$ rpki-client -vvf rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft File: rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft (raw, json) Hash identifier: JT4eLBcpZR2HP2Tq7rIw6bGZQWR29B6PgL3XRG6XoVw= Subject key identifier: D1:51:5E:47:86:CA:42:FD:46:79:0C:3A:78:61:1C:AD:71:DF:3E:97 Authority key identifier: AC:D2:6F:13:4F:CE:07:64:CC:67:FC:9F:26:5C:78:53:41:C1:B5:D4 Certificate issuer: /CN=A9162661/serialNumber=ACD26F134FCE0764CC67FC9F265C785341C1B5D4 Certificate serial: 0F20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft Manifest number: 0F16 Signing time: Sat 04 May 2024 18:23:15 +0000 Manifest this update: Sat 04 May 2024 18:23:14 +0000 Manifest next update: Sat 11 May 2024 18:23:14 +0000 Files and hashes: 1: rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl (hash: 0N3EEFfwzj7G+sf0XD3moLtpYTQjCH3NAk9X0YALbqw=) 2: EA88C7CAE17A11EC93AB7473C4F9AE02.roa (hash: QpqS9rWaSIODcNEhubTPIYFD1obbpwik5EwG/Xe9goY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3872 (0xf20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162661/serialNumber=ACD26F134FCE0764CC67FC9F265C785341C1B5D4 Validity Not Before: May 4 18:23:14 2024 GMT Not After : May 11 18:23:14 2024 GMT Subject: CN=66367d13-eb44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:14:13:f8:ca:c2:00:10:69:19:9b:03:57:d1: 82:81:06:8e:b8:9c:86:99:f1:7d:64:bd:8a:ea:e1: ab:f2:00:de:1d:3d:df:41:26:06:db:f5:b1:37:8a: c5:ac:d3:52:a0:1a:cc:74:27:9c:2a:9b:01:d3:75: 27:c9:57:57:0d:ca:0c:bc:c9:08:49:46:c8:40:9d: c5:b7:3d:85:05:eb:c0:bd:bd:a6:c5:d7:75:1f:7d: 9e:97:5d:44:86:bf:9f:be:ed:49:63:4d:54:14:bc: b1:cf:ad:b5:e6:f0:77:c5:9f:92:e0:64:f5:c2:8e: 62:b6:2e:ac:13:0d:ef:0f:cc:12:43:c2:df:62:da: 3d:8d:6b:40:3d:e6:fe:2e:c9:a7:d8:59:69:f5:4d: 0e:90:15:fc:81:47:cc:b8:51:9b:40:12:d3:e7:47: b9:be:a1:e7:58:54:46:25:73:84:4f:46:94:75:5d: 77:f2:4e:9e:2b:3a:7a:7f:0e:26:15:11:15:be:a7: 45:85:4c:74:0f:48:dd:c1:d7:bc:bd:52:85:16:70: 4e:2a:5e:c3:d4:78:91:31:97:be:59:95:b5:3a:ce: 10:1f:47:ba:d8:68:e9:e0:d1:f6:4b:a6:e6:10:87: 96:ee:78:54:0e:d2:3d:0a:a2:f1:48:10:40:1d:6b: 69:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:51:5E:47:86:CA:42:FD:46:79:0C:3A:78:61:1C:AD:71:DF:3E:97 X509v3 Authority Key Identifier: keyid:AC:D2:6F:13:4F:CE:07:64:CC:67:FC:9F:26:5C:78:53:41:C1:B5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:c1:19:0f:ac:a5:4c:64:f1:d1:7c:e4:7d:71:50:f1:41:d2: df:c8:92:32:5a:fc:b4:0d:7f:a9:ba:a8:ba:ae:42:3a:c0:08: e9:86:10:c5:de:86:e8:0f:45:d0:0f:71:78:09:fd:ac:3f:26: ae:9b:39:55:b3:07:48:22:24:ff:a0:fd:d7:6a:4d:a0:14:d4: 14:13:db:41:6a:60:38:56:d8:c8:02:c6:8d:a7:4a:10:e5:11: 6f:f0:3a:8a:3b:84:c4:39:51:5e:1e:18:2b:8c:d4:18:74:b0: 3a:99:c0:b1:f1:f2:b8:4b:83:9e:2d:59:98:e7:87:01:02:80: 90:c8:fe:93:7c:91:a2:48:ad:6f:dc:80:ea:97:60:72:9e:09: 04:f9:e7:f4:e8:bf:40:87:33:52:3c:ea:03:d4:39:d1:9e:2e: b3:5f:92:1d:8c:e1:97:d7:b7:5b:3c:31:26:91:91:a3:cf:ca: 17:4d:3a:14:38:18:9b:dd:15:47:4f:79:38:a5:49:d1:be:a6: 6c:07:4a:c9:13:3c:b8:36:5e:15:93:45:51:5d:4c:e1:33:0e: 17:85:d4:21:66:55:14:05:5f:29:85:76:ba:0c:6c:04:e6:2a: 3f:5d:2d:74:39:c6:e2:9e:b4:49:8f:e8:ec:44:bb:ff:d2:c2: 49:9f:2d:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2NjExMTAvBgNVBAUTKEFDRDI2RjEzNEZDRTA3NjRDQzY3RkM5RjI2NUM3ODUz NDFDMUI1RDQwHhcNMjQwNTA0MTgyMzE0WhcNMjQwNTExMTgyMzE0WjAYMRYwFAYD VQQDEw02NjM2N2QxMy1lYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhQT+MrCABBpGZsDV9GCgQaOuJyGmfF9ZL2K6uGr8gDeHT3fQSYG2/WxN4rF rNNSoBrMdCecKpsB03UnyVdXDcoMvMkISUbIQJ3Ftz2FBevAvb2mxdd1H32el11E hr+fvu1JY01UFLyxz6215vB3xZ+S4GT1wo5iti6sEw3vD8wSQ8LfYto9jWtAPeb+ Lsmn2Flp9U0OkBX8gUfMuFGbQBLT50e5vqHnWFRGJXOET0aUdV138k6eKzp6fw4m FREVvqdFhUx0D0jdwde8vVKFFnBOKl7D1HiRMZe+WZW1Os4QH0e62Gjp4NH2S6bm EIeW7nhUDtI9CqLxSBBAHWtp8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFRXkeG ykL9RnkMOnhhHK1x3z6XMB8GA1UdIwQYMBaAFKzSbxNPzgdkzGf8nyZceFNBwbXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjY2MS8zMjkxMUQxODRG REIxMUU5OUFGMzRDNUNDNEY5QUUwMi9yTkp2RTBfT0IyVE1aX3lmSmx4NFUwSEJ0 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOSnZFMF9PQjJUTVpfeWZKbHg0VTBIQnRkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjY2MS8zMjkxMUQxODRGREIxMUU5OUFGMzRDNUNDNEY5QUUwMi9yTkp2RTBfT0Iy VE1aX3lmSmx4NFUwSEJ0ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBewRkPrKVMZPHRfOR9cVDxQdLfyJIyWvy0DX+puqi6rkI6wAjphhDF 3oboD0XQD3F4Cf2sPyaumzlVswdIIiT/oP3Xak2gFNQUE9tBamA4VtjIAsaNp0oQ 5RFv8DqKO4TEOVFeHhgrjNQYdLA6mcCx8fK4S4OeLVmY54cBAoCQyP6TfJGiSK1v 3IDql2ByngkE+ef06L9AhzNSPOoD1DnRni6zX5IdjOGX17dbPDEmkZGjz8oXTToU OBib3RVHT3k4pUnRvqZsB0rJEzy4Nl4Vk0VRXUzhMw4XhdQhZlUUBV8phXa6DGwE 5io/XS10OcbinrRJj+jsRLv/0sJJny33 -----END CERTIFICATE-----Generated at Sat May 4 19:58:39 2024 by rpki-client on console-ams.rpki-client.org