 2024 GMT Not After : May 25 21:26:53 2024 GMT Subject: CN=66491d1d-6f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c8:ae:9a:76:73:d0:da:9d:22:77:f0:fe:4b: 87:8c:7b:e8:36:23:1e:2f:a8:fe:29:41:85:99:0c: 98:a0:5e:6f:b5:b4:d9:13:c8:13:88:ed:06:99:cd: aa:d6:43:7a:02:be:d2:1c:e0:f6:f4:0e:12:07:4f: 1f:8e:c2:46:c7:2b:91:64:a6:df:7e:36:7a:dd:a7: c1:1f:2c:c4:bf:df:ce:19:6a:2a:10:a7:77:62:57: f6:bf:35:81:7f:13:7a:ac:5b:1d:31:b3:f6:89:0f: aa:5d:81:91:44:02:06:e5:26:58:d9:a0:24:a7:b6: 3f:f8:ca:e0:5d:91:17:a3:a2:ac:0d:43:14:fb:f4: b0:05:ec:ba:25:6e:87:01:d6:cb:8f:75:5f:c8:c4: be:f2:40:54:65:a0:60:77:34:c1:7a:32:65:e1:f6: ff:58:1a:9d:23:18:79:cf:2d:a3:1f:91:76:20:67: 2a:4f:b1:1c:19:84:91:b1:2b:76:4d:b2:6c:cc:02: 66:9f:a3:91:fc:a8:e7:37:69:a1:60:c5:50:10:ad: 37:19:6f:e5:5e:e4:9d:96:9c:96:6c:92:e6:20:18: 24:e3:4e:84:1f:2b:8f:17:11:d4:e9:bb:ba:43:f9: 7c:f2:26:ce:55:7a:a2:bb:76:e6:b1:c7:a2:24:c5: 4b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:AE:97:0D:9C:E7:24:64:54:22:55:E5:2D:04:6E:43:EB:73:64:57 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:00:d8:81:d0:a1:d7:23:f5:fa:33:f7:84:1e:d6:54:97:d8: e7:dd:03:70:e1:0a:df:c1:d2:8b:5f:69:f5:bc:25:8c:28:12: 1f:ed:07:47:3b:45:a3:0e:6f:e4:81:f4:d7:0d:97:a3:0d:81: ef:3f:8e:c0:79:70:02:b3:df:f0:18:62:04:d5:24:f2:6e:29: af:79:15:98:e5:ef:bf:b8:fa:8d:1b:0f:49:28:b3:0c:50:5b: 9e:e1:10:70:2c:49:1f:71:77:26:59:da:fc:1b:7f:6c:1b:d1: 55:a0:a3:40:fb:82:70:4d:52:3c:4e:af:f7:0b:81:72:d0:dc: f9:90:f8:64:53:08:32:dd:8d:b2:c3:a6:9f:0c:aa:9d:1d:57: c6:fc:1c:df:4c:f3:16:19:3e:a7:9a:d5:41:ca:4f:fc:c1:52: 15:bd:48:93:aa:39:d3:1c:3b:fe:d4:fb:81:bc:9f:e7:c9:56: df:fb:8d:c2:97:0e:0d:bc:c6:3f:d3:bb:e8:98:06:d3:0c:49: 99:f1:b8:a1:2c:67:7e:74:fb:f5:c0:8f:69:d6:b0:aa:ee:8f: 6c:43:3c:f7:6a:2e:f2:6b:f1:fa:b1:e3:2f:1c:5f:37:91:42: 7a:d2:5a:73:df:a1:90:17:83:73:63:31:99:96:12:cd:c4:13: 8c:b6:98:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjQwNTE4MjEyNjUzWhcNMjQwNTI1MjEyNjUzWjAYMRYwFAYD VQQDEw02NjQ5MWQxZC02ZjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyciumnZz0NqdInfw/kuHjHvoNiMeL6j+KUGFmQyYoF5vtbTZE8gTiO0Gmc2q 1kN6Ar7SHOD29A4SB08fjsJGxyuRZKbffjZ63afBHyzEv9/OGWoqEKd3Ylf2vzWB fxN6rFsdMbP2iQ+qXYGRRAIG5SZY2aAkp7Y/+MrgXZEXo6KsDUMU+/SwBey6JW6H AdbLj3VfyMS+8kBUZaBgdzTBejJl4fb/WBqdIxh5zy2jH5F2IGcqT7EcGYSRsSt2 TbJszAJmn6OR/KjnN2mhYMVQEK03GW/lXuSdlpyWbJLmIBgk406EHyuPFxHU6bu6 Q/l88ibOVXqiu3bmsceiJMVL5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqulw2c 5yRkVCJV5S0EbkPrc2RXMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9ANiB0KHXI/X6M/eEHtZUl9jn3QNw4QrfwdKLX2n1vCWMKBIf7QdH O0WjDm/kgfTXDZejDYHvP47AeXACs9/wGGIE1STybimveRWY5e+/uPqNGw9JKLMM UFue4RBwLEkfcXcmWdr8G39sG9FVoKNA+4JwTVI8Tq/3C4Fy0Nz5kPhkUwgy3Y2y w6afDKqdHVfG/BzfTPMWGT6nmtVByk/8wVIVvUiTqjnTHDv+1PuBvJ/nyVbf+43C lw4NvMY/07vomAbTDEmZ8bihLGd+dPv1wI9p1rCq7o9sQzz3ai7ya/H6seMvHF83 kUJ60lpz36GQF4NzYzGZlhLNxBOMtphm -----END CERTIFICATE-----Generated at Sat May 18 22:27:53 2024 by rpki-client on console-ams.rpki-client.org