$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft File: u7bmAQQ3QyUFSIC308E15vx8yrE.mft (raw, json) Hash identifier: KA/yVQ5LQJWWfe5FhClNs8rqp7qt6eNMgokxmMqr6IY= Subject key identifier: 3F:9E:47:DB:0C:ED:90:6A:F0:8E:C7:66:BA:4C:52:0C:54:B7:B7:E6 Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft Manifest number: 0120 Signing time: Sat 27 Apr 2024 05:03:28 +0000 Manifest this update: Sat 27 Apr 2024 05:03:27 +0000 Manifest next update: Sat 04 May 2024 05:03:27 +0000 Files and hashes: 1: u7bmAQQ3QyUFSIC308E15vx8yrE.crl (hash: kEwz1xJJNMkfNClCzSWQBBqpR1K+DSkKBqTBmIfOAGs=) 2: CCB0DBA8CB2911EE9CE70483C4F9AE02.roa (hash: sgSXd3m9mDi3ZHfWlaTLdX/V0PIgSoBQzzaSnrjqwOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Validity Not Before: Apr 27 05:03:27 2024 GMT Not After : May 4 05:03:27 2024 GMT Subject: CN=662c8720-b376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4a:81:26:fd:8d:00:c1:b0:36:b4:33:7c:a2: e9:29:f3:a6:05:3f:ef:d0:47:8c:f5:0e:d8:f2:28: 49:d3:a9:b5:91:32:56:4b:13:be:8c:9a:11:56:fb: 67:7e:7e:8f:f4:4a:df:9e:ad:a3:53:fa:0f:ca:8b: 34:ab:12:0c:a8:35:04:55:1f:7e:28:a7:84:d8:f9: 59:54:12:f1:2e:34:29:68:ab:f5:0d:78:43:83:a7: e6:ce:c9:1f:7c:85:5e:ca:b8:75:a6:f5:16:6a:8a: 21:cd:be:8a:f9:ab:0e:ce:eb:d9:68:f0:6d:69:94: a7:fa:61:a0:c5:66:a8:31:9f:ed:13:ed:85:25:f7: e4:2b:29:e5:e5:9e:e8:63:f7:a7:9d:b7:a1:38:2b: 72:ec:63:84:7c:8b:ef:9d:44:2e:e9:a2:fb:ba:d9: 50:d0:ff:15:ed:20:66:da:4f:ec:bc:a5:2b:43:93: 22:7f:02:5b:90:1b:ce:32:df:99:a0:17:a3:61:b1: 13:66:d5:61:ac:70:9f:c7:b3:26:41:a1:b7:33:e9: 28:aa:86:ae:8c:e4:67:94:1d:97:bc:6b:35:5c:d3: 6e:27:ae:5c:f8:fb:58:88:f7:f2:7f:30:d5:da:19: 33:19:e3:d4:0b:65:31:4a:66:91:2c:7d:6b:8b:7d: d9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9E:47:DB:0C:ED:90:6A:F0:8E:C7:66:BA:4C:52:0C:54:B7:B7:E6 X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:b5:be:b7:a9:6a:58:52:bf:a5:30:a1:3f:f2:3e:a7:d0:ec: a8:22:64:06:1b:49:e9:32:63:fb:b0:03:9b:d9:dc:35:33:44: 59:ae:3e:36:03:bf:e1:ca:73:07:fb:8c:4a:94:56:ac:52:14: b3:b6:35:0a:5c:6b:d3:85:e6:88:93:04:e3:46:3b:01:d2:e5: 38:f4:b3:33:5c:e1:be:49:72:59:66:16:e6:77:1d:69:7b:cc: 03:e7:17:d5:d3:00:00:67:bf:2e:e3:55:bc:2e:b2:de:30:92: b9:b9:02:08:11:b7:69:fc:30:84:b9:ff:9e:33:a2:f0:f3:da: ad:32:c2:5c:96:de:9a:0a:ad:82:52:d4:4e:49:b2:e0:f2:6c: cb:40:fd:0f:d6:33:46:3f:ce:9c:07:00:19:a4:da:9b:dc:6e: 03:74:36:50:7b:21:40:ee:fd:7a:3e:8a:62:6e:e3:92:0d:80: b0:71:4d:71:e7:a0:8d:63:f1:64:af:3e:82:a5:68:a3:23:85: 2d:52:86:02:2a:4f:c8:52:aa:f9:4b:fe:0b:35:78:31:b8:91: 67:84:b9:3f:01:46:ca:9f:c3:be:f0:0e:e5:3b:ee:04:2e:5c: 9a:d6:fd:1b:ad:b7:16:0c:0b:c8:77:9a:17:0c:96:e4:d7:40: 16:86:ff:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjQwNDI3MDUwMzI3WhcNMjQwNTA0MDUwMzI3WjAYMRYwFAYD VQQDEw02NjJjODcyMC1iMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UqBJv2NAMGwNrQzfKLpKfOmBT/v0EeM9Q7Y8ihJ06m1kTJWSxO+jJoRVvtn fn6P9Erfnq2jU/oPyos0qxIMqDUEVR9+KKeE2PlZVBLxLjQpaKv1DXhDg6fmzskf fIVeyrh1pvUWaoohzb6K+asOzuvZaPBtaZSn+mGgxWaoMZ/tE+2FJffkKynl5Z7o Y/ennbehOCty7GOEfIvvnUQu6aL7utlQ0P8V7SBm2k/svKUrQ5MifwJbkBvOMt+Z oBejYbETZtVhrHCfx7MmQaG3M+koqoaujORnlB2XvGs1XNNuJ65c+PtYiPfyfzDV 2hkzGePUC2UxSmaRLH1ri33ZTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+eR9sM 7ZBq8I7HZrpMUgxUt7fmMB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA0QS85NUE4MTAxNDUwNzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5 VUZTSUMzMDhFMTV2eDh5ckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYtb63qWpYUr+lMKE/8j6n0OyoImQGG0npMmP7sAOb2dw1M0RZrj42 A7/hynMH+4xKlFasUhSztjUKXGvTheaIkwTjRjsB0uU49LMzXOG+SXJZZhbmdx1p e8wD5xfV0wAAZ78u41W8LrLeMJK5uQIIEbdp/DCEuf+eM6Lw89qtMsJclt6aCq2C UtROSbLg8mzLQP0P1jNGP86cBwAZpNqb3G4DdDZQeyFA7v16PopibuOSDYCwcU1x 56CNY/Fkrz6CpWijI4UtUoYCKk/IUqr5S/4LNXgxuJFnhLk/AUbKn8O+8A7lO+4E Llya1v0brbcWDAvId5oXDJbk10AWhv8o -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:34 2024 by rpki-client on console-ams.rpki-client.org