$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft File: C7AFcf321rzGNEbrOmSR-uqpCG8.mft (raw, json) Hash identifier: 2ljS1BEa+At0/GU41f/hJtSMvC9G47nWdqRky9XYcHs= Subject key identifier: E4:96:16:C6:F9:6E:A5:8B:F9:14:DB:B2:BA:8A:B7:97:B6:E7:30:CB Authority key identifier: 0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F Certificate issuer: /CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Certificate serial: 0475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft Manifest number: 0471 Signing time: Sun 05 May 2024 01:51:43 +0000 Manifest this update: Sun 05 May 2024 01:51:43 +0000 Manifest next update: Sun 12 May 2024 01:51:43 +0000 Files and hashes: 1: C7AFcf321rzGNEbrOmSR-uqpCG8.crl (hash: TE2Z8pwHkAmyvpumVRcS3aeb3J25GpOX1dig8PKoyuc=) 2: 6B191E20F75811EB9C2B5D4DC4F9AE02.roa (hash: 4adOiIgJl0Kfadpc1vetBRm8e77C/OGsoV4229ZvSXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1141 (0x475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Validity Not Before: May 5 01:51:43 2024 GMT Not After : May 12 01:51:43 2024 GMT Subject: CN=6636e62f-7641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2a:09:a9:89:4d:5d:ef:2c:69:2a:70:47:fb: 11:8d:91:97:6d:6c:1f:52:92:e7:77:00:c2:5c:20: 27:8d:cd:b1:5b:b8:36:60:de:f9:01:af:84:51:0e: 27:53:d1:5b:c1:02:93:85:8f:44:50:76:5e:5a:63: a2:d9:0a:d0:5f:8f:fd:89:ab:f7:53:92:3d:2c:25: 22:87:e2:e2:f9:2e:72:ff:c7:ab:8d:fa:65:75:70: 72:84:f2:f8:b8:73:b5:bf:b6:45:93:24:75:77:32: a2:c1:50:87:2c:50:ce:6e:c2:ef:60:da:77:b9:d2: 72:da:78:b9:29:62:a8:3a:14:9b:3f:80:c1:8d:74: 64:98:36:bf:24:d8:5c:53:11:a3:57:46:0d:38:84: a2:19:6f:c0:ce:76:72:41:0e:84:cd:c4:cd:80:18: 5f:8b:ed:fc:7d:a4:fb:16:f1:44:e9:43:3c:34:c6: 1c:78:b9:70:a7:64:5c:99:e7:c1:0b:48:97:b9:93: 9f:52:20:f4:22:60:3b:c1:b8:e6:0a:16:ab:05:5e: c1:d7:fa:55:31:a0:a2:36:e6:93:22:3b:6b:26:44: 23:9c:a6:e4:2e:e7:a1:e9:e0:b6:54:27:16:22:56: 15:ab:be:8d:cf:dc:f3:95:56:16:ca:a1:a8:d1:ae: c2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:96:16:C6:F9:6E:A5:8B:F9:14:DB:B2:BA:8A:B7:97:B6:E7:30:CB X509v3 Authority Key Identifier: keyid:0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:77:02:c8:84:23:f5:6c:62:80:04:8b:78:8c:08:72:24:09: 58:53:ba:bb:bd:97:54:44:2d:c3:1e:a2:0c:c4:53:27:42:43: a4:44:83:0f:41:de:59:db:d4:8d:61:d4:9b:e1:6c:2f:0b:0d: 25:a9:53:bd:bc:cc:91:48:2e:18:71:b0:53:13:75:23:b0:81: 34:7f:3d:9f:73:ee:22:cf:0a:8e:2b:02:b9:ec:ec:ee:ff:f3: 90:92:8b:53:64:3b:3a:fb:25:e4:78:c2:c0:4a:da:3b:c8:7b: 46:18:be:fe:8e:e9:01:6b:c9:76:2d:f5:6f:c9:e8:d5:c5:ce: cf:8d:47:b1:46:15:45:8b:07:81:2e:87:62:61:aa:4d:6c:41: 62:04:cb:27:5b:98:ab:2f:4c:d8:10:3f:91:69:e6:23:e5:d0: 63:ba:7b:25:b0:90:6d:f1:94:1f:01:0a:77:e3:dc:12:a0:83: b2:80:c7:1c:5f:05:4c:51:59:cd:82:13:3d:f9:3b:e7:ba:73: 23:d5:b2:7b:d5:f1:e6:ca:33:54:72:2d:eb:e1:26:a8:35:e3: 2a:a5:25:7d:02:2e:53:65:4b:43:d4:76:f6:05:f0:6d:68:63: f2:2f:9a:12:e8:d4:f1:36:ca:bb:0d:cb:51:b2:d5:38:2c:22: 7c:c7:da:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDODMxMTAvBgNVBAUTKDBCQjAwNTcxRkRGNkQ2QkNDNjM0NDZFQjNBNjQ5MUZB RUFBOTA4NkYwHhcNMjQwNTA1MDE1MTQzWhcNMjQwNTEyMDE1MTQzWjAYMRYwFAYD VQQDEw02NjM2ZTYyZi03NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSoJqYlNXe8saSpwR/sRjZGXbWwfUpLndwDCXCAnjc2xW7g2YN75Aa+EUQ4n U9FbwQKThY9EUHZeWmOi2QrQX4/9iav3U5I9LCUih+Li+S5y/8erjfpldXByhPL4 uHO1v7ZFkyR1dzKiwVCHLFDObsLvYNp3udJy2ni5KWKoOhSbP4DBjXRkmDa/JNhc UxGjV0YNOISiGW/AznZyQQ6EzcTNgBhfi+38faT7FvFE6UM8NMYceLlwp2RcmefB C0iXuZOfUiD0ImA7wbjmCharBV7B1/pVMaCiNuaTIjtrJkQjnKbkLueh6eC2VCcW IlYVq76Nz9zzlVYWyqGo0a7C7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSWFsb5 bqWL+RTbsrqKt5e25zDLMB8GA1UdIwQYMBaAFAuwBXH99ta8xjRG6zpkkfrqqQhv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM4My80QkFGQjExOEY3 NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFyekdORWJyT21TUi11cXBD RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QUZjZjMyMXJ6R05FYnJPbVNSLXVxcENHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUM4My80QkFGQjExOEY3NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFy ekdORWJyT21TUi11cXBDRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6dwLIhCP1bGKABIt4jAhyJAlYU7q7vZdURC3DHqIMxFMnQkOkRIMP Qd5Z29SNYdSb4WwvCw0lqVO9vMyRSC4YcbBTE3UjsIE0fz2fc+4izwqOKwK57Ozu //OQkotTZDs6+yXkeMLASto7yHtGGL7+jukBa8l2LfVvyejVxc7PjUexRhVFiweB LodiYapNbEFiBMsnW5irL0zYED+RaeYj5dBjunslsJBt8ZQfAQp349wSoIOygMcc XwVMUVnNghM9+TvnunMj1bJ71fHmyjNUci3r4SaoNeMqpSV9Ai5TZUtD1Hb2BfBt aGPyL5oS6NTxNsq7DctRstU4LCJ8x9qo -----END CERTIFICATE-----Generated at Sun May 5 03:09:53 2024 by rpki-client on console-ams.rpki-client.org