$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: MUEK92zL9tHob6AqU5j9jopH/8013ZD6weM6MkZopwY= Subject key identifier: 55:28:CF:4D:61:6F:A7:87:12:A1:2B:20:CF:EB:A9:A6:0B:5A:F3:9A Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0112 Signing time: Sun 19 May 2024 05:26:44 +0000 Manifest this update: Sun 19 May 2024 05:26:43 +0000 Manifest next update: Sun 26 May 2024 05:26:43 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: 0GslAG4q+3WHbN9tLqzTcVCkjmyTqTuroAYTB90Z1Lg=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: NRQXP8/Yyxz2onFKhHMZs9OvKvOabIesSucdhpClwHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: May 19 05:26:43 2024 GMT Not After : May 26 05:26:43 2024 GMT Subject: CN=66498d94-8e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d9:86:a4:69:9a:d1:ba:01:bc:0f:95:f5:82: e0:72:cd:36:91:07:0b:14:6f:63:e0:75:20:fd:19: 43:82:ff:d3:4d:30:94:2c:16:2e:f5:8d:d1:ce:81: e8:02:cd:c6:57:ea:b9:45:88:ee:c3:93:6f:43:6f: 73:d4:12:97:bc:61:3e:17:c2:14:d0:fe:04:b2:d2: 22:6c:52:6b:97:2c:ff:d2:a1:eb:62:58:89:cc:d7: a9:ee:9f:40:d2:84:4d:63:ad:1c:74:b6:11:61:9b: 51:da:92:0d:35:6f:25:02:30:c1:bc:e5:0c:ae:66: fa:af:82:08:c5:fd:30:fb:70:ef:d1:dd:03:42:89: 80:8b:47:ca:96:98:ad:ae:34:7d:19:23:17:1b:27: d1:81:d2:db:40:e4:30:24:e9:53:fe:a3:70:f2:4e: 78:73:fa:2a:91:b4:56:73:7e:3f:07:e8:7d:f7:4e: 30:3a:ac:a6:a6:89:b9:7e:29:5b:93:ac:52:60:7e: 0f:d2:90:2a:7d:9b:78:06:fa:d1:bc:50:bf:97:04: 34:9e:ee:e7:8e:db:b1:36:2f:91:6d:3d:90:07:75: 9e:57:9b:54:a7:4c:b6:e4:fe:65:18:54:c0:4a:93: 0c:81:77:f2:ff:be:58:e5:08:57:0b:f8:b3:cd:38: 9f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:28:CF:4D:61:6F:A7:87:12:A1:2B:20:CF:EB:A9:A6:0B:5A:F3:9A X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:44:a1:18:42:96:10:09:e0:87:8b:fa:02:f4:6d:a1:c5:25: a6:6c:1d:ec:02:61:72:3f:41:fc:d8:82:4d:53:c0:ff:16:9a: c0:d8:8b:b7:fb:71:e2:3f:e0:d6:7e:33:fb:af:0a:1d:80:45: a3:1d:72:5e:77:48:0e:ef:88:2b:72:6a:c7:f1:a4:78:e7:17: 17:85:ca:b5:68:ea:ae:3e:4c:de:a8:04:0f:2c:fb:a6:e8:af: 7b:f5:37:58:ff:ed:a0:5e:bc:ed:e1:1c:60:c7:67:d9:eb:11: 0e:b6:a3:5b:78:88:a6:62:f5:14:ad:d8:16:4b:86:a5:5d:d7: df:2d:3c:22:ba:2a:25:42:13:93:47:f4:79:29:2a:7e:39:90: 46:9e:df:ee:f2:99:67:28:31:b7:ed:93:db:32:88:62:3c:35: 24:2f:14:cb:52:39:37:ad:02:56:87:f3:a6:ca:93:ef:b6:12: 1e:99:0e:af:2c:95:c7:14:0d:11:2c:1d:14:70:73:b7:bf:4e: 82:e4:08:5d:12:28:86:f1:fc:db:3a:fe:00:a3:6f:dd:64:21: 53:b2:08:30:e6:50:11:54:b7:d8:a1:4a:ad:15:30:75:fe:db: a4:2a:9c:61:17:92:1a:26:05:2e:cb:15:d9:61:c7:3f:e0:6a: f6:15:86:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjQwNTE5MDUyNjQzWhcNMjQwNTI2MDUyNjQzWjAYMRYwFAYD VQQDEw02NjQ5OGQ5NC04ZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNmGpGma0boBvA+V9YLgcs02kQcLFG9j4HUg/RlDgv/TTTCULBYu9Y3RzoHo As3GV+q5RYjuw5NvQ29z1BKXvGE+F8IU0P4EstIibFJrlyz/0qHrYliJzNep7p9A 0oRNY60cdLYRYZtR2pINNW8lAjDBvOUMrmb6r4IIxf0w+3Dv0d0DQomAi0fKlpit rjR9GSMXGyfRgdLbQOQwJOlT/qNw8k54c/oqkbRWc34/B+h9904wOqympom5filb k6xSYH4P0pAqfZt4BvrRvFC/lwQ0nu7njtuxNi+RbT2QB3WeV5tUp0y25P5lGFTA SpMMgXfy/75Y5QhXC/izzTifIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUoz01h b6eHEqErIM/rqaYLWvOaMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApRKEYQpYQCeCHi/oC9G2hxSWmbB3sAmFyP0H82IJNU8D/FprA2Iu3 +3HiP+DWfjP7rwodgEWjHXJed0gO74grcmrH8aR45xcXhcq1aOquPkzeqAQPLPum 6K979TdY/+2gXrzt4Rxgx2fZ6xEOtqNbeIimYvUUrdgWS4alXdffLTwiuiolQhOT R/R5KSp+OZBGnt/u8plnKDG37ZPbMohiPDUkLxTLUjk3rQJWh/OmypPvthIemQ6v LJXHFA0RLB0UcHO3v06C5AhdEiiG8fzbOv4Ao2/dZCFTsggw5lARVLfYoUqtFTB1 /tukKpxhF5IaJgUuyxXZYcc/4Gr2FYbh -----END CERTIFICATE-----Generated at Sun May 19 06:14:35 2024 by rpki-client on console-ams.rpki-client.org