$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: 6LqOBd/UFIM7UcWMVc5SJ4wsD787TEK2zNmChsOx2wM= Subject key identifier: C2:9E:62:77:F3:A3:01:31:84:8A:71:62:3E:7C:07:E3:AB:90:9C:31 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0B6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0B5D Signing time: Sat 04 May 2024 19:49:38 +0000 Manifest this update: Sat 04 May 2024 19:49:38 +0000 Manifest next update: Sat 11 May 2024 19:49:38 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: ebGYxZd/nnm8nnXrlW7SAIQN2X4P3708o4WGULC6ofk=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: UfdEZfX8U1OFebNGmFOMBKsBzC+6uWXV7Kk7HfMAJmY=) 3: 8045C26A3B3E11EC94B9CE0BC4F9AE02.roa (hash: unWEVW99jcgEqQR6p5xroTJKftsLi8aygBIWPAop84o=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: +DJN7L7U20IOYBw+mw1+xj96Ek8avdQS7ghcGjFKxeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2926 (0xb6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: May 4 19:49:38 2024 GMT Not After : May 11 19:49:38 2024 GMT Subject: CN=66369152-ebe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4d:78:00:09:cd:74:70:1a:c6:1f:4d:d6:a9: 67:a6:fb:c0:3c:a3:fa:23:a3:14:1d:6f:f9:64:25: 0c:c3:99:8d:4a:a7:30:c0:cf:fb:2b:d9:2a:e0:54: 93:1a:22:ce:9f:40:63:ec:e3:fb:b1:13:6e:5d:4b: e7:63:99:23:87:a4:23:eb:80:61:fd:07:76:f0:29: 54:17:0a:54:83:74:3b:e3:6a:1f:70:2b:0c:76:f5: 28:78:4c:5e:32:49:87:7d:42:bc:13:d1:8f:76:28: 23:23:c3:47:22:d4:8c:92:3d:7b:60:cc:a3:fe:a2: c4:51:2a:3a:0b:a3:6b:d0:8c:35:49:e1:c2:66:2f: df:89:73:05:d4:29:10:ce:90:76:8a:de:a2:29:53: 2b:da:fd:52:43:79:d6:e7:be:b9:ad:b5:7c:46:2a: f1:1c:3d:37:e8:3e:7b:5d:58:46:2e:64:63:9e:97: 89:f0:9c:73:f8:af:21:a9:b9:3e:b8:4d:4c:f9:9a: 00:13:c3:76:22:0b:1d:4a:65:d7:4d:d1:6a:d7:e1: a4:f8:50:0d:c7:c2:53:48:be:b7:e6:0a:32:3d:2d: 55:96:65:0e:e6:19:d9:f7:61:fd:ca:df:93:fb:94: 41:b9:a8:01:91:c1:87:98:9c:66:3b:e5:aa:e6:98: b7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:9E:62:77:F3:A3:01:31:84:8A:71:62:3E:7C:07:E3:AB:90:9C:31 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:30:4e:c5:c3:fe:87:ab:28:d2:7b:2d:48:94:c4:c8:56:be: f7:aa:af:44:ce:91:d8:05:90:37:d8:d5:69:44:da:67:9e:eb: c0:1a:6d:84:68:e9:61:ed:b7:e4:c2:30:11:d3:ce:de:69:39: 3c:84:dc:66:da:23:87:72:9f:75:b0:4b:78:9e:e6:6f:25:fc: 24:41:de:fe:22:02:f2:a4:a5:2c:0a:cf:80:96:37:ed:1f:1b: 54:40:1f:28:43:5a:50:7e:70:16:c6:db:f2:a3:29:0a:d1:e8: ef:7d:32:17:16:a3:90:26:0d:c1:f0:97:20:3f:cf:7a:17:c1: 0c:4e:2e:8f:e3:30:f5:f5:d2:03:c9:1b:b3:c1:64:6d:da:f0: 48:5d:e2:f1:95:54:4c:d8:a4:f6:ca:0a:19:75:b5:ba:6f:e0: 5e:2f:e0:0a:4f:ff:36:d1:eb:05:c6:d6:54:e3:c2:00:d8:17: e9:20:54:d8:d0:9c:75:69:b6:a2:10:b1:60:4e:a5:c0:b2:87: ee:9d:cc:c9:63:d7:6b:d9:e2:6b:0b:2e:de:b6:9f:d0:f0:42: 86:0c:7c:cb:28:a9:74:1f:d9:2c:58:a6:c7:8d:f8:50:31:fd: db:5a:a5:92:1b:2c:3d:a8:2d:93:ba:dc:8d:1b:54:22:4f:14: 0c:8f:72:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjQwNTA0MTk0OTM4WhcNMjQwNTExMTk0OTM4WjAYMRYwFAYD VQQDEw02NjM2OTE1Mi1lYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0E14AAnNdHAaxh9N1qlnpvvAPKP6I6MUHW/5ZCUMw5mNSqcwwM/7K9kq4FST GiLOn0Bj7OP7sRNuXUvnY5kjh6Qj64Bh/Qd28ClUFwpUg3Q742ofcCsMdvUoeExe MkmHfUK8E9GPdigjI8NHItSMkj17YMyj/qLEUSo6C6Nr0Iw1SeHCZi/fiXMF1CkQ zpB2it6iKVMr2v1SQ3nW5765rbV8RirxHD036D57XVhGLmRjnpeJ8Jxz+K8hqbk+ uE1M+ZoAE8N2IgsdSmXXTdFq1+Gk+FANx8JTSL635goyPS1VlmUO5hnZ92H9yt+T +5RBuagBkcGHmJxmO+Wq5pi3lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKeYnfz owExhIpxYj58B+OrkJwxMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASME7Fw/6HqyjSey1IlMTIVr73qq9EzpHYBZA32NVpRNpnnuvAGm2E aOlh7bfkwjAR087eaTk8hNxm2iOHcp91sEt4nuZvJfwkQd7+IgLypKUsCs+Aljft HxtUQB8oQ1pQfnAWxtvyoykK0ejvfTIXFqOQJg3B8JcgP896F8EMTi6P4zD19dID yRuzwWRt2vBIXeLxlVRM2KT2ygoZdbW6b+BeL+AKT/820esFxtZU48IA2BfpIFTY 0Jx1abaiELFgTqXAsofunczJY9dr2eJrCy7etp/Q8EKGDHzLKKl0H9ksWKbHjfhQ Mf3bWqWSGyw9qC2TutyNG1QiTxQMj3LO -----END CERTIFICATE-----Generated at Sat May 4 20:37:09 2024 by rpki-client on console-fra.rpki-client.org