$ rpki-client -vvf rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft File: 1qn8yzagJxy8XxErtyBaV7n0hPc.mft (raw, json) Hash identifier: IPzT8le5cFdFiUZnJbeqvyCpdCvrUv9VM+uaVpoa5x4= Subject key identifier: B3:C7:88:9E:F3:9B:58:C1:6C:43:AB:17:D3:14:6D:AF:85:D5:8F:DC Authority key identifier: D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 Certificate issuer: /CN=A9168126/serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Certificate serial: 0339 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft Manifest number: 032D Signing time: Sun 19 May 2024 03:04:13 +0000 Manifest this update: Sun 19 May 2024 03:04:13 +0000 Manifest next update: Sun 26 May 2024 03:04:13 +0000 Files and hashes: 1: 1qn8yzagJxy8XxErtyBaV7n0hPc.crl (hash: nMVcMvwh/9Z5dr5fRNWyL9f5IMAb2+DjiA8cxVUIqtk=) 2: 8332CBAE3B6411ED8FDBD173C4F9AE02.roa (hash: 8RuHmH/09Bx3XKeZI2IxqYh0bwR19nnODt7IOsfXl1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 825 (0x339) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168126/serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Validity Not Before: May 19 03:04:13 2024 GMT Not After : May 26 03:04:13 2024 GMT Subject: CN=66496c2d-4b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a4:f8:5f:8e:bd:a2:9f:e7:9d:ed:35:e9:ab: 5e:59:99:77:f0:8a:ab:d6:82:a4:e6:51:bf:4b:23: d7:2f:b3:57:a6:3d:64:05:2a:97:d8:e0:32:0a:44: f1:85:35:6a:e3:f3:a0:91:e3:41:60:70:9d:61:df: a7:1e:ab:dc:93:08:83:18:16:db:fa:f0:e6:f7:47: 84:29:bd:fc:d4:21:ed:5f:10:12:b1:4e:45:ac:c9: 7b:14:76:fe:15:29:44:f4:57:30:2e:f8:54:81:91: 83:d4:4c:08:84:d2:3c:23:c9:f1:40:ce:a8:85:08: 6e:06:1c:60:a2:2c:76:df:44:1d:ac:ba:ce:17:40: 4d:d3:ef:44:48:ba:89:90:40:95:c6:a8:eb:03:ab: 07:23:eb:32:e8:1d:1f:9c:08:2f:c9:8a:01:80:3a: b0:48:a7:a1:8f:c2:ac:5c:3f:b2:5e:3c:2e:1a:b9: 2d:21:90:6b:b1:48:fb:78:1e:c9:04:f0:c3:b9:73: 6d:05:92:b1:90:a8:2f:8d:a2:4d:b0:0f:31:7e:62: 76:d1:de:74:05:f2:23:00:53:43:58:f0:4c:b3:d3: 4d:72:71:23:ed:8c:70:44:d9:aa:51:0f:0c:1e:15: df:16:93:eb:47:50:42:c5:fb:c9:b0:f4:b8:47:17: 7d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C7:88:9E:F3:9B:58:C1:6C:43:AB:17:D3:14:6D:AF:85:D5:8F:DC X509v3 Authority Key Identifier: keyid:D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:76:4c:46:68:4c:08:10:71:06:84:64:f2:a5:2a:81:f3:ed: d1:84:9f:82:50:e5:8a:86:c4:46:d8:ae:ca:24:54:b0:4c:11: fc:62:f3:ed:e4:2f:07:d3:86:24:c4:c6:7c:92:60:b8:47:a3: 1a:9a:30:bf:e3:0a:ce:82:8a:66:dc:48:15:06:16:c9:dc:55: 28:1c:3b:71:66:9c:59:cb:de:f3:3e:c5:46:8a:02:e9:d0:5d: d8:ea:24:b2:a2:5c:f7:f5:bf:8c:ab:b4:33:24:90:40:30:1c: fb:5c:b2:c7:62:f2:3b:ec:71:41:8b:a4:8d:f2:71:7c:fe:43: d2:c2:90:39:b3:aa:24:85:54:f2:50:87:17:16:35:d7:61:74: 92:e4:65:e0:aa:8a:48:f2:f7:52:f5:b6:62:7e:0d:0f:23:1c: 95:19:58:ce:bb:c7:fa:9c:94:b0:18:43:84:b6:7f:c2:b1:30: 94:51:47:9b:ef:41:85:63:d3:6d:fa:e7:63:26:56:46:75:ff: 60:5a:2b:94:1c:7d:ea:c7:86:29:8e:5d:ba:72:96:f9:ce:aa: de:7d:ca:6b:39:ca:64:a9:3b:10:83:17:c4:ef:cb:8d:b4:30: 69:ba:a5:dc:1f:c2:78:ef:1c:7e:f7:9e:55:d1:11:92:37:ca: 5b:73:e5:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxMjYxMTAvBgNVBAUTKEQ2QTlGQ0NCMzZBMDI3MUNCQzVGMTEyQkI3MjA1QTU3 QjlGNDg0RjcwHhcNMjQwNTE5MDMwNDEzWhcNMjQwNTI2MDMwNDEzWjAYMRYwFAYD VQQDEw02NjQ5NmMyZC00YjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqT4X469op/nne016ateWZl38Iqr1oKk5lG/SyPXL7NXpj1kBSqX2OAyCkTx hTVq4/OgkeNBYHCdYd+nHqvckwiDGBbb+vDm90eEKb381CHtXxASsU5FrMl7FHb+ FSlE9FcwLvhUgZGD1EwIhNI8I8nxQM6ohQhuBhxgoix230QdrLrOF0BN0+9ESLqJ kECVxqjrA6sHI+sy6B0fnAgvyYoBgDqwSKehj8KsXD+yXjwuGrktIZBrsUj7eB7J BPDDuXNtBZKxkKgvjaJNsA8xfmJ20d50BfIjAFNDWPBMs9NNcnEj7YxwRNmqUQ8M HhXfFpPrR1BCxfvJsPS4Rxd9JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPHiJ7z m1jBbEOrF9MUba+F1Y/cMB8GA1UdIwQYMBaAFNap/Ms2oCccvF8RK7cgWle59IT3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODEyNi8xNTdGNjZFQTgw MDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4eThYeEVydHlCYVY3bjBo UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFxbjh5emFnSnh5OFh4RXJ0eUJhVjduMGhQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODEyNi8xNTdGNjZFQTgwMDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4 eThYeEVydHlCYVY3bjBoUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIdkxGaEwIEHEGhGTypSqB8+3RhJ+CUOWKhsRG2K7KJFSwTBH8YvPt 5C8H04YkxMZ8kmC4R6MamjC/4wrOgopm3EgVBhbJ3FUoHDtxZpxZy97zPsVGigLp 0F3Y6iSyolz39b+Mq7QzJJBAMBz7XLLHYvI77HFBi6SN8nF8/kPSwpA5s6okhVTy UIcXFjXXYXSS5GXgqopI8vdS9bZifg0PIxyVGVjOu8f6nJSwGEOEtn/CsTCUUUeb 70GFY9Nt+udjJlZGdf9gWiuUHH3qx4Ypjl26cpb5zqrefcprOcpkqTsQgxfE78uN tDBpuqXcH8J47xx+955V0RGSN8pbc+X0 -----END CERTIFICATE-----Generated at Sun May 19 03:38:14 2024 by rpki-client on console-ams.rpki-client.org