$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: Q4s6ExaqnTnxroe5aTgB7AFaWd53aAYCfmbu0ul4oDU= Subject key identifier: E9:60:40:C2:EA:04:C7:93:0A:D5:81:A0:99:ED:42:B9:6D:EA:30:B9 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 033C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 0333 Signing time: Sun 05 May 2024 03:09:16 +0000 Manifest this update: Sun 05 May 2024 03:09:16 +0000 Manifest next update: Sun 12 May 2024 03:09:15 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: PMYL1/lXhhg8ktVRhGNS39B8IQfMAba6aMvToUvbDUI=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: Zeiu4QtNT5MUhU37wsj+oT85M5rgvK6OPRoU5FxNjsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: May 5 03:09:16 2024 GMT Not After : May 12 03:09:15 2024 GMT Subject: CN=6636f85c-eedc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b5:5b:f1:f9:7b:1e:b7:90:8b:d8:ba:48:71: 50:a1:dd:e8:12:35:4c:72:22:89:91:3c:89:df:61: e9:af:f4:62:9a:10:d1:ab:a0:b5:62:3e:49:c1:5c: 59:eb:bc:ee:af:cd:1f:64:2e:87:75:d1:20:50:e2: 15:1e:16:55:01:cd:9a:59:a8:28:ce:c6:af:a7:69: 00:f5:72:1d:ac:1a:62:11:1d:f7:31:a9:5f:ac:c2: 04:af:50:f8:1c:e2:57:f7:48:11:09:05:4b:e8:39: 47:a1:f4:82:7d:b4:8c:57:83:ff:17:6e:80:3d:f6: 51:c2:e9:2c:30:e4:e1:57:17:0c:0b:b0:23:cb:e6: d3:27:24:ae:e4:32:f5:01:4a:cf:d1:ad:07:78:5f: 01:a4:2c:ef:07:a5:e2:eb:0d:01:8b:24:c1:a7:7b: db:13:e9:ba:0d:7b:45:1b:e6:f5:a5:f5:d1:54:33: a2:f2:ec:8b:d2:bb:85:e7:58:77:71:e2:9c:6e:f5: af:a3:29:71:3d:6d:16:1e:45:d7:d5:a7:c5:74:c9: fd:80:0a:98:f2:5e:f5:28:c7:14:3c:26:73:d9:92: 21:89:66:0d:c1:60:47:69:71:48:de:e5:4f:1a:93: 71:ef:96:44:9b:e4:32:74:34:5d:48:e2:97:e5:75: d2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:60:40:C2:EA:04:C7:93:0A:D5:81:A0:99:ED:42:B9:6D:EA:30:B9 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ef:eb:24:9a:d4:a1:35:6f:af:21:00:49:d6:63:2c:1f:20: 7c:be:3e:72:55:3f:8d:f3:9a:3c:2b:e0:67:bb:92:5e:98:85: fc:4f:2b:93:65:ed:c0:c0:70:d1:a3:11:ee:76:f6:74:24:7b: 37:c7:9d:56:50:60:f3:b7:df:cf:b3:f7:53:4f:ad:70:d2:d9: 4c:24:7a:33:9a:07:5f:62:d8:ea:3f:b8:e4:6b:8f:af:5c:50: 1a:13:2b:6f:06:c3:b0:a1:28:86:ab:33:f4:53:8d:cf:11:4c: d4:3c:79:f7:e7:73:3c:b7:46:1b:0b:ca:4c:81:cd:47:cd:8d: ec:12:4a:16:b3:74:ed:3c:b5:0b:62:88:0e:1d:4b:19:df:5c: 59:ee:e6:2f:46:93:5f:93:2e:79:9e:52:0f:59:d3:6f:28:56: 30:e8:12:bf:b3:b2:e5:75:2b:90:67:43:a0:4e:2f:4f:fe:18: 44:a1:2c:92:13:9b:91:0e:fe:0c:57:dc:d7:3b:fc:b7:22:8f: 5d:ad:59:5b:a7:49:b2:dd:6e:8b:78:75:73:27:fd:0e:3e:34: 7b:97:94:ed:a4:48:1a:7c:f3:1f:27:29:df:f2:ec:7f:f0:58: fc:f1:35:2b:f5:a5:19:ba:f4:a0:74:92:a9:91:01:16:a3:5a: 37:ec:e6:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjQwNTA1MDMwOTE2WhcNMjQwNTEyMDMwOTE1WjAYMRYwFAYD VQQDEw02NjM2Zjg1Yy1lZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLVb8fl7HreQi9i6SHFQod3oEjVMciKJkTyJ32Hpr/RimhDRq6C1Yj5JwVxZ 67zur80fZC6HddEgUOIVHhZVAc2aWagozsavp2kA9XIdrBpiER33MalfrMIEr1D4 HOJX90gRCQVL6DlHofSCfbSMV4P/F26APfZRwuksMOThVxcMC7Ajy+bTJySu5DL1 AUrP0a0HeF8BpCzvB6Xi6w0BiyTBp3vbE+m6DXtFG+b1pfXRVDOi8uyL0ruF51h3 ceKcbvWvoylxPW0WHkXX1afFdMn9gAqY8l71KMcUPCZz2ZIhiWYNwWBHaXFI3uVP GpNx75ZEm+QydDRdSOKX5XXSXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlgQMLq BMeTCtWBoJntQrlt6jC5MB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM7+skmtShNW+vIQBJ1mMsHyB8vj5yVT+N85o8K+Bnu5JemIX8TyuT Ze3AwHDRoxHudvZ0JHs3x51WUGDzt9/Ps/dTT61w0tlMJHozmgdfYtjqP7jka4+v XFAaEytvBsOwoSiGqzP0U43PEUzUPHn353M8t0YbC8pMgc1HzY3sEkoWs3TtPLUL YogOHUsZ31xZ7uYvRpNfky55nlIPWdNvKFYw6BK/s7LldSuQZ0OgTi9P/hhEoSyS E5uRDv4MV9zXO/y3Io9drVlbp0my3W6LeHVzJ/0OPjR7l5TtpEgafPMfJynf8ux/ 8Fj88TUr9aUZuvSgdJKpkQEWo1o37OYA -----END CERTIFICATE-----Generated at Sun May 5 03:52:18 2024 by rpki-client on console-ams.rpki-client.org