$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: MoKubCPN9j4aUWqQOfEJCnieL9L+47H7r37QwqKE4aM= Subject key identifier: 57:83:4B:87:09:4F:B9:74:90:BA:10:79:E7:6E:A2:0C:06:70:EC:FA Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: C9 Signing time: Sat 27 Apr 2024 06:07:35 +0000 Manifest this update: Sat 27 Apr 2024 06:07:35 +0000 Manifest next update: Sat 04 May 2024 06:07:35 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: c4Gq4Cf+sU5aHw/CQtLAuwSrhB5LIGB4975beYmX7pk=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: H9emNn1+9gPabzvTbS2TTIvL+llCIynh08CxKJhQGvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Apr 27 06:07:35 2024 GMT Not After : May 4 06:07:35 2024 GMT Subject: CN=662c9627-0f59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:de:56:a8:bb:0f:ef:a5:a2:af:52:b4:77:de: 10:77:d2:4e:11:13:1b:56:ac:56:94:f3:29:a1:6a: 00:60:39:71:41:78:e7:7b:36:95:76:33:e6:d8:6a: ee:f1:c7:87:93:2d:af:41:b8:c8:99:05:15:f1:8d: 8a:d9:f4:dc:8f:98:fd:53:81:9a:a1:1f:0d:e6:e3: c3:83:ce:9d:b7:9a:24:14:5b:be:7e:09:1d:8f:d1: e6:2c:00:97:d7:d3:f0:b0:e5:05:ad:4d:1f:31:3f: 30:5d:d3:b7:a7:15:5b:15:fe:76:88:64:ad:72:b7: 7c:73:96:0f:67:33:38:50:1a:e4:da:7d:6f:5a:e0: de:be:39:be:2e:8e:bd:e5:cf:50:f0:70:5c:26:f7: 73:7b:58:ee:b1:68:db:2e:36:bb:86:37:15:55:df: cd:58:d8:95:7f:24:e0:54:d9:f7:1f:fc:4f:61:7f: 9b:5e:4e:03:77:93:90:b3:2b:4c:17:96:34:d6:5d: 9a:a0:b5:be:e2:ac:4b:2c:55:f2:c6:c0:db:8d:78: 10:58:bf:f7:1f:88:2f:09:89:f6:72:5b:27:d7:b6: 5f:98:8f:ae:44:f8:b2:06:77:85:8e:b6:bb:90:a5: 0b:42:f8:76:07:8d:67:24:c9:ce:94:ca:e1:75:5d: ca:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:83:4B:87:09:4F:B9:74:90:BA:10:79:E7:6E:A2:0C:06:70:EC:FA X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:12:ab:bd:d1:b2:ce:c1:c4:1d:eb:42:c4:20:d4:b0:7c:5c: 1b:ab:3b:f8:40:32:01:07:2d:84:65:70:51:56:19:bb:0f:de: bb:b3:4e:2c:c9:0c:b7:d9:ba:f9:3a:57:11:a1:81:0c:4d:b8: 05:2f:12:57:56:cd:a4:a3:1d:18:34:f4:9d:a2:71:80:67:c5: 30:27:4b:7c:cf:e9:38:5e:9f:46:87:d0:f9:85:1f:74:fd:00: e2:cb:db:81:a8:6b:67:55:9d:24:02:8e:ea:1a:5e:d2:e7:11: 9c:0a:94:b7:30:53:fa:a9:21:0b:dd:f6:3a:1e:c4:ea:1a:70: 2c:f1:bf:ac:bf:8c:ec:23:19:da:b4:50:71:66:e7:53:6b:2d: 31:67:75:e8:15:c3:dc:d5:19:67:46:bc:77:43:ad:12:4e:0c: ac:f6:be:14:1b:70:9b:23:8e:a4:67:fb:3a:b2:dc:10:b4:05: 7f:52:e9:7a:7c:5a:45:bc:c2:d2:85:2b:7c:e1:60:60:b6:db: b3:2a:d0:90:2a:00:95:37:50:18:7f:81:53:c1:8e:01:90:f5: 1e:c4:95:31:b4:56:63:95:b1:b9:fd:3b:e3:59:a1:3b:9e:4d: cc:98:ef:86:d2:e1:94:a9:4a:94:a0:f0:eb:c1:9a:39:26:b8: ae:d9:53:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjQwNDI3MDYwNzM1WhcNMjQwNTA0MDYwNzM1WjAYMRYwFAYD VQQDEw02NjJjOTYyNy0wZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz95WqLsP76Wir1K0d94Qd9JOERMbVqxWlPMpoWoAYDlxQXjnezaVdjPm2Gru 8ceHky2vQbjImQUV8Y2K2fTcj5j9U4GaoR8N5uPDg86dt5okFFu+fgkdj9HmLACX 19PwsOUFrU0fMT8wXdO3pxVbFf52iGStcrd8c5YPZzM4UBrk2n1vWuDevjm+Lo69 5c9Q8HBcJvdze1jusWjbLja7hjcVVd/NWNiVfyTgVNn3H/xPYX+bXk4Dd5OQsytM F5Y01l2aoLW+4qxLLFXyxsDbjXgQWL/3H4gvCYn2clsn17ZfmI+uRPiyBneFjra7 kKULQvh2B41nJMnOlMrhdV3KBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeDS4cJ T7l0kLoQeeduogwGcOz6MB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkEqu90bLOwcQd60LEINSwfFwbqzv4QDIBBy2EZXBRVhm7D967s04s yQy32br5OlcRoYEMTbgFLxJXVs2kox0YNPSdonGAZ8UwJ0t8z+k4Xp9Gh9D5hR90 /QDiy9uBqGtnVZ0kAo7qGl7S5xGcCpS3MFP6qSEL3fY6HsTqGnAs8b+sv4zsIxna tFBxZudTay0xZ3XoFcPc1RlnRrx3Q60STgys9r4UG3CbI46kZ/s6stwQtAV/Uul6 fFpFvMLShSt84WBgttuzKtCQKgCVN1AYf4FTwY4BkPUexJUxtFZjlbG5/TvjWaE7 nk3MmO+G0uGUqUqUoPDrwZo5Jriu2VMW -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:02 2024 by rpki-client on console-ams.rpki-client.org