$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft File: X60bOb5FVSYiBtGfWmabx7afcsg.mft (raw, json) Hash identifier: YqMk8ayUdnzUzSgkyAeJ4D1PZPZge+TzMDxCuf3T6fE= Subject key identifier: 12:D2:A7:56:0D:CC:62:3D:7A:68:1E:23:64:C1:B1:F2:7B:2F:A9:DA Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 05A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft Manifest number: 05A7 Signing time: Thu 02 May 2024 08:08:59 +0000 Manifest this update: Thu 02 May 2024 08:08:59 +0000 Manifest next update: Thu 09 May 2024 08:08:59 +0000 Files and hashes: 1: X60bOb5FVSYiBtGfWmabx7afcsg.crl (hash: 7Nn8v5VkTeX9HUmAQ7eOQtymXVsNgbrfxt32nKpluNc=) 2: C4245600E55A11ED98D38780C4F9AE02.roa (hash: lwysUIl261imU5lNPoWm0rxWTlZaqYmEjs3Z/0bNzL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 06:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1449 (0x5a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: May 2 08:08:59 2024 GMT Not After : May 9 08:08:59 2024 GMT Subject: CN=66334a1b-00be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e3:52:ea:04:8d:dd:ca:10:9f:80:79:f8:61: ca:b9:f1:4d:0c:ca:47:3d:a1:40:db:ef:a9:f0:b5: d8:55:21:5e:94:c0:db:4d:87:d4:28:42:77:7f:a7: 79:19:0e:0f:28:9a:c2:e7:5c:09:a3:8f:7f:f2:c7: 1c:31:60:15:b0:d7:cd:22:b1:0a:b9:5b:a7:26:89: 38:c8:72:41:cd:df:6e:61:7c:e5:8b:89:8b:59:28: 41:1f:3d:cc:d6:df:b4:32:36:a5:56:ee:a1:a8:32: 87:57:a0:f5:76:c3:60:ab:12:05:25:1e:c3:52:c7: 8e:64:67:df:b3:76:ca:01:59:a3:a9:27:59:2c:a1: c0:a5:cd:2c:06:28:ad:7c:86:17:dd:20:de:20:a7: 69:05:44:36:8d:d6:32:8e:46:e2:77:a7:e9:c3:e9: 07:06:22:4d:2f:e8:7e:08:72:f2:3a:9a:fa:b6:3a: e3:1e:03:f7:92:0c:64:10:17:15:6f:0a:03:73:1e: 2e:02:9d:8d:5c:e4:b4:60:25:99:79:1a:c6:78:f4: 5e:3f:d3:62:5c:30:95:94:bb:2f:14:aa:58:9a:98: dc:c8:ec:3e:97:34:e5:19:95:bf:96:35:1b:31:23: 56:b5:5f:03:d6:af:df:87:9c:65:80:50:b7:a8:a1: 98:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D2:A7:56:0D:CC:62:3D:7A:68:1E:23:64:C1:B1:F2:7B:2F:A9:DA X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:fa:9a:9a:c5:8f:e6:17:8c:20:d9:3a:5e:9a:72:5b:29:88: 43:8a:ac:64:0b:c7:d5:80:c5:d4:21:ef:4b:d7:39:16:6d:0a: 87:f5:c8:02:67:ff:8e:f4:fe:cb:14:d1:86:04:d2:5b:92:36: d3:5a:55:eb:63:cb:53:e4:57:b8:00:64:ad:ca:06:e4:03:be: ad:21:2c:84:ee:8e:98:e9:85:43:20:ef:5c:16:ad:34:13:e5: 54:1f:b3:15:ff:31:a0:29:e5:db:bd:9f:bf:b7:6a:9a:06:e8: 71:f2:4a:27:b2:46:e6:87:44:7b:d9:ab:d9:a9:6f:9a:2a:2d: ac:2c:be:20:00:a4:e8:b0:b2:eb:ab:ce:5a:f4:6d:a4:c1:0e: 94:6a:3d:4b:55:29:45:55:94:53:fb:b8:b2:c1:78:48:ff:1d: 08:9d:0a:cb:d3:fa:4b:75:91:1a:e3:96:23:79:64:a8:b8:06: ab:72:85:45:ba:58:4b:28:d7:02:3e:2c:31:5b:ec:46:a4:2f: 71:21:b7:1d:18:b3:5c:d4:5a:59:da:dd:ed:84:a4:e6:76:e1: 03:a6:25:bb:37:a5:12:4e:0b:17:9b:01:1c:c2:06:28:27:e4: ce:c0:14:db:53:85:fa:43:60:87:9b:50:a3:a3:f2:83:36:e8: e4:f9:58:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjQwNTAyMDgwODU5WhcNMjQwNTA5MDgwODU5WjAYMRYwFAYD VQQDEw02NjMzNGExYi0wMGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+NS6gSN3coQn4B5+GHKufFNDMpHPaFA2++p8LXYVSFelMDbTYfUKEJ3f6d5 GQ4PKJrC51wJo49/8sccMWAVsNfNIrEKuVunJok4yHJBzd9uYXzli4mLWShBHz3M 1t+0MjalVu6hqDKHV6D1dsNgqxIFJR7DUseOZGffs3bKAVmjqSdZLKHApc0sBiit fIYX3SDeIKdpBUQ2jdYyjkbid6fpw+kHBiJNL+h+CHLyOpr6tjrjHgP3kgxkEBcV bwoDcx4uAp2NXOS0YCWZeRrGePReP9NiXDCVlLsvFKpYmpjcyOw+lzTlGZW/ljUb MSNWtV8D1q/fh5xlgFC3qKGYvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLSp1YN zGI9emgeI2TBsfJ7L6naMB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wM0EwMTc4NDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZT WWlCdEdmV21hYng3YWZjc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc+pqaxY/mF4wg2TpemnJbKYhDiqxkC8fVgMXUIe9L1zkWbQqH9cgC Z/+O9P7LFNGGBNJbkjbTWlXrY8tT5Fe4AGStygbkA76tISyE7o6Y6YVDIO9cFq00 E+VUH7MV/zGgKeXbvZ+/t2qaBuhx8konskbmh0R72avZqW+aKi2sLL4gAKTosLLr q85a9G2kwQ6Uaj1LVSlFVZRT+7iywXhI/x0InQrL0/pLdZEa45YjeWSouAarcoVF ulhLKNcCPiwxW+xGpC9xIbcdGLNc1FpZ2t3thKTmduEDpiW7N6USTgsXmwEcwgYo J+TOwBTbU4X6Q2CHm1Cjo/KDNujk+Vg/ -----END CERTIFICATE-----Generated at Thu May 2 10:18:05 2024 by rpki-client on console-ams.rpki-client.org