$ rpki-client -vvf rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft File: 909zX9xaW5M28yTDLLpVjrvSjZc.mft (raw, json) Hash identifier: KDVxLw3r//o3XAFFtIILWIjTnfzD32Fry+XJaeDgdTk= Subject key identifier: 51:09:B2:35:AC:5B:46:1D:D0:C4:6B:E0:31:A5:FC:0E:74:C4:D3:DE Authority key identifier: F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 Certificate issuer: /CN=A915123C/serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Certificate serial: 11BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft Manifest number: 11BC Signing time: Fri 31 May 2024 18:05:12 +0000 Manifest this update: Fri 31 May 2024 18:05:11 +0000 Manifest next update: Fri 07 Jun 2024 18:05:11 +0000 Files and hashes: 1: 909zX9xaW5M28yTDLLpVjrvSjZc.crl (hash: OopPf5fWopf6tj4eZXgXogeDZ7AxgxIpMIXtxMENGUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4540 (0x11bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915123C/serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Validity Not Before: May 31 18:05:11 2024 GMT Not After : Jun 7 18:05:11 2024 GMT Subject: CN=665a1158-609a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7c:d0:84:e8:82:00:35:36:b7:7a:12:50:76: 8b:00:71:36:46:3e:f8:46:2f:bb:cf:0d:1a:86:d5: 91:d2:e1:8b:2d:65:36:63:3b:8d:39:41:6f:d3:3f: fe:7a:41:a1:9d:7c:d4:81:c8:6a:4e:c7:2d:2c:0a: e0:0e:5a:7d:fd:aa:9b:61:d5:86:e7:d2:11:a1:35: 1d:3f:9b:6d:fa:b4:fd:01:ee:68:24:b3:a6:6d:da: 16:a3:7d:69:ef:c8:b1:1e:00:3f:38:50:01:5d:05: de:c1:40:bd:e3:05:bf:fe:ab:af:4b:52:3a:c0:dc: a3:3f:f7:60:ea:cb:7b:eb:b6:64:40:c2:c6:3f:6b: eb:d8:a1:8c:95:7d:7d:82:5c:7e:cc:4e:00:77:30: 73:a7:0b:7b:8a:d4:47:84:2a:0d:fe:b3:27:b2:23: f7:8e:ca:2e:ef:d9:68:07:ca:e9:64:67:8a:36:62: 70:06:b4:66:b8:3b:7d:5a:5b:55:c5:5f:83:8d:6e: 14:c0:81:ad:f8:34:60:93:f8:03:93:04:13:f1:42: 9c:e8:28:6f:c8:76:5d:83:4a:de:6d:b8:b9:c5:88: 60:05:29:a3:1b:38:50:af:84:25:ba:4a:4d:1d:ec: fb:73:7b:e2:2a:55:87:23:98:d5:c4:c3:75:12:b8: 54:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:09:B2:35:AC:5B:46:1D:D0:C4:6B:E0:31:A5:FC:0E:74:C4:D3:DE X509v3 Authority Key Identifier: keyid:F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:36:55:c9:b8:a4:a6:2e:9a:6c:7d:59:e6:37:81:66:b5:ef: 8e:e9:35:47:ab:77:37:ce:3a:c2:8d:e9:48:d0:45:d2:e1:f8: 6d:7d:e0:fa:5b:c0:0c:38:70:f8:56:5a:c9:b9:b5:16:43:38: 17:d8:be:90:85:7b:e9:3f:ff:9f:01:b8:50:20:29:e0:fb:7a: 44:18:57:d2:a4:ff:5f:d4:d5:21:5e:93:25:37:23:21:b3:f1: 41:f7:41:df:ae:28:42:8a:d5:70:a0:d0:59:ea:6b:cc:f8:ea: ea:6c:f0:ed:85:a7:18:6a:8a:b6:e2:e5:2c:5d:a8:15:e4:c9: 46:ae:9c:00:01:75:05:4d:e3:98:2a:3e:80:bf:3d:23:2e:9a: 76:28:06:08:df:5c:29:e0:e3:02:bf:cc:86:26:de:c4:4d:ba: 81:4e:a3:6e:16:82:1d:db:02:00:ee:da:af:01:b6:36:ec:fe: 47:88:8e:13:75:2c:5d:a3:37:88:79:fd:54:ba:0e:b1:e5:7e: 62:cf:78:ad:1e:7a:0d:f4:e0:de:fa:2b:a7:25:b2:b5:d1:6c: 9f:e0:65:8c:c3:1c:c7:50:c4:4a:b5:4f:23:be:d9:99:ef:bf: 07:c2:1a:cf:28:5e:3a:61:34:ef:ea:4c:a1:45:ce:d7:88:53: f6:48:06:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyM0MxMTAvBgNVBAUTKEY3NEY3MzVGREM1QTVCOTMzNkYzMjRDMzJDQkE1NThF QkJEMjhEOTcwHhcNMjQwNTMxMTgwNTExWhcNMjQwNjA3MTgwNTExWjAYMRYwFAYD VQQDEw02NjVhMTE1OC02MDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnzQhOiCADU2t3oSUHaLAHE2Rj74Ri+7zw0ahtWR0uGLLWU2YzuNOUFv0z/+ ekGhnXzUgchqTsctLArgDlp9/aqbYdWG59IRoTUdP5tt+rT9Ae5oJLOmbdoWo31p 78ixHgA/OFABXQXewUC94wW//quvS1I6wNyjP/dg6st767ZkQMLGP2vr2KGMlX19 glx+zE4AdzBzpwt7itRHhCoN/rMnsiP3jsou79loB8rpZGeKNmJwBrRmuDt9WltV xV+DjW4UwIGt+DRgk/gDkwQT8UKc6ChvyHZdg0rebbi5xYhgBSmjGzhQr4QlukpN Hez7c3viKlWHI5jVxMN1ErhUOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEJsjWs W0Yd0MRr4DGl/A50xNPeMB8GA1UdIwQYMBaAFPdPc1/cWluTNvMkwyy6VY670o2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTIzQy82OEY1M0YzMkNC M0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1TTI4eVRETExwVmpydlNq WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkwOXpYOXhhVzVNMjh5VERMTHBWanJ2U2paYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTIzQy82OEY1M0YzMkNCM0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1 TTI4eVRETExwVmpydlNqWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApNlXJuKSmLppsfVnmN4Fmte+O6TVHq3c3zjrCjelI0EXS4fhtfeD6 W8AMOHD4VlrJubUWQzgX2L6QhXvpP/+fAbhQICng+3pEGFfSpP9f1NUhXpMlNyMh s/FB90HfrihCitVwoNBZ6mvM+OrqbPDthacYaoq24uUsXagV5MlGrpwAAXUFTeOY Kj6Avz0jLpp2KAYI31wp4OMCv8yGJt7ETbqBTqNuFoId2wIA7tqvAbY27P5HiI4T dSxdozeIef1Uug6x5X5iz3itHnoN9ODe+iunJbK10Wyf4GWMwxzHUMRKtU8jvtmZ 778HwhrPKF46YTTv6kyhRc7XiFP2SAaJ -----END CERTIFICATE-----Generated at Fri May 31 20:34:03 2024 by rpki-client on console-ams.rpki-client.org