$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: UTBjOn6Qu7No0mkvFU9KmhoUeEKq85JuH23H3fY3GZQ= Subject key identifier: 28:67:78:1E:3D:DC:1C:51:E4:8C:EA:66:59:B1:30:81:F8:D2:D4:63 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 063E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 063E Signing time: Sat 04 May 2024 23:51:01 +0000 Manifest this update: Sat 04 May 2024 23:51:00 +0000 Manifest next update: Sat 11 May 2024 23:51:00 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: o3o27sZDMr6d9ARpfeh6nqoGhra7yzLHmb5HzHgn2NA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1598 (0x63e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: May 4 23:51:00 2024 GMT Not After : May 11 23:51:00 2024 GMT Subject: CN=6636c9e4-171d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:89:bb:14:ef:ae:3b:c9:12:aa:7b:f8:bc:a9: 2f:f1:af:0f:a8:e9:4b:2b:a5:81:5e:34:54:58:93: ed:19:7d:1c:75:e9:23:f3:3c:2c:d4:31:d6:5a:d5: 69:3e:ee:0b:5e:b9:d0:35:3a:5e:41:fd:9c:31:e6: 8f:12:93:04:f9:3c:56:cb:c8:b3:92:41:1d:18:6d: 1e:3d:22:c2:d1:30:2f:1b:bc:1d:5c:ff:7e:64:ce: b6:5b:38:bc:3a:53:22:e2:36:a7:68:ae:01:c7:03: 25:54:70:ae:cc:a4:3d:ed:c0:15:30:68:32:ab:61: 90:02:c2:66:1a:dd:82:b9:c8:ff:cc:24:77:60:be: e9:99:f2:93:15:7e:7d:56:2f:f2:ff:f5:f8:be:e4: e2:4d:e6:15:78:fe:32:c4:33:ef:10:28:39:a8:1a: c6:38:2b:7e:0e:1e:2c:8d:d1:bf:39:34:5b:ec:d7: e3:8d:81:eb:1a:93:14:1c:a7:25:b9:f7:8e:51:50: 5d:45:a8:90:fa:c5:4e:f1:96:db:32:66:ad:53:a0: a5:a5:a9:52:0b:c8:15:ac:3f:4e:02:ce:ad:34:19: ff:8c:73:7b:21:c0:39:51:36:a9:59:b0:0c:f5:b9: f5:54:5f:33:ac:6c:9d:d9:f7:4b:46:80:5b:1c:08: 55:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:67:78:1E:3D:DC:1C:51:E4:8C:EA:66:59:B1:30:81:F8:D2:D4:63 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c9:80:dc:36:20:30:81:30:1c:44:71:ae:16:c8:06:0b:d8: bc:f4:81:ba:78:0c:68:b5:16:dc:4e:4c:0e:2f:bd:93:f3:78: ea:9c:4a:d7:12:74:88:59:07:9f:43:4a:4e:c9:1d:f1:3e:90: bb:93:3a:ce:8b:be:7c:51:85:64:5d:c1:73:ad:7e:d7:fb:7f: 89:dc:b2:8b:cf:7a:96:21:d0:5c:d5:5f:10:ab:98:82:58:22: ae:9a:d6:6a:92:0f:9f:4c:a0:dc:db:2c:c6:df:26:93:9e:b6: 0a:c1:ce:ab:0a:31:73:c2:39:91:57:bd:64:85:80:8a:c9:4c: a4:e9:68:1e:d2:31:8b:90:55:af:e4:b1:7f:65:f3:c5:df:a1: 78:b9:26:69:56:0a:93:20:f3:00:5c:dc:07:6a:f2:4f:57:b4: a6:19:c3:2a:59:7a:0c:9c:7d:27:e9:b3:de:fb:86:78:61:9a: 3c:e9:e8:f4:c7:0e:0d:95:59:5a:7f:f5:88:7f:cd:7c:2d:62: 47:7b:b1:0f:9b:ce:b8:54:c2:89:f4:a0:75:61:15:61:fe:25: 0c:4c:c0:85:5d:c7:be:29:4f:8b:47:76:bc:f9:01:00:8b:f4: 9b:03:3b:12:0f:ba:76:46:2c:53:42:35:53:cf:0e:ec:75:ec: 7c:c3:47:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjQwNTA0MjM1MTAwWhcNMjQwNTExMjM1MTAwWjAYMRYwFAYD VQQDEw02NjM2YzllNC0xNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5om7FO+uO8kSqnv4vKkv8a8PqOlLK6WBXjRUWJPtGX0cdekj8zws1DHWWtVp Pu4LXrnQNTpeQf2cMeaPEpME+TxWy8izkkEdGG0ePSLC0TAvG7wdXP9+ZM62Wzi8 OlMi4janaK4BxwMlVHCuzKQ97cAVMGgyq2GQAsJmGt2Cucj/zCR3YL7pmfKTFX59 Vi/y//X4vuTiTeYVeP4yxDPvECg5qBrGOCt+Dh4sjdG/OTRb7NfjjYHrGpMUHKcl ufeOUVBdRaiQ+sVO8ZbbMmatU6ClpalSC8gVrD9OAs6tNBn/jHN7IcA5UTapWbAM 9bn1VF8zrGyd2fdLRoBbHAhVowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChneB49 3BxR5IzqZlmxMIH40tRjMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiyYDcNiAwgTAcRHGuFsgGC9i89IG6eAxotRbcTkwOL72T83jqnErX EnSIWQefQ0pOyR3xPpC7kzrOi758UYVkXcFzrX7X+3+J3LKLz3qWIdBc1V8Qq5iC WCKumtZqkg+fTKDc2yzG3yaTnrYKwc6rCjFzwjmRV71khYCKyUyk6Wge0jGLkFWv 5LF/ZfPF36F4uSZpVgqTIPMAXNwHavJPV7SmGcMqWXoMnH0n6bPe+4Z4YZo86ej0 xw4NlVlaf/WIf818LWJHe7EPm864VMKJ9KB1YRVh/iUMTMCFXce+KU+LR3a8+QEA i/SbAzsSD7p2RixTQjVTzw7sdex8w0eC -----END CERTIFICATE-----Generated at Sun May 5 01:13:17 2024 by rpki-client on console-ams.rpki-client.org