$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: AiXPHZrhIIpn05DKwEwosnhtHMZT9MdTwLE/Roz86aQ= Subject key identifier: 31:48:68:F9:59:AF:DB:A7:CC:CD:A5:99:E0:34:37:C3:CF:CD:32:3A Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 4C Signing time: Sat 01 Jun 2024 09:25:47 +0000 Manifest this update: Sat 01 Jun 2024 09:25:47 +0000 Manifest next update: Sat 08 Jun 2024 09:25:47 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: GV/cW5/moZyGGQPTkul6Qv8haRq7cw+Q2n2/aEwEesk=) 2: 81B9E0A6AF8911EEB9587446C4F9AE02.roa (hash: JHxaipZ1wIvGYG+Zt3XlJ2Zy3zT8C9h1/hC61qxRDrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Jun 1 09:25:47 2024 GMT Not After : Jun 8 09:25:47 2024 GMT Subject: CN=665ae91b-8d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:92:50:7b:b8:86:19:31:2b:60:b8:7d:77:94: dd:34:94:b4:ad:ec:35:d1:a6:9c:87:c5:fe:3c:ff: e5:74:2a:32:58:cb:48:41:70:51:dd:db:74:7b:ac: 03:d4:55:e4:b7:93:8a:87:56:11:1c:97:99:52:50: b5:04:88:d6:e3:45:64:eb:c7:48:7e:1d:1d:5e:41: ca:6c:bf:02:30:a8:bf:8c:7c:63:39:c5:78:9e:f2: 42:62:12:d3:f7:0a:77:ca:c0:13:48:94:d8:09:e4: 21:5a:b0:9c:54:0d:c1:47:63:95:ce:4f:65:25:cb: 59:e4:44:eb:2b:b5:bc:5e:13:fc:31:4a:f9:04:82: 13:4d:57:1c:f1:2e:13:d4:52:95:d6:2d:3a:ed:4e: 30:0d:6b:51:c9:15:1e:09:56:38:1a:5c:13:98:e5: b2:04:60:09:d0:7d:4c:86:0a:0f:c0:b5:82:7a:ae: eb:de:a6:0c:a8:fc:a6:b5:64:fa:34:80:21:fb:96: 9a:7e:2b:0a:d9:55:8d:74:d3:88:65:11:d5:59:78: 66:cf:d6:b3:84:c5:71:61:6b:34:ed:94:dc:42:b5: 7d:77:00:db:1c:2c:9e:b0:d9:45:a9:de:15:cf:ee: 3b:d6:47:cb:fa:34:9f:54:f7:bd:bc:72:a2:54:4a: 68:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:48:68:F9:59:AF:DB:A7:CC:CD:A5:99:E0:34:37:C3:CF:CD:32:3A X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ee:3d:33:41:ab:57:9b:fe:8b:23:44:83:38:2b:4b:92:46:ea: df:a1:1c:ab:b6:56:57:16:25:43:c2:8d:20:f7:56:d6:ec:ff: 9c:f3:af:6b:13:f4:38:31:f6:e6:bc:2d:91:8f:3e:23:13:33: 4c:16:75:68:09:2d:e3:97:72:be:67:84:14:fd:6e:c5:10:c2: 03:16:55:f3:9c:2a:c3:6e:49:dc:5c:ef:66:81:c7:fc:32:7d: 69:cc:0a:34:af:ff:6a:f3:88:02:42:94:30:bb:00:85:19:6e: 61:13:5b:6b:5a:b2:df:8b:66:c2:73:e0:08:d9:f2:e7:c2:1d: 9e:c1:04:cd:31:9c:4d:56:ca:33:2f:b9:70:63:73:ca:ed:eb: 7b:e7:5e:05:62:fc:ba:d5:49:23:df:0e:83:ee:a3:93:0c:74: 9f:50:2c:5c:50:ea:aa:35:35:5b:bb:e0:86:a3:3c:da:20:e4: 53:e8:83:2e:8e:0d:e7:44:01:31:74:e8:94:4b:7d:7b:cd:59: d4:83:04:d0:30:6c:1a:c2:71:7a:32:90:8b:d1:ba:af:5f:ce: 46:10:85:10:3f:2b:4e:13:b1:65:23:61:31:40:ad:5f:c1:b5: 17:35:14:cc:40:a8:9c:20:18:e4:f7:e5:d6:41:a3:db:bd:7e: a1:85:a4:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUQxNjExMC8GA1UEBRMoNzA4RjFFMDcxMzM4NTVDODA3NEVFRDVGOEM4M0I0NDY2 QTYwN0FDMjAeFw0yNDA2MDEwOTI1NDdaFw0yNDA2MDgwOTI1NDdaMBgxFjAUBgNV BAMTDTY2NWFlOTFiLThkMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6klB7uIYZMStguH13lN00lLSt7DXRppyHxf48/+V0KjJYy0hBcFHd23R7rAPU VeS3k4qHVhEcl5lSULUEiNbjRWTrx0h+HR1eQcpsvwIwqL+MfGM5xXie8kJiEtP3 CnfKwBNIlNgJ5CFasJxUDcFHY5XOT2Uly1nkROsrtbxeE/wxSvkEghNNVxzxLhPU UpXWLTrtTjANa1HJFR4JVjgaXBOY5bIEYAnQfUyGCg/AtYJ6ruvepgyo/Ka1ZPo0 gCH7lpp+KwrZVY1004hlEdVZeGbP1rOExXFhazTtlNxCtX13ANscLJ6w2UWp3hXP 7jvWR8v6NJ9U9728cqJUSmh7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMUho+Vmv 26fMzaWZ4DQ3w8/NMjowHwYDVR0jBBgwFoAUcI8eBxM4VcgHTu1fjIO0RmpgesIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxRDE2LzY1NkQxN0E4QUU5 QzExRUU5MTFBRkI2M0M0RjlBRTAyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2Vz SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY0k4ZUJ4TTRWY2dIVHUxZmpJTzBSbXBnZXNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx RDE2LzY1NkQxN0E4QUU5QzExRUU5MTFBRkI2M0M0RjlBRTAyL2NJOGVCeE00VmNn SFR1MWZqSU8wUm1wZ2VzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAO49M0GrV5v+iyNEgzgrS5JG6t+hHKu2VlcWJUPCjSD3Vtbs/5zzr2sT 9Dgx9ua8LZGPPiMTM0wWdWgJLeOXcr5nhBT9bsUQwgMWVfOcKsNuSdxc72aBx/wy fWnMCjSv/2rziAJClDC7AIUZbmETW2tast+LZsJz4AjZ8ufCHZ7BBM0xnE1WyjMv uXBjc8rt63vnXgVi/LrVSSPfDoPuo5MMdJ9QLFxQ6qo1NVu74IajPNog5FPogy6O DedEATF06JRLfXvNWdSDBNAwbBrCcXoykIvRuq9fzkYQhRA/K04TsWUjYTFArV/B tRc1FMxAqJwgGOT35dZBo9u9fqGFpIg= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:17 2024 by rpki-client on console-ams.rpki-client.org