$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json) Hash identifier: WhFuhN+m7suIbRduByKZVsF8IAPssceZ3VyfU0j9hqQ= Subject key identifier: 75:CF:9C:41:15:26:E7:52:37:4A:0D:38:79:CB:7E:43:02:01:B6:59 Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 0578 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft Manifest number: 0574 Signing time: Wed 01 May 2024 00:56:28 +0000 Manifest this update: Wed 01 May 2024 00:56:28 +0000 Manifest next update: Wed 08 May 2024 00:56:28 +0000 Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: y8BOXwOjPDXNUZuvhJtEeCk84tOiOBM18MBFnrcw8z8=) 2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: VRlOw4U0zK5u1Vp0LZloOBpL4DGdSHt/Hph/KRzLuAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1400 (0x578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: May 1 00:56:28 2024 GMT Not After : May 8 00:56:28 2024 GMT Subject: CN=6631933c-60ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:93:a0:d7:15:d8:0d:7f:fb:2a:a0:0b:7a:68: 1a:24:19:b8:35:1a:8d:32:4d:10:84:cb:35:68:c2: 9b:55:cc:20:45:c7:b5:15:1f:30:b0:66:60:0d:db: fa:29:6d:16:9f:d1:3a:37:34:91:98:d4:24:a0:d8: c6:6e:4c:ac:23:cd:a9:8f:91:dd:3d:bd:ef:8e:da: 10:69:46:23:79:24:c6:3d:59:e7:a3:e1:25:b5:63: 9d:f8:7d:9a:53:9c:a7:a9:27:3c:b1:fe:d8:13:0b: be:f5:6f:d4:70:f8:dd:29:74:8e:85:b8:a3:6d:b7: 9d:db:9c:70:6b:6e:8a:77:90:9d:e6:81:d1:0b:5f: 71:80:70:47:e0:96:c9:6f:96:ad:6b:aa:b1:a7:fd: cb:9f:8c:83:8f:27:cb:b9:24:1a:ba:b3:ce:5d:75: e0:96:ba:b8:bd:5e:59:95:26:8f:c2:3c:0e:3e:c3: 95:3f:3d:3c:82:f6:2e:6a:b9:82:aa:3b:6a:dc:1b: a8:57:5f:da:02:29:03:ea:af:0c:e7:d5:e9:03:7c: 58:82:e0:61:a4:b3:e8:90:7a:8d:31:06:18:9d:f4: 37:78:fc:9e:db:b1:5a:2e:a2:c2:ca:8c:e9:0e:98: 83:de:b0:e5:27:40:e3:f8:8f:44:a1:5a:35:8a:b1: eb:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CF:9C:41:15:26:E7:52:37:4A:0D:38:79:CB:7E:43:02:01:B6:59 X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:4d:13:38:34:88:8d:f3:d6:c1:e7:36:9b:8e:42:73:2e:a5: 58:31:29:cc:18:cc:23:f0:cb:18:01:81:fc:e0:32:39:8b:86: 83:cb:ac:4e:24:e1:c3:74:04:d7:02:d0:b1:5a:e9:40:e3:93: 53:0c:3b:d7:02:49:be:95:11:f3:09:93:3c:33:3b:ad:e0:92: 7f:3d:f0:f7:9f:fd:0c:d2:0d:86:9b:ce:78:05:df:fc:9c:9e: 7b:24:ab:a3:80:0b:a9:c8:36:17:f3:d6:a1:fa:27:08:ca:43: 3d:38:86:41:2e:17:3b:31:80:4a:fc:5a:d9:09:4f:6d:5f:a2: 6a:9f:ab:f4:87:fc:fd:f3:50:e6:ad:8c:1d:21:21:5c:81:86: 8b:f9:dd:88:12:19:1d:0b:f6:03:48:bf:e6:53:24:fe:4c:16: 69:21:74:f3:17:13:fe:5b:5e:4a:0a:e1:16:ca:fd:99:31:0a: 44:a6:ed:e0:63:b1:d9:6d:20:22:64:06:d1:de:6d:72:45:15: df:91:da:bc:b2:ba:00:7b:d1:31:4e:7b:23:b2:bd:fa:43:6b: 2d:16:a8:54:d7:4c:dc:bb:1c:10:2e:f2:94:b9:58:a3:71:c9: 23:a5:19:cb:57:e1:4e:a0:f6:90:d3:3d:39:da:42:5d:ee:ce: 56:f3:7f:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjQwNTAxMDA1NjI4WhcNMjQwNTA4MDA1NjI4WjAYMRYwFAYD VQQDEw02NjMxOTMzYy02MGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpOg1xXYDX/7KqALemgaJBm4NRqNMk0QhMs1aMKbVcwgRce1FR8wsGZgDdv6 KW0Wn9E6NzSRmNQkoNjGbkysI82pj5HdPb3vjtoQaUYjeSTGPVnno+EltWOd+H2a U5ynqSc8sf7YEwu+9W/UcPjdKXSOhbijbbed25xwa26Kd5Cd5oHRC19xgHBH4JbJ b5ata6qxp/3Ln4yDjyfLuSQaurPOXXXglrq4vV5ZlSaPwjwOPsOVPz08gvYuarmC qjtq3BuoV1/aAikD6q8M59XpA3xYguBhpLPokHqNMQYYnfQ3ePye27FaLqLCyozp DpiD3rDlJ0Dj+I9EoVo1irHrFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXPnEEV JudSN0oNOHnLfkMCAbZZMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I2Ni9FNUM0RDMyNjkwMzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpI elNVUXlvTWtIbkFCVE5pa1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoTRM4NIiN89bB5zabjkJzLqVYMSnMGMwj8MsYAYH84DI5i4aDy6xO JOHDdATXAtCxWulA45NTDDvXAkm+lRHzCZM8Mzut4JJ/PfD3n/0M0g2Gm854Bd/8 nJ57JKujgAupyDYX89ah+icIykM9OIZBLhc7MYBK/FrZCU9tX6Jqn6v0h/z981Dm rYwdISFcgYaL+d2IEhkdC/YDSL/mUyT+TBZpIXTzFxP+W15KCuEWyv2ZMQpEpu3g Y7HZbSAiZAbR3m1yRRXfkdq8sroAe9ExTnsjsr36Q2stFqhU10zcuxwQLvKUuVij cckjpRnLV+FOoPaQ0z052kJd7s5W83+W -----END CERTIFICATE-----Generated at Wed May 1 01:38:27 2024 by rpki-client on console-ams.rpki-client.org