$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: dSFcLKI6813OG/n214UDdrYSsnZ8QP9i76aPVwqAUdw= Subject key identifier: DA:98:44:24:D5:32:C9:1A:49:BB:18:3D:53:FF:D2:38:31:EA:4B:E5 Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1CBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1CB4 Signing time: Mon 06 May 2024 16:37:45 +0000 Manifest this update: Mon 06 May 2024 16:37:44 +0000 Manifest next update: Mon 13 May 2024 16:37:44 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: gHDklCFe/OY/oAv+paYTBr2ca7lKh/DUrLRPZjhw8fA=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: 4/DRGItaisoBOYwcQyk5DVwDf1fvf1QmNj2xLG0/hYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7355 (0x1cbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: May 6 16:37:44 2024 GMT Not After : May 13 16:37:44 2024 GMT Subject: CN=66390758-2ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:23:fa:5f:6c:78:d7:1f:7a:6e:ee:ae:0a: 8f:cf:3b:c7:0b:6e:3d:b0:f9:56:e5:ee:77:c2:70: 1d:fd:b6:45:38:01:5d:b9:b5:92:13:04:de:1f:39: 97:3d:71:f3:d2:e2:21:aa:97:12:e7:68:5d:78:af: 08:d9:70:bc:48:ca:c1:e2:59:98:72:53:84:82:ae: 2c:44:8b:04:b5:81:42:be:b9:08:47:90:3a:c9:98: 41:99:47:c9:f0:e9:2d:ec:01:12:e7:ce:91:9c:b0: a0:63:01:0a:61:32:96:d3:95:8b:76:2a:4b:84:0d: 8a:09:78:82:ab:27:57:4c:0c:6d:ad:1c:06:08:54: 38:2e:c9:41:0a:66:96:3a:7e:47:7c:68:a3:32:2e: 54:5b:3c:de:93:c6:33:f8:91:55:8c:8c:a4:bb:69: 5e:6b:6c:a0:de:c0:0c:fb:be:08:ab:c4:de:2a:c5: 10:f7:89:0e:0a:61:17:05:6a:47:9d:d5:e6:4c:44: 6f:bb:f0:44:d0:ef:b3:f2:16:25:3a:ef:38:7e:09: 3c:57:a6:e6:10:32:40:24:ac:25:81:ec:d6:d3:df: b4:ff:9f:02:67:e0:aa:a0:c9:0c:e8:22:a6:a5:9d: 44:cd:1a:39:c9:0a:15:ac:63:76:ed:96:40:cc:10: d6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:98:44:24:D5:32:C9:1A:49:BB:18:3D:53:FF:D2:38:31:EA:4B:E5 X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ed:92:b3:37:7f:87:27:a8:5e:85:8c:ee:53:e3:f1:6b:ba: 68:b7:58:1c:c8:37:c8:d0:a1:55:98:2a:c6:1a:a1:09:e9:a5: aa:f5:20:d8:48:f9:fd:f4:2f:83:85:30:a9:2a:d9:20:b4:25: 0e:8f:25:32:7a:da:07:d7:f9:f4:16:2b:c3:fa:b9:46:a5:81: cc:2f:18:70:a8:49:87:c7:44:09:ea:e5:7e:11:1d:fd:1d:be: 95:37:70:e6:97:93:38:50:dd:51:d1:d8:90:b6:1f:16:60:a6: d0:cd:e6:2b:0b:e1:1e:21:4d:c6:50:a0:ca:06:23:44:6b:de: b7:1b:49:4c:f0:4f:52:cd:79:63:08:b3:b6:a5:e0:b3:1c:b6: f5:34:40:e1:83:0c:d1:b3:9a:6a:2f:30:40:f6:66:af:37:79: 34:ba:6c:8c:01:6a:5b:f7:c6:1d:3e:20:0b:f8:c0:8d:db:2d: fe:4b:02:51:ea:82:da:3a:22:1f:f1:ab:f9:4b:3d:65:66:e9: 6c:c2:14:33:4b:8d:cf:13:ee:23:ad:6b:4a:ce:f2:39:dc:65: 78:33:06:6c:ab:7b:40:40:97:c9:a1:9a:68:b3:fc:f0:cc:83: 2c:37:47:d3:44:06:bb:72:88:43:31:85:06:4b:db:73:84:77: 8d:da:d6:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjQwNTA2MTYzNzQ0WhcNMjQwNTEzMTYzNzQ0WjAYMRYwFAYD VQQDEw02NjM5MDc1OC0yZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMcj+l9seNcfem7urgqPzzvHC249sPlW5e53wnAd/bZFOAFdubWSEwTeHzmX PXHz0uIhqpcS52hdeK8I2XC8SMrB4lmYclOEgq4sRIsEtYFCvrkIR5A6yZhBmUfJ 8Okt7AES586RnLCgYwEKYTKW05WLdipLhA2KCXiCqydXTAxtrRwGCFQ4LslBCmaW On5HfGijMi5UWzzek8Yz+JFVjIyku2lea2yg3sAM+74Iq8TeKsUQ94kOCmEXBWpH ndXmTERvu/BE0O+z8hYlOu84fgk8V6bmEDJAJKwlgezW09+0/58CZ+CqoMkM6CKm pZ1EzRo5yQoVrGN27ZZAzBDWrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqYRCTV MskaSbsYPVP/0jgx6kvlMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB7ZKzN3+HJ6hehYzuU+Pxa7pot1gcyDfI0KFVmCrGGqEJ6aWq9SDY SPn99C+DhTCpKtkgtCUOjyUyetoH1/n0FivD+rlGpYHMLxhwqEmHx0QJ6uV+ER39 Hb6VN3Dml5M4UN1R0diQth8WYKbQzeYrC+EeIU3GUKDKBiNEa963G0lM8E9SzXlj CLO2peCzHLb1NEDhgwzRs5pqLzBA9mavN3k0umyMAWpb98YdPiAL+MCN2y3+SwJR 6oLaOiIf8av5Sz1lZulswhQzS43PE+4jrWtKzvI53GV4MwZsq3tAQJfJoZpos/zw zIMsN0fTRAa7cohDMYUGS9tzhHeN2taS -----END CERTIFICATE-----Generated at Mon May 6 17:42:39 2024 by rpki-client on console-ams.rpki-client.org