$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft File: 1SAZKpWvyNXyc3TZo0xGM859rEQ.mft (raw, json) Hash identifier: NOPRt6zmeBQx/ISAYK1i4pxpjism/Rf2Jd+CDcftQPQ= Subject key identifier: 28:B8:7B:52:3B:F5:F4:A1:BE:B1:65:D8:01:B6:76:67:A5:B0:49:2F Authority key identifier: D5:20:19:2A:95:AF:C8:D5:F2:73:74:D9:A3:4C:46:33:CE:7D:AC:44 Certificate issuer: /CN=A9169A9C/serialNumber=D520192A95AFC8D5F27374D9A34C4633CE7DAC44 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft Manifest number: 96 Signing time: Sun 19 May 2024 07:00:56 +0000 Manifest this update: Sun 19 May 2024 07:00:56 +0000 Manifest next update: Sun 26 May 2024 07:00:56 +0000 Files and hashes: 1: 1SAZKpWvyNXyc3TZo0xGM859rEQ.crl (hash: InyxVk6hUCO66xl98W/E0dIctD0Shx2rqaYIwbN+58M=) 2: 22F2C0647DCB11EEB9150234C4F9AE02.roa (hash: 0KwtvVvJORSXDZJXoDg8yH9MqNo0pSSAze/dXIycs7s=) 3: E10D7D267F5811EEBC62AB76C4F9AE02.roa (hash: drY6kiiYoCje6DGog8gQjYKlelhVvkYt3X5Ifw7Tcek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.crl rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C/serialNumber=D520192A95AFC8D5F27374D9A34C4633CE7DAC44 Validity Not Before: May 19 07:00:56 2024 GMT Not After : May 26 07:00:56 2024 GMT Subject: CN=6649a3a8-803f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:59:89:dd:21:53:f9:a9:6e:92:47:d8:cb:12: 48:92:60:4b:6d:21:f3:9c:1c:32:07:41:b7:2a:ec: 47:71:d3:b8:03:8f:6d:9a:f2:f1:d7:da:47:67:96: d8:36:f3:08:41:86:11:20:a0:7d:55:58:17:0f:92: 11:d4:21:f4:d6:c7:66:78:e6:20:08:2e:07:a1:23: 88:83:e5:95:a8:07:83:c7:f9:1b:fe:c1:6a:4e:13: 71:8d:5e:75:4e:c6:b7:15:d7:be:b1:0e:b8:28:a1: ff:f5:0b:e2:1a:3a:28:55:8a:d6:65:fc:cb:74:65: 6d:3d:0b:a0:9f:96:c8:5d:89:5f:d1:cc:16:2f:bd: 76:b9:72:08:8d:7b:25:a4:3b:ed:c9:5d:08:d5:75: 53:6d:09:b1:b5:bc:c5:52:1f:87:fa:77:10:19:c0: 99:d3:99:1d:53:c6:e0:20:a8:e8:d9:06:61:3d:fb: 36:9e:90:7c:0a:10:7b:e7:4f:06:df:14:c1:b7:77: 49:23:f7:35:33:27:06:34:d9:1d:79:3d:c1:98:56: 9f:3d:7c:37:f0:ee:ed:f7:5d:77:5d:ab:d6:7b:bc: 55:5f:b9:7a:05:2e:68:f5:e9:f3:d0:bf:df:f1:91: c1:ae:ca:1f:f0:b4:c8:12:7c:b5:46:9f:55:fc:f0: 32:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B8:7B:52:3B:F5:F4:A1:BE:B1:65:D8:01:B6:76:67:A5:B0:49:2F X509v3 Authority Key Identifier: keyid:D5:20:19:2A:95:AF:C8:D5:F2:73:74:D9:A3:4C:46:33:CE:7D:AC:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1SAZKpWvyNXyc3TZo0xGM859rEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/C3A804043F8411EEB900A90FC4F9AE02/1SAZKpWvyNXyc3TZo0xGM859rEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:16:1d:38:84:5d:07:18:db:f1:20:bb:6a:8e:6f:27:ae:dd: bd:e1:a6:f7:fd:93:d1:ed:c8:63:fc:c1:71:84:26:e3:b6:7a: ab:83:ed:96:af:b6:34:f0:a8:7f:4d:de:14:fd:9e:63:71:24: d5:69:27:1f:65:d3:27:56:94:31:7e:7b:e5:d6:63:c2:b6:d8: ff:1e:fe:70:35:f0:8b:57:c2:17:0d:e6:03:c1:f5:ea:f3:0e: cd:ac:09:c7:32:2a:f0:f5:0b:ab:bf:91:ab:41:8d:48:fb:e0: 7a:c4:c5:87:52:82:3f:95:c2:26:41:e8:5b:69:9c:0c:c3:aa: f5:49:95:b8:43:94:8b:08:e5:47:52:04:c2:19:d9:7e:15:ea: 8a:b8:b3:72:2b:a2:c3:b3:32:5e:fc:2f:21:e3:22:f9:89:1e: f9:54:e4:94:9d:8f:ee:23:8a:a3:22:a6:02:48:5f:07:67:35: 1f:75:2f:6c:5f:c5:e7:1a:22:7d:4a:85:a2:9c:fc:67:f6:47: 4d:33:69:d4:d2:d6:5a:68:b0:d3:3b:6d:46:66:9e:f9:cc:e4: a2:43:ca:49:df:9b:86:a5:7c:9b:ab:81:a5:93:4a:68:74:91: ca:3a:12:41:73:79:06:5e:37:60:89:de:2b:c1:2c:4b:d0:36: 5f:0c:0d:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEQ1MjAxOTJBOTVBRkM4RDVGMjczNzREOUEzNEM0NjMz Q0U3REFDNDQwHhcNMjQwNTE5MDcwMDU2WhcNMjQwNTI2MDcwMDU2WjAYMRYwFAYD VQQDEw02NjQ5YTNhOC04MDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVmJ3SFT+alukkfYyxJIkmBLbSHznBwyB0G3KuxHcdO4A49tmvLx19pHZ5bY NvMIQYYRIKB9VVgXD5IR1CH01sdmeOYgCC4HoSOIg+WVqAeDx/kb/sFqThNxjV51 Tsa3Fde+sQ64KKH/9QviGjooVYrWZfzLdGVtPQugn5bIXYlf0cwWL712uXIIjXsl pDvtyV0I1XVTbQmxtbzFUh+H+ncQGcCZ05kdU8bgIKjo2QZhPfs2npB8ChB7508G 3xTBt3dJI/c1MycGNNkdeT3BmFafPXw38O7t9113XavWe7xVX7l6BS5o9enz0L/f 8ZHBrsof8LTIEny1Rp9V/PAyvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCi4e1I7 9fShvrFl2AG2dmelsEkvMB8GA1UdIwQYMBaAFNUgGSqVr8jV8nN02aNMRjPOfaxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy9DM0E4MDQwNDNG ODQxMUVFQjkwMEE5MEZDNEY5QUUwMi8xU0FaS3BXdnlOWHljM1RabzB4R004NTly RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTQVpLcFd2eU5YeWMzVFpvMHhHTTg1OXJFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUE5Qy9DM0E4MDQwNDNGODQxMUVFQjkwMEE5MEZDNEY5QUUwMi8xU0FaS3BXdnlO WHljM1RabzB4R004NTlyRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpFh04hF0HGNvxILtqjm8nrt294ab3/ZPR7chj/MFxhCbjtnqrg+2W r7Y08Kh/Td4U/Z5jcSTVaScfZdMnVpQxfnvl1mPCttj/Hv5wNfCLV8IXDeYDwfXq 8w7NrAnHMirw9Qurv5GrQY1I++B6xMWHUoI/lcImQehbaZwMw6r1SZW4Q5SLCOVH UgTCGdl+FeqKuLNyK6LDszJe/C8h4yL5iR75VOSUnY/uI4qjIqYCSF8HZzUfdS9s X8XnGiJ9SoWinPxn9kdNM2nU0tZaaLDTO21GZp75zOSiQ8pJ35uGpXybq4Glk0po dJHKOhJBc3kGXjdgid4rwSxL0DZfDA3a -----END CERTIFICATE-----Generated at Sun May 19 08:25:01 2024 by rpki-client on console-ams.rpki-client.org