$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft File: X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json) Hash identifier: zGnUHklEJWfC0kHNWdXsZS+dNQVSVMgV2AZANvCMlys= Subject key identifier: EE:F4:87:31:DF:8C:93:76:8B:B7:E1:12:E6:01:FD:66:CF:78:3F:51 Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Certificate serial: 33CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft Manifest number: 33C3 Signing time: Tue 30 Apr 2024 14:44:12 +0000 Manifest this update: Tue 30 Apr 2024 14:44:11 +0000 Manifest next update: Tue 07 May 2024 14:44:11 +0000 Files and hashes: 1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: y0WzNelkCDWOzuphBzCTmfGSHyNT2ybgaY40pvAn4us=) 2: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: dIOO+N+ZrFHeKmWGUD9CmhvwX/HZ9yoGdGFIS58lszc=) 3: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: /40Lfx7mc+RKzfFNZjcJomMgvMglcXnhZ5igcKXMupQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 14:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13258 (0x33ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Validity Not Before: Apr 30 14:44:11 2024 GMT Not After : May 7 14:44:11 2024 GMT Subject: CN=663103bc-1c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:4f:25:a2:5e:12:34:4b:71:b4:fc:8c:44: 88:94:ff:c2:ce:07:d7:7d:77:72:81:55:e6:29:96: 28:cd:df:25:c6:97:eb:d3:77:1f:a3:95:cb:90:f8: 99:07:b0:19:01:28:0c:30:dd:88:6f:91:d2:85:63: 5a:a8:44:41:24:73:fc:e7:8d:1f:01:ea:86:41:1c: 25:81:65:c2:cb:74:b8:47:ae:c1:e5:c2:c4:4d:c1: e7:37:cb:30:53:17:bb:dd:bd:95:98:9f:0d:d0:c1: 52:c3:44:30:ca:68:e6:fe:2c:f0:8d:1c:5c:31:2c: 7d:8b:6b:68:40:4f:d5:c9:47:a0:5b:b5:5b:49:a8: af:48:9c:cc:3b:8b:cd:4a:7e:35:16:bc:9d:03:c4: b8:aa:f6:0b:c8:e3:a0:17:f0:f5:cb:bb:ba:69:2e: f3:53:f6:57:90:ba:0b:81:48:34:b0:3b:f9:7b:02: 30:8e:24:28:6c:4d:73:c3:d0:53:39:2f:2b:ad:ca: 7d:99:80:c5:1f:a4:a2:e4:18:fc:f5:d5:65:f4:79: bc:9a:dc:80:e4:2a:f5:38:f1:33:76:f7:27:96:0c: 4f:c4:91:2d:91:16:d6:ae:9c:4c:a4:89:6f:21:ef: 46:29:dd:f4:09:fb:f3:91:4e:08:6b:54:11:1f:42: 3b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F4:87:31:DF:8C:93:76:8B:B7:E1:12:E6:01:FD:66:CF:78:3F:51 X509v3 Authority Key Identifier: keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:f7:7e:e3:8d:d7:eb:01:8d:40:7f:81:d4:86:a6:22:e1:5c: 0e:7a:38:2a:52:42:e5:9f:85:56:e9:06:7e:8f:c1:5f:4a:79: 1b:6a:77:5d:0a:a5:0c:ae:1f:44:b9:ce:61:e2:cf:1d:64:28: e9:9e:6f:8e:31:d7:0b:57:36:24:f1:cd:19:03:57:45:f6:89: 6d:9a:09:d9:2d:16:fd:88:eb:34:16:18:91:6d:ee:cb:4e:5e: cb:c2:88:1f:8b:88:50:07:d7:16:82:aa:ef:b4:72:6a:f5:b7: a3:73:46:9a:e1:5d:33:f7:bb:e7:ae:c7:3b:34:51:71:6a:ff: 19:c1:ca:a8:9b:39:71:f0:05:e7:d0:98:3b:86:c9:8d:1c:8f: b3:84:4e:b8:20:e7:48:91:65:ea:1f:01:fc:f9:32:76:bc:d1: 86:fc:cf:07:82:8d:83:a6:f5:84:ad:5f:df:94:1d:92:b4:ef: 83:0d:27:8b:1c:99:62:aa:ec:92:21:e1:a9:96:1e:e4:49:c9: 42:c1:d4:b4:45:4f:dd:f4:80:26:a5:b6:cf:da:56:70:d1:3e: 8c:ce:e1:97:24:d0:39:67:b6:2e:43:50:2f:20:b0:a4:e8:0d: c4:26:b6:74:9f:2d:d4:40:4c:6f:5c:77:80:a8:f3:04:6d:02: 51:6a:b8:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKDVGQzI3OTJDRjQ0MEI4NTc4MzlENjg4QTcwQjYwRjA3 NjJBQkFCMzUwHhcNMjQwNDMwMTQ0NDExWhcNMjQwNTA3MTQ0NDExWjAYMRYwFAYD VQQDEw02NjMxMDNiYy0xYzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHZPJaJeEjRLcbT8jESIlP/CzgfXfXdygVXmKZYozd8lxpfr03cfo5XLkPiZ B7AZASgMMN2Ib5HShWNaqERBJHP8540fAeqGQRwlgWXCy3S4R67B5cLETcHnN8sw Uxe73b2VmJ8N0MFSw0Qwymjm/izwjRxcMSx9i2toQE/VyUegW7VbSaivSJzMO4vN Sn41FrydA8S4qvYLyOOgF/D1y7u6aS7zU/ZXkLoLgUg0sDv5ewIwjiQobE1zw9BT OS8rrcp9mYDFH6Si5Bj89dVl9Hm8mtyA5Cr1OPEzdvcnlgxPxJEtkRbWrpxMpIlv Ie9GKd30CfvzkU4Ia1QRH0I7RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO70hzHf jJN2i7fhEuYB/WbPeD9RMB8GA1UdIwQYMBaAFF/CeSz0QLhXg51oinC2Dwdiq6s1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC9BQjgyNDlCMjFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVGZURuV2lLY0xZUEIyS3Jx elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4SjVMUFJBdUZlRG5XaUtjTFlQQjJLcnF6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDMwNC9BQjgyNDlCMjFEOEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVG ZURuV2lLY0xZUEIyS3JxelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn937jjdfrAY1Af4HUhqYi4VwOejgqUkLln4VW6QZ+j8FfSnkbandd CqUMrh9Euc5h4s8dZCjpnm+OMdcLVzYk8c0ZA1dF9oltmgnZLRb9iOs0FhiRbe7L Tl7Lwogfi4hQB9cWgqrvtHJq9bejc0aa4V0z97vnrsc7NFFxav8Zwcqomzlx8AXn 0Jg7hsmNHI+zhE64IOdIkWXqHwH8+TJ2vNGG/M8Hgo2DpvWErV/flB2StO+DDSeL HJliquySIeGplh7kSclCwdS0RU/d9IAmpbbP2lZw0T6MzuGXJNA5Z7YuQ1AvILCk 6A3EJrZ0ny3UQExvXHeAqPMEbQJRarhV -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:26 2024 by rpki-client on console-ams.rpki-client.org