$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft File: 4JlhFVCKOtWZFdurzLaW26C0zHI.mft (raw, json) Hash identifier: 9gMQa9+rz+vjhn8LBT8OmD6IeyX4TtBO7ICSzLaCJcM= Subject key identifier: 91:35:B1:ED:47:E7:0D:17:BD:36:01:ED:5F:02:37:55:12:2D:41:3C Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 Certificate issuer: /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Certificate serial: 04A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft Manifest number: 0487 Signing time: Fri 03 May 2024 01:48:40 +0000 Manifest this update: Fri 03 May 2024 01:48:40 +0000 Manifest next update: Fri 10 May 2024 01:48:40 +0000 Files and hashes: 1: 4JlhFVCKOtWZFdurzLaW26C0zHI.crl (hash: I+CEHzwBbbPIvFrcQecoQABXMTB2gJG+uwfxLN7AdbA=) 2: 03C7AA80F01111ED9C345840C4F9AE02.roa (hash: u79Hnx6TKughx759y7oB0XTzh+SXCGts+3SmY7J4BHA=) 3: 04E8D402F01111ED9C345840C4F9AE02.roa (hash: CjdsXTUy+isb7EE/vMnKhUnuE4GByGKOizEWWpwP7V4=) 4: CB6ED7B2645011EE9EAE117BC4F9AE02.roa (hash: KhBxtsrwI7mwIGHdAYV+BbQ+uvV0n4p4eR3lvYMPW+c=) 5: F650791EF01411ED9210D060C4F9AE02.roa (hash: uGEX/6sdmRDn3m6JrmG5MWev3SeBdI1njDXZ5dmhNaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:48:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Validity Not Before: May 3 01:48:40 2024 GMT Not After : May 10 01:48:40 2024 GMT Subject: CN=66344278-cea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e1:74:bd:ef:59:43:11:0f:38:ac:60:a1:7b: b1:ae:f6:45:ad:15:07:96:b3:42:f2:60:b8:cb:b7: 48:88:c2:7e:a0:09:49:d6:0f:f3:61:b9:0a:bc:98: 2d:b4:7c:bf:93:63:33:91:cb:5a:1b:26:dc:9e:ab: e5:11:4c:77:12:df:aa:80:58:2d:d5:f3:9e:bc:17: 07:a9:a5:fe:b4:82:3a:15:a1:56:15:09:d5:ba:67: 80:30:91:3c:54:89:d2:41:bd:52:d9:84:97:cd:1b: 40:d9:5d:f9:57:09:27:fb:1e:5f:62:54:5e:82:79: a0:8e:7b:1e:61:af:70:25:77:53:ec:51:3f:27:c6: 97:d7:f7:0d:05:77:67:ce:03:53:4e:a0:37:2c:6b: 19:c9:5f:24:58:1b:7e:36:a7:16:4f:52:6f:fc:a4: e7:ef:3a:bd:93:3d:76:81:ae:f7:9b:3a:70:7d:b2: 2f:7e:18:cb:e5:5e:ba:98:35:a8:95:26:30:2a:be: 99:7f:2f:5a:db:1c:52:3f:45:4d:60:9b:7e:26:11: 6e:45:5e:ca:be:28:12:b7:72:a6:b4:b8:ab:53:26: e7:a2:40:c6:7d:41:0b:e5:64:57:5c:ea:4b:89:22: 8a:40:8c:9f:7f:1f:29:cd:bd:1f:29:b0:a1:0d:2f: 26:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:35:B1:ED:47:E7:0D:17:BD:36:01:ED:5F:02:37:55:12:2D:41:3C X509v3 Authority Key Identifier: keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:69:73:06:e4:49:60:14:a8:5c:b4:90:69:22:a9:4a:39:6c: 74:83:be:c3:a3:46:81:f7:bc:45:bb:1d:9e:7f:07:0b:c0:a0: 7e:9e:9c:f4:95:69:d9:5d:66:57:7a:03:cb:b4:ba:6d:76:9e: b0:36:e8:b1:b2:bd:0a:d0:53:65:87:55:37:30:0a:41:36:bd: 3f:1d:91:c2:5c:01:e7:1b:7f:8e:e2:27:96:38:e4:e8:8a:95: fa:bc:74:06:c9:99:fd:29:ac:6a:9a:09:a6:eb:67:b9:ec:dc: 5c:f9:29:b2:3c:a1:31:84:34:9a:cb:02:48:00:c3:7c:1a:4b: a9:b5:9c:ee:b0:3e:aa:a0:86:20:43:01:4a:ba:45:1f:92:73: 36:54:08:73:91:5f:f1:43:18:cb:0e:f5:26:e6:28:1f:cd:d6: ea:e7:0d:3c:21:da:f8:62:48:9f:d9:ec:18:5b:68:38:cf:31: 2b:63:e0:f9:30:8f:56:1e:4a:3e:9a:37:11:8b:90:87:62:04: 22:f9:28:30:f7:38:d8:07:d8:ed:4d:70:73:ff:95:d3:ba:5c: aa:30:04:db:1d:59:9f:71:06:f0:e2:de:22:4e:29:50:1b:82: 9e:77:34:2e:fe:d7:bc:f6:a2:30:97:2e:e4:9d:66:f0:4f:60: a5:6a:4f:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDRTkxMTAvBgNVBAUTKEUwOTk2MTE1NTA4QTNBRDU5OTE1REJBQkNDQjY5NkRC QTBCNENDNzIwHhcNMjQwNTAzMDE0ODQwWhcNMjQwNTEwMDE0ODQwWjAYMRYwFAYD VQQDEw02NjM0NDI3OC1jZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquF0ve9ZQxEPOKxgoXuxrvZFrRUHlrNC8mC4y7dIiMJ+oAlJ1g/zYbkKvJgt tHy/k2MzkctaGybcnqvlEUx3Et+qgFgt1fOevBcHqaX+tII6FaFWFQnVumeAMJE8 VInSQb1S2YSXzRtA2V35Vwkn+x5fYlRegnmgjnseYa9wJXdT7FE/J8aX1/cNBXdn zgNTTqA3LGsZyV8kWBt+NqcWT1Jv/KTn7zq9kz12ga73mzpwfbIvfhjL5V66mDWo lSYwKr6Zfy9a2xxSP0VNYJt+JhFuRV7KvigSt3KmtLirUybnokDGfUEL5WRXXOpL iSKKQIyffx8pzb0fKbChDS8mLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJE1se1H 5w0XvTYB7V8CN1USLUE8MB8GA1UdIwQYMBaAFOCZYRVQijrVmRXbq8y2ltugtMxy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0NFOS8wQUIxRDM5NkY1 MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090V1pGZHVyekxhVzI2QzB6 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKbGhGVkNLT3RXWkZkdXJ6TGFXMjZDMHpISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0NFOS8wQUIxRDM5NkY1MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090 V1pGZHVyekxhVzI2QzB6SEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCaXMG5ElgFKhctJBpIqlKOWx0g77Do0aB97xFux2efwcLwKB+npz0 lWnZXWZXegPLtLptdp6wNuixsr0K0FNlh1U3MApBNr0/HZHCXAHnG3+O4ieWOOTo ipX6vHQGyZn9Kaxqmgmm62e57Nxc+SmyPKExhDSaywJIAMN8GkuptZzusD6qoIYg QwFKukUfknM2VAhzkV/xQxjLDvUm5igfzdbq5w08Idr4Ykif2ewYW2g4zzErY+D5 MI9WHko+mjcRi5CHYgQi+Sgw9zjYB9jtTXBz/5XTulyqMATbHVmfcQbw4t4iTilQ G4KedzQu/te89qIwly7knWbwT2Clak9I -----END CERTIFICATE-----Generated at Fri May 3 04:45:13 2024 by rpki-client on console-fra.rpki-client.org