$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: xa4JC/ZDXbC1xhH1nvxbsa+yUX/p1YJHYRJDefCvCMc= Subject key identifier: 93:25:D5:A2:AD:C5:E7:FC:4E:43:BE:3D:42:4E:45:93:66:5B:93:10 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 027E Signing time: Fri 03 May 2024 03:48:51 +0000 Manifest this update: Fri 03 May 2024 03:48:50 +0000 Manifest next update: Fri 10 May 2024 03:48:50 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: EeebUDf4Wp4cXWH06jPudgzfYa2+HmMEc8IbQTuXB2c=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: MwnEW/Y/9OLxa3x5+lImXnMGXDKOiCHipmXBcdsFQU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: May 3 03:48:50 2024 GMT Not After : May 10 03:48:50 2024 GMT Subject: CN=66345ea2-5d52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ac:f6:9f:7b:ee:22:3d:de:b8:bc:40:35:39: e6:bf:2b:77:16:68:a6:56:d5:9d:dc:4d:21:e9:4b: d5:89:5a:a1:8e:36:f1:fa:ca:a7:f7:fb:aa:db:8a: f9:2a:ae:69:a5:f6:89:94:f1:2d:e5:c2:de:f0:7e: 58:dd:8c:b8:f4:72:74:8c:c1:6f:50:40:67:ad:bf: 39:91:04:61:e7:cd:97:f1:0f:03:9f:26:10:d8:fb: 1d:cc:c6:dd:8e:17:d2:ac:5c:aa:4b:7e:00:46:34: 7d:ff:ea:fb:cc:9b:3d:74:88:e3:1d:3f:59:a3:2a: 23:47:2a:98:c7:f4:10:de:e0:75:5e:6a:95:01:45: 79:21:d5:fd:32:56:7d:03:e7:71:00:94:db:b5:5d: 48:70:ea:fc:c4:93:21:0b:c9:19:0b:3c:2a:d5:03: 91:33:58:f4:6c:ff:ae:7f:23:7e:d5:31:49:c3:34: 99:bf:21:3c:e9:45:04:94:92:2a:1a:c9:9e:6b:16: 30:25:ce:67:df:a1:58:9c:f3:c1:b0:f9:02:58:66: 95:cf:77:df:49:91:db:18:0f:c0:8b:e2:f4:e7:ea: 0d:a1:53:7a:95:66:e6:b3:a4:2b:a8:96:81:24:bd: 70:75:2d:6c:84:7a:79:75:26:e6:ae:99:18:81:ce: d6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:25:D5:A2:AD:C5:E7:FC:4E:43:BE:3D:42:4E:45:93:66:5B:93:10 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:9c:7d:7a:e4:94:0c:6e:15:3b:05:33:82:fc:6a:d5:e5:44: 68:94:e3:4b:fe:ed:01:c7:ac:a5:b7:61:37:ef:f5:53:c2:f9: cb:d9:0b:05:6f:c6:a8:cc:e4:78:6b:0f:3e:5e:41:f8:48:a6: ab:fa:74:da:ff:b5:cc:7f:ea:fe:fc:c7:e1:24:6a:e0:81:8c: fd:6d:d6:03:7e:db:a4:fb:54:b9:b6:6f:a0:bb:f1:cc:f5:39: 36:a3:a2:fa:0c:83:c3:28:9a:52:73:b5:9e:29:ca:77:0d:53: 36:64:e5:c1:32:7f:d2:cc:61:73:40:28:d6:0b:f4:42:ad:64: 88:8b:d5:7a:51:a2:6f:16:db:8b:ee:cc:4b:8c:1b:78:09:1d: 78:92:75:ca:7d:e2:e3:3c:5c:36:3b:89:d5:4d:e1:ba:09:77: d3:7d:ff:de:59:2c:59:48:04:49:7c:04:73:5f:f8:2a:6b:d8: e4:5f:0a:19:6e:7c:6d:2f:08:78:32:7e:d7:d3:94:9e:f7:84: ae:77:a1:f5:8d:31:46:93:de:29:2c:d1:5c:bd:fa:b2:5c:2d: 61:8e:5b:6f:e8:61:f9:6e:8d:a1:ed:34:45:93:51:89:74:32: a6:c9:03:ee:9a:b5:ec:78:96:2d:ac:1e:23:2a:87:cb:b4:d5: 8b:45:a3:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjQwNTAzMDM0ODUwWhcNMjQwNTEwMDM0ODUwWjAYMRYwFAYD VQQDEw02NjM0NWVhMi01ZDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqz2n3vuIj3euLxANTnmvyt3FmimVtWd3E0h6UvViVqhjjbx+sqn9/uq24r5 Kq5ppfaJlPEt5cLe8H5Y3Yy49HJ0jMFvUEBnrb85kQRh582X8Q8DnyYQ2PsdzMbd jhfSrFyqS34ARjR9/+r7zJs9dIjjHT9ZoyojRyqYx/QQ3uB1XmqVAUV5IdX9MlZ9 A+dxAJTbtV1IcOr8xJMhC8kZCzwq1QORM1j0bP+ufyN+1TFJwzSZvyE86UUElJIq GsmeaxYwJc5n36FYnPPBsPkCWGaVz3ffSZHbGA/Ai+L05+oNoVN6lWbms6QrqJaB JL1wdS1shHp5dSbmrpkYgc7WuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMl1aKt xef8TkO+PUJORZNmW5MQMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEnH165JQMbhU7BTOC/GrV5URolONL/u0Bx6ylt2E37/VTwvnL2QsF b8aozOR4aw8+XkH4SKar+nTa/7XMf+r+/MfhJGrggYz9bdYDftuk+1S5tm+gu/HM 9Tk2o6L6DIPDKJpSc7WeKcp3DVM2ZOXBMn/SzGFzQCjWC/RCrWSIi9V6UaJvFtuL 7sxLjBt4CR14knXKfeLjPFw2O4nVTeG6CXfTff/eWSxZSARJfARzX/gqa9jkXwoZ bnxtLwh4Mn7X05Se94Sud6H1jTFGk94pLNFcvfqyXC1hjltv6GH5bo2h7TRFk1GJ dDKmyQPumrXseJYtrB4jKofLtNWLRaNY -----END CERTIFICATE-----Generated at Fri May 3 04:36:46 2024 by rpki-client on console-ams.rpki-client.org