$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.mft File: 4bkQuccxDJ9lWU_G6JifyVOzblE.mft (raw, json) Hash identifier: 3jy+Pu2fGkl4FPP/i1JDaX/FMSAqTEMcm8Wb9082LRM= Subject key identifier: 3C:10:14:D0:76:C3:CE:E8:29:23:41:3C:ED:42:13:1C:C4:B0:68:55 Authority key identifier: E1:B9:10:B9:C7:31:0C:9F:65:59:4F:C6:E8:98:9F:C9:53:B3:6E:51 Certificate issuer: /CN=A9178EB0/serialNumber=E1B910B9C7310C9F65594FC6E8989FC953B36E51 Certificate serial: 03A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4bkQuccxDJ9lWU_G6JifyVOzblE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.mft Manifest number: 039D Signing time: Sat 18 May 2024 22:20:30 +0000 Manifest this update: Sat 18 May 2024 22:20:30 +0000 Manifest next update: Sat 25 May 2024 22:20:30 +0000 Files and hashes: 1: 4bkQuccxDJ9lWU_G6JifyVOzblE.crl (hash: RPIv+dRrSmKrKrzioCy+6W8ocjT+WYdiTtsWHnuMe+Y=) 2: 4B1D585250EA11EC8FF55B24C4F9AE02.roa (hash: IEUhE1XTf0f2XRHyPAZWnUUC63KDDhK05272/YbWP6U=) 3: B38D932050EF11EC8583962BC4F9AE02.roa (hash: XsFP/EIZqsxLKoLstg8u4AXQnTjEdz+H/5uv+WSPUdA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.crl rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4bkQuccxDJ9lWU_G6JifyVOzblE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EB0/serialNumber=E1B910B9C7310C9F65594FC6E8989FC953B36E51 Validity Not Before: May 18 22:20:30 2024 GMT Not After : May 25 22:20:30 2024 GMT Subject: CN=664929ae-f8ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:80:2e:96:cf:48:e5:f8:ae:49:df:3f:ae:43: 5a:a2:53:c1:39:45:b1:70:49:40:fc:73:d5:3d:c0: 74:3d:79:8d:16:fa:14:11:89:5b:1b:0e:c6:9a:32: 7c:bf:1f:db:32:6a:e7:2e:24:b5:c9:6c:c7:7f:44: 46:5a:e3:dd:5a:34:50:d4:15:79:cf:4b:cb:dc:fa: d4:d6:95:80:3a:c9:a6:63:dc:8b:fc:83:ba:83:ee: 43:f2:87:10:5a:6a:02:3c:22:be:d0:75:f1:93:da: 05:b7:9d:91:53:e8:84:c2:a1:b5:27:dd:bb:23:4d: ec:bc:e2:3e:6c:86:31:b2:6e:09:35:3e:64:3f:71: 5e:e6:8b:4c:2e:1b:dd:91:9e:fd:96:1b:8d:73:3f: 38:f5:78:38:16:84:d4:09:00:f0:ad:09:ef:5c:10: bf:21:33:6f:75:60:e5:91:d1:a1:a3:ae:f5:ec:8b: 78:75:8f:8a:ca:9c:fa:fb:75:7b:85:b7:62:6d:c6: 20:df:3a:2c:47:49:96:2c:b3:e9:e2:31:ef:3a:0c: 20:19:aa:33:53:a3:64:fc:3e:75:dd:22:34:56:e2: 9b:90:de:19:52:76:0d:56:fd:1c:e8:62:8d:40:e4: 6b:42:3b:b8:6d:4b:b3:c0:76:f8:9c:11:b5:3a:f5: 07:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:10:14:D0:76:C3:CE:E8:29:23:41:3C:ED:42:13:1C:C4:B0:68:55 X509v3 Authority Key Identifier: keyid:E1:B9:10:B9:C7:31:0C:9F:65:59:4F:C6:E8:98:9F:C9:53:B3:6E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4bkQuccxDJ9lWU_G6JifyVOzblE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EB0/E32C87CC50D511ECB3F8D529C4F9AE02/4bkQuccxDJ9lWU_G6JifyVOzblE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:14:7a:fb:46:95:61:e9:5a:6d:c9:df:7a:4b:27:cb:bb:66: 86:14:0a:44:29:85:5a:cf:62:bb:89:1c:d0:ec:04:16:d9:96: be:09:e2:0e:f6:90:bb:c6:a2:1e:7c:37:d5:0e:3c:ef:61:13: cb:83:11:b5:06:1a:aa:64:47:20:79:c4:df:47:86:10:f3:81: 37:02:5d:c9:94:46:ea:f5:70:ea:0e:f2:53:10:78:23:8e:bf: 9d:ad:5e:85:a1:dc:a2:58:45:1e:96:8f:17:00:62:93:35:75: 6a:f3:a5:80:1c:80:a0:0f:dd:bc:ef:93:b7:ea:71:3b:92:45: 6a:cf:75:21:9a:05:b9:29:e7:29:b3:6f:6f:84:32:a4:be:42: 6a:90:6c:a4:f0:3b:29:28:d7:d4:19:00:c2:18:15:0d:2e:f7: b2:28:0d:f4:3e:d0:40:34:60:96:81:89:a0:1a:c9:00:5f:55: d2:13:61:66:75:26:61:0a:3f:66:c7:43:bc:95:4b:19:1c:d7: 3e:ba:05:c6:b7:62:0b:b7:48:22:4f:d2:13:5f:d4:48:dd:f0: a3:ae:f2:d3:65:36:ed:2b:cd:82:5c:a1:98:cc:ab:2a:09:82: e7:fe:f6:bd:25:9c:4b:c3:17:4e:a0:9c:cf:a6:45:5f:3d:be: d6:5c:e9:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQjAxMTAvBgNVBAUTKEUxQjkxMEI5QzczMTBDOUY2NTU5NEZDNkU4OTg5RkM5 NTNCMzZFNTEwHhcNMjQwNTE4MjIyMDMwWhcNMjQwNTI1MjIyMDMwWjAYMRYwFAYD VQQDEw02NjQ5MjlhZS1mOGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYAuls9I5fiuSd8/rkNaolPBOUWxcElA/HPVPcB0PXmNFvoUEYlbGw7GmjJ8 vx/bMmrnLiS1yWzHf0RGWuPdWjRQ1BV5z0vL3PrU1pWAOsmmY9yL/IO6g+5D8ocQ WmoCPCK+0HXxk9oFt52RU+iEwqG1J927I03svOI+bIYxsm4JNT5kP3Fe5otMLhvd kZ79lhuNcz849Xg4FoTUCQDwrQnvXBC/ITNvdWDlkdGho6717It4dY+Kypz6+3V7 hbdibcYg3zosR0mWLLPp4jHvOgwgGaozU6Nk/D513SI0VuKbkN4ZUnYNVv0c6GKN QORrQju4bUuzwHb4nBG1OvUHkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwQFNB2 w87oKSNBPO1CExzEsGhVMB8GA1UdIwQYMBaAFOG5ELnHMQyfZVlPxuiYn8lTs25R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVCMC9FMzJDODdDQzUw RDUxMUVDQjNGOEQ1MjlDNEY5QUUwMi80YmtRdWNjeERKOWxXVV9HNkppZnlWT3pi bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRia1F1Y2N4REo5bFdVX0c2SmlmeVZPemJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVCMC9FMzJDODdDQzUwRDUxMUVDQjNGOEQ1MjlDNEY5QUUwMi80YmtRdWNjeERK OWxXVV9HNkppZnlWT3pibEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYFHr7RpVh6Vptyd96SyfLu2aGFApEKYVaz2K7iRzQ7AQW2Za+CeIO 9pC7xqIefDfVDjzvYRPLgxG1BhqqZEcgecTfR4YQ84E3Al3JlEbq9XDqDvJTEHgj jr+drV6FodyiWEUelo8XAGKTNXVq86WAHICgD92875O36nE7kkVqz3UhmgW5Kecp s29vhDKkvkJqkGyk8DspKNfUGQDCGBUNLveyKA30PtBANGCWgYmgGskAX1XSE2Fm dSZhCj9mx0O8lUsZHNc+ugXGt2ILt0giT9ITX9RI3fCjrvLTZTbtK82CXKGYzKsq CYLn/va9JZxLwxdOoJzPpkVfPb7WXOkR -----END CERTIFICATE-----Generated at Sun May 19 00:30:18 2024 by rpki-client on console-ams.rpki-client.org