$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: m5fF+bwqIc3xgZ2KcDwz0aEvpdKnJ39/Hd5orJ195h0= Subject key identifier: 00:16:A9:C5:83:5C:39:DC:17:93:2D:56:52:B5:DD:01:B8:27:BD:3B Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0B7E Signing time: Sat 18 May 2024 19:23:18 +0000 Manifest this update: Sat 18 May 2024 19:23:17 +0000 Manifest next update: Sat 25 May 2024 19:23:17 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: AsU9LIuS5rbdq5OIeiiW2hiiDKD1FEIsuEhMHnOOgWc=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: WvVRuKjmFetWalrRmBx2MQuKTGac5vufXmU8sXdWgUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: May 18 19:23:17 2024 GMT Not After : May 25 19:23:17 2024 GMT Subject: CN=66490026-5360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:63:4c:90:5d:b4:c0:b5:db:66:af:14:23: 0d:04:3b:0d:1d:d5:54:9f:3b:d1:24:a7:9e:5b:1d: 2c:b6:73:55:02:e7:6f:ab:f0:da:38:fa:b9:38:00: de:c0:ca:53:da:2c:cf:6c:d8:49:1e:0b:8c:a4:b6: e4:75:f9:12:a1:f8:35:d6:ac:91:14:68:f9:35:9e: df:c9:d5:ba:de:a7:2f:e3:30:61:eb:a4:f1:8f:00: 53:02:84:06:67:5a:40:36:d0:8f:ee:c2:08:66:87: 4a:72:7f:94:5c:9d:08:bb:b5:de:c0:28:3e:6b:c6: 24:48:88:71:b1:85:07:b8:a7:83:cd:f3:64:33:3a: d0:73:a1:05:2b:ba:90:ce:d8:2d:1e:e3:18:66:df: 19:72:14:ee:ed:ab:5f:89:05:93:8a:be:6c:22:7c: 16:48:c9:dd:0e:57:39:9e:34:ce:40:3f:3e:2b:eb: 7a:2d:30:39:3a:a0:f9:d9:c2:8c:1b:59:c9:48:84: 08:3a:7e:93:95:49:e1:e6:cb:46:c6:af:de:f8:63: 0f:76:0f:4a:26:63:77:80:63:d4:ab:2e:6d:1b:a8: c1:5a:c1:0c:11:c5:19:7c:77:bb:2d:d4:61:5e:a4: 81:28:94:d8:32:93:85:6c:b3:a2:f1:83:03:b9:f4: cc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:16:A9:C5:83:5C:39:DC:17:93:2D:56:52:B5:DD:01:B8:27:BD:3B X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:6e:c4:97:41:33:aa:0b:f1:81:be:c1:6c:12:6e:b5:aa:10: 11:11:11:ce:2c:71:59:b7:db:28:4e:a4:22:3e:2f:97:4b:e6: fa:a1:64:61:f9:f5:64:ee:3b:ec:50:38:60:cd:c2:78:54:bc: c5:a8:7c:32:0b:e0:f6:3a:a6:5f:e4:15:53:18:49:12:5f:3a: d1:03:15:86:bf:15:87:6c:81:ad:74:31:b9:52:f1:5f:08:fa: bb:11:9f:99:42:61:01:38:26:a2:ee:4f:ff:d7:45:1c:22:fe: 81:b2:5c:99:e3:7f:81:d8:26:1d:6c:0d:f7:a3:29:b5:d3:13: 81:ed:c7:a3:ba:df:bf:d2:19:c2:3f:c0:4f:3b:b8:2a:18:10: 9a:41:27:da:67:0a:bf:d6:00:03:64:8e:1e:2e:91:a6:38:36: c3:6e:0c:21:8e:7d:50:9c:31:f8:76:73:4d:6b:b5:12:c9:ee: 43:da:6d:13:e5:36:73:7f:0c:6c:7b:b3:07:98:90:0f:f0:71: 82:b6:7a:8d:64:a4:e4:9c:29:aa:31:04:7a:92:f4:ba:bc:42: 28:2f:b6:8f:ce:8f:de:e3:98:f4:56:e1:3e:09:a0:4b:a7:b3: 61:78:e5:ca:d7:dc:73:d1:d4:9c:db:f0:34:f1:5a:ba:0d:75: 56:33:1e:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjQwNTE4MTkyMzE3WhcNMjQwNTI1MTkyMzE3WjAYMRYwFAYD VQQDEw02NjQ5MDAyNi01MzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8NjTJBdtMC122avFCMNBDsNHdVUnzvRJKeeWx0stnNVAudvq/DaOPq5OADe wMpT2izPbNhJHguMpLbkdfkSofg11qyRFGj5NZ7fydW63qcv4zBh66TxjwBTAoQG Z1pANtCP7sIIZodKcn+UXJ0Iu7XewCg+a8YkSIhxsYUHuKeDzfNkMzrQc6EFK7qQ ztgtHuMYZt8ZchTu7atfiQWTir5sInwWSMndDlc5njTOQD8+K+t6LTA5OqD52cKM G1nJSIQIOn6TlUnh5stGxq/e+GMPdg9KJmN3gGPUqy5tG6jBWsEMEcUZfHe7LdRh XqSBKJTYMpOFbLOi8YMDufTMZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAWqcWD XDncF5MtVlK13QG4J707MB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKbsSXQTOqC/GBvsFsEm61qhARERHOLHFZt9soTqQiPi+XS+b6oWRh +fVk7jvsUDhgzcJ4VLzFqHwyC+D2OqZf5BVTGEkSXzrRAxWGvxWHbIGtdDG5UvFf CPq7EZ+ZQmEBOCai7k//10UcIv6BslyZ43+B2CYdbA33oym10xOB7cejut+/0hnC P8BPO7gqGBCaQSfaZwq/1gADZI4eLpGmODbDbgwhjn1QnDH4dnNNa7USye5D2m0T 5TZzfwxse7MHmJAP8HGCtnqNZKTknCmqMQR6kvS6vEIoL7aPzo/e45j0VuE+CaBL p7NheOXK19xz0dSc2/A08Vq6DXVWMx79 -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org