$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft File: cBB77LhKxM5elcxh0RCmcj-QycM.mft (raw, json) Hash identifier: cRZ1qeHxm7BQXvIBM3lkBHE9qkkqHja3u+NjU9XxIzM= Subject key identifier: D7:3F:E3:92:D5:DB:50:EC:CD:C9:44:8E:DA:82:4E:95:5E:FF:AB:65 Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft Manifest number: 38 Signing time: Sun 19 May 2024 08:17:15 +0000 Manifest this update: Sun 19 May 2024 08:17:15 +0000 Manifest next update: Sun 26 May 2024 08:17:15 +0000 Files and hashes: 1: cBB77LhKxM5elcxh0RCmcj-QycM.crl (hash: ZgpoUGkpgs+OCulb7d32NrZEc8HEbMNPlWylEMXn5g0=) 2: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (hash: V1EudKad5ciqiLAx0vFe4QNo4i7JkuqWv1jedSoHcts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Validity Not Before: May 19 08:17:15 2024 GMT Not After : May 26 08:17:15 2024 GMT Subject: CN=6649b58b-0cc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:22:76:ae:35:7e:c9:f2:4f:c3:b9:e4:9e:15: ad:49:6c:85:55:24:54:e3:7f:63:2b:2c:12:d4:84: 7d:c6:71:4f:11:c1:64:5e:a7:3a:58:93:f7:88:01: 47:31:6b:75:3a:aa:ff:3e:45:40:df:39:28:ad:f6: 5f:ab:68:84:da:11:9c:e7:65:33:80:78:15:16:80: 05:cc:de:5c:d4:04:b3:32:bb:5f:11:4c:64:b5:db: 06:7f:90:df:8d:f1:75:15:b5:bb:c7:9c:00:8a:e6: 23:7a:a3:a4:a2:2f:8a:d3:76:f8:4e:b8:ff:ad:ff: d4:94:f0:59:82:23:15:15:bb:f2:4a:ee:f2:b0:39: 76:44:ff:ad:50:21:08:ea:0f:fc:52:44:7b:83:50: d4:ef:95:22:8b:33:5d:8f:6f:11:7e:0b:42:e6:db: 0a:13:8b:9e:3b:59:59:e0:37:6a:5e:28:42:f3:be: 57:1a:e8:77:b6:01:ba:13:53:4e:0f:7c:3f:1e:4e: 72:df:ff:6f:e3:cd:23:a0:55:61:91:66:98:35:af: a1:ae:56:53:15:1d:20:0f:1b:72:6f:c4:bd:5b:de: 64:9a:13:aa:32:bc:84:81:7a:75:af:6c:66:1e:bb: cc:c3:67:bf:c5:07:42:92:10:bd:1f:33:f5:21:bb: 91:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:3F:E3:92:D5:DB:50:EC:CD:C9:44:8E:DA:82:4E:95:5E:FF:AB:65 X509v3 Authority Key Identifier: keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a6:ee:07:e2:df:a7:7a:23:27:40:f5:43:9d:3d:f2:f6:7a: dc:d7:d5:b8:a8:1a:d7:aa:c6:55:0f:a0:14:4f:72:46:85:37: 8c:03:2f:c3:9a:bf:89:02:a5:b5:8f:88:6b:1f:e2:fc:bc:04: 7f:d6:f9:5c:ed:a6:4c:bf:ac:bf:a5:f3:a5:99:84:fc:21:07: c8:ca:30:b4:87:5c:80:1b:d6:b3:1b:4a:46:74:ed:09:5b:e7: ac:a5:7f:22:3e:1d:9d:58:37:26:5a:11:50:b5:e1:ed:77:b6: 89:e8:58:78:5b:7e:74:5d:d9:4a:7f:95:08:02:d6:2e:2b:9d: b3:89:3c:82:3c:2f:c3:2e:53:95:f0:2d:7b:c1:96:3b:62:41: 42:63:90:cf:44:12:fc:d4:3e:54:18:3a:91:ae:40:d5:fd:93: 2b:26:39:cd:a0:80:97:5a:da:db:70:04:dd:74:0f:c3:7e:4e: 30:68:c7:dd:f5:a4:a5:78:ba:f5:95:b8:d4:fb:fa:9e:d4:68: 5f:cf:3e:da:0a:9d:a8:15:39:5e:50:02:55:12:bc:62:18:0a: 89:e9:69:97:d8:ec:ed:09:76:ce:a2:88:93:09:54:a6:5e:35: 5f:1e:f4:cd:31:b5:64:26:df:ca:d1:93:3e:0b:2e:7b:ec:91: a0:d0:77:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzJCOTExMC8GA1UEBRMoNzAxMDdCRUNCODRBQzRDRTVFOTVDQzYxRDExMEE2NzIz RjkwQzlDMzAeFw0yNDA1MTkwODE3MTVaFw0yNDA1MjYwODE3MTVaMBgxFjAUBgNV BAMTDTY2NDliNThiLTBjYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkInauNX7J8k/DueSeFa1JbIVVJFTjf2MrLBLUhH3GcU8RwWRepzpYk/eIAUcx a3U6qv8+RUDfOSit9l+raITaEZznZTOAeBUWgAXM3lzUBLMyu18RTGS12wZ/kN+N 8XUVtbvHnACK5iN6o6SiL4rTdvhOuP+t/9SU8FmCIxUVu/JK7vKwOXZE/61QIQjq D/xSRHuDUNTvlSKLM12PbxF+C0Lm2woTi547WVngN2peKELzvlca6He2AboTU04P fD8eTnLf/2/jzSOgVWGRZpg1r6GuVlMVHSAPG3JvxL1b3mSaE6oyvISBenWvbGYe u8zDZ7/FB0KSEL0fM/Uhu5HJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1z/jktXb UOzNyUSO2oJOlV7/q2UwHwYDVR0jBBgwFoAUcBB77LhKxM5elcxh0RCmcj+QycMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDMkI5LzMwNjY5OUNBQzJB MjExRUU5MUQ5NTM1Q0M0RjlBRTAyL2NCQjc3TGhLeE01ZWxjeGgwUkNtY2otUXlj TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY0JCNzdMaEt4TTVlbGN4aDBSQ21jai1ReWNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD MkI5LzMwNjY5OUNBQzJBMjExRUU5MUQ5NTM1Q0M0RjlBRTAyL2NCQjc3TGhLeE01 ZWxjeGgwUkNtY2otUXljTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHKm7gfi36d6IydA9UOdPfL2etzX1bioGteqxlUPoBRPckaFN4wDL8Oa v4kCpbWPiGsf4vy8BH/W+Vztpky/rL+l86WZhPwhB8jKMLSHXIAb1rMbSkZ07Qlb 56ylfyI+HZ1YNyZaEVC14e13tonoWHhbfnRd2Up/lQgC1i4rnbOJPII8L8MuU5Xw LXvBljtiQUJjkM9EEvzUPlQYOpGuQNX9kysmOc2ggJda2ttwBN10D8N+TjBox931 pKV4uvWVuNT7+p7UaF/PPtoKnagVOV5QAlUSvGIYConpaZfY7O0Jds6iiJMJVKZe NV8e9M0xtWQm38rRkz4LLnvskaDQd/Q= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org