$ rpki-client -vvf rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft File: 8ItqFjLJysLoaI3qSIfZMC6VYBA.mft (raw, json) Hash identifier: 3X69PNe45zmLVFJd3USEFPCiEApIDM2rFFWrI8y8Jig= Subject key identifier: B3:86:1F:52:2A:0B:2E:6C:89:73:7B:20:49:10:B2:B1:61:50:E3:5A Authority key identifier: F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 Certificate issuer: /CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft Manifest number: 06AC Signing time: Sat 04 May 2024 23:20:18 +0000 Manifest this update: Sat 04 May 2024 23:20:17 +0000 Manifest next update: Sat 11 May 2024 23:20:17 +0000 Files and hashes: 1: 8ItqFjLJysLoaI3qSIfZMC6VYBA.crl (hash: AZknbnsSVo1vpwhjTyEmI1luK3geH/G3Kzr3OtS1UHI=) 2: B5DC8802169411EBBEBD9A23C4F9AE02.roa (hash: svxlLdDpxiT0p4tG6s6Cz/fiwEF/oY/e6ZOEngdw4Wk=) 3: B54C3DBA169411EBBEBD9A23C4F9AE02.roa (hash: HswIS1O+7/IUGVb010ng/g+7bqvTvlSUDgR7cSiI2Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010 Validity Not Before: May 4 23:20:17 2024 GMT Not After : May 11 23:20:17 2024 GMT Subject: CN=6636c2b1-39f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4a:40:1c:01:0c:ee:af:b2:d8:a6:60:ae:d4: 90:3e:83:13:95:08:23:ec:eb:32:48:ff:77:16:ed: dc:86:02:03:58:14:68:7f:e7:2a:26:c0:af:72:4c: 13:02:e3:13:b9:85:5f:66:37:28:44:3b:76:62:b3: 7f:9c:c6:41:62:9e:a5:04:13:f5:91:40:e5:58:a0: 1d:b4:14:91:71:29:d1:f0:0d:c6:2b:42:93:6f:d8: 26:c6:63:7f:16:28:53:56:5b:07:90:fd:b8:8f:4f: 16:53:fc:8e:bd:55:a1:15:8c:69:d5:79:71:40:7d: b5:cb:15:33:0d:f5:57:fb:18:d1:1b:d3:3a:de:ac: 45:67:43:ed:a8:04:27:ce:4c:bf:c0:9e:98:d4:3a: 23:fb:32:88:6c:5d:e9:93:26:9b:cb:04:bc:ce:3a: fa:10:02:92:53:6a:c7:e1:58:20:85:5a:c4:51:3d: 22:51:56:c2:48:20:7e:21:f9:42:0c:2e:a7:e6:38: 75:47:85:e4:b9:b8:4e:aa:50:a0:59:43:6a:f4:4c: e8:df:31:8f:2f:81:ab:90:20:37:e8:ad:d3:c1:4a: 9e:f4:23:3d:aa:ad:8b:11:03:b8:2d:27:8c:a0:57: 9a:96:69:d7:3f:d4:c3:71:21:09:fb:9f:2b:50:49: 7d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:86:1F:52:2A:0B:2E:6C:89:73:7B:20:49:10:B2:B1:61:50:E3:5A X509v3 Authority Key Identifier: keyid:F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:7b:6b:0c:c7:26:10:1b:60:f9:b0:47:be:5a:9c:fa:6c:b6: 04:1e:32:f3:d4:2d:85:4c:ac:4d:22:38:10:b1:75:b8:4b:57: ba:5a:3d:d8:2e:83:9b:90:21:0c:5f:0c:a3:b9:ed:a8:10:96: 44:01:d4:35:a4:9e:62:ad:68:1d:d2:01:09:ce:30:80:52:92: 9a:86:e4:a2:ef:97:8f:d7:2c:96:8a:2f:ea:46:8d:db:6d:16: e5:a0:3d:99:fd:76:17:38:d2:49:89:45:10:6b:5e:09:a5:65: 34:02:b0:7a:eb:38:f9:4d:ed:37:f4:06:93:85:2d:cd:76:ba: e1:b5:e7:3a:e2:c1:ee:9e:74:30:78:b1:45:8d:4e:c1:0f:0d: 89:0a:4c:10:6a:6b:7b:0a:1a:a2:e4:0f:85:b2:5e:05:af:4b: f6:25:c7:2b:ef:8b:51:36:2b:b0:b8:50:bf:b2:60:f0:20:31: 44:4c:b2:8b:3a:83:ab:ab:e1:db:1d:9f:ed:39:62:d3:47:b8: c6:11:20:f7:97:37:65:d7:e6:a1:80:26:50:1e:79:16:a2:29: e1:17:df:d3:58:dd:f7:99:c6:40:5a:90:cc:0e:2c:5c:5e:4b: 2b:26:fe:79:95:c2:af:8a:29:6f:96:55:be:d8:58:32:86:c9: ef:e4:ac:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZGQUIxMTAvBgNVBAUTKEYwOEI2QTE2MzJDOUNBQzJFODY4OERFQTQ4ODdEOTMw MkU5NTYwMTAwHhcNMjQwNTA0MjMyMDE3WhcNMjQwNTExMjMyMDE3WjAYMRYwFAYD VQQDEw02NjM2YzJiMS0zOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kpAHAEM7q+y2KZgrtSQPoMTlQgj7OsySP93Fu3chgIDWBRof+cqJsCvckwT AuMTuYVfZjcoRDt2YrN/nMZBYp6lBBP1kUDlWKAdtBSRcSnR8A3GK0KTb9gmxmN/ FihTVlsHkP24j08WU/yOvVWhFYxp1XlxQH21yxUzDfVX+xjRG9M63qxFZ0PtqAQn zky/wJ6Y1Doj+zKIbF3pkyabywS8zjr6EAKSU2rH4VgghVrEUT0iUVbCSCB+IflC DC6n5jh1R4XkubhOqlCgWUNq9Ezo3zGPL4GrkCA36K3TwUqe9CM9qq2LEQO4LSeM oFealmnXP9TDcSEJ+58rUEl9EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOGH1Iq Cy5siXN7IEkQsrFhUONaMB8GA1UdIwQYMBaAFPCLahYyycrC6GiN6kiH2TAulWAQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkZBQi9BQTdGQTQwMDE2 OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlzTG9hSTNxU0lmWk1DNlZZ QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhJdHFGakxKeXNMb2FJM3FTSWZaTUM2VllCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkZBQi9BQTdGQTQwMDE2OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlz TG9hSTNxU0lmWk1DNlZZQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7e2sMxyYQG2D5sEe+Wpz6bLYEHjLz1C2FTKxNIjgQsXW4S1e6Wj3Y LoObkCEMXwyjue2oEJZEAdQ1pJ5irWgd0gEJzjCAUpKahuSi75eP1yyWii/qRo3b bRbloD2Z/XYXONJJiUUQa14JpWU0ArB66zj5Te039AaThS3Ndrrhtec64sHunnQw eLFFjU7BDw2JCkwQamt7Chqi5A+Fsl4Fr0v2Jccr74tRNiuwuFC/smDwIDFETLKL OoOrq+HbHZ/tOWLTR7jGESD3lzdl1+ahgCZQHnkWoinhF9/TWN33mcZAWpDMDixc XksrJv55lcKviilvllW+2Fgyhsnv5Kz2 -----END CERTIFICATE-----Generated at Sun May 5 00:14:40 2024 by rpki-client on console-ams.rpki-client.org