$ rpki-client -vvf rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft File: 8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft (raw, json) Hash identifier: HAqzKTtuKOm2ZM83Fv+FDVjBz0b7WReS0Y492Zp3nXI= Subject key identifier: 5D:A1:97:FC:65:82:AE:1E:16:4C:AE:CD:2B:3C:03:7C:A4:D5:29:C7 Authority key identifier: F2:C0:52:E0:C5:73:AB:05:80:EB:06:F3:F9:00:25:64:6E:6F:32:CF Certificate issuer: /CN=A916B8B3/serialNumber=F2C052E0C573AB0580EB06F3F90025646E6F32CF Certificate serial: 0EF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft Manifest number: 0ECD Signing time: Mon 06 May 2024 18:24:58 +0000 Manifest this update: Mon 06 May 2024 18:24:57 +0000 Manifest next update: Mon 13 May 2024 18:24:57 +0000 Files and hashes: 1: 8sBS4MVzqwWA6wbz-QAlZG5vMs8.crl (hash: nn9Q/tlW5du0iQOz1/J/DXxxRxwjCiO9Pu+LVjZzb4E=) 2: 983A05F84EA311EB934EF05CC4F9AE02.roa (hash: P2K/A9S9BbQJJ5jpe6Nsy6vhhPAP+7WyRVkP1cTLDko=) 3: 6840DA0E663911EB9492E836C4F9AE02.roa (hash: sGu3ODXooc9CB+ssEdGcHv/MosZ1/dqSVTNT38zCxdM=) 4: 312806545DA611ECB01B733BC4F9AE02.roa (hash: No0IlpoVlxfwVKfFuVyGS+nVpuw81ooHig1jHXtsJNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.crl rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3830 (0xef6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B8B3/serialNumber=F2C052E0C573AB0580EB06F3F90025646E6F32CF Validity Not Before: May 6 18:24:57 2024 GMT Not After : May 13 18:24:57 2024 GMT Subject: CN=66392079-3c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1f:d7:2f:d9:de:e1:07:4e:35:53:8b:fa:4c: 76:79:0f:dc:bb:e8:eb:9e:46:93:09:f2:5e:fe:8c: 16:ea:a7:c6:11:14:54:d4:61:e8:83:10:68:e0:90: 5d:ad:d8:67:df:f3:5f:d7:83:cd:de:3b:3a:18:67: 4e:c1:99:fa:a7:85:f7:bd:43:59:48:09:31:93:87: e8:3d:4b:97:a1:ad:0b:56:07:28:bf:3b:98:e3:7a: c3:66:e8:97:14:cc:25:9b:9f:91:2f:89:88:6b:ec: 57:9c:10:90:1b:2b:c8:a5:a8:ba:c0:1e:e0:e5:50: 6d:89:eb:c2:a6:b0:d3:3c:bd:ee:e0:0b:50:a6:26: 9a:f6:76:70:68:65:f2:16:57:ea:18:ac:4d:42:55: cc:e0:c8:f6:33:97:e6:31:84:91:d6:3c:c2:76:da: 01:34:1b:ad:af:1e:13:23:d1:63:ef:8a:9b:6f:ec: 07:ea:be:83:43:4b:cb:8e:a0:d5:12:3a:e2:ea:0e: 57:fb:a7:3f:2a:4d:9e:90:7d:0f:0c:67:79:47:50: 18:39:2b:b0:1e:a4:11:c6:32:2e:45:22:f1:fb:54: 20:3f:d1:e8:79:ab:de:0d:44:0f:ed:c4:89:53:47: 4c:b9:0e:a6:eb:dd:4f:05:de:22:a8:8f:bd:f2:76: 2c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A1:97:FC:65:82:AE:1E:16:4C:AE:CD:2B:3C:03:7C:A4:D5:29:C7 X509v3 Authority Key Identifier: keyid:F2:C0:52:E0:C5:73:AB:05:80:EB:06:F3:F9:00:25:64:6E:6F:32:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:64:4a:76:a9:9e:1e:09:68:8c:ed:a5:1c:06:64:71:5b:86: 59:f3:19:69:28:15:fa:df:77:a5:d4:e3:10:1b:bb:f1:a3:f2: 5c:a6:07:dc:3d:0a:fa:39:ef:28:96:32:16:54:6a:14:aa:89: fb:12:b7:5e:0b:7b:10:df:51:53:3d:ab:35:dc:a1:c1:38:e1: dc:92:64:83:21:7e:b5:62:ac:3c:d9:34:fa:02:87:30:22:f4: 43:ab:56:35:2f:eb:db:f5:e6:8a:c7:9f:31:f5:c7:b7:d2:7f: f8:74:6c:55:8a:40:d9:86:c1:af:04:55:a0:31:11:ca:7f:c2: 16:3d:28:d4:03:d4:6f:df:da:fa:10:65:32:4c:02:07:bd:4b: 5b:30:d2:b7:86:aa:b0:ff:be:db:cc:6b:85:c9:fa:15:6c:07: e8:08:78:ed:cf:42:fe:6c:ec:74:de:d1:2c:a5:0a:4c:a7:3f: 4d:7c:7f:fa:82:49:66:a4:44:02:54:4f:b7:22:a4:fd:89:50: 76:1b:25:b1:b1:d7:cc:34:dd:8e:6d:0c:d9:93:3b:c9:34:c3: 1e:03:d6:5d:6b:d9:ca:5d:00:5b:df:f4:93:92:f6:6b:c3:e8: 5a:db:a2:4b:bf:a0:cf:8b:7a:81:13:53:62:fb:f1:7c:39:e2: f1:a1:49:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI4QjMxMTAvBgNVBAUTKEYyQzA1MkUwQzU3M0FCMDU4MEVCMDZGM0Y5MDAyNTY0 NkU2RjMyQ0YwHhcNMjQwNTA2MTgyNDU3WhcNMjQwNTEzMTgyNDU3WjAYMRYwFAYD VQQDEw02NjM5MjA3OS0zYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3R/XL9ne4QdONVOL+kx2eQ/cu+jrnkaTCfJe/owW6qfGERRU1GHogxBo4JBd rdhn3/Nf14PN3js6GGdOwZn6p4X3vUNZSAkxk4foPUuXoa0LVgcovzuY43rDZuiX FMwlm5+RL4mIa+xXnBCQGyvIpai6wB7g5VBtievCprDTPL3u4AtQpiaa9nZwaGXy FlfqGKxNQlXM4Mj2M5fmMYSR1jzCdtoBNButrx4TI9Fj74qbb+wH6r6DQ0vLjqDV Ejri6g5X+6c/Kk2ekH0PDGd5R1AYOSuwHqQRxjIuRSLx+1QgP9HoeaveDUQP7cSJ U0dMuQ6m691PBd4iqI+98nYsAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2hl/xl gq4eFkyuzSs8A3yk1SnHMB8GA1UdIwQYMBaAFPLAUuDFc6sFgOsG8/kAJWRubzLP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjhCMy9BMTEzMUQ2QzY2 NjYxMUU5ODc1M0U0N0FDNEY5QUUwMi84c0JTNE1WenF3V0E2d2J6LVFBbFpHNXZN czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhzQlM0TVZ6cXdXQTZ3YnotUUFsWkc1dk1zOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjhCMy9BMTEzMUQ2QzY2NjYxMUU5ODc1M0U0N0FDNEY5QUUwMi84c0JTNE1WenF3 V0E2d2J6LVFBbFpHNXZNczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJZEp2qZ4eCWiM7aUcBmRxW4ZZ8xlpKBX633el1OMQG7vxo/Jcpgfc PQr6Oe8oljIWVGoUqon7ErdeC3sQ31FTPas13KHBOOHckmSDIX61Yqw82TT6Aocw IvRDq1Y1L+vb9eaKx58x9ce30n/4dGxVikDZhsGvBFWgMRHKf8IWPSjUA9Rv39r6 EGUyTAIHvUtbMNK3hqqw/77bzGuFyfoVbAfoCHjtz0L+bOx03tEspQpMpz9NfH/6 gklmpEQCVE+3IqT9iVB2GyWxsdfMNN2ObQzZkzvJNMMeA9Zda9nKXQBb3/STkvZr w+ha26JLv6DPi3qBE1Ni+/F8OeLxoUm9 -----END CERTIFICATE-----Generated at Mon May 6 20:19:32 2024 by rpki-client on console-ams.rpki-client.org