$ rpki-client -vvf rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft File: 9TkpGRnN4USwNO8oiwpjR4PoLH8.mft (raw, json) Hash identifier: jmjojxEkqr/dinJ08eOzGQHoCVOJLYNyHdgGptgaPHc= Subject key identifier: 2A:EC:F3:5C:C4:02:B4:BA:AC:5B:2A:DE:9F:C1:58:A0:1C:FD:6F:18 Authority key identifier: F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F Certificate issuer: /CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Certificate serial: 036A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft Manifest number: 0345 Signing time: Sat 27 Apr 2024 03:02:52 +0000 Manifest this update: Sat 27 Apr 2024 03:02:52 +0000 Manifest next update: Sat 04 May 2024 03:02:52 +0000 Files and hashes: 1: 9TkpGRnN4USwNO8oiwpjR4PoLH8.crl (hash: 3it5ydwa3iFir3vLbwSeu0vrFJi99wlV4fqfIlztLMM=) 2: 1658FA66014811EF83052377C4F9AE02.roa (hash: R6uekXed+6bYd/aeBtE/wXFL/otHka0UHLtTohO9Imk=) 3: 56FDB94CD15211EEB3B57D20C4F9AE02.roa (hash: GwcoX9vvkgkfaa1QPomzCNa8O3xRGPvQsakzRLwg4Sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Validity Not Before: Apr 27 03:02:52 2024 GMT Not After : May 4 03:02:52 2024 GMT Subject: CN=662c6adc-4c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:52:3f:18:20:fd:bd:de:db:ca:b3:38:35:83: a7:fd:90:92:24:e5:dc:80:c0:c3:e1:16:b4:1f:6b: cc:0c:a8:22:96:d3:25:a8:1d:c0:2c:bb:ff:35:71: 97:16:77:d8:d8:e5:f7:e6:b6:37:90:cc:f9:de:db: 2e:ed:41:af:c6:33:77:56:d4:1b:d9:58:bf:bb:dc: 23:40:c9:62:85:ac:50:85:b8:4e:30:b1:35:b2:29: 51:53:93:30:f2:95:87:1b:02:be:84:0b:c0:c7:cc: 48:4d:5c:25:bf:e4:db:0e:f1:f0:e2:31:e2:f3:7e: 7e:5a:d8:d0:a5:d3:b8:39:b5:a5:85:b7:75:6a:af: 4d:4b:6f:3e:e3:a2:39:ad:d8:5e:79:7a:b5:ba:6e: c8:bc:76:8c:ed:5f:d3:ec:42:c9:16:b3:d0:84:24: 32:1a:73:de:b0:95:73:4e:fd:3c:63:06:e3:32:8e: 07:c3:9c:3e:00:d1:01:5a:a3:4f:6c:af:08:01:3b: fc:c9:68:6d:05:37:ed:b1:d9:de:c4:5f:a8:20:de: 25:45:8f:1c:33:15:42:69:1b:b1:0a:62:dc:c7:0c: 07:ea:d8:ec:7f:87:a8:75:f1:7a:77:b9:e3:a5:fa: bd:ea:42:b2:dd:f8:48:2b:a1:9d:8c:07:b9:65:aa: ad:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EC:F3:5C:C4:02:B4:BA:AC:5B:2A:DE:9F:C1:58:A0:1C:FD:6F:18 X509v3 Authority Key Identifier: keyid:F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:e0:f2:e3:e2:ce:2e:c3:b4:f0:6f:78:84:8e:a1:71:09:f0: 12:53:65:64:65:55:fc:e1:cb:db:36:9e:3c:0a:ca:39:91:99: b5:c1:27:ef:50:0f:13:d8:c4:3b:87:52:3f:c6:a5:6d:72:bf: b6:07:d4:29:13:6c:a6:9a:52:fc:e3:5e:c1:e5:29:bc:87:9b: 22:d6:2b:ce:e7:d3:72:73:8c:50:8d:91:94:28:c9:a6:f7:c3: 05:53:b8:40:5a:43:1a:de:c1:12:ab:f4:18:bf:bc:fb:f0:91: ca:05:7c:82:f5:46:89:2d:51:50:06:97:55:9f:a1:aa:80:2d: bb:06:a8:46:e2:72:29:68:cc:5e:5c:e5:59:27:3b:54:66:d2: e8:74:35:7f:9f:6f:df:2f:2d:99:02:dc:89:1c:91:de:0b:eb: 45:8b:2a:f6:32:9a:3a:a7:f9:32:b8:5c:3e:90:05:bd:c0:88: 50:27:e9:76:1e:c6:a0:d3:9b:96:23:12:a5:e9:fa:64:98:c5: 88:b3:83:6b:15:fb:8c:b2:82:26:09:be:22:57:62:22:81:96: d3:af:36:ea:22:9d:18:9e:ca:5f:3a:f9:0d:b4:0f:0a:d4:0d: 85:e8:3d:40:22:b1:5e:a8:3e:22:49:6e:9b:0e:d6:fc:24:13: 04:e3:56:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2MUIxMTAvBgNVBAUTKEY1MzkyOTE5MTlDREUxNDRCMDM0RUYyODhCMEE2MzQ3 ODNFODJDN0YwHhcNMjQwNDI3MDMwMjUyWhcNMjQwNTA0MDMwMjUyWjAYMRYwFAYD VQQDEw02NjJjNmFkYy00YzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FI/GCD9vd7byrM4NYOn/ZCSJOXcgMDD4Ra0H2vMDKgiltMlqB3ALLv/NXGX FnfY2OX35rY3kMz53tsu7UGvxjN3VtQb2Vi/u9wjQMlihaxQhbhOMLE1silRU5Mw 8pWHGwK+hAvAx8xITVwlv+TbDvHw4jHi835+WtjQpdO4ObWlhbd1aq9NS28+46I5 rdheeXq1um7IvHaM7V/T7ELJFrPQhCQyGnPesJVzTv08YwbjMo4Hw5w+ANEBWqNP bK8IATv8yWhtBTftsdnexF+oIN4lRY8cMxVCaRuxCmLcxwwH6tjsf4eodfF6d7nj pfq96kKy3fhIK6GdjAe5ZaqtCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrs81zE ArS6rFsq3p/BWKAc/W8YMB8GA1UdIwQYMBaAFPU5KRkZzeFEsDTvKIsKY0eD6Cx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzYxQi81MUVGRkEzMDgy NjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRVU3dOTzhvaXdwalI0UG9M SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUa3BHUm5ONFVTd05POG9pd3BqUjRQb0xIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzYxQi81MUVGRkEzMDgyNjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRV U3dOTzhvaXdwalI0UG9MSDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB64PLj4s4uw7Twb3iEjqFxCfASU2VkZVX84cvbNp48Cso5kZm1wSfv UA8T2MQ7h1I/xqVtcr+2B9QpE2ymmlL8417B5Sm8h5si1ivO59Nyc4xQjZGUKMmm 98MFU7hAWkMa3sESq/QYv7z78JHKBXyC9UaJLVFQBpdVn6GqgC27BqhG4nIpaMxe XOVZJztUZtLodDV/n2/fLy2ZAtyJHJHeC+tFiyr2Mpo6p/kyuFw+kAW9wIhQJ+l2 Hsag05uWIxKl6fpkmMWIs4NrFfuMsoImCb4iV2IigZbTrzbqIp0YnspfOvkNtA8K 1A2F6D1AIrFeqD4iSW6bDtb8JBME41ZK -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:07 2024 by rpki-client on console-ams.rpki-client.org