$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: G3SNdCBXS/MvK2tMH1vyYRD0sXZ+ZEwMYChOjeop5ZY= Subject key identifier: BD:CF:07:D0:B0:88:45:56:8A:2C:6C:91:BC:61:50:F5:03:D3:5F:34 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 051B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 0513 Signing time: Sun 19 May 2024 01:05:45 +0000 Manifest this update: Sun 19 May 2024 01:05:45 +0000 Manifest next update: Sun 26 May 2024 01:05:45 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: KtF0SVYeyaTInvOwmMIibBayBtQrv0owr3x0djJBizc=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 5uGQKQHacdIz6+gIYb0KhNuQPFZrw2PyFjSKiH2Athc=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: jXDp4XiCvpV4wY49c46QBfx2cr7QhdJZL2oEG7fy8Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1307 (0x51b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: May 19 01:05:45 2024 GMT Not After : May 26 01:05:45 2024 GMT Subject: CN=66495069-8705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a9:80:a4:6e:f7:42:ca:72:c0:3e:b8:f3:c8: 47:32:73:38:03:89:f2:cb:54:e2:cb:44:84:6f:66: e0:8e:78:90:02:c3:94:a8:e3:5d:a1:b0:64:71:53: 5a:09:c2:ca:e5:8e:d1:f3:0c:72:8c:9a:c2:78:f9: 9d:cc:5b:52:4e:13:d0:95:cb:85:79:15:86:41:52: 1b:8e:c0:11:c0:95:49:9d:30:6a:29:40:cb:80:b2: 52:40:69:09:81:c4:4d:41:b0:3e:3c:61:64:5d:bb: 09:1c:a4:68:e2:08:b9:94:ca:aa:e3:2e:47:b5:74: 18:96:bd:19:d3:39:ca:77:ae:df:1f:33:44:63:77: b4:a1:2c:91:d5:9b:c3:23:e8:41:8b:01:f1:62:c8: 33:16:31:8b:8c:ef:91:06:45:aa:05:2e:08:8c:50: 50:59:44:db:b5:d7:8c:09:cf:42:ae:b5:6b:78:62: 40:cd:44:c8:55:14:8f:42:c5:bc:90:95:99:fd:be: c5:89:9a:25:0f:e8:84:82:fc:25:04:6c:54:13:fd: 48:4f:64:82:e9:fa:88:b2:fb:08:11:ad:b3:5b:a9: 2e:1c:dd:16:c9:42:81:e8:35:2f:7b:92:4b:8f:34: 51:83:86:cf:87:78:fd:a2:fc:d2:07:63:45:81:26: d1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CF:07:D0:B0:88:45:56:8A:2C:6C:91:BC:61:50:F5:03:D3:5F:34 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:b3:a6:88:47:33:a6:51:27:8b:b8:f8:c0:15:93:c9:8c:ab: 10:2d:3f:93:9a:7e:80:bc:bd:92:11:d9:fa:fa:73:8e:97:b0: c8:e6:6b:a0:26:10:92:f1:39:f2:b3:17:22:23:20:0b:88:09: 76:56:61:b8:c4:8e:c3:42:b3:5d:40:fe:f9:81:ee:18:a7:7d: fc:d8:76:d4:4c:9e:f9:79:80:9e:41:36:84:eb:ed:bb:fa:0e: 51:f1:bd:8d:96:dc:85:fc:ce:14:38:6d:22:f2:b5:f1:b5:ac: 88:24:bc:d8:58:75:0c:39:da:f6:37:23:99:da:32:24:eb:00: 81:b9:47:18:1d:a8:f6:96:f0:93:74:38:af:5b:70:f1:d6:60: e1:22:80:25:01:76:48:4a:d9:11:52:4f:ee:0e:9f:4f:b7:57: 9b:34:70:16:5d:9c:f8:e3:e7:be:20:36:db:0c:c5:65:00:39: b7:69:ce:29:c2:e3:dd:c4:3f:53:4e:fa:4f:12:ee:91:36:44: 3c:ff:e5:7c:a8:ad:8e:c3:08:98:a3:8d:de:bf:0c:95:76:a7: f4:08:ec:72:b9:d0:28:c2:2c:8a:2a:ec:ea:b5:ca:43:a5:49: 82:f8:3a:6e:65:0d:db:9b:91:03:cf:86:82:8d:b1:57:31:f9: c2:94:70:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjQwNTE5MDEwNTQ1WhcNMjQwNTI2MDEwNTQ1WjAYMRYwFAYD VQQDEw02NjQ5NTA2OS04NzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0amApG73QspywD6488hHMnM4A4nyy1Tiy0SEb2bgjniQAsOUqONdobBkcVNa CcLK5Y7R8wxyjJrCePmdzFtSThPQlcuFeRWGQVIbjsARwJVJnTBqKUDLgLJSQGkJ gcRNQbA+PGFkXbsJHKRo4gi5lMqq4y5HtXQYlr0Z0znKd67fHzNEY3e0oSyR1ZvD I+hBiwHxYsgzFjGLjO+RBkWqBS4IjFBQWUTbtdeMCc9CrrVreGJAzUTIVRSPQsW8 kJWZ/b7FiZolD+iEgvwlBGxUE/1IT2SC6fqIsvsIEa2zW6kuHN0WyUKB6DUve5JL jzRRg4bPh3j9ovzSB2NFgSbREQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3PB9Cw iEVWiixskbxhUPUD0180MB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAos6aIRzOmUSeLuPjAFZPJjKsQLT+Tmn6AvL2SEdn6+nOOl7DI5mug JhCS8TnysxciIyALiAl2VmG4xI7DQrNdQP75ge4Yp3382HbUTJ75eYCeQTaE6+27 +g5R8b2NltyF/M4UOG0i8rXxtayIJLzYWHUMOdr2NyOZ2jIk6wCBuUcYHaj2lvCT dDivW3Dx1mDhIoAlAXZIStkRUk/uDp9Pt1ebNHAWXZz44+e+IDbbDMVlADm3ac4p wuPdxD9TTvpPEu6RNkQ8/+V8qK2OwwiYo43evwyVdqf0COxyudAowiyKKuzqtcpD pUmC+DpuZQ3bm5EDz4aCjbFXMfnClHCb -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-ams.rpki-client.org