$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft File: lI_4don6lJEW9ffIAOsdcB5l43s.mft (raw, json) Hash identifier: W3ltnt2RSjtUI2a7VnY8vTOF3RQfGZxraNDCCPNcBWs= Subject key identifier: 7C:7E:10:2D:9D:C8:96:40:C7:A7:B0:73:36:F6:D7:05:AA:F1:B4:3F Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0AA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft Manifest number: 0AA2 Signing time: Sat 04 May 2024 20:21:50 +0000 Manifest this update: Sat 04 May 2024 20:21:49 +0000 Manifest next update: Sat 11 May 2024 20:21:49 +0000 Files and hashes: 1: lI_4don6lJEW9ffIAOsdcB5l43s.crl (hash: 5/4kq0/iVOEefEfawyyz5HayDZ8o95yW2/MthebrKxw=) 2: 160F265C827311EDA56A8F30C4F9AE02.roa (hash: +AtlwJpDixwyUCDykXdm+mzXPL2l2b4XkTAoBl1SNz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2729 (0xaa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Validity Not Before: May 4 20:21:49 2024 GMT Not After : May 11 20:21:49 2024 GMT Subject: CN=663698dd-3d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f6:c5:d7:a7:4d:3f:99:81:2f:ff:8f:aa:10: d5:ef:07:cb:3b:a6:ae:a9:5e:f7:d8:0c:cd:1a:b0: 43:ce:0e:fb:c3:10:ab:d1:7a:fc:b6:a0:e3:77:92: 6a:60:36:a2:17:ce:30:8d:a0:e0:a6:2f:bf:13:a3: 17:a8:64:17:22:e8:07:68:48:84:0e:8e:08:3a:cc: 0c:be:fe:dc:a1:ea:53:87:8e:1f:e3:88:c2:de:f2: 55:df:04:11:15:63:55:1f:1e:7d:06:ff:be:e6:da: 91:5f:a4:4b:c9:dc:63:21:e4:9a:1b:2d:15:c7:b1: cb:d2:03:08:ba:5f:ca:ae:05:2d:ea:a3:08:2f:11: d1:63:9e:cd:71:26:1c:ad:b6:ea:63:bb:09:c7:9c: ee:12:32:8b:74:5f:45:45:67:8c:ab:96:75:cd:8a: d6:c6:1e:ae:b8:43:ba:eb:16:07:5a:39:64:04:22: 8f:28:6c:15:24:0e:3a:3a:45:61:c9:7e:38:71:1f: 9a:fd:53:cc:a6:c0:99:75:3b:16:aa:40:d9:fb:49: 1e:97:78:e0:38:a5:4f:e3:ba:3e:01:18:5e:2d:f4: 4a:14:e6:0d:e8:74:b2:38:57:2e:f5:45:4c:47:8d: d2:f8:bf:99:63:bb:39:4a:e1:48:2d:32:66:27:55: 0e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7E:10:2D:9D:C8:96:40:C7:A7:B0:73:36:F6:D7:05:AA:F1:B4:3F X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:e7:62:7f:53:77:62:e5:54:78:ef:00:e6:95:66:4d:91:ec: d7:37:a1:d5:c3:19:ed:6f:85:4e:a2:b5:80:c8:a0:c1:ab:cd: 3d:42:cc:1d:d3:39:4b:03:95:dd:11:5d:14:97:f8:7b:40:99: 3d:83:60:61:bd:02:e2:ee:29:4c:d9:a2:3d:f7:5d:89:64:db: 69:47:7a:ba:a6:90:51:ef:85:84:af:25:38:0a:a7:ab:b8:87: 82:1f:0e:52:32:82:94:75:d7:b8:62:73:55:eb:a0:cd:2b:e4: ed:e4:0c:17:27:84:26:bb:8b:ed:96:4d:46:df:0c:10:a7:10: d5:49:e6:20:5b:94:e4:da:22:60:7c:c8:b7:15:03:fa:70:02: a1:00:68:dc:1e:17:3b:54:93:af:33:f7:a4:02:8a:db:2a:f2: da:f8:50:d1:da:ba:72:0e:67:38:27:2c:50:05:2c:37:db:04: 79:d2:d4:87:cd:91:d9:85:71:0a:6b:b6:10:b7:e9:09:fd:d9: 27:e7:17:d0:e9:c2:4b:6d:02:58:0a:2f:28:67:31:33:b1:7b: ed:fb:c0:d5:8f:89:4e:ed:dc:ab:83:b1:00:4a:64:1e:0c:5e: 3e:f3:b9:95:26:29:9d:8d:35:ac:9d:91:c7:64:f8:47:d2:66: 82:6e:7f:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjQwNTA0MjAyMTQ5WhcNMjQwNTExMjAyMTQ5WjAYMRYwFAYD VQQDEw02NjM2OThkZC0zZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fbF16dNP5mBL/+PqhDV7wfLO6auqV732AzNGrBDzg77wxCr0Xr8tqDjd5Jq YDaiF84wjaDgpi+/E6MXqGQXIugHaEiEDo4IOswMvv7coepTh44f44jC3vJV3wQR FWNVHx59Bv++5tqRX6RLydxjIeSaGy0Vx7HL0gMIul/KrgUt6qMILxHRY57NcSYc rbbqY7sJx5zuEjKLdF9FRWeMq5Z1zYrWxh6uuEO66xYHWjlkBCKPKGwVJA46OkVh yX44cR+a/VPMpsCZdTsWqkDZ+0kel3jgOKVP47o+ARheLfRKFOYN6HSyOFcu9UVM R43S+L+ZY7s5SuFILTJmJ1UO0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHx+EC2d yJZAx6ewczb21wWq8bQ/MB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEVGQS9FMEM5NTFDRTMwNjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxK RVc5ZmZJQU9zZGNCNWw0M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX52J/U3di5VR47wDmlWZNkezXN6HVwxntb4VOorWAyKDBq809Qswd 0zlLA5XdEV0Ul/h7QJk9g2BhvQLi7ilM2aI9912JZNtpR3q6ppBR74WEryU4Cqer uIeCHw5SMoKUdde4YnNV66DNK+Tt5AwXJ4Qmu4vtlk1G3wwQpxDVSeYgW5Tk2iJg fMi3FQP6cAKhAGjcHhc7VJOvM/ekAorbKvLa+FDR2rpyDmc4JyxQBSw32wR50tSH zZHZhXEKa7YQt+kJ/dkn5xfQ6cJLbQJYCi8oZzEzsXvt+8DVj4lO7dyrg7EASmQe DF4+87mVJimdjTWsnZHHZPhH0maCbn/c -----END CERTIFICATE-----Generated at Sat May 4 21:19:28 2024 by rpki-client on console-ams.rpki-client.org