$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: m96AGUhVMPIg5wpEDrs7lXAQxzkiDZReCMgpLvPdRFg= Subject key identifier: 6B:53:C0:BA:21:52:14:53:9C:AD:29:A9:50:FC:17:3A:18:28:56:2A Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1ADB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1ACA Signing time: Sat 04 May 2024 16:47:17 +0000 Manifest this update: Sat 04 May 2024 16:47:16 +0000 Manifest next update: Sat 11 May 2024 16:47:16 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: VtkVQo8JVgaWNa/zsK4Uo+hppEG0UJMOs5yZPPPfiyY=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: i9O1XjNiOxohoSOkwBSOCWg1fccYbraqqs7MGV2WXXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6875 (0x1adb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: May 4 16:47:16 2024 GMT Not After : May 11 16:47:16 2024 GMT Subject: CN=66366695-b807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d4:42:ba:fe:6a:60:5a:72:db:f0:f0:20:11: 35:40:48:e6:7d:a1:5e:17:29:7a:36:64:a6:53:24: cd:41:10:09:b3:10:38:ff:90:a8:66:dd:ee:6d:18: 96:70:e0:ac:ab:ac:41:9b:e8:f6:42:90:9e:c9:81: d3:e2:a5:c6:dc:6e:0f:d8:19:bc:5e:ad:f8:60:35: 25:1b:5c:77:fe:53:20:82:80:fe:91:aa:bb:64:35: 03:4b:23:28:8b:bb:61:b7:c2:3c:36:8f:0a:a9:9e: b3:f2:7d:f7:93:e7:db:11:18:0d:11:ff:50:a1:71: 5d:ca:de:51:4b:0f:af:50:ce:b3:74:71:56:07:6b: 99:4c:43:50:d1:53:31:7a:05:a0:8b:5f:f5:52:4e: ed:1b:08:a8:4b:12:6d:67:0c:65:fd:d3:f4:2b:12: 8c:08:1e:91:c4:a2:71:c2:b9:1c:e1:1e:e7:4d:cc: 75:b2:b2:64:f3:c9:95:61:15:ae:1f:30:b4:d0:5f: 30:21:ba:61:fb:3f:d2:12:18:c1:d4:0f:21:3d:12: cf:3a:e9:69:28:79:37:25:8f:28:38:60:fe:b6:1c: d1:33:c9:6c:0e:2a:21:fa:93:ae:5f:a1:d1:f4:94: 92:b9:6c:b2:10:26:6f:57:95:fd:9f:3b:fe:ec:ce: 77:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:53:C0:BA:21:52:14:53:9C:AD:29:A9:50:FC:17:3A:18:28:56:2A X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:4b:c8:10:5c:f8:98:08:4c:62:45:94:21:7a:3a:5f:24:39: 27:41:1c:9a:bf:eb:0f:1b:bb:23:d3:ef:8e:16:44:98:90:a1: fd:e8:59:11:0f:5e:7f:fc:fa:44:bf:8e:92:34:7e:0d:d3:f1: 04:53:c4:9c:40:54:4f:38:a0:6d:9b:6e:15:45:17:4f:bf:78: 41:f4:ca:09:0d:bf:22:d0:8d:e4:b4:c8:6b:dc:4a:33:c4:a1: 89:cf:80:59:9b:0b:fb:d4:3b:7a:da:d3:e0:2f:55:5e:a3:4b: 7c:5e:90:ca:f2:fc:b0:76:a7:e6:fe:0e:db:4f:d9:cb:32:63: 32:43:3a:6a:21:a8:cd:5f:75:3d:58:26:25:99:2c:30:a4:3d: 99:a4:0d:2a:64:db:b9:bf:62:12:a1:0b:d7:1c:9a:33:c0:6c: 6e:6a:52:8e:46:a0:8c:c5:fa:dc:af:0b:93:f1:e9:d9:dc:a5: a1:62:97:0e:8e:07:2c:42:cb:33:0d:db:ac:4c:4b:4c:7e:97: 24:07:fc:8a:1a:e3:7d:c7:62:f1:3e:2d:67:85:e8:5c:e3:c3: 69:00:c5:51:d4:b9:b1:ca:0a:d1:57:29:15:2d:10:ac:13:9b: 2a:3c:3c:e5:df:ab:de:98:6a:9e:e1:78:ce:fe:33:52:e1:01: 23:58:6d:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjQwNTA0MTY0NzE2WhcNMjQwNTExMTY0NzE2WjAYMRYwFAYD VQQDEw02NjM2NjY5NS1iODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdRCuv5qYFpy2/DwIBE1QEjmfaFeFyl6NmSmUyTNQRAJsxA4/5CoZt3ubRiW cOCsq6xBm+j2QpCeyYHT4qXG3G4P2Bm8Xq34YDUlG1x3/lMggoD+kaq7ZDUDSyMo i7tht8I8No8KqZ6z8n33k+fbERgNEf9QoXFdyt5RSw+vUM6zdHFWB2uZTENQ0VMx egWgi1/1Uk7tGwioSxJtZwxl/dP0KxKMCB6RxKJxwrkc4R7nTcx1srJk88mVYRWu HzC00F8wIbph+z/SEhjB1A8hPRLPOulpKHk3JY8oOGD+thzRM8lsDioh+pOuX6HR 9JSSuWyyECZvV5X9nzv+7M536wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtTwLoh UhRTnK0pqVD8FzoYKFYqMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbS8gQXPiYCExiRZQhejpfJDknQRyav+sPG7sj0++OFkSYkKH96FkR D15//PpEv46SNH4N0/EEU8ScQFRPOKBtm24VRRdPv3hB9MoJDb8i0I3ktMhr3Eoz xKGJz4BZmwv71Dt62tPgL1Veo0t8XpDK8vywdqfm/g7bT9nLMmMyQzpqIajNX3U9 WCYlmSwwpD2ZpA0qZNu5v2ISoQvXHJozwGxualKORqCMxfrcrwuT8enZ3KWhYpcO jgcsQsszDdusTEtMfpckB/yKGuN9x2LxPi1nhehc48NpAMVR1LmxygrRVykVLRCs E5sqPDzl36vemGqe4XjO/jNS4QEjWG1N -----END CERTIFICATE-----Generated at Sat May 4 17:44:38 2024 by rpki-client on console-ams.rpki-client.org