$ rpki-client -vvf rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft File: jBwU3BZ027aLSUMBWHs9L5jtcBs.mft (raw, json) Hash identifier: QGuGpkirVXW8g9g8Tu/JqDYgCUj+18G+KOW1IOmxROg= Subject key identifier: 76:F8:67:4A:A0:95:23:3B:04:52:E0:8A:81:AE:16:5C:86:5A:9D:37 Authority key identifier: 8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B Certificate issuer: /CN=A912ECA4/serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft Manifest number: 24 Signing time: Wed 15 May 2024 08:41:48 +0000 Manifest this update: Wed 15 May 2024 08:41:47 +0000 Manifest next update: Wed 22 May 2024 08:41:47 +0000 Files and hashes: 1: jBwU3BZ027aLSUMBWHs9L5jtcBs.crl (hash: GJj6NVZUocsvfMc8ldIaBUyZCYC8plbkUq6uKG+UMZM=) 2: 24241410E2A211EEBFC9412EC4F9AE02.roa (hash: FPtj2ltI8kYpFvfOoBQqFwEMbsbIQSlUFtigm670/FY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ECA4/serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Validity Not Before: May 15 08:41:47 2024 GMT Not After : May 22 08:41:47 2024 GMT Subject: CN=6644754c-961a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:33:75:21:f8:7e:d2:c0:3e:17:74:a3:9a: cf:fe:12:b4:b0:dd:f9:84:02:b4:03:88:5b:d8:bd: 36:8e:f7:59:26:24:2c:52:fd:fc:ed:aa:69:40:50: 8c:b5:39:be:68:fe:6b:c9:f6:9e:35:0e:09:09:35: a4:5a:d1:e3:34:11:ab:9d:0a:95:05:05:ae:1c:56: e9:d2:20:39:54:01:52:ad:26:85:f2:bd:18:81:85: c2:2f:01:c5:c2:44:c6:a6:ae:2e:a8:c4:ae:b8:12: da:e2:52:92:cb:a2:75:d6:be:ec:94:05:f2:21:99: 85:c4:72:7a:f7:8c:4b:df:1c:b1:79:c2:38:a9:37: 88:d6:01:d7:bb:3d:9b:61:87:15:a2:b8:af:56:41: 24:80:e9:a3:28:7d:bf:47:65:28:89:1a:9a:a9:4a: 88:54:d4:bb:57:69:4f:8a:66:d6:68:ff:ba:69:be: ab:5c:48:37:a2:8a:eb:8c:af:f8:2a:6b:71:d8:99: b0:bc:de:0a:66:3a:a6:9c:97:14:c5:0d:35:a8:5a: e7:08:ce:48:40:7b:a4:1c:b5:bd:11:1f:c6:34:72: 30:49:f7:01:c0:09:a7:d3:00:7a:a2:78:b4:36:1b: 86:3b:aa:74:69:84:36:7b:14:c3:6d:35:6f:10:ec: b6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F8:67:4A:A0:95:23:3B:04:52:E0:8A:81:AE:16:5C:86:5A:9D:37 X509v3 Authority Key Identifier: keyid:8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:86:ad:0b:70:8a:56:a2:2e:99:d1:bb:60:41:53:f3:d5:c8: 78:ac:7f:48:4c:7b:6b:69:cc:92:bd:85:f1:5e:58:b9:67:4c: 0b:92:02:d2:c9:1a:91:68:32:4c:60:0d:92:4e:f8:c6:05:a1: 3e:58:24:82:c4:c9:18:83:b5:f2:b4:d8:2d:2c:91:a9:42:f1: c5:20:d4:94:7d:bc:b8:73:f4:e6:1d:c7:42:34:b9:45:17:c0: c3:13:9b:5f:08:41:f2:6a:38:fb:e0:58:d9:0f:4c:3f:c6:9f: 68:1e:59:f8:e1:4c:55:0e:2e:df:ac:74:89:fb:97:37:94:63: d0:d5:e5:b4:9c:92:e1:f4:b7:40:e8:64:be:4f:d3:0e:bc:7b: d6:f6:63:65:7e:9a:d1:08:67:2a:62:fc:f0:65:2d:63:b1:37: 23:b8:83:f9:a8:42:6e:8e:b0:f9:27:24:1b:8d:05:d2:fe:12: 28:da:41:ed:27:2b:5c:53:49:82:e5:88:57:de:15:ac:d8:ce: 40:11:93:66:c8:57:23:e9:89:0f:9d:44:74:e4:6a:40:37:ca: c1:fd:f8:fd:ce:36:a6:d5:bf:b0:5e:d9:83:05:4d:3d:8e:a0: 4a:61:51:da:8b:9e:d5:e6:9d:59:d1:02:8b:78:a8:4c:f0:eb: f2:90:0a:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RUNBNDExMC8GA1UEBRMoOEMxQzE0REMxNjc0REJCNjhCNDk0MzAxNTg3QjNEMkY5 OEVENzAxQjAeFw0yNDA1MTUwODQxNDdaFw0yNDA1MjIwODQxNDdaMBgxFjAUBgNV BAMTDTY2NDQ3NTRjLTk2MWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7RjN1Ifh+0sA+F3Sjms/+ErSw3fmEArQDiFvYvTaO91kmJCxS/fztqmlAUIy1 Ob5o/mvJ9p41DgkJNaRa0eM0EaudCpUFBa4cVunSIDlUAVKtJoXyvRiBhcIvAcXC RMamri6oxK64EtriUpLLonXWvuyUBfIhmYXEcnr3jEvfHLF5wjipN4jWAde7PZth hxWiuK9WQSSA6aMofb9HZSiJGpqpSohU1LtXaU+KZtZo/7ppvqtcSDeiiuuMr/gq a3HYmbC83gpmOqaclxTFDTWoWucIzkhAe6Qctb0RH8Y0cjBJ9wHACafTAHqieLQ2 G4Y7qnRphDZ7FMNtNW8Q7Lb3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdvhnSqCV IzsEUuCKga4WXIZanTcwHwYDVR0jBBgwFoAUjBwU3BZ027aLSUMBWHs9L5jtcBsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFQ0E0LzQ4NUYzMzZBRENF RDExRUVCQkJGNDAyRkM0RjlBRTAyL2pCd1UzQlowMjdhTFNVTUJXSHM5TDVqdGNC cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvakJ3VTNCWjAyN2FMU1VNQldIczlMNWp0Y0JzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF Q0E0LzQ4NUYzMzZBRENFRDExRUVCQkJGNDAyRkM0RjlBRTAyL2pCd1UzQlowMjdh TFNVTUJXSHM5TDVqdGNCcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKqGrQtwilaiLpnRu2BBU/PVyHisf0hMe2tpzJK9hfFeWLlnTAuSAtLJ GpFoMkxgDZJO+MYFoT5YJILEyRiDtfK02C0skalC8cUg1JR9vLhz9OYdx0I0uUUX wMMTm18IQfJqOPvgWNkPTD/Gn2geWfjhTFUOLt+sdIn7lzeUY9DV5bSckuH0t0Do ZL5P0w68e9b2Y2V+mtEIZypi/PBlLWOxNyO4g/moQm6OsPknJBuNBdL+EijaQe0n K1xTSYLliFfeFazYzkARk2bIVyPpiQ+dRHTkakA3ysH9+P3ONqbVv7Be2YMFTT2O oEphUdqLntXmnVnRAot4qEzw6/KQCt4= -----END CERTIFICATE-----Generated at Wed May 15 11:17:41 2024 by rpki-client on console-ams.rpki-client.org