$ rpki-client -vvf rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft File: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft (raw, json) Hash identifier: V6Zo4fhjpYXYgWosrrt8o5u5gccHSnHL+3IYL4PAJJk= Subject key identifier: AC:2F:9D:C1:E1:E4:D4:95:9F:A1:41:4E:CC:6A:1E:99:02:75:B2:28 Authority key identifier: F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17 Certificate issuer: /CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft Manifest number: 01C4 Signing time: Fri 03 May 2024 04:31:40 +0000 Manifest this update: Fri 03 May 2024 04:31:39 +0000 Manifest next update: Fri 10 May 2024 04:31:39 +0000 Files and hashes: 1: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl (hash: KWzfEXCUQQyrIqUDYgTuAzZr0fm5SBtPDQULQZ3Nco8=) 2: 8EEDD62405C111EDA8DAD745C4F9AE02.roa (hash: Ekc4Qkr8sRMuE7F4MCGjZBhWAK93Pw2VXMRlgWQHI+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717 Validity Not Before: May 3 04:31:39 2024 GMT Not After : May 10 04:31:39 2024 GMT Subject: CN=663468ab-465e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b4:65:7a:f9:c2:f5:22:af:45:9d:a2:69:c2: 94:e4:1e:db:3b:99:68:86:f6:41:99:50:bb:5e:23: 23:9d:92:fa:fd:13:5f:80:88:b1:1e:ba:83:13:f4: db:99:73:29:d1:e5:ad:8a:a9:4e:14:86:1f:f9:20: 97:01:26:47:4a:b8:fe:75:68:ff:72:d4:5f:c2:03: 4a:2c:77:24:e7:51:60:bc:9e:66:b6:b5:5b:3b:11: 0e:fb:4b:db:99:c7:b8:71:5d:07:e7:83:e6:e0:6e: 27:79:7d:44:87:40:dd:a4:77:63:d2:71:f2:00:0a: 95:c0:22:48:c5:81:22:02:52:70:ca:c3:77:84:0e: 1c:eb:d1:e3:46:56:01:61:b6:3d:da:cc:af:e8:e6: 2b:e4:d1:80:25:dc:d2:3a:57:69:60:a3:b0:84:f5: bc:1c:ac:ad:6d:33:cd:aa:a4:0c:00:15:e6:b3:3d: ba:27:d3:67:c9:45:6c:ae:7e:93:e3:7a:ef:65:6d: 3f:4d:82:8b:8d:80:c1:99:eb:2c:87:30:11:b1:b7: a5:4f:7e:71:3b:65:b1:38:2b:e9:96:31:cb:c3:29: 4f:69:5f:5e:65:8f:57:e6:13:03:8a:1e:df:b5:80: ac:56:d1:b7:1b:4c:e3:45:33:72:60:85:c8:42:6a: 72:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2F:9D:C1:E1:E4:D4:95:9F:A1:41:4E:CC:6A:1E:99:02:75:B2:28 X509v3 Authority Key Identifier: keyid:F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:98:95:b2:fa:6f:15:48:5a:ed:4d:4b:87:56:34:89:d8:4c: 67:29:b5:57:84:fd:fe:e3:98:b6:9e:94:92:68:f5:2a:22:7d: 4e:27:23:9d:7f:3b:77:99:a5:6a:ef:40:12:d3:68:35:19:b0: f4:de:8f:d1:24:67:02:68:19:82:49:83:fe:da:ca:f6:90:da: 9d:af:ca:08:6e:83:3b:5e:61:1d:04:97:19:45:ea:49:88:d6: c2:f4:12:ae:31:bc:c2:f8:15:a5:38:b2:ff:11:6c:2e:01:61: 81:ab:5b:a6:83:4d:81:23:5f:80:fd:7f:dc:b0:8d:37:20:88: a0:e3:f3:8f:c6:40:a1:3f:e3:fa:4c:de:35:24:34:c0:63:14: f9:8c:87:a8:85:61:e5:f4:f3:da:6f:21:4b:9b:d1:6a:73:ed: 67:e2:c4:7f:d0:f0:db:3d:ac:73:77:66:cc:f8:80:4f:aa:44: fb:f6:16:8d:f9:7a:21:5a:28:50:d5:79:e9:2f:c1:0b:0e:8c: 36:64:46:a2:1f:c4:e4:2f:07:1c:b8:1b:c3:cd:5d:06:4e:34: 0d:df:4c:39:6a:74:36:51:bb:cc:32:91:3e:d7:ca:cc:bb:5b: 91:82:af:99:10:da:87:e1:5a:99:71:85:af:e9:28:d6:2e:e6: cc:ff:57:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI5QzExMTAvBgNVBAUTKEYyNTlCOEFDOUNGNDNCRDdDNTk0NTRFNUM4M0VDRjQ4 RjlGQjg3MTcwHhcNMjQwNTAzMDQzMTM5WhcNMjQwNTEwMDQzMTM5WjAYMRYwFAYD VQQDEw02NjM0NjhhYi00NjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLRlevnC9SKvRZ2iacKU5B7bO5lohvZBmVC7XiMjnZL6/RNfgIixHrqDE/Tb mXMp0eWtiqlOFIYf+SCXASZHSrj+dWj/ctRfwgNKLHck51FgvJ5mtrVbOxEO+0vb mce4cV0H54Pm4G4neX1Eh0DdpHdj0nHyAAqVwCJIxYEiAlJwysN3hA4c69HjRlYB YbY92syv6OYr5NGAJdzSOldpYKOwhPW8HKytbTPNqqQMABXmsz26J9NnyUVsrn6T 43rvZW0/TYKLjYDBmesshzARsbelT35xO2WxOCvpljHLwylPaV9eZY9X5hMDih7f tYCsVtG3G0zjRTNyYIXIQmpy+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwvncHh 5NSVn6FBTsxqHpkCdbIoMB8GA1UdIwQYMBaAFPJZuKyc9DvXxZRU5cg+z0j5+4cX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjlDMS80NDIzNkYwNDA1 QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6ME85ZkZsRlRseUQ3UFNQbjdo eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhsbTRySnowTzlmRmxGVGx5RDdQU1BuN2h4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjlDMS80NDIzNkYwNDA1QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6ME85 ZkZsRlRseUQ3UFNQbjdoeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAymJWy+m8VSFrtTUuHVjSJ2ExnKbVXhP3+45i2npSSaPUqIn1OJyOd fzt3maVq70AS02g1GbD03o/RJGcCaBmCSYP+2sr2kNqdr8oIboM7XmEdBJcZRepJ iNbC9BKuMbzC+BWlOLL/EWwuAWGBq1umg02BI1+A/X/csI03IIig4/OPxkChP+P6 TN41JDTAYxT5jIeohWHl9PPabyFLm9Fqc+1n4sR/0PDbPaxzd2bM+IBPqkT79haN +XohWihQ1XnpL8ELDow2ZEaiH8TkLwccuBvDzV0GTjQN30w5anQ2UbvMMpE+18rM u1uRgq+ZENqH4VqZcYWv6SjWLubM/1cN -----END CERTIFICATE-----Generated at Fri May 3 05:32:32 2024 by rpki-client on console-ams.rpki-client.org