$ rpki-client -vvf rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.mft File: P8lxKSzpGlkajN-n0a4JykbgPoc.mft (raw, json) Hash identifier: y1wbpjngxRQQq/2g5xpthYZZlmSnhhVjE9lZu/16GX8= Subject key identifier: 26:12:42:85:77:BA:B6:C2:A5:72:E7:1B:DD:6B:83:21:70:66:35:C2 Authority key identifier: 3F:C9:71:29:2C:E9:1A:59:1A:8C:DF:A7:D1:AE:09:CA:46:E0:3E:87 Certificate issuer: /CN=A9171634/serialNumber=3FC971292CE91A591A8CDFA7D1AE09CA46E03E87 Certificate serial: 3414 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8lxKSzpGlkajN-n0a4JykbgPoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.mft Manifest number: 33E8 Signing time: Sat 18 May 2024 14:47:22 +0000 Manifest this update: Sat 18 May 2024 14:47:21 +0000 Manifest next update: Sat 25 May 2024 14:47:21 +0000 Files and hashes: 1: P8lxKSzpGlkajN-n0a4JykbgPoc.crl (hash: o8agYmypgcGOPfqCVOl8pkBlykLlPyp+9+m7CrYzC+Q=) 2: 727368486F1F11EDA34CF049C4F9AE02.roa (hash: NZbs45t8XXl/tBdxXy7mih7R8Y+MNfTCo2/0Q6D+AY8=) 3: 28B45FE86AF411EDB328EF4BC4F9AE02.roa (hash: YOeMT2ch94llljjtSxDRfpwVxGJgR5Hy6UG9iTs2yno=) 4: 989ED314FDCB11EDA52DCB45C4F9AE02.roa (hash: 7Gr5+LKQZg71Xe7aRTwT76gb+Vnjm/TSiDDJs1rwm1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.crl rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8lxKSzpGlkajN-n0a4JykbgPoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13332 (0x3414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171634/serialNumber=3FC971292CE91A591A8CDFA7D1AE09CA46E03E87 Validity Not Before: May 18 14:47:21 2024 GMT Not After : May 25 14:47:21 2024 GMT Subject: CN=6648bf7a-934b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:07:31:96:b2:fe:5f:0a:ec:d6:bd:0c:ff:3f: 20:ad:38:35:06:b5:80:3f:ac:b2:00:14:30:02:55: b4:1f:ab:49:3b:59:58:1c:d5:07:68:ba:5a:20:f6: b2:8c:d6:96:ba:ef:9a:48:e2:4a:e0:de:4b:96:79: 1a:7b:bd:5b:1c:60:9a:66:0b:24:98:96:70:37:a0: 64:bf:b7:89:4e:ce:ce:70:fc:69:5b:ed:49:7f:d2: dd:a8:c5:bd:e3:ca:d7:27:aa:d3:30:d7:1b:5d:6a: 07:dc:3e:e5:a3:2e:17:cd:e6:cc:df:24:7b:af:e2: 4a:80:7b:d0:f3:ce:4e:6d:6b:9d:b1:a9:cc:1a:7b: df:3c:fd:c9:39:1e:08:da:32:1d:96:52:51:b0:9e: 98:ca:74:9c:af:9f:c8:00:53:44:cf:a6:86:77:46: c2:20:8f:c0:f0:0a:5a:b0:20:7c:a2:73:fe:8f:80: 9a:fe:58:a3:4f:24:e6:56:2d:c4:97:15:bf:db:bf: f9:48:60:b5:5c:6d:f4:6e:b7:2e:ca:c0:db:4a:63: b2:cf:8b:a2:f6:0c:ec:94:64:bd:e0:90:48:12:3e: a0:5f:27:11:cb:af:1c:b3:c1:fa:04:4e:81:fb:fd: fe:bf:b3:45:f2:35:4b:b3:73:4d:ee:04:1d:b5:93: 00:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:12:42:85:77:BA:B6:C2:A5:72:E7:1B:DD:6B:83:21:70:66:35:C2 X509v3 Authority Key Identifier: keyid:3F:C9:71:29:2C:E9:1A:59:1A:8C:DF:A7:D1:AE:09:CA:46:E0:3E:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P8lxKSzpGlkajN-n0a4JykbgPoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171634/942B83BC1D9011E2A36166F008B02CD2/P8lxKSzpGlkajN-n0a4JykbgPoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:3f:a8:52:99:96:76:0b:f9:40:f1:e6:61:b1:c8:40:be:72: f7:96:f3:20:92:52:43:2d:36:91:39:b2:9d:a0:d6:3a:89:44: 20:79:f3:d0:74:62:d8:d0:4f:f2:15:99:a3:3a:35:6e:65:09: b5:28:30:45:68:8b:dc:d4:8e:b1:22:09:7a:73:47:6b:da:73: 67:a0:b4:f3:6f:ea:be:0a:fa:4c:2c:e3:9b:2a:7b:63:98:d5: c1:ac:6c:5a:d5:0e:f9:fc:2a:65:b3:77:2c:d0:d0:15:60:3b: 45:31:c7:04:f4:cf:ec:bf:fe:a7:3c:f1:04:b8:b3:fa:c8:01: 84:0d:0c:b5:92:f4:09:2f:97:92:45:0a:7a:80:1d:b2:af:76: 70:a9:97:b7:25:29:fa:a2:7f:50:a8:76:47:94:2d:33:f4:5b: 4f:fb:b6:a9:b5:18:55:78:9e:f2:3f:9f:d1:cb:2b:41:43:26: 4a:38:69:dd:45:13:c3:bb:20:b6:5a:77:55:02:dc:57:9c:c8: 51:9c:11:d9:30:11:39:24:44:47:d8:4d:0f:b7:b0:bf:ad:7b: 06:2d:ea:08:96:cd:21:c4:a5:c2:68:9a:ee:0b:1c:62:88:48: c4:7e:1e:f4:63:7e:e6:74:31:53:3e:b2:f4:31:47:00:9a:99: 9d:37:92:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2MzQxMTAvBgNVBAUTKDNGQzk3MTI5MkNFOTFBNTkxQThDREZBN0QxQUUwOUNB NDZFMDNFODcwHhcNMjQwNTE4MTQ0NzIxWhcNMjQwNTI1MTQ0NzIxWjAYMRYwFAYD VQQDEw02NjQ4YmY3YS05MzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQcxlrL+Xwrs1r0M/z8grTg1BrWAP6yyABQwAlW0H6tJO1lYHNUHaLpaIPay jNaWuu+aSOJK4N5Llnkae71bHGCaZgskmJZwN6Bkv7eJTs7OcPxpW+1Jf9LdqMW9 48rXJ6rTMNcbXWoH3D7loy4XzebM3yR7r+JKgHvQ885ObWudsanMGnvfPP3JOR4I 2jIdllJRsJ6YynScr5/IAFNEz6aGd0bCII/A8ApasCB8onP+j4Ca/lijTyTmVi3E lxW/27/5SGC1XG30brcuysDbSmOyz4ui9gzslGS94JBIEj6gXycRy68cs8H6BE6B +/3+v7NF8jVLs3NN7gQdtZMApwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCYSQoV3 urbCpXLnG91rgyFwZjXCMB8GA1UdIwQYMBaAFD/JcSks6RpZGozfp9GuCcpG4D6H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTYzNC85NDJCODNCQzFE OTAxMUUyQTM2MTY2RjAwOEIwMkNEMi9QOGx4S1N6cEdsa2FqTi1uMGE0SnlrYmdQ b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A4bHhLU3pwR2xrYWpOLW4wYTRKeWtiZ1BvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTYzNC85NDJCODNCQzFEOTAxMUUyQTM2MTY2RjAwOEIwMkNEMi9QOGx4S1N6cEds a2FqTi1uMGE0SnlrYmdQb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0P6hSmZZ2C/lA8eZhschAvnL3lvMgklJDLTaRObKdoNY6iUQgefPQ dGLY0E/yFZmjOjVuZQm1KDBFaIvc1I6xIgl6c0dr2nNnoLTzb+q+CvpMLOObKntj mNXBrGxa1Q75/Cpls3cs0NAVYDtFMccE9M/sv/6nPPEEuLP6yAGEDQy1kvQJL5eS RQp6gB2yr3ZwqZe3JSn6on9QqHZHlC0z9FtP+7aptRhVeJ7yP5/RyytBQyZKOGnd RRPDuyC2WndVAtxXnMhRnBHZMBE5JERH2E0Pt7C/rXsGLeoIls0hxKXCaJruCxxi iEjEfh70Y37mdDFTPrL0MUcAmpmdN5L1 -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org