$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: /Oe2q+zy4dqZhqjjfZRPBcOxq0HE+2/Gg5QGF/1UNzU= Subject key identifier: 5E:E1:80:99:3D:3F:1F:EF:96:D9:B3:0F:82:89:BF:05:D9:0E:E8:2A Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 0647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2B6B Signing time: Sat 04 May 2024 16:03:56 +0000 Manifest this update: Sat 04 May 2024 16:03:56 +0000 Manifest next update: Sat 11 May 2024 16:03:56 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: Sl1/6YhTUi4usY25zWY44pWg6xxbAw4DWfAj26RnhEc=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: wUUDbKl5DBlIOCnpXVMppqzFuQs2gP+ePZuJ3HAFhSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1607 (0x647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: May 4 16:03:56 2024 GMT Not After : May 11 16:03:56 2024 GMT Subject: CN=66365c6c-8cdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:85:cb:d3:b6:d8:35:d9:8f:d2:c4:e1:c1:96: b4:f3:58:8b:a2:70:b6:8c:cc:13:e9:81:d5:76:45: b8:a9:3b:cb:af:25:ad:3d:08:4a:7f:72:90:90:f6: 79:ac:dc:e5:73:35:13:33:04:cd:8c:eb:7a:07:1b: d2:f1:99:0d:12:4a:7d:ee:f9:29:22:b7:32:ae:8b: 0f:14:7a:91:f7:83:97:05:f0:75:43:93:59:b0:7d: 3e:23:f9:29:66:fc:d7:cf:cc:03:8b:99:52:1a:b1: 9e:31:10:0a:8e:6c:52:d1:0e:e1:b8:55:2e:8d:ed: eb:09:7d:26:96:67:76:ba:5d:eb:15:cd:de:e6:ab: 6a:ce:99:20:4a:08:b1:9c:ae:5c:d2:79:64:00:00: 17:47:cd:ed:26:07:82:b0:4c:b4:51:07:f3:fb:46: 37:0e:26:81:bf:51:ac:b5:10:63:59:38:63:6d:78: 8f:01:60:ad:c5:06:1c:cc:c7:7b:f6:68:ab:b6:8a: 09:21:3f:9c:87:ec:ec:28:2c:f4:46:71:15:e8:c4: da:4f:00:42:fc:d6:bf:ad:91:f8:b3:e0:ce:0d:c7: b5:31:7d:26:ac:01:17:82:07:0d:41:46:6e:5a:12: 29:63:9d:6b:83:8f:f2:92:6f:86:86:ed:12:a5:9a: 63:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E1:80:99:3D:3F:1F:EF:96:D9:B3:0F:82:89:BF:05:D9:0E:E8:2A X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ee:35:28:9a:fc:07:9b:b5:56:17:dd:2e:09:e8:fe:27:b6: b7:98:c9:e0:76:85:a9:18:5c:62:e9:6f:9f:ca:28:ee:7e:40: 37:31:c6:98:20:fe:0b:0e:1e:ac:80:16:1c:b9:48:ef:64:39: 98:ff:43:78:2e:d2:6b:ec:01:55:78:0f:f7:2b:f0:dd:3b:a9: 4e:5f:fe:ae:13:44:5a:8d:b9:5f:d0:41:46:d2:00:bf:be:d2: 14:ab:88:bd:7a:45:8c:be:63:8b:ae:55:3a:6b:41:6e:69:39: 00:8c:25:51:5d:43:4d:cf:61:f0:ba:7d:e8:b6:7d:d4:98:a8: c6:ae:45:58:cc:43:59:4e:51:21:0c:db:87:29:3e:b9:9c:9f: f0:87:30:4b:70:d0:4f:08:1e:b0:ac:af:58:cc:2b:ee:bb:7e: ec:0f:1a:33:e9:4f:ef:41:d5:be:f8:a3:92:ba:ed:fc:3d:3f: 13:14:2a:8e:ce:84:f0:79:1a:b6:15:50:39:01:7c:49:2e:a0: b5:7e:ec:0a:23:80:15:9c:88:50:7b:a0:8b:b6:1b:50:ac:7a: eb:7a:12:a6:3c:5e:49:7d:a6:d2:09:53:3b:9b:bf:92:95:6b: c8:a5:b0:66:78:b6:e6:9c:8e:46:8a:fc:73:52:eb:5a:6e:fd: 8e:28:ec:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjQwNTA0MTYwMzU2WhcNMjQwNTExMTYwMzU2WjAYMRYwFAYD VQQDEw02NjM2NWM2Yy04Y2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IXL07bYNdmP0sThwZa081iLonC2jMwT6YHVdkW4qTvLryWtPQhKf3KQkPZ5 rNzlczUTMwTNjOt6BxvS8ZkNEkp97vkpIrcyrosPFHqR94OXBfB1Q5NZsH0+I/kp ZvzXz8wDi5lSGrGeMRAKjmxS0Q7huFUuje3rCX0mlmd2ul3rFc3e5qtqzpkgSgix nK5c0nlkAAAXR83tJgeCsEy0UQfz+0Y3DiaBv1GstRBjWThjbXiPAWCtxQYczMd7 9mirtooJIT+ch+zsKCz0RnEV6MTaTwBC/Na/rZH4s+DODce1MX0mrAEXggcNQUZu WhIpY51rg4/ykm+Ghu0SpZpjeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7hgJk9 Px/vltmzD4KJvwXZDugqMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp7jUomvwHm7VWF90uCej+J7a3mMngdoWpGFxi6W+fyijufkA3McaY IP4LDh6sgBYcuUjvZDmY/0N4LtJr7AFVeA/3K/DdO6lOX/6uE0Rajblf0EFG0gC/ vtIUq4i9ekWMvmOLrlU6a0FuaTkAjCVRXUNNz2Hwun3otn3UmKjGrkVYzENZTlEh DNuHKT65nJ/whzBLcNBPCB6wrK9YzCvuu37sDxoz6U/vQdW++KOSuu38PT8TFCqO zoTweRq2FVA5AXxJLqC1fuwKI4AVnIhQe6CLthtQrHrrehKmPF5JfabSCVM7m7+S lWvIpbBmeLbmnI5GivxzUutabv2OKOwe -----END CERTIFICATE-----Generated at Sat May 4 16:48:40 2024 by rpki-client on console-ams.rpki-client.org