$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: 9L3bsddZqXftFDuuJq/k1EX+ofxQVycm0IdVO85k7RA= Subject key identifier: 14:D8:12:14:80:81:D4:01:37:F0:86:5A:36:9A:15:1C:5C:59:AD:5F Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 0678 Signing time: Sat 04 May 2024 23:39:38 +0000 Manifest this update: Sat 04 May 2024 23:39:38 +0000 Manifest next update: Sat 11 May 2024 23:39:38 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: pslN8rTqSOVLv9zTql9miTVB0JYd+xVZZyDKWbcjrQ4=) 2: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: 6hDu1kE4GO085qpFOCQZLCpWlIpJI/9a6k7iwPrXpik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: May 4 23:39:38 2024 GMT Not After : May 11 23:39:38 2024 GMT Subject: CN=6636c73a-92ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:db:dc:bf:4a:d6:5c:7b:db:3b:cf:65:6c:b2: 5d:a5:77:15:a9:81:55:a6:a5:d1:55:96:bf:61:b3: 05:11:bc:91:9e:9a:37:fc:bf:e8:07:12:12:75:49: 08:3d:be:d1:8b:b8:6e:86:82:26:dd:1f:c2:0d:91: 80:78:76:30:a2:1a:3e:83:32:d0:db:a8:15:ae:7f: 15:58:07:54:69:c9:2d:c5:85:e0:24:5a:5b:9e:ec: 08:eb:31:76:16:c2:ae:77:37:1f:99:c9:19:bd:ff: 79:92:da:b0:5d:52:d9:cc:01:d6:f4:f4:85:a3:bf: 1d:d0:44:a9:86:f6:3d:5c:59:60:f5:bb:ac:0b:63: 74:0b:3b:be:b5:93:bd:30:ac:c5:35:a3:59:54:d5: 09:f3:fd:a0:28:4f:b0:ed:fe:da:4d:bb:9c:3d:ef: c5:16:f9:09:9e:fb:80:91:bd:a8:f7:1c:24:85:a4: e9:9d:9f:e0:38:b1:34:77:82:68:8a:cc:55:c2:3d: 01:16:eb:d4:4f:4e:a3:87:c2:fd:e7:8a:9e:2a:f8: aa:e5:9f:07:7f:c5:33:83:2a:d5:bf:bd:9e:bc:a4: 39:a6:e0:9a:4e:b8:f5:4a:e0:ce:6c:7a:8c:98:28: 03:8c:d2:e9:7b:0f:cd:fb:c7:59:a6:8f:93:3f:2e: 6f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D8:12:14:80:81:D4:01:37:F0:86:5A:36:9A:15:1C:5C:59:AD:5F X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e2:12:45:7c:c0:0c:bb:3a:6b:21:6c:bb:09:75:47:be:e0: f0:da:51:2b:cb:0b:45:52:ee:c4:10:6b:45:8d:3e:ed:22:95: a1:29:3e:fa:3b:7e:84:be:e7:af:65:af:25:22:73:3a:45:3e: c5:5a:c3:38:8b:5c:42:1d:6c:ff:b8:da:67:fd:d9:3a:08:30: 29:1d:01:9e:b5:7f:87:d9:bc:22:a0:68:d9:86:dc:64:80:c7: 21:5d:27:ef:9b:18:2a:86:67:49:5c:1f:be:92:29:16:74:1d: 58:91:a7:d1:83:d4:18:f9:03:4b:a2:0f:0e:8e:e2:8b:74:92: 6e:5b:f2:38:69:4d:3f:59:f5:a2:e9:ea:3e:45:de:62:0c:f4: e5:54:f0:c9:cd:63:26:30:a8:be:f5:0a:37:80:7c:90:8f:d5: e2:83:cc:c5:18:2b:cd:e7:b6:b1:67:32:3f:20:5e:06:23:e6: 71:b7:69:b2:ca:0a:89:9b:e9:e0:a0:73:96:92:e1:45:41:18: 03:ca:77:1b:95:0f:b5:4d:1c:54:78:49:f4:5b:23:21:b9:c4: 39:61:c5:31:36:6c:fa:66:74:95:c6:87:b6:c2:09:64:fd:2b: 93:14:91:f3:cf:94:6b:4d:98:fe:81:81:38:31:97:41:73:32: a7:15:ad:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjQwNTA0MjMzOTM4WhcNMjQwNTExMjMzOTM4WjAYMRYwFAYD VQQDEw02NjM2YzczYS05MmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9vcv0rWXHvbO89lbLJdpXcVqYFVpqXRVZa/YbMFEbyRnpo3/L/oBxISdUkI Pb7Ri7huhoIm3R/CDZGAeHYwoho+gzLQ26gVrn8VWAdUacktxYXgJFpbnuwI6zF2 FsKudzcfmckZvf95ktqwXVLZzAHW9PSFo78d0ESphvY9XFlg9busC2N0Czu+tZO9 MKzFNaNZVNUJ8/2gKE+w7f7aTbucPe/FFvkJnvuAkb2o9xwkhaTpnZ/gOLE0d4Jo isxVwj0BFuvUT06jh8L954qeKviq5Z8Hf8UzgyrVv72evKQ5puCaTrj1SuDObHqM mCgDjNLpew/N+8dZpo+TPy5vHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTYEhSA gdQBN/CGWjaaFRxcWa1fMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI4hJFfMAMuzprIWy7CXVHvuDw2lErywtFUu7EEGtFjT7tIpWhKT76 O36EvuevZa8lInM6RT7FWsM4i1xCHWz/uNpn/dk6CDApHQGetX+H2bwioGjZhtxk gMchXSfvmxgqhmdJXB++kikWdB1YkafRg9QY+QNLog8OjuKLdJJuW/I4aU0/WfWi 6eo+Rd5iDPTlVPDJzWMmMKi+9Qo3gHyQj9Xig8zFGCvN57axZzI/IF4GI+Zxt2my ygqJm+ngoHOWkuFFQRgDyncblQ+1TRxUeEn0WyMhucQ5YcUxNmz6ZnSVxoe2wglk /SuTFJHzz5RrTZj+gYE4MZdBczKnFa3I -----END CERTIFICATE-----Generated at Sun May 5 00:14:41 2024 by rpki-client on console-ams.rpki-client.org