$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: JFAwN9ygUBP6hBYa3a5tP6jPuZqreuYB6fG/w3gJQPk= Subject key identifier: 27:88:77:BB:4B:2F:96:3C:5A:D4:3D:07:D8:B3:E6:6D:B7:6B:7C:DB Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0430 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 042D Signing time: Sat 27 Apr 2024 01:56:16 +0000 Manifest this update: Sat 27 Apr 2024 01:56:16 +0000 Manifest next update: Sat 04 May 2024 01:56:16 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: aH6eiYwCoopDdecQ7fkeNABbAZKUDZgg0opl9mO9vYA=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: UFGeygu0SH/omcLzwA18/Jl3yhfPlJu6Xbm6fMztNp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1072 (0x430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Apr 27 01:56:16 2024 GMT Not After : May 4 01:56:16 2024 GMT Subject: CN=662c5b40-9bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a3:51:4a:14:80:e8:0b:57:5a:db:fb:5c:27: 46:69:c0:04:f2:19:c9:31:53:cd:5c:ab:0f:d6:c3: 0e:86:b9:7f:f5:4a:19:83:70:01:96:b3:ee:f2:01: 91:bc:db:81:cd:71:47:59:00:ee:44:6f:71:aa:56: 01:d1:18:01:76:68:49:1f:40:ff:5e:c1:ff:0a:fc: 03:dd:0a:af:58:dc:1f:11:1d:65:94:33:39:e9:c8: a7:37:07:1c:60:ee:23:cc:bc:9d:ec:9b:57:a4:c1: 48:8b:9e:8c:4d:7d:ea:d2:2a:1d:94:0e:ec:2a:1a: a7:9b:c0:e8:3b:93:8d:ec:46:20:c2:f8:b2:2d:c9: e1:88:6d:ed:58:a5:27:b5:46:0d:2f:ca:58:77:fb: aa:52:e1:00:f9:38:2c:57:84:19:12:14:fb:a3:73: 82:5e:69:cf:6c:e5:32:c2:59:dc:1d:32:51:f7:f8: 8b:b2:32:8e:f8:05:2b:57:cb:2d:de:e3:a8:c6:ec: f0:d3:97:46:1b:50:69:7f:8e:42:76:71:15:e2:6b: c7:d6:94:eb:e8:40:59:c6:72:51:b4:fc:f2:cb:4c: 2e:92:50:97:1c:10:4b:f3:38:89:5f:c5:ab:bc:1a: 34:2c:8c:1a:f3:56:e6:a4:61:2e:c8:89:47:b8:e4: f7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:88:77:BB:4B:2F:96:3C:5A:D4:3D:07:D8:B3:E6:6D:B7:6B:7C:DB X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:7e:8e:3c:53:6b:19:44:a8:34:91:9e:5c:b6:a9:91:94:bf: ac:31:c3:dd:0d:89:f2:45:05:76:65:64:de:8c:f7:49:01:68: f9:a8:6a:0d:8c:54:ec:9c:f7:bc:c5:fa:e9:b6:76:c8:45:e6: 49:c7:6e:d9:6e:c6:37:dc:01:58:7d:76:a2:bf:6a:6e:82:c5: d1:f9:f4:5c:bb:10:9e:21:60:1a:04:5f:f8:c5:a9:1b:fa:ef: 6e:e2:cd:2d:6e:e7:d2:7c:84:6b:c2:11:ad:ba:60:d8:8c:cf: 7c:35:fe:1d:5e:26:17:f9:d4:30:cb:53:a8:7a:01:8a:14:49: c7:63:46:41:24:17:7e:de:13:fb:19:40:f0:17:9e:ae:aa:78: 32:46:5c:71:92:05:4b:52:a2:a3:ab:6c:9b:16:fe:45:e2:e7: 0b:0d:9c:52:b7:cb:66:b0:d7:8f:18:5e:ba:93:f2:2f:8b:f1: 21:25:33:93:92:db:a3:3f:c0:4b:77:79:68:be:e0:4c:e8:51: 32:be:ee:a6:da:f1:e1:03:d1:04:3d:10:df:87:1c:7b:66:b2: 6b:9c:d5:64:f4:f3:28:e9:9e:55:63:71:fe:00:b4:b2:73:e7: aa:61:77:d9:13:12:e5:4f:0f:e0:aa:95:63:1c:c3:1a:9e:a7: 61:60:83:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjQwNDI3MDE1NjE2WhcNMjQwNTA0MDE1NjE2WjAYMRYwFAYD VQQDEw02NjJjNWI0MC05YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKNRShSA6AtXWtv7XCdGacAE8hnJMVPNXKsP1sMOhrl/9UoZg3ABlrPu8gGR vNuBzXFHWQDuRG9xqlYB0RgBdmhJH0D/XsH/CvwD3QqvWNwfER1llDM56cinNwcc YO4jzLyd7JtXpMFIi56MTX3q0iodlA7sKhqnm8DoO5ON7EYgwviyLcnhiG3tWKUn tUYNL8pYd/uqUuEA+TgsV4QZEhT7o3OCXmnPbOUywlncHTJR9/iLsjKO+AUrV8st 3uOoxuzw05dGG1Bpf45CdnEV4mvH1pTr6EBZxnJRtPzyy0wuklCXHBBL8ziJX8Wr vBo0LIwa81bmpGEuyIlHuOT3wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeId7tL L5Y8WtQ9B9iz5m23a3zbMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCfo48U2sZRKg0kZ5ctqmRlL+sMcPdDYnyRQV2ZWTejPdJAWj5qGoN jFTsnPe8xfrptnbIReZJx27ZbsY33AFYfXaiv2pugsXR+fRcuxCeIWAaBF/4xakb +u9u4s0tbufSfIRrwhGtumDYjM98Nf4dXiYX+dQwy1OoegGKFEnHY0ZBJBd+3hP7 GUDwF56uqngyRlxxkgVLUqKjq2ybFv5F4ucLDZxSt8tmsNePGF66k/Ivi/EhJTOT ktujP8BLd3lovuBM6FEyvu6m2vHhA9EEPRDfhxx7ZrJrnNVk9PMo6Z5VY3H+ALSy c+eqYXfZExLlTw/gqpVjHMManqdhYIMK -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:10 2024 by rpki-client on console-ams.rpki-client.org