$ rpki-client -vvf rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft File: 3604bKySNIOAxXSS2xjyvIScUoY.mft (raw, json) Hash identifier: uqkNbPuyTO6OpGxgSPd6J5kvsQ1nV9+vFiisJ/yE5A8= Subject key identifier: 13:5C:95:7D:6B:45:CC:F4:13:DB:8E:B6:A7:93:CB:FE:2B:6F:D0:07 Authority key identifier: DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 Certificate issuer: /CN=A913E36B/serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft Manifest number: 085D Signing time: Tue 30 Apr 2024 21:59:09 +0000 Manifest this update: Tue 30 Apr 2024 21:59:08 +0000 Manifest next update: Tue 07 May 2024 21:59:08 +0000 Files and hashes: 1: 3604bKySNIOAxXSS2xjyvIScUoY.crl (hash: U6KF1lFy7E3s0OlE/WdBO8Yu3FfDOHEQaK7ya5PapzM=) 2: 649A355C5F0F11EBBDB7C113C4F9AE02.roa (hash: 87oEZjsADi0wATsrr5oT1WDzAIv+RsUiGtSSQ4cAuO4=) 3: 20544B84F14511ECA1AE5F4EC4F9AE02.roa (hash: TejrQZ9//dz8pw5abLLeeWWk5O7Slayjh+ANs1GKDDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E36B/serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Validity Not Before: Apr 30 21:59:08 2024 GMT Not After : May 7 21:59:08 2024 GMT Subject: CN=663169ac-dee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:13:f1:7a:15:d3:87:89:dc:3e:ad:79:36:37: 39:c2:fa:0a:45:cf:16:0d:49:5b:de:7f:ef:42:2c: 14:1b:19:68:37:d5:f7:5b:f7:2b:b8:fb:cc:e0:90: 7e:c0:21:7c:0f:4d:78:61:ed:00:8c:20:21:41:c1: ca:e8:26:f6:47:51:da:d6:59:1e:c1:09:08:ff:cc: 8c:08:2a:a8:de:00:8a:4e:a7:0a:39:35:6e:f9:9c: 27:05:ae:63:af:8e:47:f7:ca:ee:92:59:87:e5:a4: 74:ce:b5:3f:a8:dc:74:8b:00:92:c8:2c:1b:21:ec: bb:da:de:00:57:1f:8a:4b:aa:49:d9:72:81:23:53: 8d:76:69:57:13:da:d1:e5:16:b9:5a:15:8f:92:b4: e8:6e:77:45:91:b4:9c:6a:99:a5:ef:f6:11:2e:ba: 0f:ad:f3:e6:6a:23:6c:71:cb:11:a7:0f:f8:d5:a9: bc:58:05:55:ba:04:c5:23:c8:2e:e0:40:16:03:6b: 54:60:41:5c:5f:16:d0:ac:2f:99:29:88:42:58:42: 5a:06:43:77:3f:4d:5f:91:f2:ef:63:53:7a:72:8c: e9:11:6f:64:3c:5f:da:a1:42:67:0b:63:c4:de:48: e8:e6:b8:d5:99:98:70:9b:4f:45:f9:ad:5d:71:fd: 60:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:5C:95:7D:6B:45:CC:F4:13:DB:8E:B6:A7:93:CB:FE:2B:6F:D0:07 X509v3 Authority Key Identifier: keyid:DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:73:39:0f:40:30:09:b7:ad:6c:9f:e9:92:4f:21:6d:ac:4b: ea:51:60:ba:05:8c:e9:66:f4:e4:49:fe:81:46:59:e4:fd:97: 92:31:4d:77:d9:2e:c7:be:23:83:7a:f9:21:30:5e:3d:fd:70: 42:21:f6:d4:0c:33:e6:fc:57:b4:8f:51:bc:4f:75:32:49:5a: 93:50:ee:c4:48:ec:bf:f5:15:9d:b5:18:5f:ce:e4:97:b9:05: 42:7d:bf:0c:95:9c:07:44:1b:da:e6:a6:c0:81:fc:b6:d7:8e: 3f:48:e0:5e:b7:44:80:15:7d:ba:0f:8b:95:f7:24:05:44:6d: 0e:38:b5:0b:4a:c6:fc:60:da:7a:b1:43:40:75:34:bd:4e:86: e6:6a:4f:d9:1a:ba:c9:a2:3b:26:50:31:78:cd:83:99:71:bb: 46:01:83:a0:8c:76:65:94:08:0b:89:aa:09:60:6b:b0:0d:82: c2:6a:a2:9c:54:12:36:43:83:8a:a1:3d:69:aa:99:63:5e:12: 96:cd:a0:99:76:66:2b:c8:e6:38:f2:32:8c:b6:13:b8:ee:2c: ae:25:26:96:f7:d0:05:8e:d8:c4:10:55:23:ba:4a:b0:32:e0: c5:20:44:f5:a6:75:6a:3a:91:09:f5:26:56:37:76:78:fd:5f: 0f:32:34:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UzNkIxMTAvBgNVBAUTKERGQUQzODZDQUM5MjM0ODM4MEM1NzQ5MkRCMThGMkJD ODQ5QzUyODYwHhcNMjQwNDMwMjE1OTA4WhcNMjQwNTA3MjE1OTA4WjAYMRYwFAYD VQQDEw02NjMxNjlhYy1kZWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhPxehXTh4ncPq15Njc5wvoKRc8WDUlb3n/vQiwUGxloN9X3W/cruPvM4JB+ wCF8D014Ye0AjCAhQcHK6Cb2R1Ha1lkewQkI/8yMCCqo3gCKTqcKOTVu+ZwnBa5j r45H98ruklmH5aR0zrU/qNx0iwCSyCwbIey72t4AVx+KS6pJ2XKBI1ONdmlXE9rR 5Ra5WhWPkrTobndFkbScapml7/YRLroPrfPmaiNsccsRpw/41am8WAVVugTFI8gu 4EAWA2tUYEFcXxbQrC+ZKYhCWEJaBkN3P01fkfLvY1N6cozpEW9kPF/aoUJnC2PE 3kjo5rjVmZhwm09F+a1dcf1gkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNclX1r Rcz0E9uOtqeTy/4rb9AHMB8GA1UdIwQYMBaAFN+tOGyskjSDgMV0ktsY8ryEnFKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTM2Qi83QzJDNjI0MEEw OTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05JT0F4WFNTMnhqeXZJU2NV b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM2MDRiS3lTTklPQXhYU1MyeGp5dklTY1VvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTM2Qi83QzJDNjI0MEEwOTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05J T0F4WFNTMnhqeXZJU2NVb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDczkPQDAJt61sn+mSTyFtrEvqUWC6BYzpZvTkSf6BRlnk/ZeSMU13 2S7HviODevkhMF49/XBCIfbUDDPm/Fe0j1G8T3UySVqTUO7ESOy/9RWdtRhfzuSX uQVCfb8MlZwHRBva5qbAgfy2144/SOBet0SAFX26D4uV9yQFRG0OOLULSsb8YNp6 sUNAdTS9Tobmak/ZGrrJojsmUDF4zYOZcbtGAYOgjHZllAgLiaoJYGuwDYLCaqKc VBI2Q4OKoT1pqpljXhKWzaCZdmYryOY48jKMthO47iyuJSaW99AFjtjEEFUjukqw MuDFIET1pnVqOpEJ9SZWN3Z4/V8PMjT6 -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:06 2024 by rpki-client on console-ams.rpki-client.org