$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: Tb74FAbg60jR+QjArO74f9RpGVQB68U4n7WTfyEmshQ= Subject key identifier: E4:90:1A:B2:F6:1C:3E:BC:6B:41:AC:E8:E1:9E:BC:A2:7A:9B:1D:FB Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 0145 Signing time: Sun 19 May 2024 04:56:07 +0000 Manifest this update: Sun 19 May 2024 04:56:07 +0000 Manifest next update: Sun 26 May 2024 04:56:07 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: 6YEAf6IoCdtnk1IJhq4KodxwpeQlcPoKiRN98barsfo=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: lskQ/yu8M1tBJMgyGzF7vQdWZvqpvVyiFeiC9RPv8m4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: May 19 04:56:07 2024 GMT Not After : May 26 04:56:07 2024 GMT Subject: CN=66498667-a1ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:11:c0:0a:40:ea:50:44:36:e1:61:81:9e:68: 9a:b8:02:d4:12:48:75:37:76:d4:d6:68:c1:67:15: be:a1:51:1e:19:b4:09:98:e3:63:d7:ce:13:8e:67: 8c:5a:2a:f6:cc:02:f0:0b:1e:e9:99:cc:81:90:2b: 95:fe:5d:2e:45:35:68:a3:82:3b:3c:b9:91:4f:b0: fe:e5:5b:fd:50:5a:9b:18:8d:1b:4f:d5:68:98:fd: 01:8a:45:67:c7:d1:f4:cd:f3:42:38:6a:03:71:56: 91:22:a3:da:f1:d2:cf:e4:99:5c:36:07:c3:0b:a7: 1a:40:4c:bc:ff:8c:0a:2f:67:18:f2:d4:a7:d9:72: f5:ac:ea:84:18:3d:55:2a:ff:57:5d:8c:59:23:78: a9:53:72:98:24:8d:3a:66:5f:f6:96:9a:1a:9b:85: 22:d7:cf:51:af:2a:f5:71:71:71:2c:d2:d9:fd:7d: b0:33:f1:a9:29:1b:8a:40:8f:07:e9:72:0b:94:dc: d1:41:e3:71:7a:ad:5e:0f:c1:61:69:98:37:58:2e: 34:a4:b5:2a:2e:1d:5b:92:46:ec:3d:fe:a5:5b:70: cf:74:8f:4e:f3:8a:b3:b2:2a:78:df:ad:cd:ad:ee: 56:68:6a:ae:22:8c:7a:59:a4:73:e8:72:47:d0:d3: 4b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:90:1A:B2:F6:1C:3E:BC:6B:41:AC:E8:E1:9E:BC:A2:7A:9B:1D:FB X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:5a:49:a2:0b:24:25:26:93:e2:81:09:52:9b:3d:ac:1b:f2: 52:86:61:a1:dd:00:37:8d:0d:fb:b8:4d:2f:d0:bd:f9:6f:76: 94:a2:88:fc:39:c1:41:a0:93:c6:19:e7:97:c7:a0:8f:c9:9f: 7c:60:21:9e:7f:88:42:12:53:d8:d7:0e:39:6e:9d:3b:8b:99: 30:24:c9:cc:f0:f7:dc:07:08:00:91:57:fa:bc:4b:7a:c6:a9: 71:21:c3:ef:04:7c:6c:b0:c7:07:5a:bb:fb:1f:e2:b1:f3:32: 13:80:80:64:e9:15:51:dd:7f:81:68:90:53:a8:70:f5:0c:54: 9e:f1:61:44:3c:0f:9d:77:95:b7:de:10:e2:51:7d:a0:ac:68: 53:4e:e2:e1:0f:e8:b3:85:e4:65:cd:0d:2a:5c:e2:d6:e5:2d: 1e:0e:f2:e0:26:ff:d8:66:1e:70:d5:c3:90:da:ab:ee:a7:73: 6c:24:b4:4f:73:2a:b2:e9:a7:4e:e8:2d:00:f6:50:8b:32:70: 86:b5:59:6f:99:5b:81:88:61:ed:20:66:95:7a:f2:37:a5:b0: d7:bb:37:e6:80:ad:07:98:6e:9b:f6:51:54:2a:9d:77:8c:36: 38:84:af:77:d7:9c:3a:fe:26:f3:11:16:cf:d8:34:d0:1f:96: dc:0f:fa:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjQwNTE5MDQ1NjA3WhcNMjQwNTI2MDQ1NjA3WjAYMRYwFAYD VQQDEw02NjQ5ODY2Ny1hMWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RHACkDqUEQ24WGBnmiauALUEkh1N3bU1mjBZxW+oVEeGbQJmONj184TjmeM Wir2zALwCx7pmcyBkCuV/l0uRTVoo4I7PLmRT7D+5Vv9UFqbGI0bT9VomP0BikVn x9H0zfNCOGoDcVaRIqPa8dLP5JlcNgfDC6caQEy8/4wKL2cY8tSn2XL1rOqEGD1V Kv9XXYxZI3ipU3KYJI06Zl/2lpoam4Ui189Rryr1cXFxLNLZ/X2wM/GpKRuKQI8H 6XILlNzRQeNxeq1eD8FhaZg3WC40pLUqLh1bkkbsPf6lW3DPdI9O84qzsip4363N re5WaGquIox6WaRz6HJH0NNLhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSQGrL2 HD68a0Gs6OGevKJ6mx37MB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNWkmiCyQlJpPigQlSmz2sG/JShmGh3QA3jQ37uE0v0L35b3aUooj8 OcFBoJPGGeeXx6CPyZ98YCGef4hCElPY1w45bp07i5kwJMnM8PfcBwgAkVf6vEt6 xqlxIcPvBHxssMcHWrv7H+Kx8zITgIBk6RVR3X+BaJBTqHD1DFSe8WFEPA+dd5W3 3hDiUX2grGhTTuLhD+izheRlzQ0qXOLW5S0eDvLgJv/YZh5w1cOQ2qvup3NsJLRP cyqy6adO6C0A9lCLMnCGtVlvmVuBiGHtIGaVevI3pbDXuzfmgK0HmG6b9lFUKp13 jDY4hK9315w6/ibzERbP2DTQH5bcD/pP -----END CERTIFICATE-----Generated at Sun May 19 06:14:34 2024 by rpki-client on console-ams.rpki-client.org