$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: Him6JaRhMqogqVYb+1gpzr/z6xF8DoDuFrJeaDA5vfM= Subject key identifier: 58:81:7E:95:5D:77:68:BD:06:A0:99:A5:6D:47:BD:43:BC:EE:83:9D Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 11F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 11E9 Signing time: Thu 02 May 2024 17:47:19 +0000 Manifest this update: Thu 02 May 2024 17:47:18 +0000 Manifest next update: Thu 09 May 2024 17:47:18 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: qAgOMA/ZA417PGUzDLWGFC5Z2LhN56+grOITfSf9VPg=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: fVrnmoIbc0WT1j2hFk/lgNhemMnLi+wRvt02urL7HX0=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: ++HKMKnO2wwG3IjoXlVb7Z/y+OSqAGLthTpFlPfUd3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4601 (0x11f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: May 2 17:47:18 2024 GMT Not After : May 9 17:47:18 2024 GMT Subject: CN=6633d1a6-2981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bc:5d:a7:6f:8a:20:5c:39:58:d9:b2:ea:4e: e5:0a:74:33:2b:85:8b:0a:0c:d4:4c:26:82:e7:d6: b4:79:7b:f7:d6:43:f2:14:05:e4:54:28:ce:22:3d: cf:bd:8a:df:8b:1d:e9:70:b2:03:55:e7:75:98:77: a7:89:c2:94:9e:7f:e6:bf:48:8a:34:bd:cd:c5:cd: 23:62:9d:fe:8e:8c:df:55:ee:f2:19:b8:15:30:1b: e9:99:de:35:f9:2b:1c:1c:0d:7a:f2:04:0e:66:9a: 44:10:32:68:c0:bb:d9:e9:37:60:78:96:6e:ba:03: 41:2e:c1:be:5b:78:98:8f:0c:bf:ac:ee:39:55:fb: 00:5d:49:8b:0a:a6:6c:01:64:df:ad:00:b5:86:df: f5:7c:ee:f9:53:29:ab:6b:d3:5a:11:5d:04:71:3b: 86:2a:13:b2:6b:aa:1f:04:cf:6c:2e:04:fe:e6:97: 2e:66:27:4b:ab:08:19:eb:72:cd:9f:55:4b:b6:b8: d7:f8:bc:e4:17:60:de:c0:ae:4d:33:0e:28:1d:c4: d5:9e:b8:64:0d:fe:59:da:b5:16:fe:b7:2b:29:30: a6:6a:81:0f:e7:08:80:c4:f3:a1:4c:e7:3f:84:44: ae:69:10:86:e8:81:a9:4b:97:d6:de:cf:b7:e6:6f: d3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:81:7E:95:5D:77:68:BD:06:A0:99:A5:6D:47:BD:43:BC:EE:83:9D X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:34:98:97:03:db:f0:37:98:b8:bd:d1:c0:1e:c4:44:35:51: 1f:4c:e7:00:15:8d:5e:32:ce:9e:79:e7:2f:2e:01:94:f0:60: 87:e3:71:f1:38:ac:95:64:cf:4c:d7:47:00:61:11:34:b6:8b: 7f:f2:bf:3f:08:4e:c0:0a:76:c7:45:64:49:bc:8b:04:f5:b5: 5e:d7:47:b0:10:bd:d9:a3:c4:d2:7c:39:d6:e8:ce:bc:55:d8: f0:cf:43:36:58:c9:b8:31:b2:28:34:0a:8d:8f:29:40:e4:60: 46:d3:ea:88:6b:ce:0e:1a:64:0d:bb:24:77:39:b6:ff:ea:54: e4:f5:c1:56:54:60:cd:6d:2d:41:61:8d:4b:d2:8c:0d:65:a6: d4:ac:1d:7a:df:b2:17:07:ab:29:87:ac:28:13:0c:2b:4a:07: 0d:0b:50:8c:35:88:f6:de:d6:4f:6e:1e:26:cd:1a:45:f4:c0: 21:83:7b:2e:12:79:e1:ae:22:ad:57:53:b5:81:13:9a:87:57: fb:26:6c:fa:da:ef:47:f6:d2:19:b6:07:28:98:ba:ec:82:be: 09:d6:eb:fc:7c:57:36:b9:9e:1f:75:02:4c:24:1c:f5:0b:ca: 00:4a:74:9c:f3:f7:26:e5:d1:b2:f7:b7:d2:63:f7:b5:4b:e9: b8:bb:c6:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjQwNTAyMTc0NzE4WhcNMjQwNTA5MTc0NzE4WjAYMRYwFAYD VQQDEw02NjMzZDFhNi0yOTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7xdp2+KIFw5WNmy6k7lCnQzK4WLCgzUTCaC59a0eXv31kPyFAXkVCjOIj3P vYrfix3pcLIDVed1mHenicKUnn/mv0iKNL3Nxc0jYp3+jozfVe7yGbgVMBvpmd41 +SscHA168gQOZppEEDJowLvZ6TdgeJZuugNBLsG+W3iYjwy/rO45VfsAXUmLCqZs AWTfrQC1ht/1fO75Uymra9NaEV0EcTuGKhOya6ofBM9sLgT+5pcuZidLqwgZ63LN n1VLtrjX+LzkF2DewK5NMw4oHcTVnrhkDf5Z2rUW/rcrKTCmaoEP5wiAxPOhTOc/ hESuaRCG6IGpS5fW3s+35m/T7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiBfpVd d2i9BqCZpW1HvUO87oOdMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3NJiXA9vwN5i4vdHAHsRENVEfTOcAFY1eMs6eeecvLgGU8GCH43Hx OKyVZM9M10cAYRE0tot/8r8/CE7ACnbHRWRJvIsE9bVe10ewEL3Zo8TSfDnW6M68 Vdjwz0M2WMm4MbIoNAqNjylA5GBG0+qIa84OGmQNuyR3Obb/6lTk9cFWVGDNbS1B YY1L0owNZabUrB1637IXB6sph6woEwwrSgcNC1CMNYj23tZPbh4mzRpF9MAhg3su EnnhriKtV1O1gROah1f7Jmz62u9H9tIZtgcomLrsgr4J1uv8fFc2uZ4fdQJMJBz1 C8oASnSc8/cm5dGy97fSY/e1S+m4u8bw -----END CERTIFICATE-----Generated at Thu May 2 20:04:26 2024 by rpki-client on console-ams.rpki-client.org