$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft File: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft (raw, json) Hash identifier: cmDi4oeg0xUINJn1xut2B3l8sAE276KVyinsIXmPAI0= Subject key identifier: CB:73:D8:12:C4:DC:B4:7D:D8:3F:EC:26:BB:10:50:FB:AB:DD:E2:DA Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft Manifest number: 0863 Signing time: Tue 30 Apr 2024 21:58:09 +0000 Manifest this update: Tue 30 Apr 2024 21:58:09 +0000 Manifest next update: Tue 07 May 2024 21:58:09 +0000 Files and hashes: 1: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl (hash: gkyjBMe+la+HxDnmpRZ/wBLoEIGVztK65ixsCT0s2Us=) 2: 3BA8735E9F4611EAB20AAA63C4F9AE02.roa (hash: FB6+lzfURa8UzLsSkPLLUxc6KbwXp3GLtyAebsACLXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Apr 30 21:58:09 2024 GMT Not After : May 7 21:58:09 2024 GMT Subject: CN=66316971-67a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f0:64:a3:28:d1:82:f1:73:84:7d:7e:99:12: 8e:eb:48:14:ec:d6:90:11:0c:eb:b4:30:67:d4:a9: de:7f:ce:bb:b8:69:e9:2d:79:98:18:97:ed:a0:ec: 2f:08:09:f2:75:fe:bd:6c:88:22:8c:73:12:ef:59: b4:5b:01:85:ec:45:bf:7a:05:cc:fd:d3:e5:23:41: be:82:8e:ff:97:5e:0c:4f:80:a0:37:17:e2:5f:d3: 1e:15:29:bb:ec:2f:1e:fd:4f:90:60:2b:3e:41:5e: 2a:79:e1:4e:6a:c0:cf:8e:13:44:6c:ed:10:da:14: 7f:d1:9b:01:2c:75:8b:8b:13:c6:88:dc:29:3e:3d: 2c:f6:63:28:69:30:00:a8:d4:39:ac:2a:c8:a7:9f: 0c:06:43:51:62:7a:15:09:20:4e:c2:82:89:85:32: ea:8e:e9:0e:cd:33:3b:cd:99:8d:68:42:fe:83:42: 3a:95:42:61:fb:b1:60:3e:f3:58:ed:e2:d3:55:0e: 48:f3:8c:98:17:1e:19:92:e9:77:11:ae:ca:cb:5e: 63:f7:aa:e5:5f:74:f4:b8:b4:83:46:40:f6:76:a6: 12:70:38:91:a4:76:e6:a1:5d:bb:ca:6d:12:16:71: 67:61:e8:5c:a7:ec:7d:90:2c:f5:d7:97:7e:8a:e8: 23:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:73:D8:12:C4:DC:B4:7D:D8:3F:EC:26:BB:10:50:FB:AB:DD:E2:DA X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:4c:b6:50:98:e7:e3:78:cf:04:3f:44:1d:9b:56:ec:a4:8f: 29:df:ba:24:38:9b:a3:7c:39:25:2f:14:3b:aa:f6:2b:fb:23: 1b:89:41:84:bd:36:d3:a7:8d:e1:9b:ec:22:9c:e8:00:a3:59: a9:4a:41:c6:31:7f:80:1c:52:93:10:ee:ca:86:76:40:58:be: 40:f2:23:4d:7f:75:d9:65:fa:44:35:8a:a0:a0:7d:bf:5f:e6: 9f:88:d2:46:b5:ac:50:f6:5d:53:0f:6f:bf:88:32:27:09:53: dd:45:e4:02:09:ae:4f:6d:01:01:f4:2a:32:1c:1b:2d:55:c3: a7:79:ca:94:86:5f:40:87:52:96:33:b2:73:52:1a:b5:e4:80: 33:1d:af:d5:3b:63:09:d5:96:de:9b:79:10:b7:d3:93:3d:7c: 25:fa:a4:2c:b7:6d:36:ca:a2:c0:6f:a7:8f:03:89:95:2f:cb: a9:6a:5f:57:eb:01:63:52:b0:92:da:b8:82:61:42:b5:d1:75: 2a:2d:2c:84:c7:53:28:d2:07:42:36:4b:22:e1:45:2b:87:bf: 4b:5d:6d:ff:9b:8d:86:9d:45:67:ea:29:f3:a1:7e:8b:cf:b3: 41:29:ca:6d:64:52:5f:15:b6:e6:10:f4:6d:ab:26:21:29:e5: 02:34:07:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjQwNDMwMjE1ODA5WhcNMjQwNTA3MjE1ODA5WjAYMRYwFAYD VQQDEw02NjMxNjk3MS02N2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvBkoyjRgvFzhH1+mRKO60gU7NaQEQzrtDBn1Knef867uGnpLXmYGJftoOwv CAnydf69bIgijHMS71m0WwGF7EW/egXM/dPlI0G+go7/l14MT4CgNxfiX9MeFSm7 7C8e/U+QYCs+QV4qeeFOasDPjhNEbO0Q2hR/0ZsBLHWLixPGiNwpPj0s9mMoaTAA qNQ5rCrIp58MBkNRYnoVCSBOwoKJhTLqjukOzTM7zZmNaEL+g0I6lUJh+7FgPvNY 7eLTVQ5I84yYFx4Zkul3Ea7Ky15j96rlX3T0uLSDRkD2dqYScDiRpHbmoV27ym0S FnFnYehcp+x9kCz115d+iugj+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtz2BLE 3LR92D/sJrsQUPur3eLaMB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDY4Ny83NkI0M0I2NDlGNDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQt WlhiQUdCQVNVc3NMU0ZmMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAATLZQmOfjeM8EP0Qdm1bspI8p37okOJujfDklLxQ7qvYr+yMbiUGE vTbTp43hm+winOgAo1mpSkHGMX+AHFKTEO7KhnZAWL5A8iNNf3XZZfpENYqgoH2/ X+afiNJGtaxQ9l1TD2+/iDInCVPdReQCCa5PbQEB9CoyHBstVcOnecqUhl9Ah1KW M7JzUhq15IAzHa/VO2MJ1Zbem3kQt9OTPXwl+qQst202yqLAb6ePA4mVL8upal9X 6wFjUrCS2riCYUK10XUqLSyEx1Mo0gdCNksi4UUrh79LXW3/m42GnUVn6inzoX6L z7NBKcptZFJfFbbmEPRtqyYhKeUCNAfy -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:07 2024 by rpki-client on console-ams.rpki-client.org