$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: bhJ7UFfFAwd70ddR9ooqv0SpxRopQcCLMPV1eXBa/To= Subject key identifier: 8E:97:9F:20:94:86:C5:DA:FD:5A:DD:CB:F4:27:DA:00:3F:AB:BD:F6 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 09DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 09BF Signing time: Tue 30 Apr 2024 21:13:38 +0000 Manifest this update: Tue 30 Apr 2024 21:13:37 +0000 Manifest next update: Tue 07 May 2024 21:13:37 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: yj8/bqUN4O/29hPQpap+eo/kieUCdQB3RtGC23TTc1U=) 2: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 873bBCGHkjfyb8l6bvX0YIj28dpF73yIbp8jCOGaSvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2522 (0x9da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Apr 30 21:13:37 2024 GMT Not After : May 7 21:13:37 2024 GMT Subject: CN=66315f02-9559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c4:cb:1e:81:a7:42:af:00:dc:c7:d2:45:ae: 4a:1a:dd:b3:31:e9:2b:45:9f:73:a4:f7:ae:65:70: d1:4c:78:2f:75:e2:8f:0f:d8:d7:9c:4f:6f:7f:e1: cb:8d:3d:81:50:ea:2b:2c:34:34:40:41:46:e9:8c: b4:23:df:c4:a4:da:0d:a3:1b:ca:2a:6c:a6:37:df: 5e:d0:08:a1:0e:d2:34:09:fc:3a:5d:d2:76:3f:a5: 77:8b:5b:29:9c:7f:f0:20:23:75:02:46:3e:c1:cc: b7:73:7f:75:21:b3:65:df:95:8f:db:a8:65:5d:cf: 3a:0b:83:59:eb:8f:4c:3a:76:c3:88:f3:7e:42:51: a0:3d:a2:3c:90:ee:07:0b:cc:08:45:cc:0b:0a:dc: 59:67:73:d3:dd:7d:6a:1b:b2:55:d2:66:8f:8d:3c: f8:43:d7:5f:7a:ca:2b:c1:b9:67:35:a0:25:9b:b7: c3:18:db:e7:db:62:8e:b5:d1:6b:51:83:38:ef:34: a0:67:1a:4c:d0:9e:d7:f2:7a:70:2d:1d:1a:35:43: 1e:5e:d4:91:71:e2:b8:b6:9d:82:b4:b3:81:8b:57: c1:ff:9e:f8:e9:c4:bb:9f:14:ac:d4:25:d8:8c:5a: e4:0a:4e:2b:37:35:50:48:76:b7:1f:c8:c1:f2:92: b1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:97:9F:20:94:86:C5:DA:FD:5A:DD:CB:F4:27:DA:00:3F:AB:BD:F6 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:4d:da:2e:0b:8e:39:52:0a:60:88:0a:62:10:33:ae:11:19: 48:35:e1:88:1d:88:b5:97:f3:80:70:60:45:4e:a9:59:a6:f6: 93:a6:22:15:47:91:05:2c:98:8b:ba:5a:de:2e:6e:a0:e5:01: 3c:29:aa:e2:db:ff:ab:6b:90:5a:c7:de:66:7a:95:c2:6d:40: de:55:eb:20:77:51:5d:60:0a:8e:a0:dd:49:e6:49:f2:b3:bb: cb:72:20:1d:b7:66:e7:16:ce:7d:73:76:32:5e:89:39:58:f3: cb:88:48:2a:21:2b:5a:78:fb:96:a7:ca:a8:84:e9:71:e6:01: 03:0a:2f:91:d9:53:41:c4:8c:bf:0b:f8:6b:6b:e9:e5:6d:9c: 7c:45:a4:40:e2:cf:ac:5b:e7:c1:d6:bc:96:09:5e:19:fd:2b: 69:3c:64:6e:35:60:0e:b5:e5:63:9c:84:82:e7:8d:64:72:19: da:fc:17:18:26:66:f4:73:3e:21:86:8c:0f:c2:7d:5c:33:70: 2a:e8:d4:d8:e0:e1:c3:f7:0b:34:8c:1f:a7:12:9c:1e:ea:38: 6d:fb:8f:ba:55:7b:04:cd:e1:4d:be:8d:36:4d:68:6c:74:7e: 09:79:8f:c2:1c:65:10:f9:82:53:4b:16:9e:3e:e5:47:bd:eb: 2c:d6:9b:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjQwNDMwMjExMzM3WhcNMjQwNTA3MjExMzM3WjAYMRYwFAYD VQQDEw02NjMxNWYwMi05NTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8TLHoGnQq8A3MfSRa5KGt2zMekrRZ9zpPeuZXDRTHgvdeKPD9jXnE9vf+HL jT2BUOorLDQ0QEFG6Yy0I9/EpNoNoxvKKmymN99e0AihDtI0Cfw6XdJ2P6V3i1sp nH/wICN1AkY+wcy3c391IbNl35WP26hlXc86C4NZ649MOnbDiPN+QlGgPaI8kO4H C8wIRcwLCtxZZ3PT3X1qG7JV0maPjTz4Q9dfesorwblnNaAlm7fDGNvn22KOtdFr UYM47zSgZxpM0J7X8npwLR0aNUMeXtSRceK4tp2CtLOBi1fB/5746cS7nxSs1CXY jFrkCk4rNzVQSHa3H8jB8pKxzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6XnyCU hsXa/Vrdy/Qn2gA/q732MB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/TdouC445UgpgiApiEDOuERlINeGIHYi1l/OAcGBFTqlZpvaTpiIV R5EFLJiLulreLm6g5QE8Kari2/+ra5Bax95mepXCbUDeVesgd1FdYAqOoN1J5kny s7vLciAdt2bnFs59c3YyXok5WPPLiEgqIStaePuWp8qohOlx5gEDCi+R2VNBxIy/ C/hra+nlbZx8RaRA4s+sW+fB1ryWCV4Z/StpPGRuNWAOteVjnISC541kchna/BcY Jmb0cz4hhowPwn1cM3Aq6NTY4OHD9ws0jB+nEpwe6jht+4+6VXsEzeFNvo02TWhs dH4JeY/CHGUQ+YJTSxaePuVHvess1pta -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:56 2024 by rpki-client on console-ams.rpki-client.org