$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft File: JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json) Hash identifier: wSXgAdjDVItTR8vZVP/VwRd6XXkaZI3dAAmsvBq8SO8= Subject key identifier: 32:E7:72:C0:96:32:A9:30:3E:82:D1:E4:2E:9B:94:52:8D:6C:42:4E Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 Certificate issuer: /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Certificate serial: 1616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft Manifest number: 160F Signing time: Sat 04 May 2024 17:19:28 +0000 Manifest this update: Sat 04 May 2024 17:19:27 +0000 Manifest next update: Sat 11 May 2024 17:19:27 +0000 Files and hashes: 1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: YKvaozmZ3v2BiWhOWdQLO7CJNkpxtGBCkzIRt153g6Y=) 2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: BvSF1KISeLQonHgGxpv9+3zQZ6iOm2kjFjjTT/81iP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5654 (0x1616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Validity Not Before: May 4 17:19:27 2024 GMT Not After : May 11 17:19:27 2024 GMT Subject: CN=66366e20-55b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f4:28:2f:a1:73:2e:6c:1a:ed:75:56:a8:05: a0:11:07:da:21:1c:fd:8f:f5:6d:b5:26:e6:16:03: 79:37:48:19:a2:13:1e:65:e4:b7:bb:bf:45:72:97: 86:8a:d7:d9:d7:d0:cf:21:c1:ba:a8:db:b9:3f:d0: e5:f8:1e:52:db:d9:24:49:e4:de:ea:80:9e:27:62: ca:12:9f:24:2d:ab:ea:20:80:b6:a0:98:b7:bc:68: 15:4e:70:4a:68:05:48:36:d6:ea:e7:98:0a:95:9f: 7f:98:98:32:fc:82:65:07:b3:36:09:b6:fd:7c:9e: 3f:ac:50:ca:d3:4c:31:3b:bd:83:6d:9d:44:93:9b: f9:23:49:1d:3e:2e:29:45:14:8f:07:8b:e9:13:7f: c9:4c:5e:dd:58:f0:99:a1:a2:3c:90:b9:4f:84:fa: d8:ae:8a:b1:35:7d:17:9f:a5:6c:f3:12:af:95:73: 7f:d4:aa:93:e2:b8:ed:43:9b:e1:4a:e7:b6:3b:df: 40:45:a1:a8:fb:16:f2:fd:52:23:70:0d:65:db:6d: 3f:c3:d2:2a:4f:3d:b3:5d:7c:dc:06:58:2a:4e:cf: bc:16:7f:c7:20:55:6b:a9:73:71:cf:fc:2f:47:47: 0c:48:35:dc:f4:8f:78:dc:88:ed:fd:0f:1d:d2:cc: 22:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E7:72:C0:96:32:A9:30:3E:82:D1:E4:2E:9B:94:52:8D:6C:42:4E X509v3 Authority Key Identifier: keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:dd:26:f1:58:48:a7:ba:9b:4b:75:9d:d9:b1:78:fa:f1:2c: f5:be:aa:3a:7f:11:c3:03:6f:b9:91:8c:19:0a:cb:bc:b0:65: 79:fa:0f:97:90:dd:35:b5:c1:a5:bd:15:ea:9d:4e:3e:bb:50: 75:32:bb:53:51:23:62:35:2b:3c:a7:d3:54:47:44:31:0c:52: 0f:36:b9:c8:a1:26:e0:99:22:c0:69:ef:d4:9d:43:26:5b:57: c9:8f:b4:00:01:3e:80:b8:c0:66:bd:46:33:99:89:98:4b:48: 40:9d:da:32:b0:45:58:b0:ea:6a:06:59:b2:ad:7a:ae:5c:71: 7d:84:5f:46:d0:89:b9:44:2c:36:e6:db:1b:b4:04:6e:5f:59: df:18:0b:0d:d7:9d:38:11:c3:e8:c7:24:2b:f4:47:6a:54:94: 5a:f6:d5:14:5f:86:57:a9:27:bb:9d:29:91:07:3c:9b:7a:b2: 80:cd:0e:31:61:6e:47:7a:e8:ab:b5:71:e2:b9:ed:8e:5c:39: f9:35:43:7c:9f:08:42:c1:2b:f9:e4:37:8f:85:02:a9:f1:f2: 96:67:c1:d0:fb:d1:c3:35:17:b9:53:3f:43:fa:e8:59:d0:de: 32:db:0a:ae:71:20:af:e0:cb:8b:d2:1f:29:41:44:b5:05:f8: e6:90:83:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwMDgxMTAvBgNVBAUTKDI0OEY1NTg4RUE4RkM3REQwQTNCNERBMUUxNTU4MDMx QzBEOTI3RTQwHhcNMjQwNTA0MTcxOTI3WhcNMjQwNTExMTcxOTI3WjAYMRYwFAYD VQQDEw02NjM2NmUyMC01NWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vQoL6FzLmwa7XVWqAWgEQfaIRz9j/VttSbmFgN5N0gZohMeZeS3u79FcpeG itfZ19DPIcG6qNu5P9Dl+B5S29kkSeTe6oCeJ2LKEp8kLavqIIC2oJi3vGgVTnBK aAVINtbq55gKlZ9/mJgy/IJlB7M2Cbb9fJ4/rFDK00wxO72DbZ1Ek5v5I0kdPi4p RRSPB4vpE3/JTF7dWPCZoaI8kLlPhPrYroqxNX0Xn6Vs8xKvlXN/1KqT4rjtQ5vh Sue2O99ARaGo+xby/VIjcA1l220/w9IqTz2zXXzcBlgqTs+8Fn/HIFVrqXNxz/wv R0cMSDXc9I943Ijt/Q8d0swinQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLncsCW MqkwPoLR5C6blFKNbEJOMB8GA1UdIwQYMBaAFCSPVYjqj8fdCjtNoeFVgDHA2Sfk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTAwOC9ERDg4QzNBRUYx RDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5MEtPMDJoNFZXQU1jRFpK LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJOVZpT3FQeDkwS08wMmg0VldBTWNEWkotUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTAwOC9ERDg4QzNBRUYxRDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5 MEtPMDJoNFZXQU1jRFpKLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB83SbxWEinuptLdZ3ZsXj68Sz1vqo6fxHDA2+5kYwZCsu8sGV5+g+X kN01tcGlvRXqnU4+u1B1MrtTUSNiNSs8p9NUR0QxDFIPNrnIoSbgmSLAae/UnUMm W1fJj7QAAT6AuMBmvUYzmYmYS0hAndoysEVYsOpqBlmyrXquXHF9hF9G0Im5RCw2 5tsbtARuX1nfGAsN1504EcPoxyQr9EdqVJRa9tUUX4ZXqSe7nSmRBzyberKAzQ4x YW5HeuirtXHiue2OXDn5NUN8nwhCwSv55DePhQKp8fKWZ8HQ+9HDNRe5Uz9D+uhZ 0N4y2wqucSCv4MuL0h8pQUS1BfjmkIOb -----END CERTIFICATE-----Generated at Sat May 4 18:00:10 2024 by rpki-client on console-fra.rpki-client.org