$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: hAF2z+JRHT/ugQjiWZrNTwNn7znhSbF0fz/fSX6kTMY= Subject key identifier: D8:97:7C:7C:AB:3A:87:BB:50:A1:F7:E8:ED:F7:09:84:E4:B2:13:11 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0B8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0B82 Signing time: Sat 18 May 2024 19:28:06 +0000 Manifest this update: Sat 18 May 2024 19:28:05 +0000 Manifest next update: Sat 25 May 2024 19:28:05 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: 6RQl8+KoDgNrQ3BjCrvQpTZawOjxHRmLU85u0Nuj18w=) 2: A473C9A008F311EE98719810C4F9AE02.roa (hash: XJVLx8NnT51CedP11E2S/7EWqPqU5YY70j5sKBFjL+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: May 18 19:28:05 2024 GMT Not After : May 25 19:28:05 2024 GMT Subject: CN=66490145-08f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0f:95:02:b7:4b:f0:a4:04:d5:39:70:e8:b0: 1a:32:43:93:d6:f3:29:98:1d:22:43:b9:d7:28:0d: 72:e6:a2:a9:f1:08:93:a2:11:fb:29:31:99:d1:98: f1:7c:50:a8:ef:36:e3:bc:6b:c9:e7:ee:ac:1a:8c: b1:d2:1b:8a:b6:6d:f7:92:78:50:b6:da:b6:95:36: cb:ed:93:2b:56:9e:14:07:e4:38:ec:f8:c2:97:8d: 2a:e8:7b:a0:8a:6f:b0:f7:87:73:c4:3c:70:84:10: 26:46:49:e6:26:2d:65:c7:88:bf:ce:23:1b:0e:c9: fe:6b:67:68:36:5f:26:be:88:b2:80:c4:2a:ce:96: 0f:52:46:10:d4:ea:c5:92:db:ea:92:6d:f8:4a:19: b0:77:5f:4d:6c:d4:d2:13:3d:0d:01:02:0c:9d:27: b9:8a:c2:b5:54:a7:19:4b:88:49:72:d0:03:f2:9c: a1:87:51:3c:97:f6:f5:a1:86:fd:11:2c:08:b4:0d: 49:11:cc:aa:7b:a4:15:e5:fa:7f:1a:6c:87:06:20: 4a:aa:1b:d5:f0:d5:d6:c0:7d:63:68:d1:1d:e0:2d: a3:f5:9e:ae:33:13:9f:26:7c:d9:b6:ac:98:43:28: 6f:ea:9b:f3:22:8c:17:85:1e:bf:af:bb:d0:2f:e7: 8f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:97:7C:7C:AB:3A:87:BB:50:A1:F7:E8:ED:F7:09:84:E4:B2:13:11 X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:d5:2f:bb:17:d5:d8:15:8d:9d:e1:a1:10:18:ad:fa:40:e1: 7c:88:d3:59:c0:6b:4b:96:eb:88:0a:eb:46:63:3b:4f:fb:8d: 09:3c:0a:bf:4f:7c:38:3d:31:28:fe:df:71:a5:3c:14:84:4e: 71:a3:d3:f2:1f:62:d2:3a:00:ed:08:4f:92:72:c1:c2:da:16: 94:e7:97:02:72:64:4c:b4:2b:e3:22:64:43:39:e4:77:37:61: 2d:f8:7a:7a:6d:57:1f:fa:d0:62:28:5f:d5:2f:08:1c:12:e6: 36:af:74:d5:4a:7e:59:51:09:bf:1f:ed:3a:a7:62:b0:34:1a: bf:7d:b8:2d:c8:7b:53:1a:91:b1:0b:69:86:ad:6c:25:93:b1: 9b:a5:87:11:6d:01:92:b6:8c:92:32:5c:fc:ca:eb:5d:bb:89: a2:0b:48:2d:5e:5b:c2:8c:bc:87:b3:11:f8:4f:13:98:d5:ba: 1a:9e:9f:8b:a5:c3:9f:c5:ee:e0:f7:b1:c0:7c:14:82:17:38: ee:f0:c0:27:5f:4e:bc:38:0f:d3:c3:ac:ce:fa:9e:58:07:99: e3:a7:ed:81:6f:b2:b1:2e:46:4a:d7:c4:f5:91:98:77:fa:24: 60:f3:1c:c7:1c:57:2b:33:6b:af:db:d3:3b:9f:3d:05:f1:f0: 09:56:59:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjQwNTE4MTkyODA1WhcNMjQwNTI1MTkyODA1WjAYMRYwFAYD VQQDEw02NjQ5MDE0NS0wOGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApA+VArdL8KQE1Tlw6LAaMkOT1vMpmB0iQ7nXKA1y5qKp8QiTohH7KTGZ0Zjx fFCo7zbjvGvJ5+6sGoyx0huKtm33knhQttq2lTbL7ZMrVp4UB+Q47PjCl40q6Hug im+w94dzxDxwhBAmRknmJi1lx4i/ziMbDsn+a2doNl8mvoiygMQqzpYPUkYQ1OrF ktvqkm34Shmwd19NbNTSEz0NAQIMnSe5isK1VKcZS4hJctAD8pyhh1E8l/b1oYb9 ESwItA1JEcyqe6QV5fp/GmyHBiBKqhvV8NXWwH1jaNEd4C2j9Z6uMxOfJnzZtqyY Qyhv6pvzIowXhR6/r7vQL+ePXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiXfHyr Ooe7UKH36O33CYTkshMRMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT1S+7F9XYFY2d4aEQGK36QOF8iNNZwGtLluuICutGYztP+40JPAq/ T3w4PTEo/t9xpTwUhE5xo9PyH2LSOgDtCE+ScsHC2haU55cCcmRMtCvjImRDOeR3 N2Et+Hp6bVcf+tBiKF/VLwgcEuY2r3TVSn5ZUQm/H+06p2KwNBq/fbgtyHtTGpGx C2mGrWwlk7GbpYcRbQGStoySMlz8yutdu4miC0gtXlvCjLyHsxH4TxOY1boanp+L pcOfxe7g97HAfBSCFzju8MAnX068OA/Tw6zO+p5YB5njp+2Bb7KxLkZK18T1kZh3 +iRg8xzHHFcrM2uv29M7nz0F8fAJVlky -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org