$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft File: svBcLOw1UNLTyetRODn0egAqhy4.mft (raw, json) Hash identifier: NK2KEIvoMRg7qO/BObkX8vuwLZdotwnW8Mfdh+dOiBg= Subject key identifier: 1B:1F:6E:54:19:C2:D0:3E:BE:68:99:46:BA:BC:2A:84:AD:36:F0:3C Authority key identifier: B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E Certificate issuer: /CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft Manifest number: 02F1 Signing time: Sun 19 May 2024 03:16:15 +0000 Manifest this update: Sun 19 May 2024 03:16:14 +0000 Manifest next update: Sun 26 May 2024 03:16:14 +0000 Files and hashes: 1: svBcLOw1UNLTyetRODn0egAqhy4.crl (hash: fmZp3Bf/6uilO3DUDDc4lenvHxiEcHAPYHVHVMp29ls=) 2: D118AD20820911EDAC2FD360C4F9AE02.roa (hash: ixpGpZxeJE6MjqJE4TZF5F7RqpJksuo4R/FnZcP/pPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Validity Not Before: May 19 03:16:14 2024 GMT Not After : May 26 03:16:14 2024 GMT Subject: CN=66496efe-8199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7c:73:0e:22:80:97:71:93:df:d6:02:ae:9e: 3b:6a:c2:af:60:bd:eb:9d:6d:f2:c1:16:2e:dc:ee: c3:69:9f:63:4c:3e:ba:67:f6:41:9c:c5:e3:44:cf: e5:08:6d:85:76:04:3b:6f:a2:9e:73:ee:d8:c5:cf: 11:da:9b:3f:08:ff:b1:11:64:4b:7c:18:f0:3a:90: 81:80:d2:4a:0d:b4:01:7e:c4:12:1a:44:54:e0:c8: ef:6b:57:16:c4:c1:0f:de:43:3a:94:39:59:ff:eb: b3:71:c6:88:13:27:9b:34:d0:56:2c:af:13:a6:8c: 64:3c:ff:36:fb:44:14:ae:a2:a5:8f:8d:97:0f:ef: a8:46:36:fd:7b:7f:df:f1:f5:e6:a9:0c:21:40:0a: 05:db:53:8f:d9:92:74:46:39:5e:ab:1e:8d:29:12: 3f:7c:66:2f:30:2f:20:19:da:63:37:97:c3:3c:61: 2d:0f:ec:44:2c:b6:6c:fd:79:bc:8f:f9:d5:9f:d5: e7:3c:cd:77:81:80:99:c5:ec:10:b2:1d:0a:49:9c: a3:31:28:66:e4:94:8b:b5:d3:66:54:74:78:b8:05: 9e:33:5e:64:c3:b6:8f:db:f3:35:fc:6e:d8:61:27: c6:52:d6:c6:0e:02:cf:7d:63:9f:ee:89:33:e0:60: 78:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:1F:6E:54:19:C2:D0:3E:BE:68:99:46:BA:BC:2A:84:AD:36:F0:3C X509v3 Authority Key Identifier: keyid:B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:5e:dd:6e:c3:60:9f:32:a5:87:55:cf:75:20:0d:f2:81:a0: 0f:fa:89:da:56:bd:7b:bd:14:7b:43:ba:da:1e:30:dd:44:86: 69:79:95:7d:f4:05:44:f7:10:7c:26:0c:3e:26:0a:b5:bb:50: 53:a1:0c:33:dc:f2:27:a3:ad:d6:4f:06:57:6b:cb:51:c8:2d: 44:9b:e4:c1:ba:59:05:4d:49:13:9b:cf:6f:32:9d:0d:cc:05: 7b:d0:ed:47:40:8b:7c:88:eb:ac:46:7e:42:89:06:38:6b:36: 6d:9a:cd:4b:47:60:56:bf:7e:e9:76:f9:47:f4:e6:a1:53:11: f6:38:7c:5f:3e:12:69:49:b9:ed:2b:17:fc:23:88:c9:fa:ab: c3:9b:fe:d2:00:04:9f:0b:42:94:59:c0:41:f8:59:97:18:0d: ef:50:a9:6e:51:3e:17:f7:b1:10:c4:7a:4f:8f:26:9a:91:b1: a3:fd:1a:76:ca:d6:f4:37:44:08:30:7c:4d:17:7e:24:34:6e: 3a:fd:ea:41:59:0d:6f:c1:c3:fd:a3:5b:d4:38:84:fd:7d:e6: 4e:73:d5:6a:02:b3:2b:07:60:9e:40:a6:b8:ea:e3:fc:8f:77: 80:3c:01:8f:38:49:06:db:16:2b:0d:09:45:04:3c:f0:76:4e: ab:b9:3a:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEODgxMTAvBgNVBAUTKEIyRjA1QzJDRUMzNTUwRDJEM0M5RUI1MTM4MzlGNDdB MDAyQTg3MkUwHhcNMjQwNTE5MDMxNjE0WhcNMjQwNTI2MDMxNjE0WjAYMRYwFAYD VQQDEw02NjQ5NmVmZS04MTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HxzDiKAl3GT39YCrp47asKvYL3rnW3ywRYu3O7DaZ9jTD66Z/ZBnMXjRM/l CG2FdgQ7b6Kec+7Yxc8R2ps/CP+xEWRLfBjwOpCBgNJKDbQBfsQSGkRU4Mjva1cW xMEP3kM6lDlZ/+uzccaIEyebNNBWLK8TpoxkPP82+0QUrqKlj42XD++oRjb9e3/f 8fXmqQwhQAoF21OP2ZJ0Rjleqx6NKRI/fGYvMC8gGdpjN5fDPGEtD+xELLZs/Xm8 j/nVn9XnPM13gYCZxewQsh0KSZyjMShm5JSLtdNmVHR4uAWeM15kw7aP2/M1/G7Y YSfGUtbGDgLPfWOf7okz4GB4SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsfblQZ wtA+vmiZRrq8KoStNvA8MB8GA1UdIwQYMBaAFLLwXCzsNVDS08nrUTg59HoAKocu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ4OC9GMUI3RUFCQTkz QUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVOTFR5ZXRST0RuMGVnQXFo eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2QmNMT3cxVU5MVHlldFJPRG4wZWdBcWh5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ4OC9GMUI3RUFCQTkzQUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVO TFR5ZXRST0RuMGVnQXFoeTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEXt1uw2CfMqWHVc91IA3ygaAP+onaVr17vRR7Q7raHjDdRIZpeZV9 9AVE9xB8Jgw+Jgq1u1BToQwz3PIno63WTwZXa8tRyC1Em+TBulkFTUkTm89vMp0N zAV70O1HQIt8iOusRn5CiQY4azZtms1LR2BWv37pdvlH9OahUxH2OHxfPhJpSbnt Kxf8I4jJ+qvDm/7SAASfC0KUWcBB+FmXGA3vUKluUT4X97EQxHpPjyaakbGj/Rp2 ytb0N0QIMHxNF34kNG46/epBWQ1vwcP9o1vUOIT9feZOc9VqArMrB2CeQKa46uP8 j3eAPAGPOEkG2xYrDQlFBDzwdk6ruTpo -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org