$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: gWEtaeRLY3POFLRJeGhVR74Xkn30u3RvIOIyDAPMq5s= Subject key identifier: 2C:AE:C8:BF:C8:82:0F:31:02:3E:12:18:80:F6:1C:7D:7F:96:09:70 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2CB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2C54 Signing time: Mon 06 May 2024 15:50:26 +0000 Manifest this update: Mon 06 May 2024 15:50:26 +0000 Manifest next update: Mon 13 May 2024 15:50:26 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: wvLuOiDPHVFDK4UjxYM0EWbafCUwz3WQBXWWqMUnhxo=) 2: B98FDC9C012D11EA99FBD824C4F9AE02.roa (hash: 4CDMDervvfKbg91Pt4DNYQyZpzoDFgFlLcdrIby4ls8=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: ezooYl/c+wjopILKX1z5agSeWOeibdAC4+U9dh0uw1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 15:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11446 (0x2cb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: May 6 15:50:26 2024 GMT Not After : May 13 15:50:26 2024 GMT Subject: CN=6638fc42-c6bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:27:f7:46:58:7a:e5:99:41:57:61:79:fa:e9: d5:55:2e:27:32:6b:19:22:4e:ce:61:b1:fa:8d:47: 6a:0d:37:a6:0c:7d:71:ba:59:c1:be:42:82:3e:4e: 75:10:e3:7c:b6:43:a7:6f:1b:51:86:42:19:71:d7: b4:0d:2e:2c:5d:ba:93:8b:69:1f:f0:10:1d:b3:0e: c7:1b:dc:86:a2:d3:e7:8a:45:aa:a3:03:24:34:5a: 8d:0a:f4:18:b6:a2:5b:75:ee:7b:be:25:bb:ae:6a: e5:18:60:65:c7:8f:30:5d:f0:f7:db:ca:79:b4:6a: 4d:59:67:bd:67:77:60:b1:77:cd:d8:91:92:a6:68: d7:9f:8c:aa:61:9a:9b:0c:f3:7f:b4:5f:5e:e8:16: 64:1e:53:c2:a9:7c:1a:ae:5d:8a:30:c0:71:df:8b: 52:37:48:d7:ce:0e:bc:49:8d:0f:c4:0d:89:a2:39: 83:e0:0b:00:81:fb:a6:4e:96:85:e1:e6:cb:68:f6: 06:71:9b:d9:41:83:9f:67:eb:4c:f2:69:5f:33:f8: a1:e8:45:57:1d:a0:fc:06:14:60:13:85:68:b8:d5: 3c:f3:6d:99:24:d5:3a:50:81:47:1c:fd:89:31:8d: f6:07:a0:e4:67:8a:77:53:ac:c4:05:3e:59:00:d1: d0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AE:C8:BF:C8:82:0F:31:02:3E:12:18:80:F6:1C:7D:7F:96:09:70 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:4e:68:7c:85:e9:e7:17:f3:32:67:f7:c6:70:01:81:3f:98: 77:b7:2f:0b:3d:54:79:67:c3:a5:f7:2f:89:6b:81:c1:e4:ce: 70:ce:c6:4a:1d:e0:3b:75:07:76:71:e1:ba:a2:fc:d6:be:c8: 90:80:b7:20:dc:c9:d0:2a:ad:90:2c:5a:aa:e3:15:66:4c:01: 33:62:d5:e4:da:81:2b:3e:96:9c:a0:af:d6:9d:f0:a6:a6:58: 83:7b:3a:15:62:6c:f4:e0:b5:08:86:01:86:12:09:18:f4:ba: a2:1c:86:0d:28:b7:96:ba:e9:4c:3d:e9:19:bc:3f:8e:1c:a4: ca:3b:e0:b7:7d:f7:9d:60:7d:5f:8c:c8:fe:24:33:1b:5b:ec: b1:b4:e1:be:48:20:78:8e:1c:a2:25:bc:cc:32:d6:d0:5c:83: 84:d8:e7:b8:1c:41:21:f0:54:ea:ab:50:dc:2f:af:2e:cc:71: 97:de:17:54:fc:c5:74:ec:44:b6:db:ff:a5:8c:dc:20:7d:64: 23:fa:08:fd:86:a2:51:45:fc:1a:54:07:65:59:da:05:6b:39: 67:00:a2:96:be:16:8d:0c:3d:df:22:9f:ba:89:f9:1a:d2:58: 30:e7:e6:f9:63:15:a1:d2:7f:32:b9:b9:b6:1b:53:2e:d9:48: e1:80:86:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjQwNTA2MTU1MDI2WhcNMjQwNTEzMTU1MDI2WjAYMRYwFAYD VQQDEw02NjM4ZmM0Mi1jNmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyf3Rlh65ZlBV2F5+unVVS4nMmsZIk7OYbH6jUdqDTemDH1xulnBvkKCPk51 EON8tkOnbxtRhkIZcde0DS4sXbqTi2kf8BAdsw7HG9yGotPnikWqowMkNFqNCvQY tqJbde57viW7rmrlGGBlx48wXfD328p5tGpNWWe9Z3dgsXfN2JGSpmjXn4yqYZqb DPN/tF9e6BZkHlPCqXwarl2KMMBx34tSN0jXzg68SY0PxA2JojmD4AsAgfumTpaF 4ebLaPYGcZvZQYOfZ+tM8mlfM/ih6EVXHaD8BhRgE4VouNU8822ZJNU6UIFHHP2J MY32B6DkZ4p3U6zEBT5ZANHQhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyuyL/I gg8xAj4SGID2HH1/lglwMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvTmh8hennF/MyZ/fGcAGBP5h3ty8LPVR5Z8Ol9y+Ja4HB5M5wzsZK HeA7dQd2ceG6ovzWvsiQgLcg3MnQKq2QLFqq4xVmTAEzYtXk2oErPpacoK/WnfCm pliDezoVYmz04LUIhgGGEgkY9LqiHIYNKLeWuulMPekZvD+OHKTKO+C3ffedYH1f jMj+JDMbW+yxtOG+SCB4jhyiJbzMMtbQXIOE2Oe4HEEh8FTqq1DcL68uzHGX3hdU /MV07ES22/+ljNwgfWQj+gj9hqJRRfwaVAdlWdoFazlnAKKWvhaNDD3fIp+6ifka 0lgw5+b5YxWh0n8yubm2G1Mu2UjhgIbK -----END CERTIFICATE-----Generated at Mon May 6 17:42:39 2024 by rpki-client on console-ams.rpki-client.org