$ rpki-client -vvf rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft File: mmZSAdYWDzHXa50heh3_6tEsuoI.mft (raw, json) Hash identifier: aFs/sd4E4aIFAXw1xr9YKpmAkbAbeAnFAmHB/FIlric= Subject key identifier: D2:6F:C9:B5:73:E4:DD:5A:0A:BF:0B:DC:B0:75:02:C5:2A:F1:5C:05 Authority key identifier: 9A:66:52:01:D6:16:0F:31:D7:6B:9D:21:7A:1D:FF:EA:D1:2C:BA:82 Certificate issuer: /CN=A915180C/serialNumber=9A665201D6160F31D76B9D217A1DFFEAD12CBA82 Certificate serial: 1D05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft Manifest number: 1CF9 Signing time: Thu 02 May 2024 16:35:29 +0000 Manifest this update: Thu 02 May 2024 16:35:28 +0000 Manifest next update: Thu 09 May 2024 16:35:28 +0000 Files and hashes: 1: mmZSAdYWDzHXa50heh3_6tEsuoI.crl (hash: twXW4uLg7Tlfmpth+yHpBX8A06V2DYHM0hVyh7iVcC0=) 2: 5F313E6A99D611E6BB89D557C4F9AE02.roa (hash: ZGCJNBFnB8fjUkSBXI8YXHiyxcsIVU9bjljz0QT8jc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.crl rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7429 (0x1d05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915180C/serialNumber=9A665201D6160F31D76B9D217A1DFFEAD12CBA82 Validity Not Before: May 2 16:35:28 2024 GMT Not After : May 9 16:35:28 2024 GMT Subject: CN=6633c0d0-bf33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:65:89:42:a3:b4:6d:cb:58:bf:8c:e8:b7:12: 6e:4c:b5:cb:8f:84:4f:0e:d3:d5:b9:6e:3c:bd:fc: 72:b4:e1:91:1c:13:79:26:99:3b:eb:27:94:b6:92: f3:74:d4:6a:7d:1f:72:0f:10:ca:97:72:f1:8b:32: ce:65:27:af:b2:89:92:d4:23:07:8d:47:a3:34:90: e2:bd:03:84:78:3e:30:d8:08:ef:ab:aa:3b:35:5b: 1a:15:37:4f:53:cf:fe:76:14:a0:0d:da:a7:67:c6: 6e:18:55:9d:f0:d6:d6:8f:68:92:08:2b:5d:06:a6: ce:d6:33:da:1c:2a:05:f9:3d:5b:d9:0b:d2:02:65: cb:e5:dc:72:f7:6a:89:d6:c0:44:c5:04:22:26:6e: 2b:96:a2:59:07:75:47:aa:ca:96:13:24:ba:f2:ae: 03:bf:19:32:8f:9e:a2:d3:5e:aa:34:5f:0f:d0:7f: e1:39:3e:b5:44:28:0e:7e:c1:5b:ba:a2:f6:de:8c: 4c:a6:03:54:e1:09:96:43:c4:84:92:e2:da:3e:b2: 41:43:55:5b:89:b6:12:3b:1d:ab:85:1e:bd:89:00: 8c:99:42:82:f0:13:a0:d8:44:84:a4:03:46:41:f8: 16:89:71:2a:57:8b:dd:58:f7:62:5e:b0:e3:60:70: 44:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:6F:C9:B5:73:E4:DD:5A:0A:BF:0B:DC:B0:75:02:C5:2A:F1:5C:05 X509v3 Authority Key Identifier: keyid:9A:66:52:01:D6:16:0F:31:D7:6B:9D:21:7A:1D:FF:EA:D1:2C:BA:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:f9:43:9f:00:40:96:a8:67:d9:47:ac:94:a3:3c:7c:73:5a: 1d:66:00:9b:98:cb:dd:75:a1:f7:4e:62:bf:37:b5:df:5a:f8: c4:9e:07:9d:36:4e:5b:56:98:db:92:63:c5:f9:c2:51:86:6b: 56:c6:8c:06:99:74:b6:f9:e1:db:51:72:44:85:7c:a2:fa:71: 5a:d5:b9:5f:bc:c3:a1:60:ba:27:7a:d9:b6:83:51:29:06:68: 96:e9:51:69:0e:9e:c7:ea:ad:60:98:7b:b1:7c:a5:c2:d4:43: 90:0b:69:b4:5b:c6:25:0a:a4:8e:12:86:57:ce:a3:7a:cc:26: 58:95:8f:dd:df:c6:ed:43:b3:32:05:bf:93:45:c8:35:42:dd: d5:fd:e6:4a:f7:37:69:20:83:6e:23:c6:9a:43:47:db:dd:9d: e1:73:e5:62:96:26:93:08:2e:26:06:de:c5:46:6b:60:d0:c1: e3:2b:4c:f3:08:02:55:69:24:74:2e:f0:2c:db:9a:0a:a3:91: 10:46:cc:63:45:cf:e7:f5:71:a2:b9:7b:bb:6d:0a:26:a2:85: 02:4d:ef:2c:90:ca:e9:99:d3:10:07:59:36:47:7f:73:21:dc: 36:87:da:78:49:e6:8a:45:31:b9:af:cb:19:8f:8c:8c:32:82: 76:28:bc:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4MEMxMTAvBgNVBAUTKDlBNjY1MjAxRDYxNjBGMzFENzZCOUQyMTdBMURGRkVB RDEyQ0JBODIwHhcNMjQwNTAyMTYzNTI4WhcNMjQwNTA5MTYzNTI4WjAYMRYwFAYD VQQDEw02NjMzYzBkMC1iZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymWJQqO0bctYv4zotxJuTLXLj4RPDtPVuW48vfxytOGRHBN5Jpk76yeUtpLz dNRqfR9yDxDKl3LxizLOZSevsomS1CMHjUejNJDivQOEeD4w2Ajvq6o7NVsaFTdP U8/+dhSgDdqnZ8ZuGFWd8NbWj2iSCCtdBqbO1jPaHCoF+T1b2QvSAmXL5dxy92qJ 1sBExQQiJm4rlqJZB3VHqsqWEyS68q4Dvxkyj56i016qNF8P0H/hOT61RCgOfsFb uqL23oxMpgNU4QmWQ8SEkuLaPrJBQ1VbibYSOx2rhR69iQCMmUKC8BOg2ESEpANG QfgWiXEqV4vdWPdiXrDjYHBEPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJvybVz 5N1aCr8L3LB1AsUq8VwFMB8GA1UdIwQYMBaAFJpmUgHWFg8x12udIXod/+rRLLqC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTgwQy85QTdDRDNFQTk2 QjUxMUU2ODRGNzM0MTFDNEY5QUUwMi9tbVpTQWRZV0R6SFhhNTBoZWgzXzZ0RXN1 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21tWlNBZFlXRHpIWGE1MGhlaDNfNnRFc3VvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTgwQy85QTdDRDNFQTk2QjUxMUU2ODRGNzM0MTFDNEY5QUUwMi9tbVpTQWRZV0R6 SFhhNTBoZWgzXzZ0RXN1b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq+UOfAECWqGfZR6yUozx8c1odZgCbmMvddaH3TmK/N7XfWvjEnged Nk5bVpjbkmPF+cJRhmtWxowGmXS2+eHbUXJEhXyi+nFa1blfvMOhYLonetm2g1Ep BmiW6VFpDp7H6q1gmHuxfKXC1EOQC2m0W8YlCqSOEoZXzqN6zCZYlY/d38btQ7My Bb+TRcg1Qt3V/eZK9zdpIINuI8aaQ0fb3Z3hc+ViliaTCC4mBt7FRmtg0MHjK0zz CAJVaSR0LvAs25oKo5EQRsxjRc/n9XGiuXu7bQomooUCTe8skMrpmdMQB1k2R39z Idw2h9p4SeaKRTG5r8sZj4yMMoJ2KLyQ -----END CERTIFICATE-----Generated at Thu May 2 17:18:28 2024 by rpki-client on console-ams.rpki-client.org