$ rpki-client -vvf rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft File: _D34EL_Cm_HPvwqvpWOX65tMq3c.mft (raw, json) Hash identifier: oWXa66/QfahXqwS5VG11pWJ54bNlNnDUMQRXHktvU/U= Subject key identifier: 11:83:B8:A3:BD:36:79:3F:90:94:3C:E5:FF:46:6B:3F:01:AE:77:63 Authority key identifier: FC:3D:F8:10:BF:C2:9B:F1:CF:BF:0A:AF:A5:63:97:EB:9B:4C:AB:77 Certificate issuer: /CN=A916269D/serialNumber=FC3DF810BFC29BF1CFBF0AAFA56397EB9B4CAB77 Certificate serial: 0A8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft Manifest number: 0A8A Signing time: Fri 26 Apr 2024 20:12:35 +0000 Manifest this update: Fri 26 Apr 2024 20:12:35 +0000 Manifest next update: Fri 03 May 2024 20:12:35 +0000 Files and hashes: 1: _D34EL_Cm_HPvwqvpWOX65tMq3c.crl (hash: Zp9DZBj2OYdB3r8xhfzRB9IV0eBARgr4DVIGIzzaukw=) 2: EDA2987A32A211EA87A1561DC4F9AE02.roa (hash: Rb0mrBAhcgxptwAduOv5tg/4P6wlnoF3pah8TBCeTwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.crl rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 20:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2703 (0xa8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916269D/serialNumber=FC3DF810BFC29BF1CFBF0AAFA56397EB9B4CAB77 Validity Not Before: Apr 26 20:12:35 2024 GMT Not After : May 3 20:12:35 2024 GMT Subject: CN=662c0ab3-d01d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7b:95:eb:88:7f:5b:92:94:16:ec:bd:a2:e6: a6:8e:5d:16:d8:7c:5d:ae:ef:8d:a8:5e:60:66:65: 8b:49:21:54:d1:b1:bf:c2:41:c6:b6:85:76:0d:90: a2:4b:7a:f2:28:11:04:a5:e4:31:bf:c9:29:5e:49: 35:94:80:94:db:93:55:76:8e:d3:e1:1e:c6:0b:39: 8c:6e:e2:2f:77:04:25:ea:d1:e0:a2:70:cc:e6:8a: 85:6b:be:9e:b7:65:75:fe:09:15:77:b5:66:6a:d1: 36:da:a8:ee:86:6c:e5:57:10:60:8b:41:99:8f:57: bd:3a:cc:73:af:66:e1:b3:64:c9:1d:ea:6d:f0:10: ce:f2:1e:9a:14:04:73:a2:42:36:53:72:af:50:09: ad:a4:a7:1e:28:16:0b:8a:06:70:69:5e:f0:57:2e: 00:bc:b5:70:6f:cb:82:b1:0f:49:51:4a:43:8d:3e: d0:f7:0a:88:dd:69:ba:b2:54:18:7d:e5:b5:75:d0: 93:05:ba:af:1a:46:0f:85:46:b2:83:bf:cb:5e:e5: fa:b4:01:66:28:62:6d:bc:78:3d:38:d5:62:3d:ce: b5:f2:7d:06:15:22:21:8b:33:a7:0f:e8:c1:a2:d3: 43:16:0b:e6:34:44:bf:41:46:45:a8:1b:1b:02:6f: 36:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:83:B8:A3:BD:36:79:3F:90:94:3C:E5:FF:46:6B:3F:01:AE:77:63 X509v3 Authority Key Identifier: keyid:FC:3D:F8:10:BF:C2:9B:F1:CF:BF:0A:AF:A5:63:97:EB:9B:4C:AB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:79:05:ab:e9:b9:fd:38:25:50:f1:a5:af:09:90:68:89:41: 81:58:45:b1:0e:21:1e:0f:c6:8b:9b:8a:3a:24:3f:8e:9c:f4: be:97:27:00:ac:96:cc:be:a5:fd:5d:26:02:a7:0e:1e:5b:e0: 03:8e:7a:db:70:fd:d0:b6:e5:b1:1d:de:39:4e:ac:aa:5b:6d: 12:5b:1f:a2:22:5d:1a:15:d5:53:9d:66:40:10:ea:32:05:17: 84:99:58:97:d0:e7:35:e3:23:84:77:92:78:74:23:83:b0:33: b2:ca:13:f2:14:ff:b4:a1:b0:85:8f:c5:c5:f3:be:88:55:ba: 1e:e1:00:1f:20:c5:59:79:a9:e7:df:01:04:fd:39:92:5b:6f: 29:30:dd:57:99:0d:4e:bf:fb:76:ef:84:d5:0d:5a:12:89:4b: 7b:81:0a:70:ef:b0:49:d1:16:4f:fc:52:ca:50:fc:33:3e:68: ff:55:19:3c:8e:b9:11:15:9d:fd:f8:1f:4f:8f:bf:75:4f:87: 08:45:91:ca:e2:14:83:e6:54:94:91:8c:43:e6:cf:f1:fd:91: 75:2f:b4:95:89:62:b5:e3:33:a0:6a:05:0e:82:6f:6f:94:71: 88:3a:6b:ab:62:98:80:95:84:50:e7:77:5b:07:56:d4:79:bc: e6:84:9a:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2OUQxMTAvBgNVBAUTKEZDM0RGODEwQkZDMjlCRjFDRkJGMEFBRkE1NjM5N0VC OUI0Q0FCNzcwHhcNMjQwNDI2MjAxMjM1WhcNMjQwNTAzMjAxMjM1WjAYMRYwFAYD VQQDEw02NjJjMGFiMy1kMDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynuV64h/W5KUFuy9ouamjl0W2Hxdru+NqF5gZmWLSSFU0bG/wkHGtoV2DZCi S3ryKBEEpeQxv8kpXkk1lICU25NVdo7T4R7GCzmMbuIvdwQl6tHgonDM5oqFa76e t2V1/gkVd7VmatE22qjuhmzlVxBgi0GZj1e9Osxzr2bhs2TJHept8BDO8h6aFARz okI2U3KvUAmtpKceKBYLigZwaV7wVy4AvLVwb8uCsQ9JUUpDjT7Q9wqI3Wm6slQY feW1ddCTBbqvGkYPhUayg7/LXuX6tAFmKGJtvHg9ONViPc618n0GFSIhizOnD+jB otNDFgvmNES/QUZFqBsbAm82/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGDuKO9 Nnk/kJQ85f9Gaz8BrndjMB8GA1UdIwQYMBaAFPw9+BC/wpvxz78Kr6Vjl+ubTKt3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjY5RC83OEJGOTQ1MDMy QTExMUVBODYyQkQ1MTdDNEY5QUUwMi9fRDM0RUxfQ21fSFB2d3F2cFdPWDY1dE1x M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EMzRFTF9DbV9IUHZ3cXZwV09YNjV0TXEzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjY5RC83OEJGOTQ1MDMyQTExMUVBODYyQkQ1MTdDNEY5QUUwMi9fRDM0RUxfQ21f SFB2d3F2cFdPWDY1dE1xM2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCreQWr6bn9OCVQ8aWvCZBoiUGBWEWxDiEeD8aLm4o6JD+OnPS+lycA rJbMvqX9XSYCpw4eW+ADjnrbcP3QtuWxHd45TqyqW20SWx+iIl0aFdVTnWZAEOoy BReEmViX0Oc14yOEd5J4dCODsDOyyhPyFP+0obCFj8XF876IVboe4QAfIMVZeann 3wEE/TmSW28pMN1XmQ1Ov/t274TVDVoSiUt7gQpw77BJ0RZP/FLKUPwzPmj/VRk8 jrkRFZ39+B9Pj791T4cIRZHK4hSD5lSUkYxD5s/x/ZF1L7SViWK14zOgagUOgm9v lHGIOmurYpiAlYRQ53dbB1bUebzmhJpI -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:01 2024 by rpki-client on console-ams.rpki-client.org