$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft File: A3uPBfSQLZ2otCTDk0CGXz2smyY.mft (raw, json) Hash identifier: RyW0iu5NRLRAZNkqJAsBQ6CRVpSOyIhaw570Z6oEiGw= Subject key identifier: BB:F7:91:CB:2E:AD:C2:9C:CB:89:78:3B:44:BD:A7:BB:2E:AE:46:91 Authority key identifier: 03:7B:8F:05:F4:90:2D:9D:A8:B4:24:C3:93:40:86:5F:3D:AC:9B:26 Certificate issuer: /CN=A9167D07/serialNumber=037B8F05F4902D9DA8B424C39340865F3DAC9B26 Certificate serial: 156A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft Manifest number: 1555 Signing time: Sat 18 May 2024 17:19:59 +0000 Manifest this update: Sat 18 May 2024 17:19:59 +0000 Manifest next update: Sat 25 May 2024 17:19:59 +0000 Files and hashes: 1: A3uPBfSQLZ2otCTDk0CGXz2smyY.crl (hash: PxR7inNuxGDmW0tJcytItZe8zmGOeJgmDnIOrIINB4Q=) 2: EFE8CDF6C8D111EE95249F25C4F9AE02.roa (hash: tFtn/VHQEvDcsoWqBX4q0RUPrGxjEwECyPDacA7Txlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.crl rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5482 (0x156a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D07/serialNumber=037B8F05F4902D9DA8B424C39340865F3DAC9B26 Validity Not Before: May 18 17:19:59 2024 GMT Not After : May 25 17:19:59 2024 GMT Subject: CN=6648e33f-6202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:76:19:fb:77:9a:5e:39:f0:87:4b:87:e0: 36:b1:13:18:33:1a:8a:78:ae:64:f3:09:6c:6d:bf: 5c:49:0d:b5:42:36:a3:b7:31:fe:15:42:a0:d0:33: 9f:41:52:22:c7:ba:4c:6d:44:b5:01:cd:cb:ea:be: b4:94:53:cd:94:6c:25:c8:c8:ad:ad:1e:f4:49:25: 4e:2d:02:73:64:b2:64:2a:dd:28:3c:bd:d2:72:a9: e0:cb:ef:fc:e1:3f:da:69:0a:16:12:bc:ad:2b:6a: 9f:95:09:4e:3f:ee:76:cb:a9:dc:03:94:4b:a1:b0: 77:38:c5:3f:31:9b:a3:7c:86:dc:fb:8d:9b:1f:87: 3a:3e:b4:fe:bf:c9:ca:a3:be:b1:84:8c:af:41:69: 7f:9b:f2:4b:9d:c1:a5:e8:39:36:b9:1d:e4:58:25: 5a:a6:d6:f3:59:68:f0:a5:a1:e7:5f:9e:6b:52:3a: a8:16:f2:ae:44:56:34:dd:1a:93:b1:08:49:e7:0a: 7f:e3:c1:73:eb:54:eb:a1:79:e5:eb:86:58:69:4f: c4:a0:b3:10:7d:2a:9d:1e:d4:ca:c9:88:3e:d8:f6: be:8c:0e:56:1a:5c:4b:ff:e8:30:d0:15:e3:61:cc: 6a:74:34:6f:f6:fa:c0:6e:b7:f0:4e:b3:68:d0:e3: e6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F7:91:CB:2E:AD:C2:9C:CB:89:78:3B:44:BD:A7:BB:2E:AE:46:91 X509v3 Authority Key Identifier: keyid:03:7B:8F:05:F4:90:2D:9D:A8:B4:24:C3:93:40:86:5F:3D:AC:9B:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:5e:3c:4d:1c:21:92:70:2e:cf:d1:0a:2a:8f:2a:a3:df:4d: 1c:8e:b4:88:d9:0b:91:03:49:cb:3d:ec:5c:ab:31:8b:b7:28: 5d:fe:8b:d3:c7:10:e7:81:e5:cf:5a:94:30:03:00:a8:f5:05: 47:13:53:31:9c:6b:82:38:13:f1:6f:db:9e:2c:83:7f:2e:82: 00:bf:1a:8c:3a:15:13:f1:a0:da:0c:a5:2c:50:44:41:b0:28: ca:a1:04:0f:97:be:8d:ea:c8:32:0c:68:e8:81:ab:2d:7d:d3: 6b:fd:ed:05:2b:7e:ba:ae:f4:a4:29:1e:57:8e:7d:23:c6:23: bf:89:7b:3a:2f:65:00:72:05:21:b0:d7:3c:b8:1d:fb:7b:00: 28:e9:79:1c:72:bf:28:7b:2e:ad:71:ad:4e:76:4a:23:e2:9e: 13:56:66:b8:88:6a:62:07:94:4d:a1:06:2c:bd:02:ce:2e:cf: 17:74:5b:55:0d:a3:bd:d1:02:14:0b:c9:bf:1f:94:63:c1:78: c4:e7:c3:77:4a:4a:49:2d:73:93:9d:b8:2f:02:ee:f1:81:9b: 83:26:49:af:6f:bb:05:d6:ef:c0:0e:a9:f6:56:ee:7b:c9:5e: 45:19:0a:fa:6b:cb:93:aa:b8:80:68:b8:a2:30:0a:df:dc:49: 88:e1:7e:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEMDcxMTAvBgNVBAUTKDAzN0I4RjA1RjQ5MDJEOURBOEI0MjRDMzkzNDA4NjVG M0RBQzlCMjYwHhcNMjQwNTE4MTcxOTU5WhcNMjQwNTI1MTcxOTU5WjAYMRYwFAYD VQQDEw02NjQ4ZTMzZi02MjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8Z2Gft3ml458IdLh+A2sRMYMxqKeK5k8wlsbb9cSQ21QjajtzH+FUKg0DOf QVIix7pMbUS1Ac3L6r60lFPNlGwlyMitrR70SSVOLQJzZLJkKt0oPL3Scqngy+/8 4T/aaQoWErytK2qflQlOP+52y6ncA5RLobB3OMU/MZujfIbc+42bH4c6PrT+v8nK o76xhIyvQWl/m/JLncGl6Dk2uR3kWCVaptbzWWjwpaHnX55rUjqoFvKuRFY03RqT sQhJ5wp/48Fz61TroXnl64ZYaU/EoLMQfSqdHtTKyYg+2Pa+jA5WGlxL/+gw0BXj YcxqdDRv9vrAbrfwTrNo0OPmsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLv3kcsu rcKcy4l4O0S9p7surkaRMB8GA1UdIwQYMBaAFAN7jwX0kC2dqLQkw5NAhl89rJsm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0QwNy9ENzRBRTI3NDFC QTkxMUU4QThGNTc4NjVDNEY5QUUwMi9BM3VQQmZTUUxaMm90Q1REazBDR1h6MnNt eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzdVBCZlNRTFoyb3RDVERrMENHWHoyc215WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0QwNy9ENzRBRTI3NDFCQTkxMUU4QThGNTc4NjVDNEY5QUUwMi9BM3VQQmZTUUxa Mm90Q1REazBDR1h6MnNteVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTXjxNHCGScC7P0Qoqjyqj300cjrSI2QuRA0nLPexcqzGLtyhd/ovT xxDngeXPWpQwAwCo9QVHE1MxnGuCOBPxb9ueLIN/LoIAvxqMOhUT8aDaDKUsUERB sCjKoQQPl76N6sgyDGjogastfdNr/e0FK366rvSkKR5Xjn0jxiO/iXs6L2UAcgUh sNc8uB37ewAo6Xkccr8oey6tca1Odkoj4p4TVma4iGpiB5RNoQYsvQLOLs8XdFtV DaO90QIUC8m/H5RjwXjE58N3SkpJLXOTnbgvAu7xgZuDJkmvb7sF1u/ADqn2Vu57 yV5FGQr6a8uTqriAaLiiMArf3EmI4X5Z -----END CERTIFICATE-----Generated at Sat May 18 18:21:37 2024 by rpki-client on console-ams.rpki-client.org