$ rpki-client -vvf rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft File: S9mZS8XP-ey2aDyU3G7s1e7uDng.mft (raw, json) Hash identifier: jAJejKa/a5HabPRHvLtN0xkCysi2AXtSNGvwm8YyDD4= Subject key identifier: BE:DD:62:FC:C8:D2:1E:F0:A8:BA:0B:A8:D9:44:12:DD:87:85:1D:0B Authority key identifier: 4B:D9:99:4B:C5:CF:F9:EC:B6:68:3C:94:DC:6E:EC:D5:EE:EE:0E:78 Certificate issuer: /CN=A91E00FC/serialNumber=4BD9994BC5CFF9ECB6683C94DC6EECD5EEEE0E78 Certificate serial: 092E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft Manifest number: 0922 Signing time: Sat 18 May 2024 21:13:36 +0000 Manifest this update: Sat 18 May 2024 21:13:35 +0000 Manifest next update: Sat 25 May 2024 21:13:35 +0000 Files and hashes: 1: S9mZS8XP-ey2aDyU3G7s1e7uDng.crl (hash: QEBzSsZW0FR5jbmK7RSE+wqFQrXCfK1nKVW5Yx1f6GA=) 2: CD26CAC0431611EE80B53A75C4F9AE02.roa (hash: PN8KDNG+lfB8OMD8c5W9WAaHU3MIVkDLw5J7GhvF+L4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.crl rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2350 (0x92e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E00FC/serialNumber=4BD9994BC5CFF9ECB6683C94DC6EECD5EEEE0E78 Validity Not Before: May 18 21:13:35 2024 GMT Not After : May 25 21:13:35 2024 GMT Subject: CN=66491a00-4f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:03:65:54:56:8d:78:de:f6:f0:1b:ba:5e:eb: e5:31:1f:37:70:cb:1e:cc:ef:b8:0c:9c:b3:55:0c: 7f:f0:6f:79:53:b4:35:ff:5c:3c:55:71:1b:08:95: d6:05:75:9b:3d:f8:75:70:4d:63:a8:e7:89:bc:6a: 60:ac:23:4b:7b:e2:ed:5b:3a:fc:66:3c:50:81:0a: 40:20:cb:58:e1:8a:5f:23:2b:21:7d:68:80:86:49: c6:ad:6e:28:11:75:97:18:c3:11:53:f0:2c:87:32: 7c:80:6c:1f:3c:0b:0f:14:dd:3e:33:91:48:23:50: 64:15:57:7d:29:07:6b:81:e4:07:a4:cc:8f:f5:90: 0f:82:79:98:1b:16:78:9a:05:57:d2:ed:98:c5:80: 27:dd:ea:03:81:f1:44:e5:a0:87:e9:1b:d4:d2:cc: 00:42:f1:15:59:76:b4:63:f2:36:86:e8:1b:c0:bf: e5:ed:b2:5e:08:4b:d7:52:35:e1:4a:10:8d:a7:89: 85:79:46:10:f7:b8:63:d3:8c:65:8a:cd:76:e1:b1: 8a:0a:f2:ec:78:d0:f0:1c:db:52:60:08:ff:c8:a4: f1:3e:76:3c:22:4a:4a:72:9c:37:98:71:d5:40:0a: 25:66:3c:c0:4c:19:1a:79:01:7c:08:a5:7d:33:83: cf:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DD:62:FC:C8:D2:1E:F0:A8:BA:0B:A8:D9:44:12:DD:87:85:1D:0B X509v3 Authority Key Identifier: keyid:4B:D9:99:4B:C5:CF:F9:EC:B6:68:3C:94:DC:6E:EC:D5:EE:EE:0E:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S9mZS8XP-ey2aDyU3G7s1e7uDng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E00FC/55F2C4C67F2F11EAADF4BF6AC4F9AE02/S9mZS8XP-ey2aDyU3G7s1e7uDng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:21:08:91:1b:ff:0d:9c:50:5a:12:77:fa:ea:fb:56:86:cb: 48:b8:ba:83:17:fa:40:fd:27:e5:54:e4:cf:d8:62:6f:eb:49: 06:f6:60:e7:34:3d:c6:58:70:a8:dc:c8:f6:37:28:fb:ea:d0: e0:28:39:7a:6e:76:35:9b:59:b9:9e:10:65:fb:92:ee:46:55: 52:1e:cf:ef:de:cc:97:bd:15:a6:ee:a2:a6:fe:35:54:7f:9a: 56:ca:e9:ed:71:e9:a2:6c:fd:d7:b4:c3:b3:bd:65:3f:18:98: 2e:8a:e6:67:7b:73:8c:c8:9a:b2:29:28:76:5f:fb:d1:b9:84: 0d:e9:ad:81:06:d1:5e:05:9d:26:5c:78:f2:33:4a:03:fa:2a: a0:e0:44:4c:b5:68:cb:7a:87:84:8e:cd:63:4e:0c:27:a5:1b: 67:ec:08:47:ae:43:81:79:a3:ca:be:90:c4:b2:5a:09:85:56: 07:33:b1:09:31:12:69:d3:14:38:f2:1f:79:b4:3d:4b:84:8e: 8c:05:4f:e7:89:73:93:8e:6c:b3:84:91:8d:ff:7a:f7:c1:1d: 88:da:62:36:3b:40:15:4e:6d:36:c1:bc:d0:f0:44:f6:28:89: fd:85:97:9f:b2:9c:20:0f:61:a0:07:53:e9:d7:ca:cf:48:47: f1:35:3e:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAwRkMxMTAvBgNVBAUTKDRCRDk5OTRCQzVDRkY5RUNCNjY4M0M5NERDNkVFQ0Q1 RUVFRTBFNzgwHhcNMjQwNTE4MjExMzM1WhcNMjQwNTI1MjExMzM1WjAYMRYwFAYD VQQDEw02NjQ5MWEwMC00ZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wNlVFaNeN728Bu6XuvlMR83cMsezO+4DJyzVQx/8G95U7Q1/1w8VXEbCJXW BXWbPfh1cE1jqOeJvGpgrCNLe+LtWzr8ZjxQgQpAIMtY4YpfIyshfWiAhknGrW4o EXWXGMMRU/AshzJ8gGwfPAsPFN0+M5FII1BkFVd9KQdrgeQHpMyP9ZAPgnmYGxZ4 mgVX0u2YxYAn3eoDgfFE5aCH6RvU0swAQvEVWXa0Y/I2hugbwL/l7bJeCEvXUjXh ShCNp4mFeUYQ97hj04xlis124bGKCvLseNDwHNtSYAj/yKTxPnY8IkpKcpw3mHHV QAolZjzATBkaeQF8CKV9M4PPRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7dYvzI 0h7wqLoLqNlEEt2HhR0LMB8GA1UdIwQYMBaAFEvZmUvFz/nstmg8lNxu7NXu7g54 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDBGQy81NUYyQzRDNjdG MkYxMUVBQURGNEJGNkFDNEY5QUUwMi9TOW1aUzhYUC1leTJhRHlVM0c3czFlN3VE bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1M5bVpTOFhQLWV5MmFEeVUzRzdzMWU3dURuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDBGQy81NUYyQzRDNjdGMkYxMUVBQURGNEJGNkFDNEY5QUUwMi9TOW1aUzhYUC1l eTJhRHlVM0c3czFlN3VEbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCIQiRG/8NnFBaEnf66vtWhstIuLqDF/pA/SflVOTP2GJv60kG9mDn ND3GWHCo3Mj2Nyj76tDgKDl6bnY1m1m5nhBl+5LuRlVSHs/v3syXvRWm7qKm/jVU f5pWyuntcemibP3XtMOzvWU/GJguiuZne3OMyJqyKSh2X/vRuYQN6a2BBtFeBZ0m XHjyM0oD+iqg4ERMtWjLeoeEjs1jTgwnpRtn7AhHrkOBeaPKvpDEsloJhVYHM7EJ MRJp0xQ48h95tD1LhI6MBU/niXOTjmyzhJGN/3r3wR2I2mI2O0AVTm02wbzQ8ET2 KIn9hZefspwgD2GgB1Pp18rPSEfxNT4A -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org