$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: S78z+olpYi/flv4O3NErSJMDq6XO+ITXfhtFy0+P3v4= Subject key identifier: A3:7C:B3:AC:00:17:32:91:2A:70:EE:13:5E:33:CD:FC:8E:D1:42:0E Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 95 Signing time: Tue 21 May 2024 06:53:37 +0000 Manifest this update: Tue 21 May 2024 06:53:37 +0000 Manifest next update: Tue 28 May 2024 06:53:37 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: aA3VJCAs/Au9xNoZ8nTJZoLieGAIOMyrsgDF/LuDgcs=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: z6BHSk4cb9I8/kB9JR0TRRNQXU/qOZQ+pN/Lst+leW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: May 21 06:53:37 2024 GMT Not After : May 28 06:53:37 2024 GMT Subject: CN=664c44f1-7e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:07:80:e6:bc:a5:ee:d0:7c:86:f5:12:61:4f: 6f:42:38:f4:b7:5b:82:af:b1:d5:06:d1:b4:bd:77: e8:51:ac:8f:de:1a:d2:95:54:91:0d:7b:87:83:1b: 37:34:e9:37:72:67:00:a1:0e:77:7d:ea:1b:89:c4: fe:d2:85:82:51:6b:88:d0:01:27:e3:2e:c8:e0:b9: 07:e3:9a:c9:fd:bf:df:6b:35:09:76:22:48:e2:de: 77:57:55:0a:68:b7:6b:bb:47:83:7f:c7:5d:3a:9e: ac:c3:db:5e:c5:16:e0:63:25:7b:6b:ee:0f:64:04: 8f:e9:bc:90:9d:ff:7e:30:fe:77:bb:e8:90:37:e1: b1:c0:1a:92:a1:dd:13:eb:41:24:b1:89:0a:7b:02: 24:3c:b0:74:8e:66:be:40:f5:8e:f9:ed:69:de:50: 82:75:ce:ad:34:45:c1:41:88:f7:48:00:a9:83:89: f6:01:0b:bd:d2:ad:69:c3:af:d4:48:12:f6:0f:48: 57:05:c6:e5:28:f3:64:17:9e:9e:8f:ac:e2:bc:bc: c3:c6:68:94:29:30:24:0b:6b:4c:47:16:dd:ed:67: 97:2d:36:5e:f9:be:f5:57:bb:4e:3b:46:00:f0:f7: 9b:cd:df:0b:58:00:e2:f8:32:e0:a0:4b:3c:33:52: e3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:7C:B3:AC:00:17:32:91:2A:70:EE:13:5E:33:CD:FC:8E:D1:42:0E X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f8:38:1d:fd:37:dd:7d:90:d1:ce:61:1e:6e:ae:d6:97:28: 55:10:40:3c:88:59:53:4c:7d:b2:0e:20:31:b7:eb:14:2a:91: ac:b7:30:9a:b3:80:35:e5:1e:90:8d:33:c0:9e:e0:de:15:6d: 53:fb:ee:8c:c9:8c:32:74:95:b0:80:a7:eb:81:3a:26:91:74: a6:04:12:b6:d2:68:b7:31:53:b0:03:5a:dc:9a:d5:c6:dd:b2: ae:75:43:17:97:63:db:cf:d1:9d:c8:5c:b2:ec:65:90:61:84: 5d:44:86:6e:63:95:77:9a:c2:32:18:8a:45:75:69:c5:e8:36: 32:1f:2b:8c:00:00:10:3d:f8:1a:fe:4a:fa:d1:81:96:f4:ce: 97:ea:9b:81:88:ca:fc:b5:3d:ba:6f:6d:9c:c5:8e:46:4b:93: d1:f2:da:20:4e:8a:37:73:1e:86:51:4f:8b:5a:ac:b2:4b:0e: 46:e9:97:4e:2f:56:48:2e:6f:d3:fd:bd:c1:a7:e6:20:85:a5: f6:ca:ff:77:8a:a2:61:65:39:62:a8:5b:df:34:21:d8:95:ec: b8:a1:fa:d4:6a:47:1b:cd:7c:00:1c:62:1f:d5:7f:3d:62:b6: 0e:9a:ed:df:89:4c:2a:cf:cb:be:32:a7:ae:b2:23:ce:c8:33: 55:84:4f:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjQwNTIxMDY1MzM3WhcNMjQwNTI4MDY1MzM3WjAYMRYwFAYD VQQDEw02NjRjNDRmMS03ZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQeA5ryl7tB8hvUSYU9vQjj0t1uCr7HVBtG0vXfoUayP3hrSlVSRDXuHgxs3 NOk3cmcAoQ53feobicT+0oWCUWuI0AEn4y7I4LkH45rJ/b/fazUJdiJI4t53V1UK aLdru0eDf8ddOp6sw9texRbgYyV7a+4PZASP6byQnf9+MP53u+iQN+GxwBqSod0T 60EksYkKewIkPLB0jma+QPWO+e1p3lCCdc6tNEXBQYj3SACpg4n2AQu90q1pw6/U SBL2D0hXBcblKPNkF56ej6zivLzDxmiUKTAkC2tMRxbd7WeXLTZe+b71V7tOO0YA 8Pebzd8LWADi+DLgoEs8M1LjjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKN8s6wA FzKRKnDuE14zzfyO0UIOMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO+Dgd/TfdfZDRzmEebq7WlyhVEEA8iFlTTH2yDiAxt+sUKpGstzCa s4A15R6QjTPAnuDeFW1T++6MyYwydJWwgKfrgTomkXSmBBK20mi3MVOwA1rcmtXG 3bKudUMXl2Pbz9GdyFyy7GWQYYRdRIZuY5V3msIyGIpFdWnF6DYyHyuMAAAQPfga /kr60YGW9M6X6puBiMr8tT26b22cxY5GS5PR8togToo3cx6GUU+LWqyySw5G6ZdO L1ZILm/T/b3Bp+YghaX2yv93iqJhZTliqFvfNCHYley4ofrUakcbzXwAHGIf1X89 YrYOmu3fiUwqz8u+MqeusiPOyDNVhE+r -----END CERTIFICATE-----Generated at Tue May 21 10:12:09 2024 by rpki-client on console-ams.rpki-client.org