$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: 8F1i0z5faDf04QFAIJ75lF86/H2l095NtosbLKM9+vU= Subject key identifier: B2:88:27:89:44:E9:B6:D0:2D:CF:99:6A:7F:4D:4C:63:4A:0E:E9:0C Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1AE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1AD1 Signing time: Sat 18 May 2024 16:42:46 +0000 Manifest this update: Sat 18 May 2024 16:42:45 +0000 Manifest next update: Sat 25 May 2024 16:42:45 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: aymwKTlH16NNhnpjv1HmuSOi3E5T6hUQi0H2qlu4ifE=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: i9O1XjNiOxohoSOkwBSOCWg1fccYbraqqs7MGV2WXXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6882 (0x1ae2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: May 18 16:42:45 2024 GMT Not After : May 25 16:42:45 2024 GMT Subject: CN=6648da85-7e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:60:e3:bc:04:08:2e:59:89:50:58:a6:85:a9: 07:f5:fe:88:63:dd:5c:bd:20:49:81:0b:9f:b8:0a: 9e:66:fa:87:d5:be:ce:e7:d9:b3:12:90:ae:7e:78: 5d:e3:f4:d9:28:a0:6d:d6:1f:9b:b2:c8:3d:e5:ef: 24:f1:f8:76:0b:88:c7:dd:08:d5:67:ce:fb:78:83: c7:79:64:15:1e:15:0c:4d:1c:2c:f1:a5:06:39:10: a3:8e:2f:9b:49:95:47:44:bc:13:a6:16:4b:13:85: 4a:67:99:96:ca:c1:bd:0a:8d:b5:84:a9:65:13:48: 77:03:f5:db:e0:9e:c2:a8:7b:21:ed:b4:3a:af:3f: d2:c1:37:7f:ed:fe:f2:8f:b3:44:7e:b6:b1:7f:92: 95:61:12:b5:71:1b:64:82:1a:41:3f:6b:3e:5c:ab: 71:96:8e:21:36:88:97:a2:af:30:4d:64:96:77:cf: cc:76:64:eb:9c:89:94:82:ec:55:6e:08:9f:65:15: 90:10:8d:5f:e9:7d:93:cc:f4:97:db:21:c1:83:80: 45:27:42:79:8d:77:0d:3f:91:de:15:94:fd:a2:45: 28:6f:43:f4:cf:0e:56:dc:7e:ac:0b:87:f2:96:e3: 6a:fa:46:0d:28:9d:c1:e7:76:05:b2:49:c8:16:8c: d6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:88:27:89:44:E9:B6:D0:2D:CF:99:6A:7F:4D:4C:63:4A:0E:E9:0C X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:97:91:92:e2:68:10:48:a7:f7:c5:8c:f8:98:63:19:7d:8a: 11:19:31:e5:c1:90:c9:93:69:ab:be:11:bc:4f:9e:41:3b:19: ba:f4:74:55:1e:cb:40:07:6c:78:37:ab:d9:6a:8a:00:28:f3: 23:ed:e9:b4:43:b9:c7:da:26:c6:7b:7e:3b:b8:f1:49:3b:f0: 01:13:b2:d5:b7:7c:66:53:44:10:2b:f2:f7:f2:13:58:a8:ad: 2a:84:9e:91:cb:9d:8c:7f:8f:9c:02:e0:66:0b:ca:dd:bf:71: 05:77:a5:59:9d:17:e0:67:b9:ff:f5:78:22:cc:0d:c1:68:84: 78:79:e7:2a:71:49:79:2a:5f:de:6f:8e:df:a6:a2:2f:81:2d: 10:bd:e9:b7:43:20:6f:d5:76:38:f1:73:07:ca:54:a7:fe:44: 12:5a:12:6b:8d:43:e6:8d:0a:a8:c3:e6:26:66:e3:f4:61:ca: 3f:c2:42:b0:c7:d8:77:f7:a4:da:e0:19:82:d2:91:6f:7b:14: c5:b4:fd:fd:36:25:01:d5:9d:b9:00:6b:db:30:f9:45:e0:87: 48:42:a2:80:00:c0:75:f5:e5:52:ba:5e:d2:22:7c:79:3e:88: e1:28:a5:7f:e5:56:64:2e:d3:67:49:4e:f5:fa:a6:c2:8b:15: c9:c4:f8:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjQwNTE4MTY0MjQ1WhcNMjQwNTI1MTY0MjQ1WjAYMRYwFAYD VQQDEw02NjQ4ZGE4NS03ZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2DjvAQILlmJUFimhakH9f6IY91cvSBJgQufuAqeZvqH1b7O59mzEpCufnhd 4/TZKKBt1h+bssg95e8k8fh2C4jH3QjVZ877eIPHeWQVHhUMTRws8aUGORCjji+b SZVHRLwTphZLE4VKZ5mWysG9Co21hKllE0h3A/Xb4J7CqHsh7bQ6rz/SwTd/7f7y j7NEfraxf5KVYRK1cRtkghpBP2s+XKtxlo4hNoiXoq8wTWSWd8/MdmTrnImUguxV bgifZRWQEI1f6X2TzPSX2yHBg4BFJ0J5jXcNP5HeFZT9okUob0P0zw5W3H6sC4fy luNq+kYNKJ3B53YFsknIFozW2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKIJ4lE 6bbQLc+Zan9NTGNKDukMMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9l5GS4mgQSKf3xYz4mGMZfYoRGTHlwZDJk2mrvhG8T55BOxm69HRV HstAB2x4N6vZaooAKPMj7em0Q7nH2ibGe347uPFJO/ABE7LVt3xmU0QQK/L38hNY qK0qhJ6Ry52Mf4+cAuBmC8rdv3EFd6VZnRfgZ7n/9XgizA3BaIR4eecqcUl5Kl/e b47fpqIvgS0Qvem3QyBv1XY48XMHylSn/kQSWhJrjUPmjQqow+YmZuP0Yco/wkKw x9h396Ta4BmC0pFvexTFtP39NiUB1Z25AGvbMPlF4IdIQqKAAMB19eVSul7SInx5 PojhKKV/5VZkLtNnSU71+qbCixXJxPhg -----END CERTIFICATE-----Generated at Sat May 18 17:20:04 2024 by rpki-client on console-ams.rpki-client.org