$ rpki-client -vvf rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.mft File: II1GFNCXXVXjphjK5xdsVlfLvVc.mft (raw, json) Hash identifier: HJNqNvq7BEiCDHlC4z2TvxpNl0C7X2EfbVQWwjyfPD0= Subject key identifier: E7:1B:6B:61:46:5D:2C:AB:83:7F:AA:A2:DD:E8:E3:97:86:96:E9:4F Authority key identifier: 20:8D:46:14:D0:97:5D:55:E3:A6:18:CA:E7:17:6C:56:57:CB:BD:57 Certificate issuer: /CN=A9164BA0/serialNumber=208D4614D0975D55E3A618CAE7176C5657CBBD57 Certificate serial: 11DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/II1GFNCXXVXjphjK5xdsVlfLvVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.mft Manifest number: 11D0 Signing time: Sat 04 May 2024 17:52:59 +0000 Manifest this update: Sat 04 May 2024 17:52:58 +0000 Manifest next update: Sat 11 May 2024 17:52:58 +0000 Files and hashes: 1: II1GFNCXXVXjphjK5xdsVlfLvVc.crl (hash: GDE3sLergNxyLV2e67aWis8TF9ae2vB47+DQAoGEWv8=) 2: C99FCC04C98911EEB202774EC4F9AE02.roa (hash: CN513gptpgWOAGrwedoL+NmnhdtoT8tpUaUHxWzHk8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.crl rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/II1GFNCXXVXjphjK5xdsVlfLvVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4571 (0x11db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164BA0/serialNumber=208D4614D0975D55E3A618CAE7176C5657CBBD57 Validity Not Before: May 4 17:52:58 2024 GMT Not After : May 11 17:52:58 2024 GMT Subject: CN=663675fb-678c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e6:2e:16:11:d2:cd:25:be:76:56:81:6d:5b: 5a:06:88:ec:1c:be:99:2d:e0:2c:aa:f1:60:97:ba: cc:b7:4a:6a:1a:99:90:fc:7e:59:1f:cc:63:d8:30: e0:91:8b:75:fe:62:d0:46:86:33:92:8a:05:f3:08: 5a:92:34:b6:a4:a6:be:9c:02:ca:45:5e:43:bc:1b: 38:dd:c2:ce:83:46:42:b8:eb:5f:a1:25:90:b5:8b: 71:d7:c9:a5:60:41:61:72:e1:02:01:23:76:e4:7a: bd:48:84:9d:ac:56:93:77:90:31:ea:8c:56:17:12: ee:20:d9:44:d8:94:fe:fc:41:a2:2a:3a:34:6f:b5: aa:cb:05:e1:be:24:d4:0a:ea:3a:f6:32:45:4b:ab: 08:37:19:a6:cb:c1:90:f5:fb:64:e7:e5:2e:ac:35: b6:7e:39:7c:04:24:db:15:0d:e8:3b:05:fb:07:ed: 7c:7b:c1:26:76:4c:b1:92:ad:01:c3:38:26:62:b5: 65:fc:e1:41:27:cf:28:08:39:5f:7d:bc:de:f9:6d: e3:8f:a8:e6:5a:3d:b8:72:8e:0b:5e:db:f8:57:e7: 5e:78:fc:42:89:45:46:a8:3c:a3:6d:1a:28:33:51: 13:99:1f:43:4e:c9:29:57:48:df:82:9b:34:31:a2: a9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:1B:6B:61:46:5D:2C:AB:83:7F:AA:A2:DD:E8:E3:97:86:96:E9:4F X509v3 Authority Key Identifier: keyid:20:8D:46:14:D0:97:5D:55:E3:A6:18:CA:E7:17:6C:56:57:CB:BD:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/II1GFNCXXVXjphjK5xdsVlfLvVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:14:0b:d4:23:3a:89:a6:68:a3:41:38:88:ad:10:18:32:78: e8:4e:02:ef:30:0b:90:90:d8:95:c7:f6:bc:83:39:96:de:81: e2:94:45:d9:03:91:b1:79:6a:3b:22:af:50:c6:ff:af:f5:54: a8:96:e0:5a:2c:77:a2:47:a2:6e:8b:d7:5e:83:1d:8d:88:eb: 07:e7:ce:31:e1:d2:a1:47:12:93:d1:b2:44:97:ce:ee:f1:72: 65:35:c7:1b:8c:ca:de:08:4a:21:e4:3b:b4:ae:32:97:c5:f7: b1:f5:d0:96:f4:6e:a0:4a:df:7d:2b:57:26:17:30:43:24:06: 76:4d:0c:0a:a0:ac:ac:ac:2d:d7:47:5e:a6:ba:fa:a0:de:00: 34:11:f6:0b:f0:a8:f6:99:a7:d5:12:d3:56:a9:11:cf:c6:49: 46:c6:b6:d4:a0:5c:df:53:76:82:e3:15:a7:60:43:64:c2:cb: 25:9c:59:cd:25:e1:e8:1a:0c:d2:0c:5b:e9:c6:b4:e7:13:ab: 04:4e:b7:91:49:28:82:13:8c:28:fb:b5:38:ac:96:7f:e2:08: d3:88:e1:a6:08:bf:6a:45:85:4b:fd:29:d5:85:e5:d0:31:ee: 01:3e:ed:76:96:42:0d:42:31:1c:da:54:eb:32:69:b3:48:17: c4:4e:c6:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRCQTAxMTAvBgNVBAUTKDIwOEQ0NjE0RDA5NzVENTVFM0E2MThDQUU3MTc2QzU2 NTdDQkJENTcwHhcNMjQwNTA0MTc1MjU4WhcNMjQwNTExMTc1MjU4WjAYMRYwFAYD VQQDEw02NjM2NzVmYi02NzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+YuFhHSzSW+dlaBbVtaBojsHL6ZLeAsqvFgl7rMt0pqGpmQ/H5ZH8xj2DDg kYt1/mLQRoYzkooF8whakjS2pKa+nALKRV5DvBs43cLOg0ZCuOtfoSWQtYtx18ml YEFhcuECASN25Hq9SISdrFaTd5Ax6oxWFxLuINlE2JT+/EGiKjo0b7WqywXhviTU Cuo69jJFS6sINxmmy8GQ9ftk5+UurDW2fjl8BCTbFQ3oOwX7B+18e8Emdkyxkq0B wzgmYrVl/OFBJ88oCDlffbze+W3jj6jmWj24co4LXtv4V+deePxCiUVGqDyjbRoo M1ETmR9DTskpV0jfgps0MaKp1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcba2FG XSyrg3+qot3o45eGlulPMB8GA1UdIwQYMBaAFCCNRhTQl11V46YYyucXbFZXy71X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEJBMC9EQkE0RjMzNkM3 OUUxMUU4QTM2MjFDNEJDNEY5QUUwMi9JSTFHRk5DWFhWWGpwaGpLNXhkc1ZsZkx2 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lJMUdGTkNYWFZYanBoaks1eGRzVmxmTHZWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEJBMC9EQkE0RjMzNkM3OUUxMUU4QTM2MjFDNEJDNEY5QUUwMi9JSTFHRk5DWFhW WGpwaGpLNXhkc1ZsZkx2VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQFAvUIzqJpmijQTiIrRAYMnjoTgLvMAuQkNiVx/a8gzmW3oHilEXZ A5GxeWo7Iq9Qxv+v9VSoluBaLHeiR6Jui9degx2NiOsH584x4dKhRxKT0bJEl87u 8XJlNccbjMreCEoh5Du0rjKXxfex9dCW9G6gSt99K1cmFzBDJAZ2TQwKoKysrC3X R16muvqg3gA0EfYL8Kj2mafVEtNWqRHPxklGxrbUoFzfU3aC4xWnYENkwsslnFnN JeHoGgzSDFvpxrTnE6sETreRSSiCE4wo+7U4rJZ/4gjTiOGmCL9qRYVL/SnVheXQ Me4BPu12lkINQjEc2lTrMmmzSBfETsbY -----END CERTIFICATE-----Generated at Sat May 4 19:58:39 2024 by rpki-client on console-ams.rpki-client.org