$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: bTm7zk7bhqKv3/DT/gZZkfS3ZfyT6tej/RYm2nX3qEE= Subject key identifier: 05:73:05:EC:9B:8B:21:B7:C4:02:D6:10:B4:9F:CF:39:92:44:E0:C7 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 03B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 03A0 Signing time: Fri 29 Mar 2024 02:18:30 +0000 Manifest this update: Fri 29 Mar 2024 02:18:29 +0000 Manifest next update: Fri 05 Apr 2024 02:18:29 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: aeWl8s0zNjqlHUiyms4IqnWs0uAnqkrftcPz8XJNVr4=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: xKAp7QQZzvPcKaqeA8FNrW0vD6RfKP6sFaIFenq6yOk=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: ikrTe3JlBPJvvS7QA2MhzwcmLIASncvk8dd3dvu0eIo=) 4: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: S7MlN7EcdljIgirwT85s0UeMI1msMXz2OWeTrTt7MZs=) 5: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: Rzh0A53RJhQ7nkX8l0r1eEVHybEfvcunuAZy12At2jc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Apr 2024 02:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Mar 29 02:18:29 2024 GMT Not After : Apr 5 02:18:29 2024 GMT Subject: CN=660624f6-64c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1f:9e:80:2d:dc:0e:07:24:4a:cd:4c:e7:f8: 0f:2e:80:33:cd:aa:fd:9d:1c:49:ac:9f:81:b4:fb: 07:2a:a9:7a:3c:7f:b2:49:72:d1:26:f1:ef:0e:a5: f4:93:5f:e2:f5:ac:fd:19:8d:b0:32:f3:17:d3:4c: df:4c:57:38:2b:37:d0:a6:5a:5e:c2:06:7d:30:0a: f2:25:5a:a9:48:90:e3:80:4a:ba:75:6e:5a:67:68: 76:0e:cc:b3:22:66:71:dc:f2:7c:3e:d5:52:01:ae: 38:d0:5e:b8:aa:40:56:4d:df:a7:5d:45:0d:73:76: 30:0f:11:55:d2:cd:9e:f3:6f:4b:10:fe:f0:d0:35: f1:ad:38:5e:06:1b:0b:b6:8d:c6:cf:49:3b:3e:e7: 10:9d:ac:94:a3:4c:91:62:75:c8:a4:6c:9f:b4:04: 2b:ff:4f:37:95:5f:1f:9b:57:93:f2:bc:5d:bd:76: fb:8d:bf:3c:94:d8:d8:c1:0a:88:da:60:76:30:9f: 9f:19:9d:8d:10:19:fd:c8:7b:00:fe:7c:71:b1:dd: 35:05:2b:19:cd:d5:05:c9:d2:45:f5:5a:a4:aa:d6: a1:ee:b8:d3:50:65:13:ef:a7:32:ce:fb:42:74:4f: 8e:dd:b8:a6:f0:06:70:9c:3f:dc:33:97:fc:94:16: 2f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:73:05:EC:9B:8B:21:B7:C4:02:D6:10:B4:9F:CF:39:92:44:E0:C7 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6d:d7:42:1b:f3:a9:e4:13:01:05:41:65:eb:24:c1:22:63: df:cc:14:db:5c:62:b4:78:76:39:37:9d:00:a2:b8:8b:ee:36: 82:84:a5:6a:c3:06:8d:fa:00:1f:b5:bd:ad:b3:0a:b5:ca:78: 3b:c4:a9:a4:c7:a3:38:a4:54:b8:34:d9:3d:66:ee:bc:52:7e: 5c:b0:93:f7:a7:8d:d6:5c:16:b8:2d:d5:8a:bc:f2:1f:1a:c6: 6a:c9:fb:12:97:35:63:35:ba:1c:c6:c8:c2:50:a6:d1:0c:d5: 76:bc:ba:1f:fa:97:32:20:96:3c:63:49:40:79:96:ec:10:58: cd:a1:58:9b:8b:54:22:8b:74:8c:b0:18:2b:44:d1:6d:d3:55: 4c:c5:f2:d6:42:2d:c3:79:38:44:51:7c:d7:2b:f8:df:2b:08: 77:d9:0f:e0:ca:6e:4b:c9:4c:05:01:98:41:fd:0b:0f:85:65: 84:a6:12:0c:f1:37:f9:88:55:56:d1:77:21:6e:fb:57:22:94: ab:c2:f8:28:19:bd:89:b9:ae:85:d9:65:ba:bb:5b:62:cd:0d: 21:c3:24:24:97:e6:96:fd:eb:10:db:ca:24:e6:bb:42:7e:d3: 90:22:6c:96:6c:a5:5d:f8:a1:59:d9:3d:11:26:9a:8f:fa:69: 8e:b2:b2:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjQwMzI5MDIxODI5WhcNMjQwNDA1MDIxODI5WjAYMRYwFAYD VQQDEw02NjA2MjRmNi02NGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwx+egC3cDgckSs1M5/gPLoAzzar9nRxJrJ+BtPsHKql6PH+ySXLRJvHvDqX0 k1/i9az9GY2wMvMX00zfTFc4KzfQplpewgZ9MAryJVqpSJDjgEq6dW5aZ2h2Dsyz ImZx3PJ8PtVSAa440F64qkBWTd+nXUUNc3YwDxFV0s2e829LEP7w0DXxrTheBhsL to3Gz0k7PucQnayUo0yRYnXIpGyftAQr/083lV8fm1eT8rxdvXb7jb88lNjYwQqI 2mB2MJ+fGZ2NEBn9yHsA/nxxsd01BSsZzdUFydJF9Vqkqtah7rjTUGUT76cyzvtC dE+O3bim8AZwnD/cM5f8lBYvMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVzBeyb iyG3xALWELSfzzmSRODHMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXbddCG/Op5BMBBUFl6yTBImPfzBTbXGK0eHY5N50AoriL7jaChKVq wwaN+gAftb2tswq1yng7xKmkx6M4pFS4NNk9Zu68Un5csJP3p43WXBa4LdWKvPIf GsZqyfsSlzVjNbocxsjCUKbRDNV2vLof+pcyIJY8Y0lAeZbsEFjNoVibi1Qii3SM sBgrRNFt01VMxfLWQi3DeThEUXzXK/jfKwh32Q/gym5LyUwFAZhB/QsPhWWEphIM 8Tf5iFVW0XchbvtXIpSrwvgoGb2Jua6F2WW6u1tizQ0hwyQkl+aW/esQ28ok5rtC ftOQImyWbKVd+KFZ2T0RJpqP+mmOsrLg -----END CERTIFICATE-----Generated at Fri Mar 29 03:43:49 2024 by rpki-client on console-fra.rpki-client.org