$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: 4XiMQRVO/NI4lJFRO+qc4yFglqa5FiGLkbwy64p96mk= Subject key identifier: 32:1D:F2:DA:71:73:00:A7:A8:B2:98:4B:01:BE:12:7A:2C:9D:29:F3 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 08AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 088F Signing time: Thu 02 May 2024 21:43:57 +0000 Manifest this update: Thu 02 May 2024 21:43:57 +0000 Manifest next update: Thu 09 May 2024 21:43:57 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: oP255LX45hOkrR0SMesK2c+p0cNjnavnCwehVVtNK0Q=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: l3rdDpZz30YsSC80nrWoniyy/AfdmnICXGfhctuIIDk=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: QLB059PUHE1UbeMH66LaVQjEVmCcXSDSbvOoBGw3o3I=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: ofC7tglYcEt0K5DgsHyHVWTgOvFGFcBwV3e64Pwy/mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2220 (0x8ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: May 2 21:43:57 2024 GMT Not After : May 9 21:43:57 2024 GMT Subject: CN=6634091d-a02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f4:80:b9:5a:e4:07:a2:db:4c:8d:b5:0c:6c: ae:cf:23:c6:aa:1d:53:ca:05:bd:a0:22:a1:cc:10: 23:82:53:6b:78:b2:41:be:ec:d5:04:25:1b:ca:aa: 9f:65:a5:5a:34:a3:dd:ff:b0:86:5f:64:4e:87:b6: 68:25:fc:63:4c:6b:79:1c:b1:37:37:dc:a6:31:e2: 0c:7c:1d:6d:a3:06:86:1c:c3:67:a5:68:87:4b:5d: a8:2d:ee:95:74:e8:3c:94:b7:17:f5:33:7f:fa:5d: 22:62:fc:32:60:7c:98:4a:33:ef:3e:e5:42:ab:d3: 6c:08:e7:5f:81:5b:02:b9:67:4b:08:54:18:e8:d3: 20:0e:ac:ab:38:9d:1c:1b:0c:58:9d:a5:47:96:15: 13:66:bc:79:d1:eb:17:bb:72:2e:73:1a:65:9d:eb: 0c:23:f3:7f:2a:37:84:32:e4:d3:63:2b:4d:45:d0: af:7f:8a:0a:5c:f2:4a:c5:35:45:59:a5:b5:09:7f: 48:01:f7:58:7a:23:09:19:ed:57:ad:30:7a:27:39: 09:8b:7b:74:05:ee:ed:ad:f9:a3:52:a6:b1:7a:7b: 86:90:83:9c:60:47:1f:32:94:32:03:a1:4a:27:63: 2c:a2:04:87:e9:1d:74:b6:ec:24:83:a8:67:75:43: 99:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1D:F2:DA:71:73:00:A7:A8:B2:98:4B:01:BE:12:7A:2C:9D:29:F3 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:c9:3c:9c:33:5e:24:19:c8:16:b5:5a:25:c9:93:ee:31:8c: 4b:d1:53:fd:0c:65:94:ed:f1:89:11:27:09:b0:68:73:f4:16: 9a:f8:5d:11:94:8a:8d:2d:69:34:ad:4a:36:69:e9:91:e3:bc: 24:98:4e:ac:11:94:e3:8c:e2:a9:1a:e2:37:62:44:a0:d9:20: 43:6b:df:c4:53:9a:3b:cc:53:1b:ec:09:8d:82:93:e5:06:55: fa:8e:f0:b1:95:ba:15:d4:03:2c:2b:6b:50:08:7d:64:a3:ea: 4d:a8:5d:1c:ef:b8:a4:f8:fa:3c:cb:43:13:6d:4d:3a:bd:ad: 2a:65:05:b2:96:30:53:e4:0b:f5:e7:f3:de:5d:c5:55:12:5d: 16:65:5d:bc:04:6b:af:85:ae:ec:5a:39:f0:27:91:f7:21:51: 44:00:63:a3:12:3c:cd:38:14:15:49:bb:6b:cc:d7:2c:c2:05: fa:98:fe:b7:fd:36:2d:dc:7e:98:40:5f:30:20:6f:43:67:f9: df:03:2c:d4:bd:d1:f9:7f:43:a8:dc:d7:33:5c:e1:f7:22:32: fe:6f:12:1a:a1:3e:00:5e:11:f5:8a:f0:36:7c:5b:ba:47:d0: 2b:90:60:76:88:1d:f1:a7:75:22:02:4b:06:e6:19:73:da:60: 76:18:69:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjQwNTAyMjE0MzU3WhcNMjQwNTA5MjE0MzU3WjAYMRYwFAYD VQQDEw02NjM0MDkxZC1hMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/SAuVrkB6LbTI21DGyuzyPGqh1TygW9oCKhzBAjglNreLJBvuzVBCUbyqqf ZaVaNKPd/7CGX2ROh7ZoJfxjTGt5HLE3N9ymMeIMfB1towaGHMNnpWiHS12oLe6V dOg8lLcX9TN/+l0iYvwyYHyYSjPvPuVCq9NsCOdfgVsCuWdLCFQY6NMgDqyrOJ0c GwxYnaVHlhUTZrx50esXu3IucxplnesMI/N/KjeEMuTTYytNRdCvf4oKXPJKxTVF WaW1CX9IAfdYeiMJGe1XrTB6JzkJi3t0Be7trfmjUqaxenuGkIOcYEcfMpQyA6FK J2MsogSH6R10tuwkg6hndUOZLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDId8tpx cwCnqLKYSwG+EnosnSnzMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSyTycM14kGcgWtVolyZPuMYxL0VP9DGWU7fGJEScJsGhz9Baa+F0R lIqNLWk0rUo2aemR47wkmE6sEZTjjOKpGuI3YkSg2SBDa9/EU5o7zFMb7AmNgpPl BlX6jvCxlboV1AMsK2tQCH1ko+pNqF0c77ik+Po8y0MTbU06va0qZQWyljBT5Av1 5/PeXcVVEl0WZV28BGuvha7sWjnwJ5H3IVFEAGOjEjzNOBQVSbtrzNcswgX6mP63 /TYt3H6YQF8wIG9DZ/nfAyzUvdH5f0Oo3NczXOH3IjL+bxIaoT4AXhH1ivA2fFu6 R9ArkGB2iB3xp3UiAksG5hlz2mB2GGmD -----END CERTIFICATE-----Generated at Thu May 2 22:28:50 2024 by rpki-client on console-ams.rpki-client.org