$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft File: emYQUZRc4uj7SubeY7KEeLDO014.mft (raw, json) Hash identifier: 0bNTOqWVyaKmnhAnuawoGvf48XR5i/U1DmmpFMm4UdU= Subject key identifier: AF:DD:11:DE:F3:38:26:D3:20:58:E4:4B:DA:FF:2F:1B:18:19:2D:F2 Authority key identifier: 7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E Certificate issuer: /CN=A9165FF3/serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Certificate serial: 33BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft Manifest number: 33BB Signing time: Sun 28 Apr 2024 15:10:32 +0000 Manifest this update: Sun 28 Apr 2024 15:10:31 +0000 Manifest next update: Sun 05 May 2024 15:10:31 +0000 Files and hashes: 1: emYQUZRc4uj7SubeY7KEeLDO014.crl (hash: 4BoTc/2upGpfONQsVKycFUbP5LuadTDDI8OCMwIdbeQ=) 2: 5FBB084EAE6A11ECAA9D756AC4F9AE02.roa (hash: Nqt6w4JIBJFpy5SdGQGfx3lLcCZPlFZWf2NiMJdYoyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13246 (0x33be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FF3/serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Validity Not Before: Apr 28 15:10:31 2024 GMT Not After : May 5 15:10:31 2024 GMT Subject: CN=662e66e8-1c7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c9:85:d6:61:94:68:d2:ab:1a:16:8d:1e:12: 8f:38:d9:35:ed:cf:1a:14:6b:5e:fe:ac:e9:2a:35: d2:53:85:e3:83:9e:27:39:b5:4d:a5:a2:f1:db:06: 44:d0:0f:49:eb:4b:12:11:fb:56:5c:d2:6c:2d:a3: f7:2f:40:08:97:02:4f:d8:08:e3:41:33:1e:f9:72: a7:bd:09:cc:b7:f0:78:88:cd:37:0a:30:91:7f:50: fc:61:f4:34:92:2c:31:c0:4b:0e:ad:8a:72:9e:45: 39:40:59:45:b9:b0:55:77:48:f9:6d:1c:e8:f2:55: e8:a2:6a:ea:0f:f9:62:cc:cc:5f:76:36:4a:47:d6: 4f:fd:9c:45:c0:66:7b:7c:5f:3b:de:04:a5:ad:fd: 52:a2:57:d7:ff:a5:f5:b6:94:ae:38:ed:ce:f3:65: bf:a5:54:ed:60:b0:2e:94:73:4a:91:1b:9c:fc:8e: e1:5a:46:f3:af:39:cd:ad:d0:2d:48:ac:dc:18:e9: 27:6d:f7:59:67:30:f6:ba:b2:df:0b:47:98:b4:e8: 9c:63:eb:bd:af:f0:d4:fb:9f:49:00:d6:ee:b5:0d: 6d:5d:1d:ec:89:0d:0a:4e:86:ee:0a:84:d0:46:df: cc:c7:8a:e2:16:41:6e:29:59:22:9c:8c:4b:b0:3a: e2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DD:11:DE:F3:38:26:D3:20:58:E4:4B:DA:FF:2F:1B:18:19:2D:F2 X509v3 Authority Key Identifier: keyid:7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:39:e6:f7:b1:8a:76:38:3d:44:3e:7e:12:ab:a3:65:c8:7e: da:cb:05:0f:d2:31:1b:20:81:7b:98:91:b8:4e:6a:8f:b5:04: 62:e6:ab:50:20:99:2e:ae:f1:f8:e9:60:cd:56:02:38:d0:6c: 74:43:2b:03:d3:96:66:23:f8:bc:f4:76:ba:c2:6c:0c:58:3a: 75:16:f4:82:73:d9:79:19:0d:02:a8:8c:e1:8b:4b:f6:35:23: 59:1f:19:a0:9b:6e:ee:23:aa:63:08:93:03:98:01:09:3a:66: c5:34:9f:05:f4:c1:20:f2:f7:f2:b2:da:31:2c:db:f2:07:a5: 9a:32:fd:d2:9d:b1:83:6b:ec:3b:29:a0:c1:f6:ff:28:35:a0: 08:85:48:78:08:a3:ee:9c:e7:69:79:f2:42:2f:85:ff:76:c7: 7c:bc:c6:f7:02:73:a4:d8:7f:e6:62:48:89:86:5d:33:0c:f2: 5f:f5:06:16:28:29:84:d1:c8:6e:2c:39:f6:ad:49:b3:c0:68: a9:7b:de:77:23:5c:82:f6:ea:71:c2:2b:04:fe:0e:da:c0:66: dd:89:6b:78:ac:d2:d7:e2:4c:66:18:55:2a:7f:bb:3f:c7:7b: 94:06:54:19:30:f0:57:b4:ff:4e:f2:0a:82:f7:c3:09:ea:2c: 56:ce:23:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGRjMxMTAvBgNVBAUTKDdBNjYxMDUxOTQ1Q0UyRThGQjRBRTZERTYzQjI4NDc4 QjBDRUQzNUUwHhcNMjQwNDI4MTUxMDMxWhcNMjQwNTA1MTUxMDMxWjAYMRYwFAYD VQQDEw02NjJlNjZlOC0xYzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosmF1mGUaNKrGhaNHhKPONk17c8aFGte/qzpKjXSU4Xjg54nObVNpaLx2wZE 0A9J60sSEftWXNJsLaP3L0AIlwJP2AjjQTMe+XKnvQnMt/B4iM03CjCRf1D8YfQ0 kiwxwEsOrYpynkU5QFlFubBVd0j5bRzo8lXoomrqD/lizMxfdjZKR9ZP/ZxFwGZ7 fF873gSlrf1SolfX/6X1tpSuOO3O82W/pVTtYLAulHNKkRuc/I7hWkbzrznNrdAt SKzcGOknbfdZZzD2urLfC0eYtOicY+u9r/DU+59JANbutQ1tXR3siQ0KTobuCoTQ Rt/Mx4riFkFuKVkinIxLsDriBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/dEd7z OCbTIFjkS9r/LxsYGS3yMB8GA1UdIwQYMBaAFHpmEFGUXOLo+0rm3mOyhHiwztNe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZGMy9DRUFCQjRFNjFE OUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1ajdTdWJlWTdLRWVMRE8w MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VtWVFVWlJjNHVqN1N1YmVZN0tFZUxETzAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZGMy9DRUFCQjRFNjFEOUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1 ajdTdWJlWTdLRWVMRE8wMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+Oeb3sYp2OD1EPn4Sq6NlyH7aywUP0jEbIIF7mJG4TmqPtQRi5qtQ IJkurvH46WDNVgI40Gx0QysD05ZmI/i89Ha6wmwMWDp1FvSCc9l5GQ0CqIzhi0v2 NSNZHxmgm27uI6pjCJMDmAEJOmbFNJ8F9MEg8vfystoxLNvyB6WaMv3SnbGDa+w7 KaDB9v8oNaAIhUh4CKPunOdpefJCL4X/dsd8vMb3AnOk2H/mYkiJhl0zDPJf9QYW KCmE0chuLDn2rUmzwGipe953I1yC9upxwisE/g7awGbdiWt4rNLX4kxmGFUqf7s/ x3uUBlQZMPBXtP9O8gqC98MJ6ixWziPS -----END CERTIFICATE-----Generated at Sun Apr 28 19:00:55 2024 by rpki-client on console-fra.rpki-client.org