$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: sWn2uMiBjsJTknD/Lzewl1DfnOHjmXyQQxcD7HxfrxU= Subject key identifier: C3:0F:46:29:F5:0F:B7:D5:58:25:C8:55:99:02:02:13:35:FD:3C:5F Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0A0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0A04 Signing time: Mon 06 May 2024 20:45:19 +0000 Manifest this update: Mon 06 May 2024 20:45:18 +0000 Manifest next update: Mon 13 May 2024 20:45:18 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: 8UnNC8NB7L2dn7DvKHSUzTn44OThRmAB1X2qOMLScc8=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: G/eOqgEpWZFr1HOkV3DCeyILuIaljP+37f1Jcziv0j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2571 (0xa0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: May 6 20:45:18 2024 GMT Not After : May 13 20:45:18 2024 GMT Subject: CN=6639415e-f7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9b:e6:5d:96:c5:a6:cc:47:84:a6:99:7f:d2: 6f:ee:14:4e:d7:a4:a5:b5:80:e8:8f:f5:90:66:b7: 03:32:7a:c9:da:37:0c:a0:6c:9b:09:a3:72:00:00: 24:ec:84:eb:da:3c:c8:f5:4b:4e:9b:03:fa:ce:89: f3:b4:a7:c4:58:13:49:0d:33:92:b5:51:01:cf:a8: 02:5e:63:14:97:16:f5:e1:b5:41:46:43:fe:ee:80: e3:c2:3e:45:12:77:d9:7a:21:17:05:4d:ce:1a:5f: 67:f9:a6:bc:da:a2:ac:28:3f:9a:3c:d1:5f:61:b5: 4b:69:11:0e:1f:bf:a1:ce:bf:66:4d:77:13:ab:9c: e8:56:2d:4f:c1:16:70:f8:f7:f9:d7:76:c7:e1:62: cb:5e:bd:ec:97:a9:5e:88:84:5a:30:05:3c:20:b2: ce:f1:00:79:44:42:08:b6:e2:2b:1d:eb:db:52:7b: 92:38:8c:cd:fc:b7:d8:d8:e5:70:86:90:c1:3c:b6: b9:7a:cd:1f:0e:3f:da:02:5c:66:57:f8:b6:7e:bd: b1:62:f1:cb:02:39:77:a2:da:9e:7d:a1:da:a1:b4: dd:a5:07:cf:e1:21:6a:46:4b:13:e0:a2:5c:6b:35: 66:01:60:40:a6:b4:d2:c3:f2:a7:3f:42:55:d1:43: 11:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:0F:46:29:F5:0F:B7:D5:58:25:C8:55:99:02:02:13:35:FD:3C:5F X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:3e:d1:ca:14:db:44:b7:51:e4:fd:8a:9b:12:0d:ac:1b:be: a3:a7:c9:d1:1d:5a:11:46:b6:98:c7:98:ec:6a:39:23:17:08: a1:d4:99:8f:ce:60:0e:98:c8:4a:fe:7d:4f:3f:31:ae:b6:48: 8b:03:44:37:a1:34:ce:be:ee:5a:f5:d9:85:5d:92:4e:92:dd: 9c:4b:e0:82:0f:f1:98:27:40:37:e7:f4:ee:56:b1:83:5b:27: b4:1f:62:c4:ad:a7:c4:e1:ca:46:58:b2:7e:77:15:f3:d4:f1: 6a:13:3a:18:15:2c:d1:79:c9:94:f4:7e:b8:df:dd:bf:1f:cf: fa:3e:82:4a:6e:2a:72:7d:48:a0:47:37:92:ba:e0:c0:83:83: 7a:93:f7:45:4e:45:2b:de:ed:af:46:db:91:d2:79:50:b0:ee: 20:fa:ab:59:61:8a:af:f5:ec:c5:0c:de:b4:e3:86:2f:63:29: c8:f0:57:49:29:94:f1:af:55:00:5e:3e:d0:bb:38:74:e3:10: 2b:a9:e9:56:12:24:81:78:85:39:72:39:41:ef:32:1a:56:d3: 77:c6:cb:8f:20:0c:45:2c:00:ef:b0:b5:25:d7:eb:56:f0:ca: ed:f6:4a:9b:62:a5:7e:1b:d3:bf:39:27:a0:f6:9e:6a:16:d6: 55:4b:06:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjQwNTA2MjA0NTE4WhcNMjQwNTEzMjA0NTE4WjAYMRYwFAYD VQQDEw02NjM5NDE1ZS1mN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5pvmXZbFpsxHhKaZf9Jv7hRO16SltYDoj/WQZrcDMnrJ2jcMoGybCaNyAAAk 7ITr2jzI9UtOmwP6zonztKfEWBNJDTOStVEBz6gCXmMUlxb14bVBRkP+7oDjwj5F EnfZeiEXBU3OGl9n+aa82qKsKD+aPNFfYbVLaREOH7+hzr9mTXcTq5zoVi1PwRZw +Pf513bH4WLLXr3sl6leiIRaMAU8ILLO8QB5REIItuIrHevbUnuSOIzN/LfY2OVw hpDBPLa5es0fDj/aAlxmV/i2fr2xYvHLAjl3otqefaHaobTdpQfP4SFqRksT4KJc azVmAWBAprTSw/KnP0JV0UMRowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMPRin1 D7fVWCXIVZkCAhM1/TxfMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHPtHKFNtEt1Hk/YqbEg2sG76jp8nRHVoRRraYx5jsajkjFwih1JmP zmAOmMhK/n1PPzGutkiLA0Q3oTTOvu5a9dmFXZJOkt2cS+CCD/GYJ0A35/TuVrGD Wye0H2LErafE4cpGWLJ+dxXz1PFqEzoYFSzRecmU9H64392/H8/6PoJKbipyfUig RzeSuuDAg4N6k/dFTkUr3u2vRtuR0nlQsO4g+qtZYYqv9ezFDN6044YvYynI8FdJ KZTxr1UAXj7Quzh04xArqelWEiSBeIU5cjlB7zIaVtN3xsuPIAxFLADvsLUl1+tW 8Mrt9kqbYqV+G9O/OSeg9p5qFtZVSwZC -----END CERTIFICATE-----Generated at Mon May 6 22:40:56 2024 by rpki-client on console-ams.rpki-client.org