$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft File: AIsjUb6f1m04sRBQZ5c09E-l2X0.mft (raw, json) Hash identifier: T4AewvsTBgrywrSpnjsjVNaRO7MrZj2hFLJ5cSBryPU= Subject key identifier: D5:9D:A7:4D:A7:EA:D9:FF:37:F9:42:5B:EE:21:89:24:92:4A:47:7A Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft Manifest number: 10 Signing time: Fri 17 May 2024 08:56:56 +0000 Manifest this update: Fri 17 May 2024 08:56:55 +0000 Manifest next update: Fri 24 May 2024 08:56:55 +0000 Files and hashes: 1: AIsjUb6f1m04sRBQZ5c09E-l2X0.crl (hash: BLR7Jcml4a/ew63Y4PzS27iF6Ol1kM0kfN6gp6Nnrv4=) 2: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (hash: FAsIeX/amsnKoAaVSpT+BmFdivRozZBNtYBMb+2BVT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: May 17 08:56:55 2024 GMT Not After : May 24 08:56:55 2024 GMT Subject: CN=66471bd8-d292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7d:d4:52:3b:76:b4:9f:ef:85:fd:f6:62:22: a7:88:9d:36:79:e3:a7:26:c4:e0:53:95:4e:1b:4a: 8d:fc:a2:68:97:56:0f:64:ba:8c:af:4c:72:8d:61: 47:e0:b6:94:0a:08:f7:80:1b:14:c3:12:07:03:f2: 89:74:22:c6:eb:54:16:dd:67:36:e2:74:c5:8e:93: 45:d9:b9:7d:9d:d9:39:6b:b5:a0:36:01:4f:0a:28: fb:66:86:c8:c8:2b:cf:2c:73:1f:04:47:58:e1:ca: 8b:81:3f:4e:37:73:cd:07:b6:f5:d3:7e:2e:67:19: f8:97:d4:7b:70:01:b6:a5:1f:84:2a:19:a3:c2:12: 3c:d9:6c:41:8b:04:d7:9c:d4:bb:c4:9d:27:96:94: f1:48:59:d2:62:1c:74:43:05:f9:29:5b:e0:cf:23: 34:53:19:87:15:d6:72:85:f7:ea:f8:01:18:6a:92: c6:6c:ed:f7:3c:e1:d2:2f:cc:32:c3:5b:4c:47:ff: de:b3:34:08:1a:bc:fc:87:1f:23:1d:de:f5:23:b9: ed:34:8d:6d:55:71:0e:34:cb:98:7c:bc:88:bf:14: 9b:6b:55:c4:c1:53:dd:46:e1:e1:cc:54:96:a3:10: 59:6d:c8:8a:21:1c:55:5a:b2:8e:c2:16:4f:d2:51: 5c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9D:A7:4D:A7:EA:D9:FF:37:F9:42:5B:EE:21:89:24:92:4A:47:7A X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:74:da:69:2d:49:41:56:76:2e:c0:9c:40:8b:bb:eb:70:0e: 6d:57:23:fc:ee:a6:79:ca:32:ad:2c:dc:02:ad:61:ea:0e:8d: ec:f1:5a:17:c8:71:34:87:12:25:8e:23:cd:78:0e:18:34:c4: 53:b1:2b:89:2c:f2:94:d5:68:ea:89:a9:b2:51:88:83:45:76: d8:d2:af:4d:e0:fe:36:3c:da:38:8b:ab:5c:e4:28:f6:89:ba: c2:ae:41:d0:ba:f4:16:32:89:c5:99:ab:e9:1f:91:cb:21:46: 89:5c:90:44:c6:12:65:cf:79:f7:82:56:1d:53:1e:b6:74:4d: d0:75:18:ad:49:c1:79:15:95:c7:d9:b5:76:69:b5:86:b8:12: bc:1f:37:cb:8d:d9:8c:0e:29:c2:b7:05:0f:2b:3f:76:3f:db: e7:bd:c3:d3:0e:41:20:53:58:ff:97:f6:98:b3:9a:76:43:b1: 05:d0:41:2c:56:0e:0e:d8:93:f5:0e:8d:5b:10:0c:3d:c8:0f: 9f:3e:a3:be:7d:8e:3a:9a:73:60:82:f4:88:c2:1d:f2:5d:58: 98:c0:28:8b:ba:b5:23:bb:d3:4b:d9:a9:0d:93:cf:16:18:bc: 75:6b:48:b5:79:9c:25:5c:79:0a:03:82:7a:8d:f8:85:31:92: 7c:53:cb:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QjBEODExMC8GA1UEBRMoMDA4QjIzNTFCRTlGRDY2RDM4QjExMDUwNjc5NzM0RjQ0 RkE1RDk3RDAeFw0yNDA1MTcwODU2NTVaFw0yNDA1MjQwODU2NTVaMBgxFjAUBgNV BAMTDTY2NDcxYmQ4LWQyOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdfdRSO3a0n++F/fZiIqeInTZ546cmxOBTlU4bSo38omiXVg9kuoyvTHKNYUfg tpQKCPeAGxTDEgcD8ol0IsbrVBbdZzbidMWOk0XZuX2d2TlrtaA2AU8KKPtmhsjI K88scx8ER1jhyouBP043c80HtvXTfi5nGfiX1HtwAbalH4QqGaPCEjzZbEGLBNec 1LvEnSeWlPFIWdJiHHRDBfkpW+DPIzRTGYcV1nKF9+r4ARhqksZs7fc84dIvzDLD W0xH/96zNAgavPyHHyMd3vUjue00jW1VcQ40y5h8vIi/FJtrVcTBU91G4eHMVJaj EFltyIohHFVaso7CFk/SUVz3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1Z2nTafq 2f83+UJb7iGJJJJKR3owHwYDVR0jBBgwFoAUAIsjUb6f1m04sRBQZ5c09E+l2X0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCMEQ4LzA3QUFCQ0RBRkIx MTExRUU5MTIzMzkxQkM0RjlBRTAyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJY MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQUlzalViNmYxbTA0c1JCUVo1YzA5RS1sMlgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRC MEQ4LzA3QUFCQ0RBRkIxMTExRUU5MTIzMzkxQkM0RjlBRTAyL0FJc2pVYjZmMW0w NHNSQlFaNWMwOUUtbDJYMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIt02mktSUFWdi7AnECLu+twDm1XI/zupnnKMq0s3AKtYeoOjezxWhfI cTSHEiWOI814Dhg0xFOxK4ks8pTVaOqJqbJRiINFdtjSr03g/jY82jiLq1zkKPaJ usKuQdC69BYyicWZq+kfkcshRolckETGEmXPefeCVh1THrZ0TdB1GK1JwXkVlcfZ tXZptYa4ErwfN8uN2YwOKcK3BQ8rP3Y/2+e9w9MOQSBTWP+X9pizmnZDsQXQQSxW Dg7Yk/UOjVsQDD3ID58+o759jjqac2CC9IjCHfJdWJjAKIu6tSO700vZqQ2TzxYY vHVrSLV5nCVceQoDgnqN+IUxknxTyww= -----END CERTIFICATE-----Generated at Fri May 17 10:59:09 2024 by rpki-client on console-ams.rpki-client.org