$ rpki-client -vvf rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft File: AQtAe3X24zjzr7WajWJxXDwC7PQ.mft (raw, json) Hash identifier: GeR8WG5sht5uCFE85OuKoOjHapNmbJC4I1oyYY+WTis= Subject key identifier: 3A:03:7A:E5:91:66:01:19:8F:15:1F:43:39:10:DB:FB:21:51:A5:9E Authority key identifier: 01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 Certificate issuer: /CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Certificate serial: 1600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft Manifest number: 15F1 Signing time: Sat 04 May 2024 17:20:42 +0000 Manifest this update: Sat 04 May 2024 17:20:41 +0000 Manifest next update: Sat 11 May 2024 17:20:41 +0000 Files and hashes: 1: AQtAe3X24zjzr7WajWJxXDwC7PQ.crl (hash: m1/F2sfGJbmmeH0MLg0Y9rspoyQSDAVYAOaO5EvN0RI=) 2: 0D4F5906FA7911E7B85F4E7EC4F9AE02.roa (hash: iVyDvlKDRQf9+n7RKWYpftsNPBdU6hk+ssDPaArObWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5632 (0x1600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Validity Not Before: May 4 17:20:41 2024 GMT Not After : May 11 17:20:41 2024 GMT Subject: CN=66366e69-c642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:38:99:68:47:6b:81:f0:6d:e3:5e:3b:f5:35: 71:26:f3:27:fa:ed:bc:12:7f:51:70:2a:5f:73:b3: ed:83:09:48:33:2f:2e:bd:f8:98:08:61:5f:6b:f7: 87:1b:a2:b1:be:71:f3:a0:02:18:17:e5:2f:ff:d9: 15:b2:5c:24:2d:0f:b4:8b:1c:7c:b7:1f:1b:be:ae: cb:0c:0f:22:fb:cf:d9:e4:ff:0c:3d:86:12:81:7e: 6a:5e:3d:1e:92:d6:e2:9a:00:61:6d:c1:7a:b9:dc: 45:7d:ad:00:30:8e:c3:58:d3:7e:40:c7:cf:bf:f6: 42:4a:d1:4d:c8:12:e3:d6:62:78:9c:df:cb:b4:1c: 63:38:39:1b:d4:55:9b:47:1e:6f:04:0f:29:52:d2: 40:97:6d:fd:38:b6:4b:93:43:d4:d5:cd:2e:05:da: ea:80:bc:69:59:b9:18:d2:e2:99:f5:76:e6:e0:d7: 5b:69:99:4c:70:51:d1:ba:0c:61:16:0b:f8:69:10: 30:95:fa:9e:48:15:0f:f8:c8:df:ba:63:50:6c:28: bd:24:a6:66:ed:65:ae:df:02:a0:df:1a:c5:48:f1: ee:bd:d3:09:b4:99:7a:a3:ba:cf:77:27:37:8d:aa: 5d:01:66:0e:02:8a:bb:0e:a7:87:b1:d3:0d:0d:1f: 91:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:03:7A:E5:91:66:01:19:8F:15:1F:43:39:10:DB:FB:21:51:A5:9E X509v3 Authority Key Identifier: keyid:01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:7b:53:05:e8:c1:2d:d3:2f:60:47:61:06:a1:79:9f:e2:8b: 2b:24:77:f9:d7:7d:88:79:50:f2:f5:2e:9c:04:d9:a9:be:b0: 35:1b:18:58:98:66:e3:29:6d:9f:e8:4c:5d:78:ec:e7:31:2c: 39:e5:cd:d0:ba:a5:c8:d6:f5:21:3a:e1:1b:07:57:0e:78:3d: 9c:52:d1:a6:28:63:b4:87:bf:30:e7:d2:69:4c:f2:18:16:bd: 9c:02:6c:96:46:03:10:81:04:c9:aa:26:79:07:43:8a:16:06: 5a:92:e3:1a:f5:16:e7:19:3f:45:8d:c6:a5:19:11:26:53:3b: e8:ca:5f:44:de:d7:47:ef:2e:af:a1:a5:ea:a7:59:89:00:92: 6d:28:45:9b:43:85:e4:82:6c:d1:b7:7c:6c:70:b9:99:bc:da: 98:a0:39:8e:2f:8e:29:7c:05:cf:a1:6d:c4:c0:11:be:bb:06: 7c:71:f3:a1:f7:ec:91:7a:05:4d:80:3c:52:3f:83:6e:09:a7: f6:c6:4a:37:bf:dc:51:34:ae:58:01:22:58:99:5d:8c:54:fb: 42:ee:9c:49:32:5d:b3:7d:1b:aa:37:9f:f6:a7:c1:4f:e5:d3: 04:e3:1f:f4:61:db:85:ef:93:1f:6a:71:c3:4f:44:62:a8:b3: 72:fc:25:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJFQzcxMTAvBgNVBAUTKDAxMEI0MDdCNzVGNkUzMzhGM0FGQjU5QThENjI3MTVD M0MwMkVDRjQwHhcNMjQwNTA0MTcyMDQxWhcNMjQwNTExMTcyMDQxWjAYMRYwFAYD VQQDEw02NjM2NmU2OS1jNjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvziZaEdrgfBt41479TVxJvMn+u28En9RcCpfc7PtgwlIMy8uvfiYCGFfa/eH G6KxvnHzoAIYF+Uv/9kVslwkLQ+0ixx8tx8bvq7LDA8i+8/Z5P8MPYYSgX5qXj0e ktbimgBhbcF6udxFfa0AMI7DWNN+QMfPv/ZCStFNyBLj1mJ4nN/LtBxjODkb1FWb Rx5vBA8pUtJAl239OLZLk0PU1c0uBdrqgLxpWbkY0uKZ9Xbm4NdbaZlMcFHRugxh Fgv4aRAwlfqeSBUP+MjfumNQbCi9JKZm7WWu3wKg3xrFSPHuvdMJtJl6o7rPdyc3 japdAWYOAoq7DqeHsdMNDR+RzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoDeuWR ZgEZjxUfQzkQ2/shUaWeMB8GA1UdIwQYMBaAFAELQHt19uM486+1mo1icVw8Auz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkVDNy8yOTM0NzI2QUZB NzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6anpyN1dhaldKeFhEd0M3 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRdEFlM1gyNHpqenI3V2FqV0p4WER3QzdQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkVDNy8yOTM0NzI2QUZBNzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6 anpyN1dhaldKeFhEd0M3UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1e1MF6MEt0y9gR2EGoXmf4osrJHf5132IeVDy9S6cBNmpvrA1GxhY mGbjKW2f6ExdeOznMSw55c3QuqXI1vUhOuEbB1cOeD2cUtGmKGO0h78w59JpTPIY Fr2cAmyWRgMQgQTJqiZ5B0OKFgZakuMa9RbnGT9FjcalGREmUzvoyl9E3tdH7y6v oaXqp1mJAJJtKEWbQ4XkgmzRt3xscLmZvNqYoDmOL44pfAXPoW3EwBG+uwZ8cfOh 9+yRegVNgDxSP4NuCaf2xko3v9xRNK5YASJYmV2MVPtC7pxJMl2zfRuqN5/2p8FP 5dME4x/0YduF75MfanHDT0RiqLNy/CW+ -----END CERTIFICATE-----Generated at Sat May 4 19:58:36 2024 by rpki-client on console-ams.rpki-client.org