$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft File: 08ZsJqn9G558RVvds1FZaI0BQP4.mft (raw, json) Hash identifier: PZAoYfej4rPfatzsYcJbkASkXaIVRV65sIgyFpWNjaQ= Subject key identifier: 8E:5E:C4:90:2A:66:0D:3D:2B:D6:58:76:56:3E:8C:E1:23:E3:1B:B1 Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft Manifest number: 0A4A Signing time: Tue 30 Apr 2024 20:48:49 +0000 Manifest this update: Tue 30 Apr 2024 20:48:48 +0000 Manifest next update: Tue 07 May 2024 20:48:48 +0000 Files and hashes: 1: 08ZsJqn9G558RVvds1FZaI0BQP4.crl (hash: nEDdm2xGP3WWIp/JoGiIu/1lA6WLsU4bPhUpy8QyEgE=) 2: 2CAD3A66595911EA80344709C4F9AE02.roa (hash: g+xqKZFsnL+TO7xSR+PQGoS0YyQWuNz86DpXuBDB8s4=) 3: DE437646F8A911EB98242219C4F9AE02.roa (hash: omQtqSddlCkWWiLSp9GMYtV66m4WmeS8whg5yysD99c=) 4: 9F0D6574BFF011EAA38D3B64C4F9AE02.roa (hash: zu2QIibL8QZhnECTmI8ip0GGGoCl+/y5ToV7KXXOOtM=) 5: A04B3184595A11EA8C79B30FC4F9AE02.roa (hash: 12zCL9VA2dm6feubL/xTZWfaPSOpA7NXqBN7mKSCVoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: Apr 30 20:48:48 2024 GMT Not After : May 7 20:48:48 2024 GMT Subject: CN=66315930-e928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ce:3a:26:6e:2d:ff:8f:e4:ea:2a:67:63:97: c1:3c:c7:09:13:8e:e2:02:e5:2d:7c:22:fd:48:8e: fe:d1:76:a8:35:c3:d3:b6:23:33:70:0f:dc:95:41: f3:ad:3c:5d:78:57:4e:d2:20:63:71:28:0a:4a:9e: 03:6a:94:cb:67:f6:1e:0c:47:5f:c8:62:13:28:32: cb:29:16:cd:80:35:97:3d:97:9e:86:64:56:34:4d: 7c:e0:a5:e7:42:98:94:a7:25:14:f7:6e:d8:4b:ea: 0a:f0:17:93:44:4f:56:1c:95:04:34:0c:2e:9b:25: b4:68:9e:01:fb:fe:f3:69:d5:6e:a4:dd:68:f1:42: 02:0c:33:39:f2:1e:79:54:82:2d:b9:52:e7:53:ea: d3:8d:32:08:44:a9:36:7d:9c:8b:11:11:9f:70:a5: 88:62:c9:d7:a0:c3:50:ba:49:7c:48:29:bb:cd:c7: e6:59:fd:70:6d:28:d6:3e:dc:3d:10:e6:c2:04:07: 89:c6:f4:f1:0c:d6:57:50:eb:ba:fd:23:ac:41:ef: be:75:d3:29:cf:f7:53:59:84:9a:f8:ff:ce:9a:05: dc:47:97:18:57:a2:7f:4c:a8:a8:c9:c1:c8:68:9c: 4b:6b:7a:07:a7:b0:94:cd:14:36:77:98:5a:57:27: 50:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:5E:C4:90:2A:66:0D:3D:2B:D6:58:76:56:3E:8C:E1:23:E3:1B:B1 X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:64:f3:37:6d:60:5b:14:36:7a:1a:c4:f4:97:32:fc:f7:1c: 3b:ed:2e:c1:5e:24:d9:5f:68:6e:ed:d5:cc:05:66:4d:92:0b: d3:a0:8c:ea:3c:78:9b:0b:c5:f9:2c:55:bc:a4:a9:2f:6f:ec: 2c:9b:85:ec:10:b5:6a:0b:ad:0c:d1:9b:49:79:05:e4:af:3d: 1f:36:89:9f:61:47:0c:0f:10:1e:2e:3a:2c:23:5b:1a:46:7c: a7:b8:b2:60:3c:c8:4a:38:18:26:88:3f:bd:b2:b4:b4:5b:2b: 8c:54:da:d7:c7:ff:c4:93:9a:69:93:46:bf:23:f2:c5:a7:25: a1:8a:e9:85:cc:40:48:45:c2:60:be:c4:6a:96:21:6c:7a:d8: e4:15:30:21:25:70:8b:f4:5f:90:b8:ce:a5:c9:ea:51:84:7b: df:f7:91:89:c7:bd:6e:26:40:63:2d:47:d6:3b:91:61:34:20: e3:52:28:fb:05:74:61:42:3c:0c:b4:b0:d3:f7:eb:07:be:74: 5c:85:ff:fb:61:33:b9:75:be:2d:2b:9f:f0:e1:bc:5f:1b:9c: 35:2e:2c:77:b1:ea:62:97:e6:70:32:4a:e8:b3:46:7b:53:22: 66:9c:0c:ae:aa:7e:76:80:18:7c:69:b7:8f:61:d7:e8:27:bc: 65:9e:1c:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjQwNDMwMjA0ODQ4WhcNMjQwNTA3MjA0ODQ4WjAYMRYwFAYD VQQDEw02NjMxNTkzMC1lOTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz846Jm4t/4/k6ipnY5fBPMcJE47iAuUtfCL9SI7+0XaoNcPTtiMzcA/clUHz rTxdeFdO0iBjcSgKSp4DapTLZ/YeDEdfyGITKDLLKRbNgDWXPZeehmRWNE184KXn QpiUpyUU927YS+oK8BeTRE9WHJUENAwumyW0aJ4B+/7zadVupN1o8UICDDM58h55 VIItuVLnU+rTjTIIRKk2fZyLERGfcKWIYsnXoMNQukl8SCm7zcfmWf1wbSjWPtw9 EObCBAeJxvTxDNZXUOu6/SOsQe++ddMpz/dTWYSa+P/OmgXcR5cYV6J/TKioycHI aJxLa3oHp7CUzRQ2d5haVydQKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5exJAq Zg09K9ZYdlY+jOEj4xuxMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REQ3OC9ENEU5NjQ5QzQyRjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1 NThSVnZkczFGWmFJMEJRUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3ZPM3bWBbFDZ6GsT0lzL89xw77S7BXiTZX2hu7dXMBWZNkgvToIzq PHibC8X5LFW8pKkvb+wsm4XsELVqC60M0ZtJeQXkrz0fNomfYUcMDxAeLjosI1sa RnynuLJgPMhKOBgmiD+9srS0WyuMVNrXx//Ek5ppk0a/I/LFpyWhiumFzEBIRcJg vsRqliFsetjkFTAhJXCL9F+QuM6lyepRhHvf95GJx71uJkBjLUfWO5FhNCDjUij7 BXRhQjwMtLDT9+sHvnRchf/7YTO5db4tK5/w4bxfG5w1Lix3sepil+ZwMkros0Z7 UyJmnAyuqn52gBh8abePYdfoJ7xlnhyD -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:53 2024 by rpki-client on console-ams.rpki-client.org