$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/C9CviCcBmOQG0urp3K7J-w67gMU.mft File: C9CviCcBmOQG0urp3K7J-w67gMU.mft (raw, json) Hash identifier: MZtEW6PfVW68ceolnu9Ewler8SSWjMul3jESpW0EL24= Subject key identifier: 23:56:CA:D5:53:97:D9:6F:4C:84:D1:0E:95:EA:56:5D:A4:5E:29:5A Authority key identifier: 0B:D0:AF:88:27:01:98:E4:06:D2:EA:E9:DC:AE:C9:FB:0E:BB:80:C5 Certificate issuer: /CN=A9164F37/serialNumber=0BD0AF88270198E406D2EAE9DCAEC9FB0EBB80C5 Certificate serial: 2E53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9CviCcBmOQG0urp3K7J-w67gMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/C9CviCcBmOQG0urp3K7J-w67gMU.mft Manifest number: 2E3F Signing time: Tue 30 Apr 2024 15:47:19 +0000 Manifest this update: Tue 30 Apr 2024 15:47:19 +0000 Manifest next update: Tue 07 May 2024 15:47:19 +0000 Files and hashes: 1: C9CviCcBmOQG0urp3K7J-w67gMU.crl (hash: DqNMGO+7z3+tvx0ImKzZHeACGA9sNQ+UFcOtD79x1bY=) 2: 5BCC8446B13D11E59299870AC4F9AE02.roa (hash: 7nEvnsVUhHy+hi2S4weSlBPyOTPygyip6UTAtQRn1Lk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/C9CviCcBmOQG0urp3K7J-w67gMU.crl rsync://rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/C9CviCcBmOQG0urp3K7J-w67gMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9CviCcBmOQG0urp3K7J-w67gMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 15:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11859 (0x2e53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F37/serialNumber=0BD0AF88270198E406D2EAE9DCAEC9FB0EBB80C5 Validity Not Before: Apr 30 15:47:19 2024 GMT Not After : May 7 15:47:19 2024 GMT Subject: CN=66311287-1852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:80:f3:14:e3:9f:69:2d:ad:67:cb:72:66:a3: b2:72:19:29:ff:22:bb:d6:77:33:bf:35:6e:1e:91: 65:0a:8a:99:b7:b1:47:75:34:86:e1:a6:4f:f6:d4: 76:03:46:5b:59:33:30:0e:65:b0:67:d6:c7:2d:22: 1f:88:fa:8b:60:96:c9:76:5f:13:ca:38:c6:7a:6c: ea:2a:55:60:50:7e:8a:1f:c1:0a:ad:6a:78:69:71: b7:7a:3a:5e:6a:ab:fb:66:44:a8:f7:c1:66:78:21: 4e:63:5e:50:6c:fc:73:a8:08:76:3f:81:99:32:81: 7f:56:de:89:95:cc:ef:8f:ad:d8:40:35:28:06:7d: cb:11:9b:d7:68:74:4c:e2:94:36:77:71:dd:9d:b7: 1d:7d:15:b8:65:91:82:aa:c8:85:95:16:e6:d4:e2: 74:51:9c:53:d3:a2:11:ad:3f:95:cf:2f:2a:d8:cb: 61:9e:58:20:5d:c4:1c:e2:c8:51:f1:31:bf:ca:97: fc:52:cd:83:4b:30:81:8d:94:d5:c1:d8:6c:18:48: 99:0b:77:a1:02:94:19:8f:e7:1f:06:7c:e5:b1:58: f7:9c:b4:c7:b5:bf:31:17:8d:a1:da:50:07:12:01: 82:68:9a:52:87:8d:cd:1e:b4:6b:ac:87:51:b5:0c: b5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:56:CA:D5:53:97:D9:6F:4C:84:D1:0E:95:EA:56:5D:A4:5E:29:5A X509v3 Authority Key Identifier: keyid:0B:D0:AF:88:27:01:98:E4:06:D2:EA:E9:DC:AE:C9:FB:0E:BB:80:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/C9CviCcBmOQG0urp3K7J-w67gMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C9CviCcBmOQG0urp3K7J-w67gMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F37/706D447E336F11E3AF64E98F5911EA32/C9CviCcBmOQG0urp3K7J-w67gMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:ac:41:18:4f:7f:63:2f:61:cc:d2:5d:47:9c:d6:29:b3:37: dc:e9:24:e5:c1:92:6b:5f:af:80:42:50:74:f2:4b:81:3a:c4: 48:8b:16:e3:3f:ae:36:39:bc:a2:70:73:06:40:ae:11:0c:da: 0c:14:18:c9:b1:b4:13:6f:84:49:5b:3c:01:39:b4:19:4b:a9: e3:fb:f0:a4:89:49:1d:c3:21:b4:37:78:b0:31:71:ff:de:1f: f4:96:b4:04:ab:99:09:e0:f2:0f:43:69:68:9f:0e:e2:8f:34: 11:eb:54:b2:92:2a:06:10:ef:54:37:85:dc:72:f8:12:ed:30: b5:64:7e:d5:f5:5b:88:57:a4:25:4d:2d:74:2f:12:c4:0e:2a: 4f:44:f5:68:71:cd:12:72:f6:fe:1f:b4:5d:2c:cb:bf:3c:18: 8c:db:cf:0a:14:b6:59:09:cb:67:85:e0:d2:90:7c:99:24:6d: 0d:cf:55:2d:65:b9:4c:e0:79:0d:7a:1d:e2:ce:62:21:25:21: 3c:a6:e7:22:ca:5f:36:1c:86:4e:0d:de:ec:4a:66:6d:6d:b8: 68:1e:b7:c5:a3:33:27:90:82:ab:c9:ca:cf:7a:dd:39:d0:8c: 00:e5:a3:e7:5f:ec:ce:d3:e4:bd:7b:cb:e1:af:f9:4e:85:03: 3d:7a:02:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGMzcxMTAvBgNVBAUTKDBCRDBBRjg4MjcwMTk4RTQwNkQyRUFFOURDQUVDOUZC MEVCQjgwQzUwHhcNMjQwNDMwMTU0NzE5WhcNMjQwNTA3MTU0NzE5WjAYMRYwFAYD VQQDEw02NjMxMTI4Ny0xODUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YDzFOOfaS2tZ8tyZqOychkp/yK71nczvzVuHpFlCoqZt7FHdTSG4aZP9tR2 A0ZbWTMwDmWwZ9bHLSIfiPqLYJbJdl8TyjjGemzqKlVgUH6KH8EKrWp4aXG3ejpe aqv7ZkSo98FmeCFOY15QbPxzqAh2P4GZMoF/Vt6Jlczvj63YQDUoBn3LEZvXaHRM 4pQ2d3HdnbcdfRW4ZZGCqsiFlRbm1OJ0UZxT06IRrT+Vzy8q2MthnlggXcQc4shR 8TG/ypf8Us2DSzCBjZTVwdhsGEiZC3ehApQZj+cfBnzlsVj3nLTHtb8xF42h2lAH EgGCaJpSh43NHrRrrIdRtQy11QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNWytVT l9lvTITRDpXqVl2kXilaMB8GA1UdIwQYMBaAFAvQr4gnAZjkBtLq6dyuyfsOu4DF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEYzNy83MDZENDQ3RTMz NkYxMUUzQUY2NEU5OEY1OTExRUEzMi9DOUN2aUNjQm1PUUcwdXJwM0s3Si13Njdn TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5Q3ZpQ2NCbU9RRzB1cnAzSzdKLXc2N2dNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEYzNy83MDZENDQ3RTMzNkYxMUUzQUY2NEU5OEY1OTExRUEzMi9DOUN2aUNjQm1P UUcwdXJwM0s3Si13NjdnTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDarEEYT39jL2HM0l1HnNYpszfc6STlwZJrX6+AQlB08kuBOsRIixbj P642ObyicHMGQK4RDNoMFBjJsbQTb4RJWzwBObQZS6nj+/CkiUkdwyG0N3iwMXH/ 3h/0lrQEq5kJ4PIPQ2lonw7ijzQR61SykioGEO9UN4XccvgS7TC1ZH7V9VuIV6Ql TS10LxLEDipPRPVocc0Scvb+H7RdLMu/PBiM288KFLZZCctnheDSkHyZJG0Nz1Ut ZblM4HkNeh3izmIhJSE8puciyl82HIZODd7sSmZtbbhoHrfFozMnkIKrycrPet05 0IwA5aPnX+zO0+S9e8vhr/lOhQM9egLX -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:23 2024 by rpki-client on console-ams.rpki-client.org