$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: l2vzGcFEVJZa8ZDxFHu4tfqKtP7TtUN3Aom2P3bdzlA= Subject key identifier: F6:05:AB:54:C0:74:BB:2F:07:06:9F:0E:32:41:03:DB:DE:9C:67:D5 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 07E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 07C0 Signing time: Thu 02 May 2024 22:18:20 +0000 Manifest this update: Thu 02 May 2024 22:18:20 +0000 Manifest next update: Thu 09 May 2024 22:18:20 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: a+rhWTsdNxRipBRMK+dZnvXi9jF1FaO99CU1RS2b8yE=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: MHbKxjRdRW+sWjeG2egcNA+1CsQobnBeLKdZis6n4A4=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: KJbfTjHCXQpmzWC9s0eSwijN7BDeGHCzpt5H7unOiNw=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: RmnYl+VWjI+geJqaAl8+RAbsVata5t/UYrcjPARp1sM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: May 2 22:18:20 2024 GMT Not After : May 9 22:18:20 2024 GMT Subject: CN=6634112c-efad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9b:8f:aa:34:06:8e:58:7b:5b:17:15:e4:1e: 56:ca:ce:b4:d6:96:0b:ba:49:6b:e5:a0:db:96:d6: 8c:e8:2d:29:49:6d:96:47:2d:8b:7e:8d:c1:9b:e1: 9e:e1:27:14:f1:68:9e:de:fc:f0:18:21:82:86:c3: e8:16:27:61:75:be:b1:df:12:11:ac:6a:3e:98:4f: 27:37:86:49:ce:95:52:c2:29:3a:74:80:3b:bf:10: 23:f3:e4:20:ea:7d:1b:bd:72:4e:7e:73:da:ea:42: de:a1:5b:63:6f:ec:be:c9:29:12:97:8a:3a:46:60: 59:f3:9d:ed:2c:c3:58:55:1c:ea:96:5a:10:98:20: 1c:58:ec:ea:d3:79:cd:dd:3e:ff:95:79:0c:52:ff: 06:72:b3:2d:af:66:5f:a5:03:c7:ad:ff:69:bd:1f: 90:6c:e8:16:75:16:ba:44:40:87:9d:a1:88:47:45: 1a:0e:43:05:63:0a:4d:5b:e3:4b:a8:72:da:8a:9a: 84:12:40:2d:1f:5d:4d:06:63:56:22:54:51:24:a3: 98:6b:d9:f6:5e:64:67:8e:9b:80:67:34:a8:b5:23: c1:23:71:7e:39:bd:ea:f6:69:08:64:29:cd:36:b8: 5f:75:2f:ea:63:04:66:25:53:a6:11:5b:17:3e:78: 4d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:05:AB:54:C0:74:BB:2F:07:06:9F:0E:32:41:03:DB:DE:9C:67:D5 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:5e:5a:83:56:d3:4d:5c:30:b4:3c:ce:c2:34:12:b9:3f:d2: 7a:ed:13:08:0f:cb:b0:1d:6d:ae:64:c0:6b:63:ce:f9:e4:15: 28:d3:25:c2:c9:3d:05:a9:58:ee:43:1e:5c:4d:08:4e:64:0a: 0d:26:4f:9e:57:87:bc:91:af:04:f7:9c:e8:f2:a4:2a:29:01: 91:6d:eb:4b:3c:54:4c:2a:81:e9:8a:9d:b7:15:2e:a3:87:ce: 5d:04:11:e6:a9:9d:10:38:0e:12:0b:10:b5:ff:87:51:54:d0: 04:d3:12:f0:94:5c:13:68:1f:53:c6:d2:dd:bc:30:d6:14:6c: b8:3f:76:3a:fa:42:70:1f:1d:4f:09:b7:cc:ea:91:0f:30:ea: c8:1d:07:5e:14:a3:9e:e5:c7:a3:5a:fa:28:34:fa:4a:35:a6: 27:84:3b:41:64:9a:92:63:5b:3d:3e:84:55:b3:01:d7:4a:84: b1:32:19:6b:75:d3:2f:c5:d6:74:fc:ad:89:8f:00:74:83:e6: 0c:d0:3b:89:f8:27:6c:db:2b:fd:36:3a:b0:09:c2:44:b2:47: d2:57:98:cf:0c:a0:bf:f9:ca:08:84:70:01:cb:c2:f0:31:b5: 4a:6a:df:8b:33:59:73:f4:25:b9:d7:27:d9:a8:cc:a0:c7:c0: 92:62:55:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjQwNTAyMjIxODIwWhcNMjQwNTA5MjIxODIwWjAYMRYwFAYD VQQDEw02NjM0MTEyYy1lZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpuPqjQGjlh7WxcV5B5Wys601pYLuklr5aDbltaM6C0pSW2WRy2Lfo3Bm+Ge 4ScU8Wie3vzwGCGChsPoFidhdb6x3xIRrGo+mE8nN4ZJzpVSwik6dIA7vxAj8+Qg 6n0bvXJOfnPa6kLeoVtjb+y+ySkSl4o6RmBZ853tLMNYVRzqlloQmCAcWOzq03nN 3T7/lXkMUv8GcrMtr2ZfpQPHrf9pvR+QbOgWdRa6RECHnaGIR0UaDkMFYwpNW+NL qHLaipqEEkAtH11NBmNWIlRRJKOYa9n2XmRnjpuAZzSotSPBI3F+Ob3q9mkIZCnN NrhfdS/qYwRmJVOmEVsXPnhNIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYFq1TA dLsvBwafDjJBA9venGfVMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApXlqDVtNNXDC0PM7CNBK5P9J67RMID8uwHW2uZMBrY8755BUo0yXC yT0FqVjuQx5cTQhOZAoNJk+eV4e8ka8E95zo8qQqKQGRbetLPFRMKoHpip23FS6j h85dBBHmqZ0QOA4SCxC1/4dRVNAE0xLwlFwTaB9TxtLdvDDWFGy4P3Y6+kJwHx1P CbfM6pEPMOrIHQdeFKOe5cejWvooNPpKNaYnhDtBZJqSY1s9PoRVswHXSoSxMhlr ddMvxdZ0/K2JjwB0g+YM0DuJ+Cds2yv9NjqwCcJEskfSV5jPDKC/+coIhHABy8Lw MbVKat+LM1lz9CW51yfZqMygx8CSYlVF -----END CERTIFICATE-----Generated at Thu May 2 23:19:01 2024 by rpki-client on console-ams.rpki-client.org