$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft File: tUMZgoesmRJSAHhil7k2l_jySK4.mft (raw, json) Hash identifier: Gim3yk0DNzka5ZIli3uLyFCxt4c+bPMjANTOPqM4i0w= Subject key identifier: B4:F8:73:EC:97:A4:C3:66:5E:9F:FB:E7:E2:16:A8:F2:55:52:69:AC Authority key identifier: B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE Certificate issuer: /CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Certificate serial: 0B6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft Manifest number: 0B63 Signing time: Tue 30 Apr 2024 19:54:51 +0000 Manifest this update: Tue 30 Apr 2024 19:54:50 +0000 Manifest next update: Tue 07 May 2024 19:54:50 +0000 Files and hashes: 1: tUMZgoesmRJSAHhil7k2l_jySK4.crl (hash: 3wvLHvHAkQuQilZ6zbrPi3x53JfErNiUcFFUSuYx0oM=) 2: DBE709060AA511EA86C8E31DC4F9AE02.roa (hash: mT077D8XJscDwG5RkHIJCPuXJGaBuwzOjfxSt7zHWVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2926 (0xb6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Validity Not Before: Apr 30 19:54:50 2024 GMT Not After : May 7 19:54:50 2024 GMT Subject: CN=66314c8a-5e30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:39:75:50:9d:80:8d:85:d6:87:cc:74:2a:47: be:41:b4:7a:24:43:e6:f2:3e:d2:c2:1c:c6:c5:f6: cb:19:3d:8e:b5:bd:6d:93:02:a2:22:54:da:db:01: db:45:91:34:3a:a2:8c:b3:b1:4d:5f:56:64:e9:fa: 52:ba:5f:ca:d9:bc:91:b1:e6:76:b6:60:2f:41:ae: 54:20:3a:c0:d8:44:b8:fb:7f:4b:fd:5b:16:3d:e5: fc:ab:c1:d5:59:1c:f0:2c:8b:0c:bb:7c:cb:0e:be: 4c:90:6e:c9:80:cb:ba:ff:c1:a2:5a:cf:57:45:c7: 44:23:47:5d:8c:20:20:42:18:1a:61:4d:6f:71:fa: 81:2f:8d:d8:85:79:20:d4:ea:0c:f5:ec:29:cd:0b: 87:41:e2:85:05:3a:0c:d6:b1:49:88:8f:25:b4:20: 64:b8:88:ac:d0:3a:36:47:49:da:a1:0a:7c:fa:75: c5:8d:aa:91:5a:28:9e:8c:c4:6c:41:16:78:09:2e: d3:e1:07:f3:46:9b:f7:2f:b4:90:23:a0:39:22:44: 8f:d0:bc:6d:59:78:69:71:6c:8c:a2:d3:71:de:28: 8f:fd:75:78:64:dd:99:3e:24:f0:44:eb:1f:ff:4e: 25:e9:ab:70:15:02:d7:2a:c5:b6:a4:e9:cb:5a:ee: f5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F8:73:EC:97:A4:C3:66:5E:9F:FB:E7:E2:16:A8:F2:55:52:69:AC X509v3 Authority Key Identifier: keyid:B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:9c:3c:3a:e8:4b:ef:0f:40:06:8a:6e:47:e4:c6:80:d8:09: b5:35:97:fb:e2:10:85:24:4b:17:42:ff:18:a2:15:9f:f9:fd: d4:54:c8:0a:f3:b1:26:6d:a9:5c:c9:42:7c:ed:15:87:83:74: e8:95:db:7f:f0:a9:b2:d3:33:eb:a0:26:82:3f:f4:4d:56:f4: 3e:11:b0:4d:22:fa:0b:e6:da:c2:fd:36:2b:a2:16:2d:25:ef: 2c:0b:f8:33:5b:32:df:d3:59:94:bd:c1:59:5e:f7:27:4e:38: cb:d6:54:3a:59:16:09:39:c7:ed:9f:1e:5c:d1:f6:c1:c3:9f: 7e:dd:20:f6:6e:17:aa:04:85:c6:bd:cf:c6:b1:ff:13:0f:f0: 78:7b:3a:8e:61:0c:2e:f2:e4:24:df:74:55:4c:db:da:de:0c: a9:17:d8:76:4c:2a:15:2c:76:80:89:d1:3a:97:4e:ed:5c:4a: 5b:a8:c9:77:57:44:da:9d:0a:34:1d:17:0c:02:27:aa:17:04: ec:66:b9:66:87:82:6a:26:41:d0:58:05:44:66:5a:a8:3c:66: c9:d9:ba:b5:52:c3:ee:ad:8f:5f:81:e1:c1:a4:b0:d5:a5:75: e7:c6:d2:5a:6a:e2:4b:39:0a:7c:22:be:e0:59:df:1a:6e:2e: 19:8f:d0:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQkMxMTAvBgNVBAUTKEI1NDMxOTgyODdBQzk5MTI1MjAwNzg2Mjk3QjkzNjk3 RjhGMjQ4QUUwHhcNMjQwNDMwMTk1NDUwWhcNMjQwNTA3MTk1NDUwWjAYMRYwFAYD VQQDEw02NjMxNGM4YS01ZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zl1UJ2AjYXWh8x0Kke+QbR6JEPm8j7SwhzGxfbLGT2Otb1tkwKiIlTa2wHb RZE0OqKMs7FNX1Zk6fpSul/K2byRseZ2tmAvQa5UIDrA2ES4+39L/VsWPeX8q8HV WRzwLIsMu3zLDr5MkG7JgMu6/8GiWs9XRcdEI0ddjCAgQhgaYU1vcfqBL43YhXkg 1OoM9ewpzQuHQeKFBToM1rFJiI8ltCBkuIis0Do2R0naoQp8+nXFjaqRWiiejMRs QRZ4CS7T4QfzRpv3L7SQI6A5IkSP0LxtWXhpcWyMotNx3iiP/XV4ZN2ZPiTwROsf /04l6atwFQLXKsW2pOnLWu71wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLT4c+yX pMNmXp/75+IWqPJVUmmsMB8GA1UdIwQYMBaAFLVDGYKHrJkSUgB4Ype5Npf48kiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRCQy82OUZBMjU2ODBB QTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21SSlNBSGhpbDdrMmxfanlT SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVTVpnb2VzbVJKU0FIaGlsN2sybF9qeVNLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRCQy82OUZBMjU2ODBBQTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21S SlNBSGhpbDdrMmxfanlTSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8nDw66EvvD0AGim5H5MaA2Am1NZf74hCFJEsXQv8YohWf+f3UVMgK 87EmbalcyUJ87RWHg3Toldt/8Kmy0zProCaCP/RNVvQ+EbBNIvoL5trC/TYrohYt Je8sC/gzWzLf01mUvcFZXvcnTjjL1lQ6WRYJOcftnx5c0fbBw59+3SD2bheqBIXG vc/Gsf8TD/B4ezqOYQwu8uQk33RVTNva3gypF9h2TCoVLHaAidE6l07tXEpbqMl3 V0TanQo0HRcMAieqFwTsZrlmh4JqJkHQWAVEZlqoPGbJ2bq1UsPurY9fgeHBpLDV pXXnxtJaauJLOQp8Ir7gWd8abi4Zj9Cu -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:52 2024 by rpki-client on console-ams.rpki-client.org