$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: xetrt8Pp6jOd1XpD/SdH9HSPIAJfT91wum3cZsNHx+k= Subject key identifier: 87:BE:48:24:78:64:FB:ED:9F:4D:65:79:16:6C:3F:0C:40:86:DC:B1 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 11CD Signing time: Sat 18 May 2024 17:45:58 +0000 Manifest this update: Sat 18 May 2024 17:45:58 +0000 Manifest next update: Sat 25 May 2024 17:45:58 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: 557oLWvbiYP5ypgCh1NLxXgA6rQhCYB+c87huyeXn9s=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: 27uopz7ODO14BOd/pvPRwbIDw8sqr18aZvrjAgOOVFM=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: oFLyaf6YOXONv9KOGlMDpV7u06F2Uq1w4mcwKVfVwXk=) 4: BBC62D8A732611E9B461626DC4F9AE02.roa (hash: xZPOECFS52IuNnATrkmGXhj9m72Vo/Ga5mIC18gvS2k=) 5: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: kVem8HgOEZ3vRlY7BKH9onUoK64q4pGUgOU+9R9c588=) 6: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: n+2+XWfRVWzvzKGMyzLA2GRAo3wJ5E7GeWY5WCJYJ28=) 7: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: W4z3IhNIU584Cp0CV2K23aNEpELeR2xG62pbjbefnyQ=) 8: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: jKjgjHAVwE6QjT9uxqWJZ+6l7n4ZvhOgISiekncD66w=) 9: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: imtagZtXIX7MrByPsKQhivDaupRQWtWVgGZvHFLSCWw=) 10: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: kNnrL0zrpFKK/qT3na/E9TuES0ckmpQm754fx2YmySA=) 11: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: YKQHGJEMzcVd/VeTOaZJXYx7/8P1yEtO0yBthH+z7wI=) 12: 0038D872072E11EB8914E540C4F9AE02.roa (hash: y0+Gv+ZWp6qwBaBdw9FoHQj+CTNMkEHp70fW9+cJ5JI=) 13: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: F/rMOej/eW/6RfGJ6EY8bhqAyVqDiX5qLMRUjgJdSB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4665 (0x1239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: May 18 17:45:58 2024 GMT Not After : May 25 17:45:58 2024 GMT Subject: CN=6648e956-018f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:08:7f:88:e5:53:19:dc:0e:a2:f2:30:dd:2c: d4:0a:6e:83:29:cd:bd:1b:f9:c0:22:a2:d3:36:7b: 95:57:16:45:3a:b5:11:d7:a9:8c:1e:71:e9:fb:2b: c8:af:43:e7:39:70:80:37:97:f0:39:4f:19:7f:17: 54:f7:88:e0:3e:b0:fb:dd:08:5c:c8:5b:36:9f:a3: e7:34:50:28:4c:cd:79:c4:6d:0d:34:09:3e:07:19: 05:b1:8d:2b:79:2b:ca:40:38:4e:1b:38:49:28:8b: 71:dd:0f:d6:da:da:52:3a:a6:76:b4:2c:c7:72:d8: 93:6f:13:2b:99:6b:20:33:1f:8a:81:bb:d6:67:54: 09:6d:d8:8f:47:3c:60:79:35:1b:39:9b:c2:31:11: b3:c0:60:32:aa:42:d1:37:23:58:1a:80:41:9f:54: a5:7b:5c:8f:8c:af:b1:14:52:5a:5e:55:0c:1c:1a: ec:d7:6e:8e:4c:38:0f:1c:05:f9:25:55:f8:82:ed: 8a:8a:7b:a1:f2:49:17:52:1b:8a:7a:d1:78:1c:a1: 9a:74:26:87:98:45:8e:f0:e7:b3:6f:f3:14:1c:c6: 5b:b6:18:76:3d:2a:49:94:55:cc:1c:ae:44:62:18: f7:4c:0e:55:b6:70:4b:88:43:3f:b2:4d:35:93:25: 28:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BE:48:24:78:64:FB:ED:9F:4D:65:79:16:6C:3F:0C:40:86:DC:B1 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:72:5e:bc:99:71:dc:29:46:e4:67:f5:e5:8d:fb:6c:8a:d3: 9b:1e:49:86:56:a2:a5:05:27:31:1d:93:bc:98:64:70:6b:8c: 08:9a:c0:68:10:66:7b:ee:d0:09:9f:fe:7d:f9:be:85:02:7c: 1e:fc:26:3d:69:9f:8a:4d:f7:23:c1:ef:1b:98:20:4e:ae:e8: 9f:5d:fc:83:a0:2b:96:87:10:fe:60:ad:26:21:df:34:7f:58: 23:aa:fd:68:05:8e:54:6b:99:1c:df:bb:51:15:2e:77:24:bb: f9:7e:9e:fa:0b:67:0f:7b:60:da:b7:54:a6:11:39:42:20:db: 98:bf:7e:b7:2a:49:35:83:6f:55:b3:7c:af:16:32:8d:60:88: 26:b4:1c:9f:80:e2:17:a6:aa:90:a2:e5:d6:28:da:f3:f9:5f: 88:7e:e0:47:ff:be:c1:16:e6:1f:b4:b7:84:c6:13:91:18:91: c5:d5:91:ea:0a:b3:8e:d0:e3:bd:df:dd:ba:bb:d0:75:1f:16: 43:c8:0f:86:58:16:73:1d:18:1e:5c:21:c4:f1:82:0f:91:45: ed:da:3f:a4:f7:af:73:3b:b0:c9:d7:47:7b:29:9d:19:13:f8: ad:56:35:14:a4:58:f1:9e:1a:57:59:3d:e2:7d:d1:23:ba:37: a5:fa:dd:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjQwNTE4MTc0NTU4WhcNMjQwNTI1MTc0NTU4WjAYMRYwFAYD VQQDEw02NjQ4ZTk1Ni0wMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQh/iOVTGdwOovIw3SzUCm6DKc29G/nAIqLTNnuVVxZFOrUR16mMHnHp+yvI r0PnOXCAN5fwOU8ZfxdU94jgPrD73QhcyFs2n6PnNFAoTM15xG0NNAk+BxkFsY0r eSvKQDhOGzhJKItx3Q/W2tpSOqZ2tCzHctiTbxMrmWsgMx+KgbvWZ1QJbdiPRzxg eTUbOZvCMRGzwGAyqkLRNyNYGoBBn1Sle1yPjK+xFFJaXlUMHBrs126OTDgPHAX5 JVX4gu2Kinuh8kkXUhuKetF4HKGadCaHmEWO8Oezb/MUHMZbthh2PSpJlFXMHK5E Yhj3TA5VtnBLiEM/sk01kyUoKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIe+SCR4 ZPvtn01leRZsPwxAhtyxMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPcl68mXHcKUbkZ/XljftsitObHkmGVqKlBScxHZO8mGRwa4wImsBo EGZ77tAJn/59+b6FAnwe/CY9aZ+KTfcjwe8bmCBOruifXfyDoCuWhxD+YK0mId80 f1gjqv1oBY5Ua5kc37tRFS53JLv5fp76C2cPe2Dat1SmETlCINuYv363Kkk1g29V s3yvFjKNYIgmtByfgOIXpqqQouXWKNrz+V+IfuBH/77BFuYftLeExhORGJHF1ZHq CrOO0OO93926u9B1HxZDyA+GWBZzHRgeXCHE8YIPkUXt2j+k969zO7DJ10d7KZ0Z E/itVjUUpFjxnhpXWT3ifdEjujel+t05 -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org