$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: vBnrzuS2Ggus+2vvm/az7Qk7kIp17FY/CJazS8AkVw8= Subject key identifier: 86:0C:61:45:8A:FF:E5:28:2E:35:E1:44:7A:F9:23:59:A3:CD:3E:15 Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0B78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0B73 Signing time: Fri 26 Apr 2024 19:23:42 +0000 Manifest this update: Fri 26 Apr 2024 19:23:41 +0000 Manifest next update: Fri 03 May 2024 19:23:41 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: /gyV14OXD/x3/Nq0+uQXViANyU6rkWK9r4PtfRR1REw=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: WvVRuKjmFetWalrRmBx2MQuKTGac5vufXmU8sXdWgUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 19:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2936 (0xb78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Apr 26 19:23:41 2024 GMT Not After : May 3 19:23:41 2024 GMT Subject: CN=662bff3d-6c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4f:7c:65:f5:c6:98:6a:9e:58:f1:ce:5c:a0: 8e:22:38:e2:a5:16:bd:ac:42:0e:86:50:91:67:e5: e6:f9:0a:fb:15:bf:dc:d7:8f:ee:04:a4:be:99:29: d3:4b:b1:78:31:d9:0b:db:4d:8b:91:64:20:63:24: c5:24:a8:b9:49:48:2d:c3:1d:63:d5:4f:de:79:c5: cc:9d:91:17:fe:ff:31:92:f0:29:e7:4e:c3:a6:46: d4:97:2c:5a:f3:5f:ca:4e:48:b7:66:07:95:e4:4e: c2:1b:f6:72:11:3b:8c:e0:48:66:96:86:02:f9:6b: 23:d9:ac:49:62:1d:8f:0b:51:05:93:f7:a8:82:04: 76:0e:dd:b6:20:c8:5a:b7:ee:0b:a0:ad:11:1b:3d: 86:77:80:c6:52:26:73:cb:c2:d6:17:0b:9d:00:8b: 34:8e:08:28:6c:04:c1:94:6c:e1:46:dd:e8:b5:8d: 33:b1:25:ab:eb:af:6c:21:9d:2b:b1:d9:3f:41:5f: 3e:d7:83:8d:62:53:e6:96:a1:10:4f:2e:11:81:64: 95:ed:f6:c6:61:5d:fb:01:7d:7c:d1:97:09:2a:70: a4:86:47:59:d5:a8:93:48:bc:ff:03:06:2f:f0:23: e4:de:32:43:eb:f7:5b:07:2c:82:fe:0d:85:57:e2: 90:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:0C:61:45:8A:FF:E5:28:2E:35:E1:44:7A:F9:23:59:A3:CD:3E:15 X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b6:15:54:db:36:cc:e8:15:fb:93:4a:86:92:ca:1e:23:d8: 0b:38:d0:5e:32:c7:d9:a2:88:d1:70:00:dc:97:22:ab:7a:a3: 1e:a4:5b:6a:33:ad:39:c6:72:3c:bc:88:d6:60:9d:54:37:0a: 85:2d:fb:b0:d0:69:d5:99:1c:44:20:1f:b8:66:9b:73:c4:68: 94:ff:09:57:a0:de:30:0d:d0:4b:c5:3b:6b:05:96:8b:25:f8: a7:50:10:3b:42:cc:3f:40:dd:e3:a2:59:8d:33:ee:b8:1f:a8: 88:be:ea:9a:2f:3a:24:4f:33:9d:4e:66:da:c0:5f:a5:ec:db: 78:22:1e:7e:17:19:13:9c:56:91:7f:6e:42:77:5f:3d:39:f6: 63:61:48:71:77:bd:c0:d3:31:80:8b:9a:87:00:3d:63:46:57: a3:d8:37:c3:9f:be:6a:01:45:2c:8a:03:2e:e7:fd:de:80:d7: a3:d9:06:ca:c6:ad:0a:c7:16:00:34:98:5d:5e:13:f1:24:e7: fa:4e:c2:d7:e2:8e:f9:58:50:d4:a9:73:88:c4:33:3f:4f:23: 44:f3:6f:40:03:75:af:80:65:62:46:4c:d2:ca:86:19:f3:72: 3e:90:71:0a:0e:71:ae:ce:e2:97:f1:e7:92:e4:b8:26:ab:ef: 49:22:b1:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjQwNDI2MTkyMzQxWhcNMjQwNTAzMTkyMzQxWjAYMRYwFAYD VQQDEw02NjJiZmYzZC02YzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1E98ZfXGmGqeWPHOXKCOIjjipRa9rEIOhlCRZ+Xm+Qr7Fb/c14/uBKS+mSnT S7F4MdkL202LkWQgYyTFJKi5SUgtwx1j1U/eecXMnZEX/v8xkvAp507DpkbUlyxa 81/KTki3ZgeV5E7CG/ZyETuM4EhmloYC+Wsj2axJYh2PC1EFk/eoggR2Dt22IMha t+4LoK0RGz2Gd4DGUiZzy8LWFwudAIs0jggobATBlGzhRt3otY0zsSWr669sIZ0r sdk/QV8+14ONYlPmlqEQTy4RgWSV7fbGYV37AX180ZcJKnCkhkdZ1aiTSLz/AwYv 8CPk3jJD6/dbByyC/g2FV+KQRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYMYUWK /+UoLjXhRHr5I1mjzT4VMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKthVU2zbM6BX7k0qGksoeI9gLONBeMsfZoojRcADclyKreqMepFtq M605xnI8vIjWYJ1UNwqFLfuw0GnVmRxEIB+4ZptzxGiU/wlXoN4wDdBLxTtrBZaL JfinUBA7Qsw/QN3jolmNM+64H6iIvuqaLzokTzOdTmbawF+l7Nt4Ih5+FxkTnFaR f25Cd189OfZjYUhxd73A0zGAi5qHAD1jRlej2DfDn75qAUUsigMu5/3egNej2QbK xq0KxxYANJhdXhPxJOf6TsLX4o75WFDUqXOIxDM/TyNE829AA3WvgGViRkzSyoYZ 83I+kHEKDnGuzuKX8eeS5Lgmq+9JIrG1 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:10 2024 by rpki-client on console-ams.rpki-client.org