$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: bHdUwNHW9r+TS0ErALD4aksNaUCGus0RP7S5G33VZR0= Subject key identifier: A7:E9:20:75:63:69:70:FC:2A:70:A5:C1:B6:E0:02:6B:89:49:CC:BF Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 0650 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 0647 Signing time: Sat 04 May 2024 23:53:16 +0000 Manifest this update: Sat 04 May 2024 23:53:15 +0000 Manifest next update: Sat 11 May 2024 23:53:15 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: CVeQwZ4pG8EmAfzq5Js5Tt74VINyGIacVs9NKOfFUE8=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: JpR0rDG4Cs0BP7f4Pwy0G0ZaJiuhalealzbnqlmcZY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: May 4 23:53:15 2024 GMT Not After : May 11 23:53:15 2024 GMT Subject: CN=6636ca6b-b7e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:ea:5c:ec:6e:d6:ad:04:e5:7a:eb:bc:8a: 7a:74:46:53:9c:b4:95:6d:97:e9:f3:d4:7d:0e:32: c9:50:bf:96:a2:02:9b:61:87:c1:51:1f:52:07:e9: 7a:39:2f:45:98:60:9e:0a:d4:4e:ee:0e:ee:4b:68: 07:b2:23:66:6c:03:4a:4c:8c:5a:5f:5f:e1:7a:e0: 9b:72:57:cd:b7:d0:fe:67:eb:0c:82:34:66:34:27: 2f:40:d7:4e:56:3f:da:e9:ef:da:da:6a:35:ee:68: 8d:71:75:b3:9f:66:e5:b3:4b:54:1f:2f:89:b1:d2: 43:fb:b1:f6:23:b6:9e:e8:f0:49:b8:76:15:90:36: 2a:06:6a:d2:cc:c5:d4:36:a5:23:d2:80:49:ef:7c: 5c:1a:84:10:05:ef:d0:65:8d:17:52:c2:7d:d9:5d: ef:1d:31:5a:1d:30:43:b7:37:3f:d7:87:3b:65:4e: 5f:e6:af:2c:96:89:5c:96:df:e5:29:83:de:94:c8: 65:ba:fb:f4:e2:e2:db:d4:87:27:cb:ce:ec:2e:4f: b3:1e:cd:84:b7:25:ee:8b:82:7c:ea:f0:63:82:28: 95:e1:e9:0b:50:fa:66:26:e7:0a:15:d4:d4:d7:87: ad:2c:56:1f:e3:1f:41:74:f8:90:07:27:09:80:bc: 7c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E9:20:75:63:69:70:FC:2A:70:A5:C1:B6:E0:02:6B:89:49:CC:BF X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:72:40:67:f4:4b:a0:af:69:d2:a1:a9:f8:93:06:36:71:20: 80:c2:74:f9:ad:d9:b0:bd:14:e9:33:f7:36:f2:79:c5:d9:aa: a1:3d:9f:c0:e5:a2:70:1f:b3:c5:99:7f:d4:94:4e:b9:d9:29: d0:f2:dd:38:db:48:47:ca:84:37:e0:74:fe:e9:36:b9:24:73: f6:f8:cf:90:f2:fb:d2:41:6c:b0:81:1a:8c:41:14:ab:84:dd: a5:e1:bd:93:5b:94:a4:96:ff:ae:23:09:74:d1:a3:7e:e6:c0: db:e1:42:dd:18:a9:f6:e3:0e:62:39:24:ec:be:75:fa:5f:44: d5:cd:71:3e:2a:dc:06:1d:49:53:87:7c:2e:83:a6:11:fc:f0: cb:ac:47:1d:48:9c:e3:0b:60:a0:d6:d6:2d:be:08:2e:63:07: 75:91:6c:c3:b0:80:21:0d:e7:38:b9:5c:da:bd:ea:e0:23:02: d7:d4:cc:38:c2:1a:90:b4:6f:52:c6:16:b5:b8:f7:24:9a:50: 6f:09:1f:65:d4:d7:ed:37:3e:f4:81:a4:cd:ad:db:66:b5:b8: 27:82:27:5a:40:02:3c:a1:5a:c9:4f:63:6d:4d:da:c0:ec:7e: 84:90:02:bf:b0:ee:cc:de:77:25:39:c1:7a:29:85:5f:b3:73: 03:a6:27:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjQwNTA0MjM1MzE1WhcNMjQwNTExMjM1MzE1WjAYMRYwFAYD VQQDEw02NjM2Y2E2Yi1iN2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2XqXOxu1q0E5XrrvIp6dEZTnLSVbZfp89R9DjLJUL+WogKbYYfBUR9SB+l6 OS9FmGCeCtRO7g7uS2gHsiNmbANKTIxaX1/heuCbclfNt9D+Z+sMgjRmNCcvQNdO Vj/a6e/a2mo17miNcXWzn2bls0tUHy+JsdJD+7H2I7ae6PBJuHYVkDYqBmrSzMXU NqUj0oBJ73xcGoQQBe/QZY0XUsJ92V3vHTFaHTBDtzc/14c7ZU5f5q8slolclt/l KYPelMhluvv04uLb1Icny87sLk+zHs2EtyXui4J86vBjgiiV4ekLUPpmJucKFdTU 14etLFYf4x9BdPiQBycJgLx8TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfpIHVj aXD8KnClwbbgAmuJScy/MB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPckBn9Eugr2nSoan4kwY2cSCAwnT5rdmwvRTpM/c28nnF2aqhPZ/A 5aJwH7PFmX/UlE652SnQ8t0420hHyoQ34HT+6Ta5JHP2+M+Q8vvSQWywgRqMQRSr hN2l4b2TW5Sklv+uIwl00aN+5sDb4ULdGKn24w5iOSTsvnX6X0TVzXE+KtwGHUlT h3wug6YR/PDLrEcdSJzjC2Cg1tYtvgguYwd1kWzDsIAhDec4uVzavergIwLX1Mw4 whqQtG9Sxha1uPckmlBvCR9l1NftNz70gaTNrdtmtbgngidaQAI8oVrJT2NtTdrA 7H6EkAK/sO7M3nclOcF6KYVfs3MDpidi -----END CERTIFICATE-----Generated at Sun May 5 01:22:20 2024 by rpki-client on console-fra.rpki-client.org