$ rpki-client -vvf rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft File: cXp42D7DjxcRAnMoE5hEns3RBQA.mft (raw, json) Hash identifier: lE/UtnNQ+ODpI0AwufPj5pcs/yL/ovidOsUDnci2WT4= Subject key identifier: D6:6A:D5:CF:EC:5C:A0:3B:54:DA:04:BD:7C:AA:72:82:EC:CB:ED:63 Authority key identifier: 71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 Certificate issuer: /CN=A9168D20/serialNumber=717A78D83EC38F17110273281398449ECDD10500 Certificate serial: 057B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft Manifest number: 0573 Signing time: Wed 01 May 2024 01:01:27 +0000 Manifest this update: Wed 01 May 2024 01:01:26 +0000 Manifest next update: Wed 08 May 2024 01:01:26 +0000 Files and hashes: 1: cXp42D7DjxcRAnMoE5hEns3RBQA.crl (hash: Ei0WER2eglyMXhw2Dyu86TRf1CqtxF9AJSBtmN2/75Y=) 2: B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa (hash: i8DoGHYlHx46c/zGymlOqfsnnDW4xU0Ca98hVoxidlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168D20/serialNumber=717A78D83EC38F17110273281398449ECDD10500 Validity Not Before: May 1 01:01:26 2024 GMT Not After : May 8 01:01:26 2024 GMT Subject: CN=66319467-0203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a0:41:af:30:a8:fe:f3:77:76:dd:c2:b3:48: 77:b4:33:ad:84:b2:8b:2a:8c:f4:cb:4b:6b:00:37: 53:cf:84:30:3d:d0:8a:e4:81:e2:5b:28:b0:5c:c4: ff:8d:2e:4d:16:dd:5b:ef:45:19:6e:c8:06:c4:cc: 38:9e:00:fd:64:9b:56:b8:e4:9e:52:6c:3e:e7:21: ca:7c:e0:1d:f9:8b:27:49:4f:b1:16:0d:fa:13:fa: 29:6a:41:3b:f3:29:75:80:7d:c9:89:98:6f:53:6a: 27:87:6d:ec:8e:46:99:18:e2:ba:46:59:4d:a1:c3: b6:d5:ad:fd:55:b7:90:b0:85:22:9f:56:ed:37:f5: 99:82:97:25:19:85:06:7d:81:e2:62:b4:29:b8:6d: 89:52:b0:e3:c1:28:87:7f:4c:30:33:78:b6:ab:b2: d5:fe:2e:df:c9:6a:d0:1c:b9:ee:bc:65:37:e9:05: 12:be:41:97:d5:0f:ce:f2:3a:5b:00:06:5e:23:01: 0a:86:17:e6:de:66:ba:86:b2:0d:85:88:61:66:e0: 21:6c:3a:28:6e:9b:6b:56:e0:d4:27:77:cc:d8:5c: 2d:4e:e6:15:55:54:ce:1c:fc:86:d0:46:60:1f:0c: 4d:ed:2c:66:42:5b:ea:08:25:48:c2:c9:ac:4c:5c: d4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:6A:D5:CF:EC:5C:A0:3B:54:DA:04:BD:7C:AA:72:82:EC:CB:ED:63 X509v3 Authority Key Identifier: keyid:71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:89:35:20:f4:f7:20:b4:4d:3e:11:72:f0:bc:c2:91:e3:ee: a8:78:34:9a:1d:11:b3:e5:97:e6:e5:ec:b8:9c:b2:36:74:50: 1c:88:8d:a1:52:70:13:8d:70:4b:96:2d:3c:7b:78:52:4d:e6: 06:6c:0b:d8:a0:21:f8:58:b2:99:39:ea:de:df:68:c2:a7:cb: 3e:c9:d1:12:65:f3:e6:d7:75:f7:46:9a:88:85:67:08:32:4c: 51:56:2b:e3:c9:22:57:19:f6:b8:4c:35:cd:c2:dc:5a:7f:5c: 18:a5:bf:94:3e:9a:41:5b:f5:70:ea:38:28:79:46:b2:7d:85: 0b:b1:e0:89:a6:13:c3:ef:55:76:33:5f:6b:ee:c8:ee:23:7e: fd:ec:70:e4:87:e9:03:d8:95:21:06:fb:05:21:9e:70:e0:61: d0:8c:f9:41:e8:8b:3f:3e:e6:90:0e:44:72:8c:53:6c:24:04: 05:76:21:a4:0e:84:86:3a:87:63:8a:eb:90:06:62:8f:87:3a: 2e:c0:de:e1:a5:ff:4b:b1:6a:dc:20:79:b9:9d:33:f5:99:88: 6e:24:b7:66:b0:c3:12:12:2d:33:a6:98:ca:37:15:a4:b3:52: bb:c9:14:3b:2c:3f:60:8d:c7:fa:18:0a:05:d3:73:43:68:4c: 9f:0d:92:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhEMjAxMTAvBgNVBAUTKDcxN0E3OEQ4M0VDMzhGMTcxMTAyNzMyODEzOTg0NDlF Q0REMTA1MDAwHhcNMjQwNTAxMDEwMTI2WhcNMjQwNTA4MDEwMTI2WjAYMRYwFAYD VQQDEw02NjMxOTQ2Ny0wMjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6BBrzCo/vN3dt3Cs0h3tDOthLKLKoz0y0trADdTz4QwPdCK5IHiWyiwXMT/ jS5NFt1b70UZbsgGxMw4ngD9ZJtWuOSeUmw+5yHKfOAd+YsnSU+xFg36E/opakE7 8yl1gH3JiZhvU2onh23sjkaZGOK6RllNocO21a39VbeQsIUin1btN/WZgpclGYUG fYHiYrQpuG2JUrDjwSiHf0wwM3i2q7LV/i7fyWrQHLnuvGU36QUSvkGX1Q/O8jpb AAZeIwEKhhfm3ma6hrINhYhhZuAhbDoobptrVuDUJ3fM2FwtTuYVVVTOHPyG0EZg HwxN7SxmQlvqCCVIwsmsTFzUuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZq1c/s XKA7VNoEvXyqcoLsy+1jMB8GA1UdIwQYMBaAFHF6eNg+w48XEQJzKBOYRJ7N0QUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEQyMC9DMEM2QUU1Qzkz NUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4Y1JBbk1vRTVoRW5zM1JC UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYcDQyRDdEanhjUkFuTW9FNWhFbnMzUkJRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEQyMC9DMEM2QUU1QzkzNUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4 Y1JBbk1vRTVoRW5zM1JCUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOiTUg9PcgtE0+EXLwvMKR4+6oeDSaHRGz5Zfm5ey4nLI2dFAciI2h UnATjXBLli08e3hSTeYGbAvYoCH4WLKZOere32jCp8s+ydESZfPm13X3RpqIhWcI MkxRVivjySJXGfa4TDXNwtxaf1wYpb+UPppBW/Vw6jgoeUayfYULseCJphPD71V2 M19r7sjuI3797HDkh+kD2JUhBvsFIZ5w4GHQjPlB6Is/PuaQDkRyjFNsJAQFdiGk DoSGOodjiuuQBmKPhzouwN7hpf9LsWrcIHm5nTP1mYhuJLdmsMMSEi0zppjKNxWk s1K7yRQ7LD9gjcf6GAoF03NDaEyfDZJR -----END CERTIFICATE-----Generated at Wed May 1 01:38:27 2024 by rpki-client on console-ams.rpki-client.org