$ rpki-client -vvf rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft File: 9MxDBOF5Dgj17JKahzciadCPtoE.mft (raw, json) Hash identifier: oVpWB79G4vSFauuQ1/9D5oUd3fzQRxCaat2rhI900Tw= Subject key identifier: 24:75:91:E6:79:0B:45:86:48:77:86:27:7C:B5:01:1F:89:E1:DF:27 Authority key identifier: F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 Certificate issuer: /CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Certificate serial: 0335 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft Manifest number: 0331 Signing time: Sun 19 May 2024 03:00:26 +0000 Manifest this update: Sun 19 May 2024 03:00:26 +0000 Manifest next update: Sun 26 May 2024 03:00:26 +0000 Files and hashes: 1: 9MxDBOF5Dgj17JKahzciadCPtoE.crl (hash: iOJ2gxwR6x+lFk8Zmm/uWRTkNh/k+9CmyOwuG88nkdU=) 2: 0E7858548CBB11ECB0842F23C4F9AE02.roa (hash: jH8psL2SmOH/Zt6q1SyS6fHiP/kk+iM9+sC0uv7rAGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Validity Not Before: May 19 03:00:26 2024 GMT Not After : May 26 03:00:26 2024 GMT Subject: CN=66496b4a-427d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6c:0c:b3:66:4f:17:ba:de:24:85:d4:dd:83: d8:77:20:9b:f2:14:c1:ca:76:92:45:59:95:15:df: fc:f3:97:ab:1e:5e:8c:34:bf:77:7e:a9:fd:de:93: 9b:0a:3e:b2:ba:73:ef:bf:88:2e:29:f1:7b:f5:ab: 60:64:17:63:e4:33:4b:8d:58:7e:42:c7:ee:10:16: bf:07:cf:ba:d5:1a:c7:64:02:b1:f3:fe:fb:e9:a3: 35:5f:64:97:c7:a9:e7:c9:23:84:66:79:44:49:47: b9:ec:e9:cb:ac:50:ee:89:6f:58:9f:d9:1c:f3:07: f2:7c:9e:5c:1f:67:eb:cb:65:65:02:19:ed:75:1e: 96:1f:80:a6:48:21:66:59:e2:9e:9d:59:dd:15:0c: e2:08:9c:14:4e:f7:dc:0f:2e:e1:5a:cc:6d:8e:15: 39:c1:fa:73:84:2a:bc:d8:52:84:38:c5:c4:4b:27: 16:b8:bf:a0:84:3a:51:37:fd:a9:9f:31:f1:cc:c6: ff:83:6b:39:a1:a7:8e:6b:26:11:22:97:b0:7c:7c: c4:ed:56:d8:46:89:fb:36:30:61:d9:9d:e6:cf:0d: 05:0a:99:3a:e7:dc:a7:0f:9e:87:1c:93:91:47:9e: 9f:e9:64:b2:85:ee:a4:e9:68:cf:7c:97:55:6d:57: 8d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:75:91:E6:79:0B:45:86:48:77:86:27:7C:B5:01:1F:89:E1:DF:27 X509v3 Authority Key Identifier: keyid:F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:1f:b3:aa:0f:cb:8d:7b:f5:a1:7d:77:ef:a2:99:f5:d7:e3: f5:02:e6:47:d6:dd:53:d9:29:49:ba:83:01:9c:e2:c5:26:1a: c0:3f:b8:e6:05:81:6c:e6:ee:c7:28:ae:fc:27:46:ed:32:d9: d8:69:c5:43:88:1e:01:31:93:45:f2:f3:32:1d:57:68:2b:9a: fd:8f:b7:10:ef:f9:0b:1f:18:f1:14:d0:64:8c:f0:15:c1:d6: c3:e8:60:4d:59:ae:21:6d:9f:60:6f:99:e1:81:41:c3:ff:f8: f7:ca:48:70:19:61:f1:84:57:86:c4:d9:b9:ac:f8:5d:f7:65: 53:35:f3:19:cb:17:9d:30:e5:0a:c9:dc:0a:cc:1b:cb:e5:18: f9:e6:f8:95:d8:97:7e:15:e2:82:bb:15:74:bb:29:b5:d2:47: db:71:a7:ca:26:da:f4:30:11:a5:b1:8d:c7:51:60:33:d1:a2: c3:ea:f3:73:bb:c5:78:2c:77:b1:f4:7b:69:53:e9:3a:d2:a6: db:5c:cf:4e:91:21:87:59:5c:7b:90:9d:49:49:17:82:65:fe: 16:69:6e:2d:b2:2c:27:55:d6:35:20:32:f3:07:ef:7d:a0:1b: ff:f6:4f:a4:fc:42:79:7e:be:5b:5b:e5:09:d2:2d:4d:b1:4d: 79:fa:c9:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCQ0ExMTAvBgNVBAUTKEY0Q0M0MzA0RTE3OTBFMDhGNUVDOTI5QTg3MzcyMjY5 RDA4RkI2ODEwHhcNMjQwNTE5MDMwMDI2WhcNMjQwNTI2MDMwMDI2WjAYMRYwFAYD VQQDEw02NjQ5NmI0YS00MjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWwMs2ZPF7reJIXU3YPYdyCb8hTBynaSRVmVFd/885erHl6MNL93fqn93pOb Cj6yunPvv4guKfF79atgZBdj5DNLjVh+QsfuEBa/B8+61RrHZAKx8/776aM1X2SX x6nnySOEZnlESUe57OnLrFDuiW9Yn9kc8wfyfJ5cH2fry2VlAhntdR6WH4CmSCFm WeKenVndFQziCJwUTvfcDy7hWsxtjhU5wfpzhCq82FKEOMXESycWuL+ghDpRN/2p nzHxzMb/g2s5oaeOayYRIpewfHzE7VbYRon7NjBh2Z3mzw0FCpk659ynD56HHJOR R56f6WSyhe6k6WjPfJdVbVeNTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCR1keZ5 C0WGSHeGJ3y1AR+J4d8nMB8GA1UdIwQYMBaAFPTMQwTheQ4I9eySmoc3ImnQj7aB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0JDQS82MkJDRDVERTdB OUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURnajE3SkthaHpjaWFkQ1B0 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNeERCT0Y1RGdqMTdKS2FoemNpYWRDUHRvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0JDQS82MkJDRDVERTdBOUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURn ajE3SkthaHpjaWFkQ1B0b0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnH7OqD8uNe/WhfXfvopn11+P1AuZH1t1T2SlJuoMBnOLFJhrAP7jm BYFs5u7HKK78J0btMtnYacVDiB4BMZNF8vMyHVdoK5r9j7cQ7/kLHxjxFNBkjPAV wdbD6GBNWa4hbZ9gb5nhgUHD//j3ykhwGWHxhFeGxNm5rPhd92VTNfMZyxedMOUK ydwKzBvL5Rj55viV2Jd+FeKCuxV0uym10kfbcafKJtr0MBGlsY3HUWAz0aLD6vNz u8V4LHex9HtpU+k60qbbXM9OkSGHWVx7kJ1JSReCZf4WaW4tsiwnVdY1IDLzB+99 oBv/9k+k/EJ5fr5bW+UJ0i1NsU15+slV -----END CERTIFICATE-----Generated at Sun May 19 03:38:14 2024 by rpki-client on console-ams.rpki-client.org