$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: jPJCuNfSUCl+uURh8S47AJA3iZyPFtBuKqS4Ms7R+ME= Subject key identifier: CC:39:4C:A8:6D:F1:9D:82:3F:F9:A6:C2:34:C1:1C:50:90:08:A6:DA Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: FF Signing time: Sat 27 Apr 2024 05:30:21 +0000 Manifest this update: Sat 27 Apr 2024 05:30:20 +0000 Manifest next update: Sat 04 May 2024 05:30:20 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: sBb1KJRDl6tUpyuiuJqoLj/MHTI84+0UrdkQohOmkNw=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: cffAuKq9HaGiQsNFqO87KLS6SLeAfxSzdhQJwAVBE4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: Apr 27 05:30:20 2024 GMT Not After : May 4 05:30:20 2024 GMT Subject: CN=662c8d6d-691a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ff:c5:70:85:70:9c:06:ba:82:1d:e6:0d:1d: 9a:72:03:45:09:23:aa:64:ee:23:02:02:1a:2d:6b: 1e:b3:2f:62:88:41:30:26:18:5a:f2:cc:63:6d:44: 99:60:3b:72:7c:e2:38:29:08:75:5d:d8:db:3f:8b: 90:76:da:99:77:0c:c9:61:82:da:fe:fd:07:51:39: dd:19:f0:8e:cb:67:f7:3d:14:8c:40:4c:15:28:83: 05:58:1c:6d:5d:ef:db:cd:eb:88:5a:08:3a:72:5a: be:75:f7:9f:b0:f7:cb:dc:69:88:bd:3b:31:41:53: e4:ed:72:28:32:c5:79:06:38:23:5a:6f:50:ff:af: e2:7d:58:65:99:4b:26:18:ce:62:e7:9d:ad:ce:3b: bf:40:1d:a8:9e:d7:c2:99:6f:7d:c1:49:34:06:8b: 98:9d:75:76:cb:fb:a3:49:b1:15:9f:c2:f7:af:05: 4b:a2:1d:9e:3e:48:1c:14:7c:b9:ac:60:8f:1d:72: 48:ee:3c:fc:b6:a7:64:e6:c2:43:5b:25:2c:43:56: f8:4f:63:40:4f:2b:60:1d:9b:09:ae:65:37:6c:cf: 56:ca:e6:bc:22:56:6b:68:63:33:12:35:ae:9f:5b: 68:0b:3d:7d:2b:cd:4f:4f:29:c1:bc:b6:cf:61:9e: 30:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:39:4C:A8:6D:F1:9D:82:3F:F9:A6:C2:34:C1:1C:50:90:08:A6:DA X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:c2:c0:28:2d:61:0b:8c:8e:f1:f2:cb:03:77:4e:0f:39:9f: 03:6e:ff:07:31:9a:bd:c9:3c:26:c8:56:15:a4:99:1c:2f:28: d3:c3:63:17:96:1a:b0:4a:49:ea:5e:e8:2f:31:89:02:ac:c2: eb:0c:cb:71:30:0e:14:a1:ff:3f:a7:12:12:51:f0:29:8e:36: 6d:92:0e:e3:46:bd:55:80:23:45:6c:22:c5:62:42:af:3a:66: 63:81:d4:82:96:21:7d:5c:56:84:13:32:50:bd:6e:1c:e0:e3: 3f:e2:6e:d0:cb:7a:f6:36:19:21:c8:15:f7:ab:e2:8d:a1:bf: fe:17:f8:aa:ae:61:59:63:2e:01:f7:1d:75:dc:ac:b1:5b:fd: cc:7e:b4:98:3e:4c:a5:9b:ec:c4:2b:21:d9:72:1a:b3:2e:70: 9c:a6:f9:9a:55:20:3a:21:62:f4:18:b4:0e:af:2f:b6:8f:84: c9:9c:56:8b:ce:d8:c6:49:9d:42:2a:18:cd:4d:10:77:a0:04: 2e:a0:d3:94:90:ed:8e:fe:a6:ed:57:36:aa:63:e8:35:60:0b: cd:18:13:1f:01:13:6f:b9:a9:d6:fa:14:20:59:a6:c8:27:d7: 5e:bd:ea:61:a4:47:ce:42:79:1b:77:f1:a2:fa:00:e3:ed:e1: 4d:61:18:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjQwNDI3MDUzMDIwWhcNMjQwNTA0MDUzMDIwWjAYMRYwFAYD VQQDEw02NjJjOGQ2ZC02OTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwv/FcIVwnAa6gh3mDR2acgNFCSOqZO4jAgIaLWsesy9iiEEwJhha8sxjbUSZ YDtyfOI4KQh1XdjbP4uQdtqZdwzJYYLa/v0HUTndGfCOy2f3PRSMQEwVKIMFWBxt Xe/bzeuIWgg6clq+dfefsPfL3GmIvTsxQVPk7XIoMsV5BjgjWm9Q/6/ifVhlmUsm GM5i552tzju/QB2ontfCmW99wUk0BouYnXV2y/ujSbEVn8L3rwVLoh2ePkgcFHy5 rGCPHXJI7jz8tqdk5sJDWyUsQ1b4T2NATytgHZsJrmU3bM9Wyua8IlZraGMzEjWu n1toCz19K81PTynBvLbPYZ4wZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw5TKht 8Z2CP/mmwjTBHFCQCKbaMB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8wsAoLWELjI7x8ssDd04POZ8Dbv8HMZq9yTwmyFYVpJkcLyjTw2MX lhqwSknqXugvMYkCrMLrDMtxMA4Uof8/pxISUfApjjZtkg7jRr1VgCNFbCLFYkKv OmZjgdSCliF9XFaEEzJQvW4c4OM/4m7Qy3r2NhkhyBX3q+KNob/+F/iqrmFZYy4B 9x113KyxW/3MfrSYPkylm+zEKyHZchqzLnCcpvmaVSA6IWL0GLQOry+2j4TJnFaL ztjGSZ1CKhjNTRB3oAQuoNOUkO2O/qbtVzaqY+g1YAvNGBMfARNvuanW+hQgWabI J9devephpEfOQnkbd/Gi+gDj7eFNYRj8 -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:32 2024 by rpki-client on console-ams.rpki-client.org