$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft File: 8CpdEC9_M7JhEbSih0L3ui8empk.mft (raw, json) Hash identifier: tO22kv3ldqcIW2WKutph5NghUkT7PgMtPLFfApTTsH4= Subject key identifier: 60:6A:27:1D:37:6B:6E:D5:FA:54:0E:44:E9:4B:33:01:9B:BB:6C:90 Authority key identifier: F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 Certificate issuer: /CN=A913CB5F/serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft Manifest number: 0275 Signing time: Sun 05 May 2024 03:52:17 +0000 Manifest this update: Sun 05 May 2024 03:52:17 +0000 Manifest next update: Sun 12 May 2024 03:52:17 +0000 Files and hashes: 1: 8CpdEC9_M7JhEbSih0L3ui8empk.crl (hash: bBXIK4f5DpKWPZBifYZFa0VEMCcFZI+6Z03Yn/PXEFc=) 2: 688AF35CC09511EC8CFFDB10C4F9AE02.roa (hash: dX8Ezcwt9ZcNN3YaDPGXZwP7UaA2rS4V4pcpwDc6yu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB5F/serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Validity Not Before: May 5 03:52:17 2024 GMT Not After : May 12 03:52:17 2024 GMT Subject: CN=66370271-fb8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9b:8a:9b:9b:3f:a6:a8:ae:cc:01:1d:57:ba: c3:7e:0a:e7:9a:a7:4f:54:ff:0a:90:f8:27:64:7a: 6d:50:c4:9b:1a:f7:5b:55:83:3e:07:0b:cc:ca:0d: 0b:1f:fa:73:dd:8d:47:01:8a:e3:d3:05:7e:6e:ce: ec:3b:0c:51:d9:5c:a4:59:b6:db:24:9f:52:52:88: c1:04:77:a4:47:11:21:ab:a8:59:55:d2:69:7d:98: e0:fe:d5:68:69:b6:4a:0d:ae:4b:c1:24:84:fd:a0: 90:d7:db:eb:53:21:90:09:cc:9a:19:2a:9a:2d:84: 4d:ef:98:02:b7:ba:1a:86:04:9c:0d:63:fe:8c:fb: dd:ad:94:46:de:84:2d:37:9c:bb:68:04:5a:aa:73: ab:2d:d9:13:6b:6e:fe:9e:11:90:9f:75:8b:ec:ea: 85:8f:66:bb:2c:61:2d:fa:3c:08:b3:c8:54:2e:82: 7f:8f:a4:d8:14:2c:59:aa:99:b2:69:28:5f:23:da: e5:4b:d8:a0:cd:2b:a8:d2:c2:dc:25:d2:e2:ff:4c: c9:87:9a:7e:d1:5e:20:cd:b3:37:b9:80:59:2e:de: 79:06:e4:8d:10:ed:1c:20:74:b4:ff:59:67:00:ca: 27:35:3b:0a:b2:06:14:62:4f:61:45:ef:65:61:6f: cf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:6A:27:1D:37:6B:6E:D5:FA:54:0E:44:E9:4B:33:01:9B:BB:6C:90 X509v3 Authority Key Identifier: keyid:F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:2c:63:92:81:88:ad:27:ae:15:ff:63:33:d7:12:70:c0:af: 8d:5c:60:67:4b:aa:5c:6b:30:1e:4d:ff:33:4c:3e:d5:4a:16: 95:4e:10:b6:e9:2a:3e:7c:27:b4:95:3a:05:fa:55:01:ef:80: 28:f6:21:74:40:75:27:d7:e2:1f:9b:0e:f3:d9:25:fe:98:f5: 84:7f:c6:cf:59:f9:af:0f:90:ed:7c:f1:21:45:3f:32:05:b4: 3d:09:fd:f5:a2:3e:ae:36:c3:4f:56:4a:19:37:82:7d:aa:d3: 6b:4a:56:0f:35:56:0a:d9:78:27:ce:e7:8f:ba:c5:44:f3:4f: be:e1:85:bb:49:44:2b:62:35:6b:2e:4a:eb:f9:bb:56:c6:49: bd:5e:8a:7d:e9:da:24:1b:ea:22:67:a4:30:84:18:45:db:d2: 61:91:1a:dd:3d:85:b5:f0:ab:4c:f0:6d:9f:28:ec:b9:75:e3: 14:a7:b4:31:9d:88:c9:fd:4e:db:b8:79:16:96:6b:0d:60:96: 93:df:15:44:89:9c:53:90:2a:d1:bd:d3:ce:16:d5:bd:10:57: e0:6b:a1:6a:d5:fa:23:39:e3:cb:43:48:b6:32:b0:0e:5a:59: 87:fd:01:7f:bc:d1:5b:b8:16:e6:b9:ae:00:7b:5a:0b:7b:b4: 30:d3:db:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCNUYxMTAvBgNVBAUTKEYwMkE1RDEwMkY3RjMzQjI2MTExQjRBMjg3NDJGN0JB MkYxRTlBOTkwHhcNMjQwNTA1MDM1MjE3WhcNMjQwNTEyMDM1MjE3WjAYMRYwFAYD VQQDEw02NjM3MDI3MS1mYjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZuKm5s/pqiuzAEdV7rDfgrnmqdPVP8KkPgnZHptUMSbGvdbVYM+BwvMyg0L H/pz3Y1HAYrj0wV+bs7sOwxR2VykWbbbJJ9SUojBBHekRxEhq6hZVdJpfZjg/tVo abZKDa5LwSSE/aCQ19vrUyGQCcyaGSqaLYRN75gCt7oahgScDWP+jPvdrZRG3oQt N5y7aARaqnOrLdkTa27+nhGQn3WL7OqFj2a7LGEt+jwIs8hULoJ/j6TYFCxZqpmy aShfI9rlS9igzSuo0sLcJdLi/0zJh5p+0V4gzbM3uYBZLt55BuSNEO0cIHS0/1ln AMonNTsKsgYUYk9hRe9lYW/PfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBqJx03 a27V+lQOROlLMwGbu2yQMB8GA1UdIwQYMBaAFPAqXRAvfzOyYRG0oodC97ovHpqZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I1Ri8wMDVFNTlBQ0Mw OTIxMUVDODA0NEMxNjRDNEY5QUUwMi84Q3BkRUM5X003SmhFYlNpaDBMM3VpOGVt cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDcGRFQzlfTTdKaEViU2loMEwzdWk4ZW1way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0I1Ri8wMDVFNTlBQ0MwOTIxMUVDODA0NEMxNjRDNEY5QUUwMi84Q3BkRUM5X003 SmhFYlNpaDBMM3VpOGVtcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHLGOSgYitJ64V/2Mz1xJwwK+NXGBnS6pcazAeTf8zTD7VShaVThC2 6So+fCe0lToF+lUB74Ao9iF0QHUn1+Ifmw7z2SX+mPWEf8bPWfmvD5DtfPEhRT8y BbQ9Cf31oj6uNsNPVkoZN4J9qtNrSlYPNVYK2XgnzuePusVE80++4YW7SUQrYjVr Lkrr+btWxkm9Xop96dokG+oiZ6QwhBhF29JhkRrdPYW18KtM8G2fKOy5deMUp7Qx nYjJ/U7buHkWlmsNYJaT3xVEiZxTkCrRvdPOFtW9EFfga6Fq1fojOePLQ0i2MrAO WlmH/QF/vNFbuBbmua4Ae1oLe7Qw09vr -----END CERTIFICATE-----Generated at Sun May 5 04:39:57 2024 by rpki-client on console-ams.rpki-client.org