$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: mapTzgsljCWdS0eoouIU8kv9zBLyK38/DcAv3SPwYsE= Subject key identifier: 05:04:48:BA:84:88:32:A3:D9:31:06:A9:50:15:ED:2E:57:F0:F9:CF Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: 31 Signing time: Fri 17 May 2024 08:29:43 +0000 Manifest this update: Fri 17 May 2024 08:29:42 +0000 Manifest next update: Fri 24 May 2024 08:29:42 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: ul/QKhLv3sdLujiFzedl3UiNQoixbLYmXKVX7t4EA1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: May 17 08:29:42 2024 GMT Not After : May 24 08:29:42 2024 GMT Subject: CN=66471576-17f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7a:26:55:84:db:d5:0d:3f:26:53:da:62:97: 84:26:16:08:0b:84:0e:4e:ec:9e:62:c0:fc:52:69: 89:91:7c:44:08:92:04:dc:d7:5e:34:c7:f3:80:05: af:08:aa:62:c4:8a:f7:4e:93:88:8f:e6:de:51:91: 88:7d:3b:a6:50:94:a1:28:e4:4e:0d:6e:41:86:fd: d5:f6:ab:ff:6e:0c:0e:b1:28:08:e8:81:70:c0:4c: 7e:13:80:82:3c:14:bc:f8:10:2a:d3:0c:27:35:68: 60:51:f4:6f:34:43:43:ac:81:c7:66:4b:19:69:4f: c5:73:36:d2:d9:b7:2a:7e:c9:bb:94:49:3c:84:b2: a8:6c:52:81:03:1c:96:12:9d:5e:e2:fc:1a:be:db: fd:91:c4:de:b1:98:a2:9c:a4:28:f6:a7:06:d6:69: 3e:a2:f8:44:30:f6:50:41:88:34:d1:07:5b:28:87: 4d:95:a1:48:a7:cf:96:de:d9:47:3c:47:29:20:67: fc:43:36:6f:26:9d:42:c3:f9:b5:58:65:d0:4d:3a: d9:4a:e9:c4:96:40:01:0f:9a:c8:8d:a2:77:a1:99: 8b:a9:43:86:75:a7:d6:2a:dd:ae:b5:8b:d6:e9:63: 02:49:e0:cf:52:ce:08:73:7c:00:c6:4f:05:d6:12: fc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:04:48:BA:84:88:32:A3:D9:31:06:A9:50:15:ED:2E:57:F0:F9:CF X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:5a:68:90:52:fb:97:86:8e:f2:fd:7c:8a:d7:d1:39:77:2c: f0:39:23:93:8a:dd:b2:dd:a6:b7:b3:47:f9:57:23:3b:e8:da: 29:39:b9:b9:e0:1a:75:62:cd:2d:f6:b5:4b:47:77:17:79:55: f9:e2:20:de:f2:21:7b:48:6e:ac:f5:8b:6d:38:ba:14:79:b3: b8:4a:68:7a:30:0d:60:99:a5:04:a2:58:69:6b:d6:ff:5b:92: c3:f4:42:99:a8:b4:49:e2:c0:ed:ba:45:5e:63:96:11:f6:39: 8c:87:b1:c6:ce:ce:20:9c:ac:66:3b:93:2e:58:4f:33:7a:bc: a3:42:84:51:7a:8d:a6:a8:a8:d5:32:1b:cc:50:27:f1:79:f4: 4d:8c:10:3b:97:f0:3e:cb:1c:89:55:2b:40:cf:17:c3:9d:fc: 37:6a:00:20:d1:28:f2:46:49:25:a9:45:d7:f6:38:12:f8:59: 3b:6f:f6:d5:ee:ec:a1:9d:36:fa:95:57:30:58:9b:d5:5c:ce: 46:bd:ff:90:d3:e3:90:95:f4:c4:33:49:28:ee:1d:52:7a:92: 79:29:fa:fe:c3:18:81:0b:0f:78:e7:ad:f0:54:c5:db:05:fd: 28:39:dc:82:b5:5b:90:ce:1c:21:80:6e:f8:ee:33:26:9a:15: da:3d:18:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTcxMTExMC8GA1UEBRMoRjFBREJEMEU3MTM5MURGMjEwREUzNDYxRTc2NTc4QjQ3 QTAxNjI0QTAeFw0yNDA1MTcwODI5NDJaFw0yNDA1MjQwODI5NDJaMBgxFjAUBgNV BAMTDTY2NDcxNTc2LTE3ZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaeiZVhNvVDT8mU9pil4QmFggLhA5O7J5iwPxSaYmRfEQIkgTc1140x/OABa8I qmLEivdOk4iP5t5RkYh9O6ZQlKEo5E4NbkGG/dX2q/9uDA6xKAjogXDATH4TgII8 FLz4ECrTDCc1aGBR9G80Q0OsgcdmSxlpT8VzNtLZtyp+ybuUSTyEsqhsUoEDHJYS nV7i/Bq+2/2RxN6xmKKcpCj2pwbWaT6i+EQw9lBBiDTRB1soh02VoUinz5be2Uc8 RykgZ/xDNm8mnULD+bVYZdBNOtlK6cSWQAEPmsiNonehmYupQ4Z1p9Yq3a61i9bp YwJJ4M9SzghzfADGTwXWEvwBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBQRIuoSI MqPZMQapUBXtLlfw+c8wHwYDVR0jBBgwFoAU8a29DnE5HfIQ3jRh52V4tHoBYkow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxNzExL0E5NTBERkRBQzk5 MTExRUU4OTFCQTQxOUM0RjlBRTAyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllr by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOGEyOURuRTVIZklRM2pSaDUyVjR0SG9CWWtvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMx NzExL0E5NTBERkRBQzk5MTExRUU4OTFCQTQxOUM0RjlBRTAyLzhhMjlEbkU1SGZJ UTNqUmg1MlY0dEhvQllrby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHtaaJBS+5eGjvL9fIrX0Tl3LPA5I5OK3bLdprezR/lXIzvo2ik5ubng GnVizS32tUtHdxd5VfniIN7yIXtIbqz1i204uhR5s7hKaHowDWCZpQSiWGlr1v9b ksP0QpmotEniwO26RV5jlhH2OYyHscbOziCcrGY7ky5YTzN6vKNChFF6jaaoqNUy G8xQJ/F59E2MEDuX8D7LHIlVK0DPF8Od/DdqACDRKPJGSSWpRdf2OBL4WTtv9tXu 7KGdNvqVVzBYm9Vczka9/5DT45CV9MQzSSjuHVJ6knkp+v7DGIELD3jnrfBUxdsF /Sg53IK1W5DOHCGAbvjuMyaaFdo9GJo= -----END CERTIFICATE-----Generated at Fri May 17 10:59:08 2024 by rpki-client on console-ams.rpki-client.org