$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: u8OT/EqFBpqDCZf5FPi5B9Cw4sfTfOzmj7T0eomGinE= Subject key identifier: 19:AA:D9:8A:86:B3:CD:FC:76:94:D6:A0:FD:75:29:12:57:29:2F:7E Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 08F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 08F0 Signing time: Thu 02 May 2024 21:40:32 +0000 Manifest this update: Thu 02 May 2024 21:40:31 +0000 Manifest next update: Thu 09 May 2024 21:40:31 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: HoVN4Fr5EoVoWp4IS9sL8TeFn3e4a7k5NVw+nQf016s=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: jObq5WAnKWNNe1xvn+i1p17e0KpzbzVrnmTwIgH5Dh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2295 (0x8f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: May 2 21:40:31 2024 GMT Not After : May 9 21:40:31 2024 GMT Subject: CN=6634084f-07e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:32:82:d4:ba:aa:ed:3f:8b:f6:41:db:6a:c0: 4d:43:fc:0e:93:26:b5:e8:02:96:0c:07:a4:d4:86: b9:fe:5a:55:70:c3:bf:2e:05:4e:b6:b1:9c:b9:4d: 18:d8:f5:c5:ef:13:42:a0:c8:e6:00:88:b1:e0:96: b2:80:c1:d0:e9:f4:93:14:18:b7:5f:85:2d:19:59: c7:68:bb:80:88:a3:97:79:57:40:60:d6:aa:cf:20: a4:58:29:43:63:05:ce:b9:5e:4a:9e:23:01:74:81: 83:47:ca:44:b7:f8:06:52:fd:21:cd:83:56:9b:48: 21:9b:0c:e0:9c:fb:12:27:96:8e:25:69:c3:ea:ec: f1:0b:78:06:c5:54:8d:de:35:f8:38:00:37:99:e9: a6:33:f2:ca:78:8f:c2:b9:04:1c:1f:02:6b:f8:eb: 80:90:bd:36:e6:d1:9a:85:02:ac:29:7d:81:a8:3e: fc:41:3e:98:ba:df:fd:18:76:ed:f9:d4:c1:b5:40: a5:29:05:99:56:aa:eb:db:a2:97:a1:9d:a6:52:b6: 55:58:55:49:1e:04:98:6f:67:87:b7:d0:ff:a8:14: 54:d8:71:cf:53:e5:71:70:83:e6:72:10:f9:bc:55: 0b:ad:47:62:8f:03:f4:bb:cd:52:c1:66:83:11:31: 69:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AA:D9:8A:86:B3:CD:FC:76:94:D6:A0:FD:75:29:12:57:29:2F:7E X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:90:4b:5d:bb:0c:26:b7:33:2d:80:f9:3f:f4:e0:34:cc:7e: c1:85:3f:6e:33:1f:0e:a7:39:14:77:f4:a8:bc:7c:fe:64:cd: 11:78:ec:e8:64:a3:02:6c:c0:0b:ec:5d:43:bb:e6:72:99:cf: b9:04:84:7d:b5:38:ec:c6:ab:64:bc:2b:be:b0:23:7d:1c:c9: c3:6d:80:c4:60:55:0b:7a:6e:d4:e3:53:5c:64:39:f5:65:dc: c9:8a:06:83:69:26:54:05:71:25:24:dd:28:41:21:45:fc:e1: 06:77:1a:f9:39:20:ba:ea:3b:97:fa:63:da:22:30:a9:57:76: 56:e3:60:43:26:a9:09:e9:53:bb:42:9a:92:90:69:d4:33:e2: 5d:0a:f3:88:9b:ae:27:e1:8f:40:f4:3f:3e:30:21:4b:80:c9: d2:15:46:71:c1:26:b7:b4:73:78:b7:ef:28:8c:74:18:a3:d1: c3:71:d7:ad:b8:e1:40:3f:a6:cc:8a:b7:7b:38:fb:c1:bc:ba: 90:67:90:b1:e6:56:61:73:44:07:24:c0:ce:27:7e:0e:85:88: 34:87:9e:3c:93:b9:bb:57:0c:26:f8:37:d1:07:3a:3d:5d:72: 78:7d:b1:02:b4:03:82:36:02:b7:c3:57:07:f4:8b:b3:4b:6b: af:81:c2:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjQwNTAyMjE0MDMxWhcNMjQwNTA5MjE0MDMxWjAYMRYwFAYD VQQDEw02NjM0MDg0Zi0wN2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDKC1Lqq7T+L9kHbasBNQ/wOkya16AKWDAek1Ia5/lpVcMO/LgVOtrGcuU0Y 2PXF7xNCoMjmAIix4JaygMHQ6fSTFBi3X4UtGVnHaLuAiKOXeVdAYNaqzyCkWClD YwXOuV5KniMBdIGDR8pEt/gGUv0hzYNWm0ghmwzgnPsSJ5aOJWnD6uzxC3gGxVSN 3jX4OAA3memmM/LKeI/CuQQcHwJr+OuAkL025tGahQKsKX2BqD78QT6Yut/9GHbt +dTBtUClKQWZVqrr26KXoZ2mUrZVWFVJHgSYb2eHt9D/qBRU2HHPU+VxcIPmchD5 vFULrUdijwP0u81SwWaDETFpQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmq2YqG s838dpTWoP11KRJXKS9+MB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzkEtduwwmtzMtgPk/9OA0zH7BhT9uMx8OpzkUd/SovHz+ZM0ReOzo ZKMCbMAL7F1Du+Zymc+5BIR9tTjsxqtkvCu+sCN9HMnDbYDEYFULem7U41NcZDn1 ZdzJigaDaSZUBXElJN0oQSFF/OEGdxr5OSC66juX+mPaIjCpV3ZW42BDJqkJ6VO7 QpqSkGnUM+JdCvOIm64n4Y9A9D8+MCFLgMnSFUZxwSa3tHN4t+8ojHQYo9HDcdet uOFAP6bMird7OPvBvLqQZ5Cx5lZhc0QHJMDOJ34OhYg0h548k7m7Vwwm+DfRBzo9 XXJ4fbECtAOCNgK3w1cH9IuzS2uvgcLW -----END CERTIFICATE-----Generated at Thu May 2 22:28:49 2024 by rpki-client on console-ams.rpki-client.org