$ rpki-client -vvf rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft File: xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft (raw, json) Hash identifier: 4UyyzBRdnPndI4NxHJDXFzJfP5WbdfTE9gQIMjnFubI= Subject key identifier: DF:85:A5:1D:C7:74:44:D9:C1:84:D3:74:67:3E:09:D6:E9:3A:76:1D Authority key identifier: C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B Certificate issuer: /CN=A9132DC8/serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft Manifest number: BB Signing time: Fri 03 May 2024 06:30:53 +0000 Manifest this update: Fri 03 May 2024 06:30:53 +0000 Manifest next update: Fri 10 May 2024 06:30:53 +0000 Files and hashes: 1: xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl (hash: gj8s/VcdwXEfw8gICSp41ysWzAQbqOh8yUyq8V3qtSY=) 2: 59AFB718ECB911ED99732649C4F9AE02.roa (hash: SkX1oqIaiC5HoUeOsKwvChHptLiEby9HEHxFbBMkDAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132DC8/serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B Validity Not Before: May 3 06:30:53 2024 GMT Not After : May 10 06:30:53 2024 GMT Subject: CN=6634849d-e5be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a1:5d:d4:6e:b0:98:30:3e:e7:9b:cb:77:51: 90:26:ad:61:69:f3:d6:d7:64:93:c5:de:1f:0a:88: aa:89:5c:14:ab:a7:2d:85:9e:21:e0:20:8c:5e:e2: 50:42:fe:7c:a1:ef:25:af:1a:a6:84:a5:a6:29:09: a5:10:5c:fd:4a:4f:88:5d:8c:85:01:d6:12:47:58: ae:6e:02:3d:a6:52:3f:df:5e:b9:c4:0c:4a:88:48: 31:16:8d:c5:40:5d:ae:56:8c:d7:92:e1:98:b2:e1: 3b:cf:52:a9:c4:14:d6:8c:d5:01:a5:64:6d:db:f7: c4:a4:d8:6e:4c:87:96:6a:64:a5:2e:1d:2a:9a:9b: 3f:4a:52:cd:33:c8:93:9a:64:5f:11:90:9c:38:45: 5f:84:1f:06:af:7a:92:04:e3:0e:2c:0a:8b:33:77: c9:db:68:d2:2b:c6:c0:c9:40:73:3a:e1:d9:55:f3: ea:74:eb:fb:0a:53:03:38:16:bd:16:02:81:a3:ff: 00:9c:8a:f4:3d:8f:5a:6b:94:10:18:d8:7c:d9:3a: b0:65:5d:a0:00:51:2b:fc:fc:47:99:19:9c:0d:6d: 55:8a:29:dc:98:13:57:97:fd:13:16:06:4e:9d:a8: d8:21:64:31:eb:1c:f6:5a:c7:32:b4:67:be:2c:1a: aa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:85:A5:1D:C7:74:44:D9:C1:84:D3:74:67:3E:09:D6:E9:3A:76:1D X509v3 Authority Key Identifier: keyid:C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:6f:2a:3d:c7:67:a0:98:d9:a2:0a:c7:c1:03:4a:38:d6:0f: cd:a6:1b:b5:39:86:fd:d6:5f:47:8e:6f:ee:49:ac:11:3c:d6: 55:8f:72:c6:95:68:30:90:f4:83:7d:cd:fc:ff:16:eb:e9:31: e9:6c:00:0c:5e:81:9b:b9:1a:56:25:23:c1:81:da:8a:97:52: 08:fe:40:72:3f:23:14:20:2b:61:ea:36:33:ef:0a:cc:5a:85: f5:c0:bd:ac:76:29:cc:e8:40:a4:5d:e0:21:66:c6:3e:ae:d3: 51:c2:8e:86:99:cb:b7:fe:a3:b5:7b:fc:e0:fe:39:7e:e6:32: e7:8f:04:b7:f0:5b:ef:e6:6c:38:1b:da:ba:f9:a9:cb:0e:3d: 3a:ac:88:67:33:7a:19:e9:35:5d:12:24:30:d7:ce:e8:81:64: d7:e9:4a:71:f2:23:e1:fa:5a:7e:8d:04:20:bd:6d:12:b8:ec: b0:e4:5e:f0:e5:a6:36:ee:8c:c4:20:2f:78:9f:45:97:8b:85: 13:78:3f:7a:fd:28:0f:01:2a:1c:9f:9e:5c:58:78:53:4c:62: cb:03:88:e8:e7:6e:b3:a7:c2:a2:90:0e:e7:70:68:4f:65:cd: bf:1c:3b:27:48:58:65:e6:44:8a:2b:d0:ef:d3:14:8b:b5:c9: 72:5d:c4:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEQzgxMTAvBgNVBAUTKEM0RDI2QUMwNkM4QTY1MjU4QUQ0NDkxQjY5REY4MzI5 MEJFMTgzN0IwHhcNMjQwNTAzMDYzMDUzWhcNMjQwNTEwMDYzMDUzWjAYMRYwFAYD VQQDEw02NjM0ODQ5ZC1lNWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qFd1G6wmDA+55vLd1GQJq1hafPW12STxd4fCoiqiVwUq6cthZ4h4CCMXuJQ Qv58oe8lrxqmhKWmKQmlEFz9Sk+IXYyFAdYSR1iubgI9plI/3165xAxKiEgxFo3F QF2uVozXkuGYsuE7z1KpxBTWjNUBpWRt2/fEpNhuTIeWamSlLh0qmps/SlLNM8iT mmRfEZCcOEVfhB8Gr3qSBOMOLAqLM3fJ22jSK8bAyUBzOuHZVfPqdOv7ClMDOBa9 FgKBo/8AnIr0PY9aa5QQGNh82TqwZV2gAFEr/PxHmRmcDW1ViincmBNXl/0TFgZO najYIWQx6xz2WscytGe+LBqqxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+FpR3H dETZwYTTdGc+CdbpOnYdMB8GA1UdIwQYMBaAFMTSasBsimUlitRJG2nfgykL4YN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkRDOC80NDRDNkYxNEVD QjUxMUVEOUQ2OEM0NTBDNEY5QUUwMi94Tkpxd0d5S1pTV0sxRWtiYWQtREtRdmhn M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOSnF3R3lLWlNXSzFFa2JhZC1ES1F2aGczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkRDOC80NDRDNkYxNEVDQjUxMUVEOUQ2OEM0NTBDNEY5QUUwMi94Tkpxd0d5S1pT V0sxRWtiYWQtREtRdmhnM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBabyo9x2egmNmiCsfBA0o41g/Nphu1OYb91l9Hjm/uSawRPNZVj3LG lWgwkPSDfc38/xbr6THpbAAMXoGbuRpWJSPBgdqKl1II/kByPyMUICth6jYz7wrM WoX1wL2sdinM6ECkXeAhZsY+rtNRwo6Gmcu3/qO1e/zg/jl+5jLnjwS38Fvv5mw4 G9q6+anLDj06rIhnM3oZ6TVdEiQw187ogWTX6Upx8iPh+lp+jQQgvW0SuOyw5F7w 5aY27ozEIC94n0WXi4UTeD96/SgPASocn55cWHhTTGLLA4jo526zp8KikA7ncGhP Zc2/HDsnSFhl5kSKK9Dv0xSLtclyXcRD -----END CERTIFICATE-----Generated at Fri May 3 08:21:07 2024 by rpki-client on console-ams.rpki-client.org