$ rpki-client -vvf rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft File: jPbyYoPglD4X1BKxnKKvLNYNRYc.mft (raw, json) Hash identifier: FAZfe+rj1VLbD6s2HC04AvJGL/tUZD/36LRu4q1zLoA= Subject key identifier: B7:22:48:25:F6:77:4A:CC:6E:67:24:C2:B8:20:BC:68:7F:B1:C5:24 Authority key identifier: 8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 Certificate issuer: /CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Certificate serial: 095B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft Manifest number: 0950 Signing time: Thu 02 May 2024 21:12:50 +0000 Manifest this update: Thu 02 May 2024 21:12:49 +0000 Manifest next update: Thu 09 May 2024 21:12:49 +0000 Files and hashes: 1: jPbyYoPglD4X1BKxnKKvLNYNRYc.crl (hash: 7/TOC4MOfD7cq7E5oKVnu7Xv2rVAozYRl6Qh/ZPYB5I=) 2: 4A074A90E19511EC8AD57C6CC4F9AE02.roa (hash: BGa9+GYs4hK5GmJ5aUSd8kTVkDmVguAXYWAgPRO+w54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2395 (0x95b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B7EB/serialNumber=8CF6F26283E0943E17D412B19CA2AF2CD60D4587 Validity Not Before: May 2 21:12:49 2024 GMT Not After : May 9 21:12:49 2024 GMT Subject: CN=663401d1-0d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3d:75:66:8a:56:cb:9b:4c:67:fd:e9:62:f2: d3:48:38:0b:88:f9:be:92:85:de:d7:b7:b1:4a:4a: 9d:75:98:67:f2:fe:a4:5b:30:aa:87:ea:87:9f:a5: f9:2a:69:4b:dc:09:e8:35:1d:13:28:c1:08:7d:e5: 90:b4:e8:93:0b:91:07:f2:7c:0c:71:34:d3:72:11: 21:20:a5:05:33:ec:22:f8:a2:02:27:3b:af:5f:c9: b2:27:33:e1:bd:6a:f9:40:c8:60:1f:69:bf:5d:50: cb:4b:73:4d:76:43:8f:ea:c1:c0:cb:e4:22:16:86: 1c:61:cc:32:1c:ab:14:c3:77:89:26:b7:f9:15:c5: 1b:47:20:b5:28:ee:59:7a:fa:06:44:84:cd:46:0e: b8:91:ff:ed:d8:27:68:a5:7e:cf:f0:2c:63:84:93: d1:02:97:d9:a7:74:0e:56:a9:11:e3:4f:25:66:6e: c2:c6:3f:24:27:e6:ab:0b:13:94:71:86:3b:2b:4f: d5:d9:2f:ce:21:cf:58:e9:73:eb:f4:ef:50:c5:0b: 4d:d7:d7:a4:e7:81:54:8b:39:bd:bd:6c:d3:e6:b5: 5e:f8:90:88:97:c4:cf:81:fc:26:aa:60:a6:c4:96: 03:ff:b4:ac:26:af:b8:03:3d:64:1f:f7:03:86:c5: 12:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:22:48:25:F6:77:4A:CC:6E:67:24:C2:B8:20:BC:68:7F:B1:C5:24 X509v3 Authority Key Identifier: keyid:8C:F6:F2:62:83:E0:94:3E:17:D4:12:B1:9C:A2:AF:2C:D6:0D:45:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPbyYoPglD4X1BKxnKKvLNYNRYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B7EB/791F4E7673E311EABA7A886EC4F9AE02/jPbyYoPglD4X1BKxnKKvLNYNRYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:34:3b:93:a9:c1:66:ba:2f:35:c3:eb:5b:c1:83:45:8e:64: 3d:a7:bb:c1:d4:38:e5:c2:9b:34:f2:9a:5a:da:aa:22:1d:35: 3a:34:c6:36:66:82:82:18:26:17:7a:c5:68:54:af:2f:97:b9: 4e:a2:4f:ee:28:5a:14:47:69:58:bc:24:92:a5:ea:89:6a:ae: 6c:48:4b:f9:fb:41:fe:84:03:6f:ff:a7:bb:12:95:86:87:b0: 98:12:2d:e8:18:03:ab:7b:0b:26:25:cb:b3:fb:13:51:b3:31: 9d:12:39:27:af:bc:e9:9d:57:36:6f:b9:45:06:36:04:f3:36: 5d:e2:dc:1f:3e:35:90:8d:7a:74:7b:94:61:32:65:73:97:ca: 7e:05:7a:4f:46:dd:a1:0e:87:22:36:5d:cc:91:d3:fa:00:ed: 53:8e:d5:28:93:8e:a4:fc:0d:eb:3d:ed:a1:62:1f:70:4b:ea: 18:21:a1:26:f3:e7:19:9c:e7:67:84:61:70:d4:b2:08:6c:40: 8e:84:f5:c4:e2:bf:7d:c9:38:07:b3:e5:a0:07:98:cc:1b:34: ed:fe:04:0f:ef:46:f0:ce:d3:b0:c9:c6:63:6d:67:e1:b5:e9: e3:82:f7:73:13:3e:45:17:44:34:5e:ec:aa:4a:86:f8:21:79: bf:05:19:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI3RUIxMTAvBgNVBAUTKDhDRjZGMjYyODNFMDk0M0UxN0Q0MTJCMTlDQTJBRjJD RDYwRDQ1ODcwHhcNMjQwNTAyMjExMjQ5WhcNMjQwNTA5MjExMjQ5WjAYMRYwFAYD VQQDEw02NjM0MDFkMS0wZDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1z11ZopWy5tMZ/3pYvLTSDgLiPm+koXe17exSkqddZhn8v6kWzCqh+qHn6X5 KmlL3AnoNR0TKMEIfeWQtOiTC5EH8nwMcTTTchEhIKUFM+wi+KICJzuvX8myJzPh vWr5QMhgH2m/XVDLS3NNdkOP6sHAy+QiFoYcYcwyHKsUw3eJJrf5FcUbRyC1KO5Z evoGRITNRg64kf/t2CdopX7P8CxjhJPRApfZp3QOVqkR408lZm7Cxj8kJ+arCxOU cYY7K0/V2S/OIc9Y6XPr9O9QxQtN19ek54FUizm9vWzT5rVe+JCIl8TPgfwmqmCm xJYD/7SsJq+4Az1kH/cDhsUSGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLciSCX2 d0rMbmckwrggvGh/scUkMB8GA1UdIwQYMBaAFIz28mKD4JQ+F9QSsZyiryzWDUWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjdFQi83OTFGNEU3Njcz RTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xENFgxQkt4bktLdkxOWU5S WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQYnlZb1BnbEQ0WDFCS3huS0t2TE5ZTlJZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjdFQi83OTFGNEU3NjczRTMxMUVBQkE3QTg4NkVDNEY5QUUwMi9qUGJ5WW9QZ2xE NFgxQkt4bktLdkxOWU5SWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSNDuTqcFmui81w+tbwYNFjmQ9p7vB1Djlwps08ppa2qoiHTU6NMY2 ZoKCGCYXesVoVK8vl7lOok/uKFoUR2lYvCSSpeqJaq5sSEv5+0H+hANv/6e7EpWG h7CYEi3oGAOrewsmJcuz+xNRszGdEjknr7zpnVc2b7lFBjYE8zZd4twfPjWQjXp0 e5RhMmVzl8p+BXpPRt2hDociNl3MkdP6AO1TjtUok46k/A3rPe2hYh9wS+oYIaEm 8+cZnOdnhGFw1LIIbECOhPXE4r99yTgHs+WgB5jMGzTt/gQP70bwztOwycZjbWfh tenjgvdzEz5FF0Q0XuyqSob4IXm/BRmq -----END CERTIFICATE-----Generated at Thu May 2 22:28:47 2024 by rpki-client on console-ams.rpki-client.org