$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: a2RzN9HTpjrq1SpwOuAHcfdcCJLdIVyxb+tTtxRnkg8= Subject key identifier: 1C:E8:BD:DE:E8:B4:AA:32:23:25:CE:BC:70:F5:79:F9:67:20:B1:5A Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0AFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0AE3 Signing time: Thu 18 Apr 2024 20:05:46 +0000 Manifest this update: Thu 18 Apr 2024 20:05:46 +0000 Manifest next update: Thu 25 Apr 2024 20:05:46 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: svfDglcsA4daEhXNiAWwZmTOR6f0p/FgcpjPLjLV6AY=) 2: F54754C2C98D11EE8CFD8336C4F9AE02.roa (hash: wVxq9HFqIypSzlPFeu3SULJUVaZbsgyd+n6KySF2wCI=) 3: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: YJYDpUw9hKSTBug9CbQ8eBzRXA4RtwGClBJTAtMVBPU=) 4: 34BD5E6CC98E11EEB9C40057C4F9AE02.roa (hash: 79xDNFAWooJzcM81SmIwxXHQyBYLG58ymspH34SVu0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 20:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2813 (0xafd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Apr 18 20:05:46 2024 GMT Not After : Apr 25 20:05:46 2024 GMT Subject: CN=66217d1a-5131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:56:60:fb:4e:26:08:ae:40:42:96:f2:9c:09: a3:78:57:37:c8:e5:a1:56:d5:56:6e:2c:12:fe:0f: c1:2d:69:87:60:81:c1:9f:7a:1c:29:16:c5:ac:74: 2d:ea:db:6d:28:1a:83:cd:31:4f:17:38:e0:67:48: dd:f9:05:5a:9e:5f:51:50:04:57:d1:4a:f6:c7:5a: b5:b1:0c:d6:d5:f9:7a:3c:1a:7b:91:9d:24:3d:90: 1e:1b:ef:d9:77:69:ea:14:0d:ba:29:b0:dd:a5:c2: 5a:9b:00:88:02:44:36:be:6f:8d:94:ff:0e:e4:23: f9:be:e9:fc:0d:82:14:09:8d:01:4a:37:c2:31:de: 52:0f:3e:86:53:07:17:c8:97:da:ad:01:81:f8:3a: 00:b6:00:70:23:d3:f0:c6:62:25:04:79:60:93:3a: b6:97:e7:1f:a3:55:86:dd:17:79:67:80:83:9a:41: fb:1f:4e:fc:80:1b:0f:9a:36:64:15:c0:78:04:d9: 5b:1a:c7:88:db:26:57:09:58:11:70:bf:f6:b0:74: 73:af:62:a9:d8:b1:cb:3d:4c:f6:cd:78:44:80:8d: 1b:2c:89:29:79:65:bf:e0:23:3a:66:bf:aa:de:22: 7d:9b:17:98:60:cb:f0:bf:fc:24:c5:8a:1b:78:a2: 70:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E8:BD:DE:E8:B4:AA:32:23:25:CE:BC:70:F5:79:F9:67:20:B1:5A X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:ef:07:e1:00:c8:4d:70:be:bf:8b:16:ab:d9:7c:29:27:c0: 78:3b:fe:18:6b:f5:cf:ba:91:c4:c5:4a:31:c9:08:8d:30:5d: 80:d1:a4:c7:f5:47:55:2a:e1:ef:c5:63:ed:0b:76:f6:0d:75: 00:f7:79:1e:93:16:a3:dc:06:79:4d:b1:f6:66:c8:01:32:4f: 05:29:9c:0e:51:8b:f3:f8:ab:a3:f4:56:b4:17:38:38:4e:cf: 6a:3d:bd:dc:fb:bf:a0:b1:71:c7:ce:de:2e:15:ba:8f:87:cd: 0f:46:ee:21:d8:e4:ac:b6:0f:e2:98:cf:18:b7:3a:6e:92:e0: d8:a5:6e:61:00:6b:99:3f:85:3c:d8:f0:49:e6:b4:6e:77:e4: 05:b8:09:cb:a8:8d:3b:6f:ae:17:52:1b:c1:45:d0:c7:c2:09: 41:a0:e0:2e:62:39:68:ad:db:f6:47:08:73:ec:31:47:6f:fa: 7e:3f:f9:fe:cc:c2:dc:51:4c:80:1b:63:f1:9f:8e:2f:d9:c2: b4:be:6e:e7:ce:03:6c:f7:3d:5a:14:7d:43:29:eb:d4:42:c7: ee:b8:8a:db:19:fc:7d:50:f4:f4:28:33:cf:32:9f:dd:0d:36: 38:c9:b6:4d:b3:c5:4a:91:ac:bb:e9:ee:92:e3:62:4c:53:6b: 6f:7c:6e:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjQwNDE4MjAwNTQ2WhcNMjQwNDI1MjAwNTQ2WjAYMRYwFAYD VQQDEw02NjIxN2QxYS01MTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlZg+04mCK5AQpbynAmjeFc3yOWhVtVWbiwS/g/BLWmHYIHBn3ocKRbFrHQt 6tttKBqDzTFPFzjgZ0jd+QVanl9RUARX0Ur2x1q1sQzW1fl6PBp7kZ0kPZAeG+/Z d2nqFA26KbDdpcJamwCIAkQ2vm+NlP8O5CP5vun8DYIUCY0BSjfCMd5SDz6GUwcX yJfarQGB+DoAtgBwI9PwxmIlBHlgkzq2l+cfo1WG3Rd5Z4CDmkH7H078gBsPmjZk FcB4BNlbGseI2yZXCVgRcL/2sHRzr2Kp2LHLPUz2zXhEgI0bLIkpeWW/4CM6Zr+q 3iJ9mxeYYMvwv/wkxYobeKJwNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzovd7o tKoyIyXOvHD1eflnILFaMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh7wfhAMhNcL6/ixar2XwpJ8B4O/4Ya/XPupHExUoxyQiNMF2A0aTH 9UdVKuHvxWPtC3b2DXUA93kekxaj3AZ5TbH2ZsgBMk8FKZwOUYvz+Kuj9Fa0Fzg4 Ts9qPb3c+7+gsXHHzt4uFbqPh80PRu4h2OSstg/imM8YtzpukuDYpW5hAGuZP4U8 2PBJ5rRud+QFuAnLqI07b64XUhvBRdDHwglBoOAuYjlordv2Rwhz7DFHb/p+P/n+ zMLcUUyAG2Pxn44v2cK0vm7nzgNs9z1aFH1DKevUQsfuuIrbGfx9UPT0KDPPMp/d DTY4ybZNs8VKkay76e6S42JMU2tvfG5l -----END CERTIFICATE-----Generated at Thu Apr 18 23:10:07 2024 by rpki-client on console-ams.rpki-client.org