$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft File: vIYhQTCXFsDk3Dff_zPlqwxVStA.mft (raw, json) Hash identifier: pBSbkMprOj1EWK0stS9lVhwrhluShSddXzgAHY98Ooc= Subject key identifier: 8F:61:BA:0B:BD:E2:79:00:8F:5B:48:C8:29:70:F6:06:84:E3:3E:4E Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft Manifest number: 012B Signing time: Sun 05 May 2024 05:08:34 +0000 Manifest this update: Sun 05 May 2024 05:08:33 +0000 Manifest next update: Sun 12 May 2024 05:08:33 +0000 Files and hashes: 1: vIYhQTCXFsDk3Dff_zPlqwxVStA.crl (hash: FBF8SyFGZE95eEknWABmUyWYmIkjfKlG41v4AsaRzCo=) 2: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (hash: 3RREB5BVIX2iHbhQfmXVwStIA7fIlvhJpUbqjRjdhIU=) 3: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (hash: FrIFGxVfxISPDp5twHCcyob4YmRoRTzks+oq4BVbGDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: May 5 05:08:33 2024 GMT Not After : May 12 05:08:33 2024 GMT Subject: CN=66371452-d057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3c:c3:84:4f:21:22:1a:17:4e:bf:b3:5d:6a: d1:3a:ad:6a:b3:0c:2a:86:aa:18:ea:a5:8c:f0:be: fe:9c:55:3f:c5:3d:8a:d4:8d:97:43:55:5e:94:7d: ae:04:30:03:ee:51:cb:57:ba:0f:20:91:91:37:38: 91:fb:61:18:7f:52:94:bb:de:a5:05:ef:c4:1e:fa: f2:e7:83:94:d3:7b:4a:ec:e3:da:8d:e9:69:b4:a5: 95:e0:23:f7:99:de:09:65:9c:64:f0:f1:da:c6:f3: d6:7a:80:1e:c7:ba:8e:1d:4f:f8:10:99:40:3a:cb: d1:f2:0d:ec:60:6d:f5:0d:32:d2:06:c4:38:0f:6f: c5:d2:2a:ec:3e:ba:c3:47:32:3b:7a:1f:25:1c:63: 27:f7:91:ed:b7:75:03:69:32:b4:5a:83:45:ee:8f: 09:3c:db:db:d0:19:b7:fa:cd:f2:67:a6:52:a6:70: 6b:55:8e:c9:d7:14:9c:a0:46:50:75:b5:8c:ff:53: a0:f0:dd:e2:ce:3a:da:6b:bd:12:54:5d:a9:7c:f0: fd:6b:ea:cb:d2:ab:c3:51:eb:fd:0b:70:ae:27:01: c6:69:90:72:88:c5:8e:09:ef:ca:cd:9c:64:5a:61: e8:62:3f:64:6c:48:43:86:b1:62:e1:d0:ce:db:d2: 17:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:61:BA:0B:BD:E2:79:00:8F:5B:48:C8:29:70:F6:06:84:E3:3E:4E X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:77:9b:ff:61:e7:be:24:73:9c:5f:ff:5d:0f:82:79:e7:8c: 6b:c5:79:91:ba:f3:a0:1e:da:b1:f4:68:1f:8e:57:f4:96:56: 00:a0:69:76:56:7b:bd:95:1c:79:09:8b:f1:f1:7b:3a:95:af: 80:b6:3f:59:92:c7:55:a8:3c:df:90:8d:a6:3b:b3:a5:6b:51: 11:73:33:49:31:1f:5b:24:e2:f0:a3:98:f3:09:40:ca:dc:d1: 69:d9:07:76:1b:87:ac:59:bb:fe:73:1f:3f:96:b0:2e:51:a3: e9:71:64:07:a9:2f:f5:b1:c2:17:d0:ad:a2:70:18:a7:ff:c4: e4:9d:d7:a4:34:84:5e:07:89:e5:87:30:a1:e4:82:a4:c0:e5: 49:82:78:1c:c6:43:29:06:0f:39:39:46:8b:3a:02:a4:04:d0: e8:a1:21:6e:3a:44:d9:40:a5:24:e6:35:f9:8b:bc:a0:b8:c1: 41:48:f1:13:1e:bd:d3:d3:4f:1b:f4:0f:0f:5d:3a:35:89:d1: 83:02:41:86:50:95:c1:2b:24:9a:ea:8f:d5:99:09:7c:8c:f0: 14:41:df:1d:9b:4d:7b:59:e0:4b:d3:a0:f7:24:9f:38:a7:af: 36:ff:19:85:c0:c8:57:94:8b:81:80:d9:4f:ac:85:8b:02:da: 82:f1:a7:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjQwNTA1MDUwODMzWhcNMjQwNTEyMDUwODMzWjAYMRYwFAYD VQQDEw02NjM3MTQ1Mi1kMDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTzDhE8hIhoXTr+zXWrROq1qswwqhqoY6qWM8L7+nFU/xT2K1I2XQ1VelH2u BDAD7lHLV7oPIJGRNziR+2EYf1KUu96lBe/EHvry54OU03tK7OPajelptKWV4CP3 md4JZZxk8PHaxvPWeoAex7qOHU/4EJlAOsvR8g3sYG31DTLSBsQ4D2/F0irsPrrD RzI7eh8lHGMn95Htt3UDaTK0WoNF7o8JPNvb0Bm3+s3yZ6ZSpnBrVY7J1xScoEZQ dbWM/1Og8N3izjraa70SVF2pfPD9a+rL0qvDUev9C3CuJwHGaZByiMWOCe/KzZxk WmHoYj9kbEhDhrFi4dDO29IXUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9hugu9 4nkAj1tIyClw9gaE4z5OMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUEyNy82QThCRDA4QzQ0NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZz RGszRGZmX3pQbHF3eFZTdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdd5v/Yee+JHOcX/9dD4J554xrxXmRuvOgHtqx9Ggfjlf0llYAoGl2 Vnu9lRx5CYvx8Xs6la+Atj9ZksdVqDzfkI2mO7Ola1ERczNJMR9bJOLwo5jzCUDK 3NFp2Qd2G4esWbv+cx8/lrAuUaPpcWQHqS/1scIX0K2icBin/8TkndekNIReB4nl hzCh5IKkwOVJgngcxkMpBg85OUaLOgKkBNDooSFuOkTZQKUk5jX5i7yguMFBSPET Hr3T008b9A8PXTo1idGDAkGGUJXBKySa6o/VmQl8jPAUQd8dm017WeBL06D3JJ84 p682/xmFwMhXlIuBgNlPrIWLAtqC8aep -----END CERTIFICATE-----Generated at Sun May 5 06:13:34 2024 by rpki-client on console-ams.rpki-client.org