$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: JJBwZ/wDl2Iy/PFEMhnsJHa+CWiPvwZ9piPo26+kCPI= Subject key identifier: 2F:94:FA:F3:89:B0:7D:75:B7:33:5B:E9:70:BD:05:70:A1:D9:EC:C5 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0C52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0C45 Signing time: Mon 06 May 2024 19:02:40 +0000 Manifest this update: Mon 06 May 2024 19:02:39 +0000 Manifest next update: Mon 13 May 2024 19:02:39 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: RRZKC5nZLf+HedlenUaH8zCBqXswTVM6vh8WIpqZIbs=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: keB3hVG0s+/wuVaM04tge7cSFc9OBrWQF6/GwgTgVas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3154 (0xc52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: May 6 19:02:39 2024 GMT Not After : May 13 19:02:39 2024 GMT Subject: CN=6639294f-48a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:32:50:b8:29:af:9f:0b:7d:57:c6:33:6e:bc: 09:56:f5:df:aa:c7:67:00:c9:4d:c6:4e:82:2c:4f: f2:64:e2:b7:66:ff:02:ec:e0:7d:08:ea:44:90:74: 6c:4f:ec:9b:00:a1:89:4a:fe:be:fb:99:98:90:47: 21:13:05:3b:d6:50:55:be:65:4c:d2:9f:be:ea:d9: d7:32:50:1a:06:67:46:5e:89:6a:3a:44:c8:80:28: 8b:a7:ce:d0:e1:be:1d:8c:da:9d:bb:4f:b1:46:42: b9:ef:3e:21:14:f9:57:2a:78:28:95:5c:a0:fe:8a: 7e:0a:21:2e:35:60:76:a1:6c:2a:75:5f:10:f7:83: 8d:3a:58:57:15:69:1a:75:51:db:be:cf:fe:1d:b1: 07:2e:ee:29:04:ef:96:a0:37:56:7e:50:ca:3f:46: 8f:47:9c:74:57:6b:2b:f5:ef:a5:2e:d4:fc:2e:7f: 64:ba:2a:e0:39:b7:0c:1b:da:86:c3:f9:36:2e:13: bd:d1:fb:a1:ce:83:53:a0:f4:d0:61:66:cf:cc:0d: fd:f5:30:ad:e7:a9:9f:ab:db:a9:74:2e:30:45:ab: d8:98:37:c2:c0:24:29:bf:a7:94:2f:34:de:e3:09: fe:09:76:e5:1c:77:63:4d:bd:c8:d8:90:80:1a:97: 70:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:94:FA:F3:89:B0:7D:75:B7:33:5B:E9:70:BD:05:70:A1:D9:EC:C5 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:fd:bb:ea:39:4a:66:ce:dc:45:d9:96:bb:c9:8c:47:18:81: 31:8e:bc:37:80:4e:f9:24:92:5a:31:00:e0:0b:c9:41:9f:2b: 98:db:f6:60:3c:7f:fd:48:9c:da:56:9f:d8:2a:3b:90:77:6f: 14:23:65:ce:14:66:34:44:d1:09:fe:8a:2b:b5:f0:f4:1f:fe: 93:62:49:24:79:72:6e:6e:3b:0b:1f:fb:99:2c:90:f0:a6:02: a2:cb:72:4a:c8:9a:05:66:05:8e:1b:83:a8:d4:e1:d2:f3:03: 53:1e:f0:37:20:f2:86:ce:df:7f:33:75:16:e0:c0:3f:72:1b: 26:0f:61:98:e0:be:73:30:71:7d:e0:04:b8:42:69:3d:88:8f: 85:93:cb:a8:0e:15:23:05:ac:63:46:61:6f:f7:69:b6:1f:34: 16:bf:38:a8:81:85:9b:9a:6b:a7:c0:38:08:45:5f:e7:39:fd: 63:36:9a:e9:1b:cc:61:13:44:df:92:a4:e4:f3:b3:e3:25:08: 06:ed:f1:29:fe:2e:89:e1:21:1f:17:e4:34:08:52:e2:51:59: cf:0d:05:20:62:3a:47:e9:98:87:2c:c0:06:0f:d3:05:7c:73: d3:1a:e9:8f:37:20:f2:13:bf:f2:d5:fe:23:88:78:44:00:c7: 80:b7:6b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjQwNTA2MTkwMjM5WhcNMjQwNTEzMTkwMjM5WjAYMRYwFAYD VQQDEw02NjM5Mjk0Zi00OGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTJQuCmvnwt9V8YzbrwJVvXfqsdnAMlNxk6CLE/yZOK3Zv8C7OB9COpEkHRs T+ybAKGJSv6++5mYkEchEwU71lBVvmVM0p++6tnXMlAaBmdGXolqOkTIgCiLp87Q 4b4djNqdu0+xRkK57z4hFPlXKngolVyg/op+CiEuNWB2oWwqdV8Q94ONOlhXFWka dVHbvs/+HbEHLu4pBO+WoDdWflDKP0aPR5x0V2sr9e+lLtT8Ln9kuirgObcMG9qG w/k2LhO90fuhzoNToPTQYWbPzA399TCt56mfq9updC4wRavYmDfCwCQpv6eULzTe 4wn+CXblHHdjTb3I2JCAGpdwSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+U+vOJ sH11tzNb6XC9BXCh2ezFMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt/bvqOUpmztxF2Za7yYxHGIExjrw3gE75JJJaMQDgC8lBnyuY2/Zg PH/9SJzaVp/YKjuQd28UI2XOFGY0RNEJ/oortfD0H/6TYkkkeXJubjsLH/uZLJDw pgKiy3JKyJoFZgWOG4Oo1OHS8wNTHvA3IPKGzt9/M3UW4MA/chsmD2GY4L5zMHF9 4AS4Qmk9iI+Fk8uoDhUjBaxjRmFv92m2HzQWvziogYWbmmunwDgIRV/nOf1jNprp G8xhE0TfkqTk87PjJQgG7fEp/i6J4SEfF+Q0CFLiUVnPDQUgYjpH6ZiHLMAGD9MF fHPTGumPNyDyE7/y1f4jiHhEAMeAt2vZ -----END CERTIFICATE-----Generated at Mon May 6 20:19:31 2024 by rpki-client on console-ams.rpki-client.org