$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: L7hKp3BUi8sWP6F21ai8VKXQt1x14d8G6OQ/NXxCOIs= Subject key identifier: CD:E7:82:7E:CF:4F:D3:F4:5C:D6:5A:8B:B7:62:C1:CE:F2:D9:5C:D2 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 156F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 154F Signing time: Tue 30 Apr 2024 17:30:06 +0000 Manifest this update: Tue 30 Apr 2024 17:30:05 +0000 Manifest next update: Tue 07 May 2024 17:30:05 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: 3T1wjtdToD5I0tJiFKSEOh5654mv+wI3hvFHlsGKtWI=) 2: 62AE77F649CF11EDB720FD60C4F9AE02.roa (hash: rPdePceetxct/a19Wt0pkL9R3PCdheQ+DNEGWQBnu0Y=) 3: 6009614852AF11EEBB6AA031C4F9AE02.roa (hash: RD98gTIoN2lKephseYsIZxJg0Jn1q80h8l4JjwV/wcA=) 4: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: 6zixCXvyMVByBug8l6sKgw1BS2P2Wg6RaGuldOnJ0UQ=) 5: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: t1jhjHFqwru5Gpy8gjqkI5v0BDrYWL1hn2TMHHYltLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5487 (0x156f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Apr 30 17:30:05 2024 GMT Not After : May 7 17:30:05 2024 GMT Subject: CN=66312a9d-cb77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:47:ca:31:99:3f:7f:91:b2:c7:6e:53:e6:1b: ca:0f:8d:11:3c:db:05:31:87:60:95:05:f2:b7:2c: d6:ba:21:6f:a6:f2:f2:09:a7:29:18:af:42:71:8e: ea:4f:8a:69:76:27:13:3c:9c:2c:94:21:6d:5e:23: 65:c1:d6:88:c5:8e:47:51:5f:c7:22:cf:66:c7:81: 56:43:ad:b4:37:d3:17:e8:c6:26:25:b5:db:8b:3a: 9f:09:a1:c8:be:2c:a8:3b:91:e5:2a:c6:b0:96:c4: d7:60:e6:ca:d0:62:b5:a8:8f:7f:50:fc:d4:19:1c: 6c:77:37:e4:64:62:aa:23:e0:97:d0:09:fa:b9:15: 6d:34:f5:73:0b:93:03:c5:e9:9c:1b:81:90:22:37: 3b:53:f8:60:2b:65:2b:06:15:df:fd:c8:d1:66:c6: d6:f3:54:a8:7c:e7:08:22:31:5b:7c:e2:72:62:77: 09:fb:a8:1a:21:4b:03:df:c1:de:79:15:13:62:f4: 44:44:dc:67:c7:75:d0:3b:12:c3:8b:c5:ed:3e:30: 41:60:49:d2:b2:8e:9f:2a:ad:a2:8a:1e:1a:41:ad: c5:be:4e:cd:ac:73:3d:ba:2e:04:22:26:a4:13:72: f7:9c:f9:f3:f9:e5:66:2f:3b:ee:77:0b:05:53:bf: ee:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E7:82:7E:CF:4F:D3:F4:5C:D6:5A:8B:B7:62:C1:CE:F2:D9:5C:D2 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:37:b1:75:4a:5d:f4:3c:e0:c5:18:d8:4c:cd:4a:6c:76:c2: 1f:b6:d3:34:a2:58:4e:cf:66:2c:cc:0c:92:7b:39:b7:04:6c: 47:94:95:80:8c:bc:f6:b4:19:da:2f:f3:ad:3b:03:8c:78:31: 4e:14:af:6e:76:1b:2c:45:48:3e:93:4d:79:18:45:df:1a:71: a3:ae:34:4a:4c:46:4a:c7:88:0a:82:3b:88:47:ef:9f:2d:30: 91:fd:35:d1:fc:db:c5:97:12:a1:af:b7:44:6f:ae:ab:89:8c: 53:e6:d6:1f:18:40:f5:23:8b:a9:c4:00:84:95:42:dc:41:1a: 1a:43:db:7f:ab:8a:42:92:30:00:f6:99:e1:34:a6:ef:d4:d0: d1:58:55:1b:44:da:c1:38:d8:97:92:29:0f:ae:b5:9a:11:b4: 45:2c:44:a5:d9:fb:67:c5:72:72:4c:02:87:a0:a3:4d:95:37: 82:af:5d:f1:cd:47:17:d1:30:15:95:96:c1:b0:ac:01:ab:c6: d3:0c:bd:3e:f5:e5:30:6b:4e:8d:a3:dc:69:a3:3b:2b:a9:50: 41:23:48:f8:9c:7e:07:dd:70:e9:63:73:36:62:47:92:46:70: d5:7e:04:eb:8d:43:4b:db:e0:10:10:3e:e0:46:33:92:b5:85: e1:d8:73:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjQwNDMwMTczMDA1WhcNMjQwNTA3MTczMDA1WjAYMRYwFAYD VQQDEw02NjMxMmE5ZC1jYjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUfKMZk/f5Gyx25T5hvKD40RPNsFMYdglQXytyzWuiFvpvLyCacpGK9CcY7q T4ppdicTPJwslCFtXiNlwdaIxY5HUV/HIs9mx4FWQ620N9MX6MYmJbXbizqfCaHI viyoO5HlKsawlsTXYObK0GK1qI9/UPzUGRxsdzfkZGKqI+CX0An6uRVtNPVzC5MD xemcG4GQIjc7U/hgK2UrBhXf/cjRZsbW81SofOcIIjFbfOJyYncJ+6gaIUsD38He eRUTYvRERNxnx3XQOxLDi8XtPjBBYEnSso6fKq2iih4aQa3Fvk7NrHM9ui4EIiak E3L3nPnz+eVmLzvudwsFU7/uwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3ngn7P T9P0XNZai7diwc7y2VzSMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPN7F1Sl30PODFGNhMzUpsdsIfttM0olhOz2YszAySezm3BGxHlJWA jLz2tBnaL/OtOwOMeDFOFK9udhssRUg+k015GEXfGnGjrjRKTEZKx4gKgjuIR++f LTCR/TXR/NvFlxKhr7dEb66riYxT5tYfGED1I4upxACElULcQRoaQ9t/q4pCkjAA 9pnhNKbv1NDRWFUbRNrBONiXkikPrrWaEbRFLESl2ftnxXJyTAKHoKNNlTeCr13x zUcX0TAVlZbBsKwBq8bTDL0+9eUwa06No9xpozsrqVBBI0j4nH4H3XDpY3M2YkeS RnDVfgTrjUNL2+AQED7gRjOStYXh2HO4 -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:28 2024 by rpki-client on console-ams.rpki-client.org