$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: 0WxgxbuLJC9qrBY6iTApKzzemtchZk8JUFeD1ALUYD0= Subject key identifier: C3:3C:DE:2D:E2:1A:DF:2A:08:15:A9:4E:4F:78:A7:9D:F8:A8:12:12 Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 0115 Signing time: Wed 01 May 2024 05:32:57 +0000 Manifest this update: Wed 01 May 2024 05:32:56 +0000 Manifest next update: Wed 08 May 2024 05:32:56 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: 7D21Gvs/1Dbvq5LZKb7k0KbGNUchRLJRxhr3RpWyTbA=) 2: A22C70A2601F11ED93695875C4F9AE02.roa (hash: HeunICS+dfiqWVFVgqOPy6mgm5VWLlfn9G0WWrZlHRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: May 1 05:32:56 2024 GMT Not After : May 8 05:32:56 2024 GMT Subject: CN=6631d409-c6cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a7:10:9e:a6:47:9a:07:6a:7c:56:24:fd:69: ca:6c:14:7a:37:d6:7b:37:cb:c3:ba:cd:7f:ae:d6: 24:53:39:35:99:4b:b3:85:7b:30:4c:5c:f6:8a:18: e7:f9:60:07:1c:4e:40:48:58:96:ae:21:8e:a8:5c: 99:1a:ee:bf:96:76:42:02:b9:c3:08:8a:6c:ea:d9: 59:f3:5e:c0:87:9f:c1:78:02:0d:2a:a9:91:06:34: b5:e6:9e:43:29:a3:c3:38:b5:9e:cb:cc:30:9f:dd: e4:7b:e2:8d:59:2a:ec:1d:b1:1b:86:33:33:2a:32: 10:ae:b3:a1:17:da:66:8a:8d:df:ee:b0:e0:a1:85: c9:04:65:cd:04:e1:ce:ee:d7:88:14:1a:27:dd:25: e2:e2:62:1a:d7:b4:4b:10:0e:47:98:a7:b3:d4:9b: 71:9b:ce:2a:ab:c8:2d:28:59:78:20:70:17:30:d1: f5:b2:65:a3:42:64:b3:34:66:2e:bd:29:ef:56:71: 01:06:b4:8b:6f:07:20:cf:3f:84:7d:cb:49:86:0d: 3a:9f:e1:8d:a5:a4:68:ba:ca:4f:38:93:96:a8:c4: 7c:ee:30:70:15:df:14:6b:b1:da:21:b0:f8:7b:a6: 96:00:9e:61:2f:85:cc:e8:3c:c2:04:40:ae:53:d5: 7b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:3C:DE:2D:E2:1A:DF:2A:08:15:A9:4E:4F:78:A7:9D:F8:A8:12:12 X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:80:7b:59:11:bc:06:08:b7:db:6c:c2:5b:c8:aa:b1:06:12: 91:e2:62:c7:a3:e1:c8:72:8a:62:f7:4a:bf:66:9d:6b:8e:9b: f8:29:1b:82:f9:60:38:c3:9d:58:5f:e1:fa:c1:71:93:51:2d: 2a:55:b4:ef:57:1b:2b:fa:64:f2:55:4c:6e:04:f5:d4:10:0a: 02:b1:3d:57:47:ec:bc:ec:13:ff:b5:82:ae:b3:c4:19:f9:54: b0:50:25:d8:b6:82:3d:ee:48:1b:65:6f:9e:5b:88:12:c3:43: 8e:21:df:b9:16:98:5d:53:55:cf:f4:19:c1:06:8b:38:00:4e: c8:db:0c:c9:4c:d8:52:0f:dc:4a:32:20:86:e3:6f:fc:72:5e: 4e:15:33:70:4d:98:07:d9:6d:69:e3:cd:06:ce:bd:c9:5f:b0: dd:bb:72:12:de:f9:78:be:9f:1c:92:85:6c:17:56:2c:82:0f: af:de:e2:4c:99:65:5b:f2:91:e3:f8:62:35:26:3b:0a:70:a3: 70:3c:9b:c2:6b:1f:d0:80:10:b4:5a:6b:f5:8b:fd:f5:79:ed: c7:60:0d:28:3f:fa:a4:21:72:aa:bd:3e:e2:93:e8:e7:c9:49: 75:1d:50:59:40:c1:cb:4b:73:a3:da:46:f2:be:f4:5c:1a:fb: 06:28:d4:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjQwNTAxMDUzMjU2WhcNMjQwNTA4MDUzMjU2WjAYMRYwFAYD VQQDEw02NjMxZDQwOS1jNmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6cQnqZHmgdqfFYk/WnKbBR6N9Z7N8vDus1/rtYkUzk1mUuzhXswTFz2ihjn +WAHHE5ASFiWriGOqFyZGu6/lnZCArnDCIps6tlZ817Ah5/BeAINKqmRBjS15p5D KaPDOLWey8wwn93ke+KNWSrsHbEbhjMzKjIQrrOhF9pmio3f7rDgoYXJBGXNBOHO 7teIFBon3SXi4mIa17RLEA5HmKez1Jtxm84qq8gtKFl4IHAXMNH1smWjQmSzNGYu vSnvVnEBBrSLbwcgzz+EfctJhg06n+GNpaRouspPOJOWqMR87jBwFd8Ua7HaIbD4 e6aWAJ5hL4XM6DzCBECuU9V7DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMM83i3i Gt8qCBWpTk94p534qBISMB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsgHtZEbwGCLfbbMJbyKqxBhKR4mLHo+HIcopi90q/Zp1rjpv4KRuC +WA4w51YX+H6wXGTUS0qVbTvVxsr+mTyVUxuBPXUEAoCsT1XR+y87BP/tYKus8QZ +VSwUCXYtoI97kgbZW+eW4gSw0OOId+5FphdU1XP9BnBBos4AE7I2wzJTNhSD9xK MiCG42/8cl5OFTNwTZgH2W1p480Gzr3JX7Ddu3IS3vl4vp8ckoVsF1Ysgg+v3uJM mWVb8pHj+GI1JjsKcKNwPJvCax/QgBC0Wmv1i/31ee3HYA0oP/qkIXKqvT7ik+jn yUl1HVBZQMHLS3Oj2kbyvvRcGvsGKNRJ -----END CERTIFICATE-----Generated at Wed May 1 06:34:04 2024 by rpki-client on console-ams.rpki-client.org