$ rpki-client -vvf rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft File: rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft (raw, json) Hash identifier: NplLrFrAvu79K4FeuYvi7H8id/8Gi3ZVy4vhtGFArCw= Subject key identifier: 53:48:66:A8:54:9A:3A:F5:2B:E3:7F:C9:37:EA:61:F6:10:CD:06:6D Authority key identifier: AC:D2:6F:13:4F:CE:07:64:CC:67:FC:9F:26:5C:78:53:41:C1:B5:D4 Certificate issuer: /CN=A9162661/serialNumber=ACD26F134FCE0764CC67FC9F265C785341C1B5D4 Certificate serial: 0F3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft Manifest number: 0F31 Signing time: Mon 17 Jun 2024 09:50:54 +0000 Manifest this update: Mon 17 Jun 2024 09:50:53 +0000 Manifest next update: Mon 24 Jun 2024 09:50:53 +0000 Files and hashes: 1: rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl (hash: vjmdAZU6DJLbpKQU9YjiYeShW5WOB3BXny89UTXf4Mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 09:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3900 (0xf3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162661/serialNumber=ACD26F134FCE0764CC67FC9F265C785341C1B5D4 Validity Not Before: Jun 17 09:50:53 2024 GMT Not After : Jun 24 09:50:53 2024 GMT Subject: CN=667006fe-7c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:27:c2:75:1c:ae:30:2f:b2:1a:a1:b5:58:e6: 59:53:96:e8:aa:ee:2f:65:56:0c:1f:b7:b4:61:35: ee:72:7b:26:f8:fc:47:99:5e:c0:97:5a:86:e7:67: 4f:39:fd:8a:c3:2c:0e:00:8d:b3:33:3f:d6:ea:0a: 49:c6:57:47:dc:74:57:4e:25:e8:89:fd:21:cd:1e: 7e:e2:0f:67:ab:93:de:23:25:d0:42:60:bf:26:3f: 17:57:d9:0c:82:32:aa:30:66:92:db:26:51:06:e1: 79:fa:e3:d7:a7:5c:0a:9f:27:6e:3d:7f:d4:f5:3d: 88:d0:ec:86:79:e6:6d:81:ee:e0:40:3f:57:f1:20: 57:e1:47:74:48:36:ed:85:f8:8e:1e:a1:49:d7:5b: 54:b4:29:77:db:2f:c8:2e:f9:73:f0:0c:c2:3d:50: 94:45:94:dd:22:5a:d2:0e:a8:04:04:f7:cb:a0:f8: 1c:bc:b4:cb:58:4b:39:56:58:a1:e4:2e:78:0c:3c: 11:49:c6:01:dd:67:e5:9c:6b:1d:92:3c:ff:2d:eb: dd:48:89:7b:68:a3:14:35:e2:43:e9:4b:f0:f2:86: 52:85:90:52:72:fe:2a:40:5d:e3:bf:de:90:b4:3b: 40:01:e1:73:ac:ef:db:6e:4f:ab:21:e7:3b:92:cf: b6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:48:66:A8:54:9A:3A:F5:2B:E3:7F:C9:37:EA:61:F6:10:CD:06:6D X509v3 Authority Key Identifier: keyid:AC:D2:6F:13:4F:CE:07:64:CC:67:FC:9F:26:5C:78:53:41:C1:B5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162661/32911D184FDB11E99AF34C5CC4F9AE02/rNJvE0_OB2TMZ_yfJlx4U0HBtdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:90:69:22:80:3b:2c:3d:4a:26:60:32:69:d6:b4:48:f0:c1: 9b:06:84:4f:4c:ae:e8:3a:89:94:84:1c:e9:3e:ff:91:6d:79: a1:f0:c6:7e:9a:61:aa:92:c9:a2:8f:1f:e3:d5:3c:f9:52:29: 90:9d:7e:43:34:6e:ed:6b:15:b7:e7:b6:c6:3c:d2:69:e7:e6: b0:7c:70:55:94:95:1f:48:46:1a:f8:75:85:49:66:2f:40:7c: 9d:58:37:d5:5f:a2:56:58:3b:0b:d3:a4:ec:ef:5e:d8:11:89: 01:52:b7:e8:2e:56:32:8a:92:d9:f3:b9:20:d1:fe:9c:b0:f7: c1:e9:3b:74:15:c3:e8:d8:13:fe:e3:de:6a:30:73:12:b8:9f: 33:cb:50:10:d9:ad:ad:c0:c0:45:e9:81:d0:d4:30:fc:fe:6d: ad:e5:82:30:61:24:f4:a8:0a:12:5c:88:8c:12:27:2a:c0:c2: af:46:60:72:41:01:5e:e7:38:9d:41:2d:c8:af:25:0a:5e:29: cb:7d:12:57:f9:a8:81:32:92:fe:cd:08:b0:c0:72:ff:c3:e3: a7:f7:87:bd:02:93:59:af:49:66:29:2d:39:c4:5f:6a:3a:1b: e3:c2:71:48:e2:be:4d:c4:b7:0d:c0:13:60:ed:02:9e:d7:90: ef:e4:b8:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2NjExMTAvBgNVBAUTKEFDRDI2RjEzNEZDRTA3NjRDQzY3RkM5RjI2NUM3ODUz NDFDMUI1RDQwHhcNMjQwNjE3MDk1MDUzWhcNMjQwNjI0MDk1MDUzWjAYMRYwFAYD VQQDEw02NjcwMDZmZS03YzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArifCdRyuMC+yGqG1WOZZU5boqu4vZVYMH7e0YTXucnsm+PxHmV7Al1qG52dP Of2KwywOAI2zMz/W6gpJxldH3HRXTiXoif0hzR5+4g9nq5PeIyXQQmC/Jj8XV9kM gjKqMGaS2yZRBuF5+uPXp1wKnyduPX/U9T2I0OyGeeZtge7gQD9X8SBX4Ud0SDbt hfiOHqFJ11tUtCl32y/ILvlz8AzCPVCURZTdIlrSDqgEBPfLoPgcvLTLWEs5Vlih 5C54DDwRScYB3WflnGsdkjz/LevdSIl7aKMUNeJD6Uvw8oZShZBScv4qQF3jv96Q tDtAAeFzrO/bbk+rIec7ks+2mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNIZqhU mjr1K+N/yTfqYfYQzQZtMB8GA1UdIwQYMBaAFKzSbxNPzgdkzGf8nyZceFNBwbXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjY2MS8zMjkxMUQxODRG REIxMUU5OUFGMzRDNUNDNEY5QUUwMi9yTkp2RTBfT0IyVE1aX3lmSmx4NFUwSEJ0 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOSnZFMF9PQjJUTVpfeWZKbHg0VTBIQnRkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjY2MS8zMjkxMUQxODRGREIxMUU5OUFGMzRDNUNDNEY5QUUwMi9yTkp2RTBfT0Iy VE1aX3lmSmx4NFUwSEJ0ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKkGkigDssPUomYDJp1rRI8MGbBoRPTK7oOomUhBzpPv+RbXmh8MZ+ mmGqksmijx/j1Tz5UimQnX5DNG7taxW357bGPNJp5+awfHBVlJUfSEYa+HWFSWYv QHydWDfVX6JWWDsL06Ts717YEYkBUrfoLlYyipLZ87kg0f6csPfB6Tt0FcPo2BP+ 495qMHMSuJ8zy1AQ2a2twMBF6YHQ1DD8/m2t5YIwYST0qAoSXIiMEicqwMKvRmBy QQFe5zidQS3IryUKXinLfRJX+aiBMpL+zQiwwHL/w+On94e9ApNZr0lmKS05xF9q OhvjwnFI4r5NxLcNwBNg7QKe15Dv5LiP -----END CERTIFICATE-----Generated at Mon Jun 17 11:41:55 2024 by rpki-client on console-ams.rpki-client.org