$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft File: 7bQ_87hP5VlboMvE9ruHNxPkG7I.mft (raw, json) Hash identifier: cBqYvtu5IbK41CQDgCqq0hVpA40ircrBHyco9bN16sg= Subject key identifier: 35:31:15:46:70:C5:F0:F1:2B:83:E2:9F:A9:B8:EC:1D:B4:57:64:16 Authority key identifier: ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 Certificate issuer: /CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Certificate serial: 05E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft Manifest number: 05E0 Signing time: Sat 01 Jun 2024 00:55:14 +0000 Manifest this update: Sat 01 Jun 2024 00:55:13 +0000 Manifest next update: Sat 08 Jun 2024 00:55:13 +0000 Files and hashes: 1: 7bQ_87hP5VlboMvE9ruHNxPkG7I.crl (hash: SBREB0FwslKjRMm5UcwqX/4gIwAcZjCPdrzcv9FYe94=) 2: 44E9156C730811EC89C1CE31C4F9AE02.roa (hash: q3X21uIkSPnB2DB1/NQlaaaEgp3Er4EWWkinTjXFpwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1510 (0x5e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Validity Not Before: Jun 1 00:55:13 2024 GMT Not After : Jun 8 00:55:13 2024 GMT Subject: CN=665a7171-0d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5d:09:25:38:b9:44:36:df:59:12:dd:b3:82: 1b:e2:64:5f:5b:b5:d1:52:d3:37:df:64:6f:84:08: de:c5:35:ff:8b:26:92:f9:16:38:25:62:3a:51:6a: cb:85:e3:42:6d:6f:21:4d:50:22:29:5b:2b:14:84: d4:d2:72:e6:5c:58:45:2e:94:ae:79:d4:21:f2:d6: 8a:cd:1a:c7:4f:cf:6e:38:c4:4c:36:d4:71:19:08: 08:cb:39:f5:18:d6:69:c6:11:ca:df:e3:d0:28:14: 08:6c:49:21:8b:dd:c4:4f:2a:70:04:4d:be:cc:f3: 18:dd:8b:10:26:8b:e6:4f:3b:67:54:e6:fc:82:72: 30:88:d8:1d:d4:fd:ec:b5:3d:5d:85:3c:38:5b:ed: bd:db:b9:75:23:b5:00:70:98:de:f3:ea:85:ec:7d: 98:79:59:35:ea:8c:2c:8c:ec:c7:07:47:5e:09:5e: 04:4b:f8:21:8c:40:41:ca:e0:d8:20:b0:aa:36:23: b0:9e:da:f2:26:c2:8f:61:ff:c7:59:5c:84:6c:fa: a4:85:96:39:da:95:e1:47:58:53:9e:40:bf:d4:65: 98:36:b7:de:65:d6:25:89:54:f2:ea:3b:19:aa:2f: 80:ec:42:6a:47:3f:44:b1:54:46:00:39:e2:ba:69: 22:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:31:15:46:70:C5:F0:F1:2B:83:E2:9F:A9:B8:EC:1D:B4:57:64:16 X509v3 Authority Key Identifier: keyid:ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:78:b7:9d:7c:98:a6:20:94:6e:91:b3:3d:a8:10:8f:ee:dd: 39:3c:aa:e0:d7:1e:91:f3:0d:ca:30:a6:be:c0:cc:a7:b5:0e: 0e:19:a6:04:55:05:4b:61:36:d1:a9:19:3b:00:23:a8:18:5f: a7:83:85:de:92:da:0c:ff:ba:63:8e:54:16:d2:69:e2:fa:01: bb:cc:14:91:61:43:bf:d5:05:98:cd:4a:14:05:2e:ae:5f:42: 60:6e:fb:e6:d8:4b:44:bd:8c:0e:46:59:d5:3a:e1:f5:af:24: 7f:14:da:2d:fb:9d:fb:b2:bc:ed:2c:9c:ac:74:c7:13:22:40: 2f:ac:11:f5:6d:5c:67:1a:cf:b3:57:5d:7b:7b:9f:a6:f8:93: a7:cd:93:c9:8f:b8:4f:61:2e:57:3d:e3:85:21:f5:53:ae:19: 7c:8c:48:36:0a:1c:51:6f:cf:6e:50:ae:17:d8:49:be:29:bc: 26:ea:c8:6b:4c:69:b3:4b:21:e6:e2:54:b9:46:b3:ff:f3:c5: 84:6c:4e:50:64:a9:af:4a:26:82:e3:72:ee:0d:db:b9:f3:71: 78:b9:fa:69:4e:ff:24:6c:4b:ee:40:57:41:29:6d:21:6e:c8: 7f:d4:48:f1:f5:00:d8:ef:2a:15:e6:82:ae:c0:e2:8a:ea:b0: e4:5f:ee:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEODUxMTAvBgNVBAUTKEVEQjQzRkYzQjg0RkU1NTk1QkEwQ0JDNEY2QkI4NzM3 MTNFNDFCQjIwHhcNMjQwNjAxMDA1NTEzWhcNMjQwNjA4MDA1NTEzWjAYMRYwFAYD VQQDEw02NjVhNzE3MS0wZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4V0JJTi5RDbfWRLds4Ib4mRfW7XRUtM332RvhAjexTX/iyaS+RY4JWI6UWrL heNCbW8hTVAiKVsrFITU0nLmXFhFLpSuedQh8taKzRrHT89uOMRMNtRxGQgIyzn1 GNZpxhHK3+PQKBQIbEkhi93ETypwBE2+zPMY3YsQJovmTztnVOb8gnIwiNgd1P3s tT1dhTw4W+2927l1I7UAcJje8+qF7H2YeVk16owsjOzHB0deCV4ES/ghjEBByuDY ILCqNiOwntryJsKPYf/HWVyEbPqkhZY52pXhR1hTnkC/1GWYNrfeZdYliVTy6jsZ qi+A7EJqRz9EsVRGADniumkiZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUxFUZw xfDxK4Pin6m47B20V2QWMB8GA1UdIwQYMBaAFO20P/O4T+VZW6DLxPa7hzcT5Buy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0Q4NS83MUE2RjdENDZD NkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVWbGJvTXZFOXJ1SE54UGtH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdiUV84N2hQNVZsYm9NdkU5cnVITnhQa0c3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0Q4NS83MUE2RjdENDZDNkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVW bGJvTXZFOXJ1SE54UGtHN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2eLedfJimIJRukbM9qBCP7t05PKrg1x6R8w3KMKa+wMyntQ4OGaYE VQVLYTbRqRk7ACOoGF+ng4XektoM/7pjjlQW0mni+gG7zBSRYUO/1QWYzUoUBS6u X0Jgbvvm2EtEvYwORlnVOuH1ryR/FNot+537srztLJysdMcTIkAvrBH1bVxnGs+z V117e5+m+JOnzZPJj7hPYS5XPeOFIfVTrhl8jEg2ChxRb89uUK4X2Em+Kbwm6shr TGmzSyHm4lS5RrP/88WEbE5QZKmvSiaC43LuDdu583F4ufppTv8kbEvuQFdBKW0h bsh/1Ejx9QDY7yoV5oKuwOKK6rDkX+7j -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:15 2024 by rpki-client on console-ams.rpki-client.org