$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft File: 065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json) Hash identifier: tTF4chM3+ayl2IPD5Z85QRXmEAsrbzccWBkXDChp8Pc= Subject key identifier: 8B:58:59:00:BD:3C:69:87:69:9C:F8:26:F2:96:9D:C5:5E:8D:FF:81 Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF Certificate issuer: /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft Manifest number: BA Signing time: Sun 19 May 2024 06:27:23 +0000 Manifest this update: Sun 19 May 2024 06:27:23 +0000 Manifest next update: Sun 26 May 2024 06:27:23 +0000 Files and hashes: 1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: 44YHEHUxyYhkBQigFK7WJFJ7dqu5kuvyGwMAhJ4+lZs=) 2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: WJmU3zKS7DC5uhWTazUvcz+uUKMvCoTZtIvTzFzwxGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Validity Not Before: May 19 06:27:23 2024 GMT Not After : May 26 06:27:23 2024 GMT Subject: CN=66499bcb-6267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ed:44:0e:df:ce:d6:dd:3f:4b:18:29:bc:4a: f5:0e:b4:d9:33:99:2b:4b:bf:ac:b1:e1:44:ef:29: 11:b9:0c:81:69:d7:53:2b:d4:90:fc:a6:ac:d9:ed: 64:28:a2:33:0f:41:5c:50:7d:3d:f7:13:3f:3f:80: 62:02:a8:86:b2:75:ea:ac:7d:3f:a0:9c:a5:6a:7c: 99:c9:4f:0b:9a:f1:25:63:e4:bc:53:7d:fd:f7:82: d0:ba:90:82:e3:85:ed:45:e1:a0:48:32:71:be:67: a7:46:2d:24:db:2d:b1:e3:32:13:8a:2f:b7:04:c6: 04:c5:10:23:da:69:40:a2:f2:b5:b9:b9:53:cd:06: 31:ac:f7:27:6b:ec:75:54:fd:18:59:5f:ff:9f:01: cd:f9:63:53:26:4d:60:81:9f:66:6b:32:08:0b:18: 57:46:16:81:0e:dd:1a:49:b8:42:81:6f:ba:59:4e: 9f:91:ba:20:b6:2a:14:12:64:33:35:05:e3:d1:5b: 7f:f7:e8:f2:90:8d:52:39:cf:67:a0:15:68:aa:57: c0:10:c7:89:0e:f9:0e:9b:54:01:cb:f2:ce:9e:2b: a2:e9:d6:15:fb:43:62:4d:79:a2:c4:f4:44:32:6e: 04:e5:13:80:da:62:29:07:81:bc:7d:d0:72:9d:6e: 70:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:58:59:00:BD:3C:69:87:69:9C:F8:26:F2:96:9D:C5:5E:8D:FF:81 X509v3 Authority Key Identifier: keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:1b:48:61:f5:f7:7c:47:e8:2b:66:64:50:30:61:14:4b:b7: d1:06:50:67:3a:83:03:41:25:49:df:9e:43:17:16:64:1f:c4: 68:8f:f6:db:46:9f:39:bf:a3:1d:9f:6b:ba:98:8d:ec:1a:3f: 7c:d4:03:fa:d4:22:41:fd:47:f0:fe:49:05:14:3d:b5:3f:99: 72:35:8e:41:52:c0:09:a9:80:4f:54:4d:43:41:fe:fa:67:ed: 51:e3:2b:1a:aa:df:3e:f9:2f:e8:cd:c7:9f:3c:c3:16:6b:22: 55:1a:94:e2:e1:62:9a:de:51:0f:06:a2:b2:f0:ed:06:a7:9a: b6:b6:6c:17:4d:54:c3:b6:c7:97:14:90:b5:c5:5d:a6:3d:19: 0a:c7:48:7b:16:1b:61:1e:68:0f:e4:73:79:da:23:37:e0:38: 47:d7:8c:52:70:e5:fc:ca:b3:03:72:81:78:81:5e:1a:5c:2c: 60:d6:23:1b:5c:08:ce:71:c7:06:44:94:15:12:a9:4a:03:80: 08:ba:55:11:a5:7a:1d:73:b6:ae:03:7e:72:69:e8:1b:f2:02: 86:06:a8:f7:0a:af:49:10:52:34:88:39:59:38:69:ed:df:91: 13:94:92:64:99:88:c2:c5:b8:01:7b:63:11:d5:7c:32:28:ae: af:8e:78:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCNjIxMTAvBgNVBAUTKEQzQUU2MjY0NDlDM0E5REQwRTc3OThCQ0U4QkNCQjM5 NjYyQTI3RkYwHhcNMjQwNTE5MDYyNzIzWhcNMjQwNTI2MDYyNzIzWjAYMRYwFAYD VQQDEw02NjQ5OWJjYi02MjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve1EDt/O1t0/SxgpvEr1DrTZM5krS7+sseFE7ykRuQyBaddTK9SQ/Kas2e1k KKIzD0FcUH099xM/P4BiAqiGsnXqrH0/oJylanyZyU8LmvElY+S8U33994LQupCC 44XtReGgSDJxvmenRi0k2y2x4zITii+3BMYExRAj2mlAovK1ublTzQYxrPcna+x1 VP0YWV//nwHN+WNTJk1ggZ9mazIICxhXRhaBDt0aSbhCgW+6WU6fkbogtioUEmQz NQXj0Vt/9+jykI1SOc9noBVoqlfAEMeJDvkOm1QBy/LOniui6dYV+0NiTXmixPRE Mm4E5ROA2mIpB4G8fdBynW5wOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItYWQC9 PGmHaZz4JvKWncVejf+BMB8GA1UdIwQYMBaAFNOuYmRJw6ndDneYvOi8uzlmKif/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0I2Mi80RTlCNzZEMkZC RDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFkME9kNWk4Nkx5N09XWXFK XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFk ME9kNWk4Nkx5N09XWXFKXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByG0hh9fd8R+grZmRQMGEUS7fRBlBnOoMDQSVJ355DFxZkH8Roj/bb Rp85v6Mdn2u6mI3sGj981AP61CJB/Ufw/kkFFD21P5lyNY5BUsAJqYBPVE1DQf76 Z+1R4ysaqt8++S/ozcefPMMWayJVGpTi4WKa3lEPBqKy8O0Gp5q2tmwXTVTDtseX FJC1xV2mPRkKx0h7FhthHmgP5HN52iM34DhH14xScOX8yrMDcoF4gV4aXCxg1iMb XAjOcccGRJQVEqlKA4AIulURpXodc7auA35yaegb8gKGBqj3Cq9JEFI0iDlZOGnt 35ETlJJkmYjCxbgBe2MR1XwyKK6vjnih -----END CERTIFICATE-----Generated at Sun May 19 08:25:01 2024 by rpki-client on console-ams.rpki-client.org