$ rpki-client -vvf rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft File: g7x91dFCfoM0DS32wztiPUPX7KQ.mft (raw, json) Hash identifier: 6mzC9B8yLumMD4ZGap/Jmozo7zSXnM2GzGcYsTAV1E0= Subject key identifier: 94:2F:91:94:F7:12:E8:EB:73:66:5F:92:BE:FB:64:E1:61:50:04:A0 Authority key identifier: 83:BC:7D:D5:D1:42:7E:83:34:0D:2D:F6:C3:3B:62:3D:43:D7:EC:A4 Certificate issuer: /CN=A911B468/serialNumber=83BC7DD5D1427E83340D2DF6C33B623D43D7ECA4 Certificate serial: 0DD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft Manifest number: 0DC9 Signing time: Fri 26 Apr 2024 18:29:45 +0000 Manifest this update: Fri 26 Apr 2024 18:29:45 +0000 Manifest next update: Fri 03 May 2024 18:29:45 +0000 Files and hashes: 1: g7x91dFCfoM0DS32wztiPUPX7KQ.crl (hash: 8O7TwvE3jUJxF4LQlBxpK4s+aRtekRq67wdWb1FrBE4=) 2: E1769D329EF711EABE23195AC4F9AE02.roa (hash: mFLSduXVt+Cg8oOMmJS9llC9LQD3WPgUnGy/oB2O8sY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.crl rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 18:29:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3539 (0xdd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B468/serialNumber=83BC7DD5D1427E83340D2DF6C33B623D43D7ECA4 Validity Not Before: Apr 26 18:29:45 2024 GMT Not After : May 3 18:29:45 2024 GMT Subject: CN=662bf299-4a37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b2:4f:ca:17:18:71:d2:9e:eb:7e:f2:9c:9b: b2:3b:7c:6d:29:2a:93:73:76:02:0b:14:41:89:bb: 4f:51:90:67:ad:b7:9c:fc:4e:77:4b:31:c3:1f:74: 97:06:b8:1f:8e:eb:7c:60:0c:82:0f:d0:f3:c6:2a: 8f:74:8f:0b:bf:ca:ae:52:9c:c2:15:03:2b:7e:42: 6d:11:16:40:68:fc:a7:62:2a:80:ca:45:03:9c:e8: c9:94:67:a0:4a:b7:b7:e9:ff:47:b1:5e:43:eb:4d: aa:73:4a:58:e6:95:ad:8d:49:f8:6b:a7:17:fb:be: 4a:a4:df:c2:05:fe:f0:79:59:c5:c9:00:cd:90:bd: 17:ff:98:6a:9b:c8:03:3b:88:fe:87:31:86:0a:0c: 49:1c:bc:85:88:d0:2a:4e:4b:75:89:86:95:93:04: f9:6c:15:c5:0f:7a:a3:5d:48:5a:96:8f:66:38:7a: 41:d7:55:8d:8a:84:83:8e:b7:e1:93:30:5d:45:7f: d1:e8:91:57:8e:b7:09:dc:9a:d6:5f:f7:7b:15:bd: 2f:75:d2:a9:57:2a:42:6a:59:72:0d:70:38:a2:46: 34:62:bf:b6:27:90:69:9c:da:90:6a:e3:2a:e3:c2: 30:9a:23:5b:d9:82:d6:be:f8:62:3a:7c:65:08:2a: 3a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:2F:91:94:F7:12:E8:EB:73:66:5F:92:BE:FB:64:E1:61:50:04:A0 X509v3 Authority Key Identifier: keyid:83:BC:7D:D5:D1:42:7E:83:34:0D:2D:F6:C3:3B:62:3D:43:D7:EC:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:8a:2d:1a:8b:93:83:c6:99:e7:82:4e:09:12:7a:45:74:30: 6f:c6:9b:3c:27:b3:55:f6:6b:7d:0a:1d:4a:8c:e0:4f:c7:09: bb:d3:c3:84:57:57:79:d8:d8:e2:bf:2a:ae:25:bd:f5:f9:5c: a4:04:bb:15:ff:c3:e7:be:8b:ac:3d:e9:9c:7b:6b:43:3c:f9: c4:4e:50:db:e4:c4:d7:01:50:fb:34:97:bc:1d:e0:e1:47:ca: 4e:ba:d3:2c:22:c7:d4:db:7e:4f:df:9d:99:58:31:22:5a:21: 86:c3:bb:98:33:99:9d:fd:c3:5e:d8:0f:5f:59:a0:af:0f:1d: f1:93:1d:b1:c4:61:e2:e3:10:fd:78:d7:02:fa:f0:54:82:2e: cd:4e:b9:8c:05:b3:70:f9:a6:03:9f:5b:58:ef:2c:af:ba:5a: c7:89:8e:f4:af:bc:3d:57:ad:fb:33:9c:0f:c3:ee:23:58:59: 26:04:9e:72:ce:7b:7b:a6:76:d0:83:d5:a3:6a:8e:cb:2e:5e: b6:70:ae:37:38:aa:f6:3d:4d:e8:6c:89:cc:a5:4c:f8:6a:fb: 57:11:b2:d2:b7:81:1d:08:a0:56:33:5a:d9:a6:c5:85:9e:e6: 67:53:ee:1f:75:69:98:56:37:b5:52:71:1a:77:c2:4a:84:85: de:c7:7f:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0NjgxMTAvBgNVBAUTKDgzQkM3REQ1RDE0MjdFODMzNDBEMkRGNkMzM0I2MjNE NDNEN0VDQTQwHhcNMjQwNDI2MTgyOTQ1WhcNMjQwNTAzMTgyOTQ1WjAYMRYwFAYD VQQDEw02NjJiZjI5OS00YTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+rJPyhcYcdKe637ynJuyO3xtKSqTc3YCCxRBibtPUZBnrbec/E53SzHDH3SX Brgfjut8YAyCD9DzxiqPdI8Lv8quUpzCFQMrfkJtERZAaPynYiqAykUDnOjJlGeg Sre36f9HsV5D602qc0pY5pWtjUn4a6cX+75KpN/CBf7weVnFyQDNkL0X/5hqm8gD O4j+hzGGCgxJHLyFiNAqTkt1iYaVkwT5bBXFD3qjXUhalo9mOHpB11WNioSDjrfh kzBdRX/R6JFXjrcJ3JrWX/d7Fb0vddKpVypCallyDXA4okY0Yr+2J5BpnNqQauMq 48IwmiNb2YLWvvhiOnxlCCo6sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQvkZT3 Eujrc2Zfkr77ZOFhUASgMB8GA1UdIwQYMBaAFIO8fdXRQn6DNA0t9sM7Yj1D1+yk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQ2OC84MTIyNjAyODkx MUIxMUU5OTMwMEZFNTdDNEY5QUUwMi9nN3g5MWRGQ2ZvTTBEUzMyd3p0aVBVUFg3 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3eDkxZEZDZm9NMERTMzJ3enRpUFVQWDdLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjQ2OC84MTIyNjAyODkxMUIxMUU5OTMwMEZFNTdDNEY5QUUwMi9nN3g5MWRGQ2Zv TTBEUzMyd3p0aVBVUFg3S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAii0ai5ODxpnngk4JEnpFdDBvxps8J7NV9mt9Ch1KjOBPxwm708OE V1d52NjivyquJb31+VykBLsV/8PnvousPemce2tDPPnETlDb5MTXAVD7NJe8HeDh R8pOutMsIsfU235P352ZWDEiWiGGw7uYM5md/cNe2A9fWaCvDx3xkx2xxGHi4xD9 eNcC+vBUgi7NTrmMBbNw+aYDn1tY7yyvulrHiY70r7w9V637M5wPw+4jWFkmBJ5y znt7pnbQg9Wjao7LLl62cK43OKr2PU3obInMpUz4avtXEbLSt4EdCKBWM1rZpsWF nuZnU+4fdWmYVje1UnEad8JKhIXex3+l -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:27 2024 by rpki-client on console-ams.rpki-client.org