$ rpki-client -vvf rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft File: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft (raw, json) Hash identifier: 7+651SWFNpwVuXSCpepXFMSl4+Q3nsMTUztSCvHlLGI= Subject key identifier: 98:3F:34:19:CA:F4:41:31:F6:0C:91:F9:AE:06:CF:23:72:67:E2:95 Authority key identifier: F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C Certificate issuer: /CN=A917B12B/serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Certificate serial: 26AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft Manifest number: 2687 Signing time: Sat 18 May 2024 15:57:15 +0000 Manifest this update: Sat 18 May 2024 15:57:15 +0000 Manifest next update: Sat 25 May 2024 15:57:15 +0000 Files and hashes: 1: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl (hash: AMKx3WSiq8lR90bSTIsfly7fIPbwfH9D0/LM679/AJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9903 (0x26af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B12B/serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Validity Not Before: May 18 15:57:15 2024 GMT Not After : May 25 15:57:15 2024 GMT Subject: CN=6648cfdb-81e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e6:f5:b8:0c:7d:c4:82:30:a6:1b:76:d4:1d: 82:5b:b0:40:6f:dc:87:2a:0f:cf:a8:8f:7f:09:89: 64:24:27:ce:5c:b7:7f:7f:2b:32:b2:9d:6e:a3:7a: 42:88:e1:00:2b:47:27:b2:c5:f7:0a:33:df:68:f2: 8c:f4:ca:bf:c7:df:c9:35:fc:71:05:ef:31:57:3c: ab:3e:46:c3:38:06:86:dd:0a:d6:f2:63:98:cd:1b: a5:e3:ae:68:24:be:f3:6e:4c:b3:04:1b:28:fb:45: 79:79:cb:6b:41:b8:4e:e0:37:d1:bd:d1:a1:62:ca: e2:ea:11:b4:f1:e9:41:df:c4:39:d1:cf:76:90:68: 4c:74:fd:7b:4a:90:39:82:0f:a0:81:e7:36:1c:ef: be:21:88:b5:cf:de:31:8a:97:b2:20:18:31:f1:63: 9b:55:1d:1b:56:1a:a6:23:c2:4f:27:85:84:6f:c3: 66:be:9c:35:18:ed:4d:18:2a:97:f8:4f:0e:36:2e: 7e:0e:b9:1a:8e:a7:74:07:a5:9f:80:6f:d0:6a:a4: e3:0e:c7:db:ec:dc:33:20:e2:15:fa:d4:00:d1:ff: 2f:b1:49:17:ee:bc:4d:24:0a:c0:a5:1d:4c:73:6c: 99:c0:cf:4f:23:eb:06:88:d5:ab:56:44:ed:db:56: 97:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:3F:34:19:CA:F4:41:31:F6:0C:91:F9:AE:06:CF:23:72:67:E2:95 X509v3 Authority Key Identifier: keyid:F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:a3:b0:e5:17:af:ad:30:eb:7f:fb:10:f5:b9:a9:b3:47:74: a5:e7:04:b5:26:9b:4a:c1:a2:d6:ed:80:70:f1:86:11:de:25: c9:4f:30:58:03:55:72:0a:3e:04:fc:52:29:0b:20:bd:39:92: f2:ce:f9:17:71:96:c6:5a:b9:9b:97:96:24:83:24:55:e3:62: 0d:c5:b8:ca:b0:32:95:d3:50:80:a2:f0:cf:54:86:31:18:33: a4:6c:53:6a:1b:f9:59:66:9a:be:93:f4:e5:c9:61:50:1c:50: d6:2c:34:fe:72:60:01:8c:b5:9c:a8:ac:40:07:2e:e5:54:70: 34:3f:70:0f:f1:4e:28:cf:42:be:28:62:d5:e7:9a:5f:82:52: 6d:a1:bb:b8:9c:e9:5c:72:75:32:a1:ad:be:a8:d6:c6:7e:92: d3:66:62:6a:92:9d:fa:24:51:19:6a:fd:ba:d6:c3:d8:b3:7c: 97:e5:55:e8:a3:2e:b5:fa:de:9a:ae:07:75:8f:19:50:73:d8: a5:73:a6:5c:cd:af:59:64:5f:92:c2:6b:0e:e8:e6:e7:7b:13: 2e:af:4e:be:fb:af:07:2a:f1:b4:53:3a:7e:4b:82:31:64:1a: 24:98:e4:1f:35:27:43:b5:a5:ec:3f:4a:32:3e:64:f9:5a:9f: d0:d9:6b:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxMkIxMTAvBgNVBAUTKEYyNjkyMzQ1M0YwMTcwMzA5RkQ1OEJGM0IwQjVEQ0U0 M0ZGOUI0MUMwHhcNMjQwNTE4MTU1NzE1WhcNMjQwNTI1MTU1NzE1WjAYMRYwFAYD VQQDEw02NjQ4Y2ZkYi04MWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveb1uAx9xIIwpht21B2CW7BAb9yHKg/PqI9/CYlkJCfOXLd/fysysp1uo3pC iOEAK0cnssX3CjPfaPKM9Mq/x9/JNfxxBe8xVzyrPkbDOAaG3QrW8mOYzRul465o JL7zbkyzBBso+0V5ectrQbhO4DfRvdGhYsri6hG08elB38Q50c92kGhMdP17SpA5 gg+ggec2HO++IYi1z94xipeyIBgx8WObVR0bVhqmI8JPJ4WEb8Nmvpw1GO1NGCqX +E8ONi5+Drkajqd0B6WfgG/QaqTjDsfb7NwzIOIV+tQA0f8vsUkX7rxNJArApR1M c2yZwM9PI+sGiNWrVkTt21aXGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJg/NBnK 9EEx9gyR+a4GzyNyZ+KVMB8GA1UdIwQYMBaAFPJpI0U/AXAwn9WL87C13OQ/+bQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjEyQi9BNTA5RUMxRUJE OUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNEQ2YxWXZ6c0xYYzVEXzV0 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhta2pSVDhCY0RDZjFZdnpzTFhjNURfNXRCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjEyQi9BNTA5RUMxRUJEOUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNE Q2YxWXZ6c0xYYzVEXzV0QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5o7DlF6+tMOt/+xD1uamzR3Sl5wS1JptKwaLW7YBw8YYR3iXJTzBY A1VyCj4E/FIpCyC9OZLyzvkXcZbGWrmbl5YkgyRV42INxbjKsDKV01CAovDPVIYx GDOkbFNqG/lZZpq+k/TlyWFQHFDWLDT+cmABjLWcqKxABy7lVHA0P3AP8U4oz0K+ KGLV55pfglJtobu4nOlccnUyoa2+qNbGfpLTZmJqkp36JFEZav261sPYs3yX5VXo oy61+t6argd1jxlQc9ilc6Zcza9ZZF+SwmsO6ObnexMur06++68HKvG0Uzp+S4Ix ZBokmOQfNSdDtaXsP0oyPmT5Wp/Q2Wvo -----END CERTIFICATE-----Generated at Sat May 18 17:20:07 2024 by rpki-client on console-ams.rpki-client.org