$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft File: rwJRH3yA38Do7VBvZjD2e9ZADgk.mft (raw, json) Hash identifier: 0it3JkKll68VNsvlnzJOuu5DJXKQyMDrKWm0vnDyAXQ= Subject key identifier: DA:75:55:CF:09:04:8C:99:DC:3E:84:3C:62:03:18:F5:C5:25:49:3B Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 134B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft Manifest number: 133D Signing time: Mon 06 May 2024 17:38:01 +0000 Manifest this update: Mon 06 May 2024 17:38:00 +0000 Manifest next update: Mon 13 May 2024 17:38:00 +0000 Files and hashes: 1: rwJRH3yA38Do7VBvZjD2e9ZADgk.crl (hash: o/ujyBev1HBPKAYCnHyKKAt2WSBvchSXFllvGUssF6Y=) 2: 26F19BD2EFFE11EDA34BD84DC4F9AE02.roa (hash: B5wGaPh3BXLhyJKchvo76mn/Myg3sojTpyVDrMgifgs=) 3: 7F444842C3A411ED8EFA6F13C4F9AE02.roa (hash: nZHgPl7m5MWLYPaxdKJ+/nLD1cDja1CUfctZTXtql7E=) 4: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (hash: hh0viZTsv0+mOUblt7DWtCMkKcp9rkTjFrsdWlkZQ+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4939 (0x134b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: May 6 17:38:00 2024 GMT Not After : May 13 17:38:00 2024 GMT Subject: CN=66391579-25d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:06:67:c4:d6:ae:07:9d:fc:96:31:b3:f4: 03:60:23:28:81:e1:21:54:b3:92:20:ca:05:e2:f5: 9a:67:52:50:24:1f:f2:dd:f6:3b:68:53:8a:74:aa: 5a:ad:8d:0f:f6:b5:e0:ad:d8:2f:56:48:8e:a2:9f: ef:66:41:9f:5d:7f:45:54:fd:aa:71:e0:25:4b:25: 7f:27:3a:9c:1c:5c:1c:a1:82:d4:9f:e9:02:eb:ab: f5:e1:67:8b:f9:14:a9:31:6b:cd:15:91:29:0d:d5: 2b:8d:b3:d7:d9:03:e0:3d:5d:ef:ce:e1:26:9f:94: 72:18:d4:27:22:8c:07:2e:6a:66:56:d4:03:05:de: 51:9f:71:59:19:e9:0c:58:a9:f4:f1:52:27:f5:b2: 5a:2a:27:4d:0a:2b:60:71:fe:6b:31:bc:bf:60:a7: ba:ff:22:f3:02:b3:30:ad:24:f3:f5:30:61:34:62: 79:86:f9:55:bc:d7:25:a5:e6:49:dd:54:ec:b8:94: 89:23:69:49:af:f9:ee:82:49:c6:1c:d2:56:0f:bd: 69:2c:60:b9:4f:bf:dd:f0:13:0c:54:2c:6b:ce:79: d7:fc:9a:05:86:51:39:e0:f3:4b:85:d3:0c:48:6b: 1b:f7:ff:c9:7f:35:61:81:62:68:63:a8:ca:04:1e: 85:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:75:55:CF:09:04:8C:99:DC:3E:84:3C:62:03:18:F5:C5:25:49:3B X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:5b:b9:87:92:32:a5:5c:d3:ad:a4:bc:b5:34:e8:2c:e5:e3: 56:fc:6c:33:ce:90:42:29:6e:f2:67:83:36:d6:4c:4c:26:e7: 5a:5f:38:07:55:fd:2b:f4:8f:ab:2e:d4:5e:5d:b9:15:4e:64: f9:bf:d9:b3:16:51:c2:25:58:4f:b3:a0:4a:82:91:df:cf:40: a1:4e:53:f1:2a:c7:40:f3:93:50:b9:07:40:fe:fb:96:c7:7b: 74:22:bc:7b:0e:6a:14:4a:5e:4c:e5:14:79:47:12:07:d7:37: 76:bd:87:6e:6c:3f:6b:d7:d6:7f:15:ae:6b:e3:1b:22:87:6e: 30:39:e7:53:51:50:bf:50:6d:48:3d:a1:f5:f5:01:aa:8e:f5: 8c:e5:a1:dc:2d:e2:df:d6:eb:82:fa:3f:2f:d5:0a:36:9a:fb: 34:22:6a:0d:36:b1:2d:ec:47:17:5f:dd:14:f8:67:d8:f2:c7: 3c:10:ef:7c:05:ef:09:4a:c7:19:ef:22:62:cc:93:e9:6e:87: 05:c6:a0:02:74:2a:32:30:65:9c:e6:79:a5:fe:d1:99:d7:7f: e4:28:6a:fe:72:d0:70:f3:fc:39:4f:53:ae:64:23:1e:d5:2a: 51:2f:65:e7:36:cd:ac:89:81:9c:3e:90:44:e3:40:36:bf:b8: 75:7e:9f:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjQwNTA2MTczODAwWhcNMjQwNTEzMTczODAwWjAYMRYwFAYD VQQDEw02NjM5MTU3OS0yNWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3sGZ8TWrged/JYxs/QDYCMogeEhVLOSIMoF4vWaZ1JQJB/y3fY7aFOKdKpa rY0P9rXgrdgvVkiOop/vZkGfXX9FVP2qceAlSyV/JzqcHFwcoYLUn+kC66v14WeL +RSpMWvNFZEpDdUrjbPX2QPgPV3vzuEmn5RyGNQnIowHLmpmVtQDBd5Rn3FZGekM WKn08VIn9bJaKidNCitgcf5rMby/YKe6/yLzArMwrSTz9TBhNGJ5hvlVvNclpeZJ 3VTsuJSJI2lJr/nugknGHNJWD71pLGC5T7/d8BMMVCxrznnX/JoFhlE54PNLhdMM SGsb9//JfzVhgWJoY6jKBB6F+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNp1Vc8J BIyZ3D6EPGIDGPXFJUk7MB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEI0QS8wQURCMTdDMDgwMEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4 RG83VkJ2WmpEMmU5WkFEZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOW7mHkjKlXNOtpLy1NOgs5eNW/GwzzpBCKW7yZ4M21kxMJudaXzgH Vf0r9I+rLtReXbkVTmT5v9mzFlHCJVhPs6BKgpHfz0ChTlPxKsdA85NQuQdA/vuW x3t0Irx7DmoUSl5M5RR5RxIH1zd2vYdubD9r19Z/Fa5r4xsih24wOedTUVC/UG1I PaH19QGqjvWM5aHcLeLf1uuC+j8v1Qo2mvs0ImoNNrEt7EcXX90U+GfY8sc8EO98 Be8JSscZ7yJizJPpbocFxqACdCoyMGWc5nml/tGZ13/kKGr+ctBw8/w5T1OuZCMe 1SpRL2XnNs2siYGcPpBE40A2v7h1fp/Q -----END CERTIFICATE-----Generated at Mon May 6 20:19:32 2024 by rpki-client on console-ams.rpki-client.org