$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: vmIelBzeSeOOvzBBeQ63sxgGvAu/XKSEb5Q9A1QG2yo= Subject key identifier: 9F:43:B4:70:EB:0C:B4:B6:D1:5F:A9:55:A6:D1:47:10:50:67:5A:D2 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 03ED Signing time: Fri 03 May 2024 02:19:30 +0000 Manifest this update: Fri 03 May 2024 02:19:30 +0000 Manifest next update: Fri 10 May 2024 02:19:30 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: 7VtsYBBmmNuC1GtDkAScxQUAeuSaDoenCikG7L3m0+k=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: 5G6YI2kkXdN56VMnX9IV+S4sbfoJ9J7826nrCVQnRZY=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: Kxt0M6y57HoG3pkIV8MsermgKviD0183Bv5ogVFNeV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: May 3 02:19:30 2024 GMT Not After : May 10 02:19:30 2024 GMT Subject: CN=663449b2-b1f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c0:8a:b3:60:e3:5e:c0:c2:fb:12:4e:37:af: 97:cd:f3:ec:d3:8b:1f:99:69:3e:66:15:44:b0:1c: 21:35:a2:2c:3b:76:dd:80:ad:f4:d2:ab:ad:00:01: 31:df:71:ff:3b:61:63:c6:94:6c:24:69:6e:30:a8: b5:dc:49:b7:94:2a:c4:fc:2d:63:4b:5b:03:49:fd: 1c:79:46:2a:2c:09:5c:a7:79:a1:d2:c8:c4:2b:9a: ba:39:12:09:d4:2a:16:2c:65:70:44:61:e2:a9:8e: 38:8a:95:35:8c:41:26:ca:3c:13:c2:df:e0:70:8b: b6:59:7e:65:20:aa:0b:22:10:53:9d:94:1c:a0:5b: 4d:12:a4:7c:0c:3a:c9:77:65:32:ed:0d:df:af:27: 70:ec:19:36:a2:ad:4a:a8:00:86:66:a7:ea:ee:47: 18:1f:bd:5a:01:0b:ca:2a:f3:ea:d2:fa:9a:c1:c6: bf:2b:07:ff:64:45:7c:02:ba:fc:6e:43:5f:5f:86: 1c:0c:31:db:42:a8:16:5b:0b:fc:7c:c2:0b:c3:4b: 92:86:f5:c8:4c:b6:6a:a5:bb:85:4f:a8:71:81:f5: 5a:ca:90:f7:af:4d:c7:0a:0f:b4:37:2b:57:5f:e1: e2:17:55:fd:83:7e:b5:dd:bc:46:46:ba:7a:67:0b: 05:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:43:B4:70:EB:0C:B4:B6:D1:5F:A9:55:A6:D1:47:10:50:67:5A:D2 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:fa:bd:c7:4c:45:fa:ee:b2:66:02:1d:97:89:07:9c:f9:7f: 9a:b4:f0:d8:75:d8:23:10:82:e4:09:87:d6:4a:e2:c6:e0:d3: a9:6a:f7:c2:85:4a:93:21:f3:f3:d5:56:7f:b5:47:4c:9c:6c: 15:d2:31:95:15:9a:5e:b0:fe:e7:11:f6:0d:83:f0:79:18:cf: a2:79:72:fc:17:b1:df:91:92:cb:a2:57:93:10:62:70:64:e9: 34:a4:1d:01:e6:b3:10:1a:62:ab:ca:f9:51:82:52:77:66:27: 78:63:d4:d3:58:b9:c2:b2:3f:ab:94:af:71:98:1b:c8:f2:1b: af:d9:87:91:9c:fb:34:2e:c2:e5:46:24:af:0a:4a:46:d0:35: b0:b2:76:b2:7e:3f:46:db:1d:29:a4:eb:50:9e:c8:01:5f:ac: 15:43:8f:f2:22:20:02:82:e7:ff:74:ff:fc:2b:23:58:5a:1d: 0c:b4:f7:e5:48:8b:86:d3:56:fd:26:ca:38:57:b0:6c:f1:7d: 20:08:be:42:29:f6:08:b9:a5:83:c1:22:41:f6:dc:02:c5:b0: a4:08:6d:35:aa:2a:ab:ba:69:7e:f4:35:46:3b:2e:25:16:4d: 07:7c:0f:c5:01:3a:98:ad:bc:28:ca:4c:c0:24:57:ae:98:70: fb:47:66:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjQwNTAzMDIxOTMwWhcNMjQwNTEwMDIxOTMwWjAYMRYwFAYD VQQDEw02NjM0NDliMi1iMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sCKs2DjXsDC+xJON6+XzfPs04sfmWk+ZhVEsBwhNaIsO3bdgK300qutAAEx 33H/O2FjxpRsJGluMKi13Em3lCrE/C1jS1sDSf0ceUYqLAlcp3mh0sjEK5q6ORIJ 1CoWLGVwRGHiqY44ipU1jEEmyjwTwt/gcIu2WX5lIKoLIhBTnZQcoFtNEqR8DDrJ d2Uy7Q3frydw7Bk2oq1KqACGZqfq7kcYH71aAQvKKvPq0vqawca/Kwf/ZEV8Arr8 bkNfX4YcDDHbQqgWWwv8fMILw0uShvXITLZqpbuFT6hxgfVaypD3r03HCg+0NytX X+HiF1X9g3613bxGRrp6ZwsF+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9DtHDr DLS20V+pVabRRxBQZ1rSMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG+r3HTEX67rJmAh2XiQec+X+atPDYddgjEILkCYfWSuLG4NOpavfC hUqTIfPz1VZ/tUdMnGwV0jGVFZpesP7nEfYNg/B5GM+ieXL8F7HfkZLLoleTEGJw ZOk0pB0B5rMQGmKryvlRglJ3Zid4Y9TTWLnCsj+rlK9xmBvI8huv2YeRnPs0LsLl RiSvCkpG0DWwsnayfj9G2x0ppOtQnsgBX6wVQ4/yIiACguf/dP/8KyNYWh0MtPfl SIuG01b9Jso4V7Bs8X0gCL5CKfYIuaWDwSJB9twCxbCkCG01qiqruml+9DVGOy4l Fk0HfA/FATqYrbwoykzAJFeumHD7R2YU -----END CERTIFICATE-----Generated at Fri May 3 03:10:47 2024 by rpki-client on console-ams.rpki-client.org