$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft File: R-xTv901EyDomyxUG6zdTY1SoLM.mft (raw, json) Hash identifier: CXQL4IDe7O3wSnpejZmOJ77AEWgEdphJ57Qkdrr87nc= Subject key identifier: 5C:C2:B8:80:2F:FD:E2:AE:D1:66:6C:6D:3C:5F:88:1A:57:02:BC:F3 Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 Certificate issuer: /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Certificate serial: 0595 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft Manifest number: 0584 Signing time: Wed 01 May 2024 00:56:18 +0000 Manifest this update: Wed 01 May 2024 00:56:18 +0000 Manifest next update: Wed 08 May 2024 00:56:18 +0000 Files and hashes: 1: R-xTv901EyDomyxUG6zdTY1SoLM.crl (hash: teqTpzfVaMQIbR3GfMoTAD+CSuYcFOwtHZoE/X25Zck=) 2: BF2B3DBAC0DF11EEACF1217BC4F9AE02.roa (hash: GQPMc0eyMumKOlnQtriGgnPrjQ1l8khb7T3XDmlzyoU=) 3: A6556900C0DF11EE9BA7B27AC4F9AE02.roa (hash: c3unW3WcvUF2rYNYvJTPFGxEiiWWdDsW5g24dcndBOc=) 4: 24D8D69CADAE11EBB6E7565AC4F9AE02.roa (hash: mhZHlkYH+YSrlkjmhPO9IFezmhOqlbFXLEJDPIojfyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Validity Not Before: May 1 00:56:18 2024 GMT Not After : May 8 00:56:18 2024 GMT Subject: CN=66319332-1687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a5:3b:25:fd:6d:30:c2:ba:74:4f:98:78:86: 5d:19:d5:85:4b:5b:1e:4b:7c:39:0f:8e:ff:6e:f1: f2:25:7a:2d:bd:95:31:84:01:4d:60:7f:d0:2f:2f: 60:cb:49:49:dc:69:45:e1:df:5c:16:ba:58:34:0a: 77:84:d4:52:a9:a5:3e:31:77:d8:24:7e:ba:fd:01: c7:e0:52:03:cc:9a:db:ef:7f:3b:1c:ec:b6:f6:87: c8:95:e3:ff:92:2a:89:ca:77:65:01:53:01:78:b1: 5e:a4:4d:1f:b8:a3:70:6d:6b:e1:6b:e7:41:aa:43: 61:a3:7c:0f:92:92:05:23:7b:b8:d2:32:82:cf:16: b2:5e:6d:21:e5:67:73:82:4c:db:f3:0d:ff:77:c0: b9:4e:a2:1d:70:2a:4c:ed:df:ee:6d:92:5c:95:12: 67:75:52:78:7b:4b:0a:68:5f:34:87:14:31:ac:d7: ad:b5:7a:a6:ab:5c:aa:c9:0d:f0:31:a2:67:cb:d2: 19:63:c6:ff:48:27:a2:d7:e2:ea:8e:9a:8e:75:f7: 93:0e:70:ed:07:4c:2a:f3:94:2c:fa:d8:09:aa:57: cb:9a:42:7f:fe:b3:c1:66:7d:b1:28:9d:56:a7:71: 0c:b2:28:7b:07:c7:1f:fa:1d:1f:27:73:3e:2d:3c: 38:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C2:B8:80:2F:FD:E2:AE:D1:66:6C:6D:3C:5F:88:1A:57:02:BC:F3 X509v3 Authority Key Identifier: keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:63:01:89:25:10:b4:c6:a8:b4:4c:a8:d9:0b:fb:db:b4:ec: c9:56:a9:3e:e9:48:38:7a:aa:8f:42:ee:b8:f1:ec:44:7c:c8: c0:aa:9e:0a:14:31:16:a7:4a:71:65:d3:3e:5b:20:ad:7c:6a: 79:c0:0a:61:e0:3f:44:84:74:9a:b7:8d:b8:e9:aa:a6:35:e1: 3f:64:c3:b4:4f:c1:2a:f0:99:07:17:75:ca:0f:06:14:c4:26: e9:bc:ce:d3:73:80:76:56:2d:10:14:43:28:a6:52:ce:c7:a7: 1a:36:f1:84:4d:ce:06:93:c4:e1:7c:d0:71:ba:32:4d:e0:75: bc:d8:cc:e2:22:b4:68:91:49:c3:62:5c:8d:58:2b:ec:7f:95: 15:64:ba:e0:d4:58:42:df:78:74:3c:ee:b6:a6:d4:01:3a:57: 21:2a:8b:17:7b:ce:8b:3f:2a:f0:07:04:8e:28:82:4a:5a:c2: 51:b3:f0:3e:46:4e:44:4d:a2:06:67:bf:5b:16:e4:ef:21:6e: de:7f:33:da:2f:b1:97:a9:2a:cb:fe:c3:89:8a:06:00:26:f6: a1:36:ea:60:9f:b2:49:60:ec:55:ce:26:1c:78:d3:e5:03:5c: be:6f:db:04:c5:b1:21:fb:47:19:9e:50:bb:c1:75:c6:fe:b5: 75:58:77:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEQjUxMTAvBgNVBAUTKDQ3RUM1M0JGREQzNTEzMjBFODlCMkM1NDFCQUNERDRE OEQ1MkEwQjMwHhcNMjQwNTAxMDA1NjE4WhcNMjQwNTA4MDA1NjE4WjAYMRYwFAYD VQQDEw02NjMxOTMzMi0xNjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6U7Jf1tMMK6dE+YeIZdGdWFS1seS3w5D47/bvHyJXotvZUxhAFNYH/QLy9g y0lJ3GlF4d9cFrpYNAp3hNRSqaU+MXfYJH66/QHH4FIDzJrb7387HOy29ofIleP/ kiqJyndlAVMBeLFepE0fuKNwbWvha+dBqkNho3wPkpIFI3u40jKCzxayXm0h5Wdz gkzb8w3/d8C5TqIdcCpM7d/ubZJclRJndVJ4e0sKaF80hxQxrNettXqmq1yqyQ3w MaJny9IZY8b/SCei1+LqjpqOdfeTDnDtB0wq85Qs+tgJqlfLmkJ//rPBZn2xKJ1W p3EMsih7B8cf+h0fJ3M+LTw4YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzCuIAv /eKu0WZsbTxfiBpXArzzMB8GA1UdIwQYMBaAFEfsU7/dNRMg6JssVBus3U2NUqCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0RCNS8wQzk5OUVDMDhG QTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5RG9teXhVRzZ6ZFRZMVNv TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IteFR2OTAxRXlEb215eFVHNnpkVFkxU29MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0RCNS8wQzk5OUVDMDhGQTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5 RG9teXhVRzZ6ZFRZMVNvTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYYwGJJRC0xqi0TKjZC/vbtOzJVqk+6Ug4eqqPQu648exEfMjAqp4K FDEWp0pxZdM+WyCtfGp5wAph4D9EhHSat4246aqmNeE/ZMO0T8Eq8JkHF3XKDwYU xCbpvM7Tc4B2Vi0QFEMoplLOx6caNvGETc4Gk8ThfNBxujJN4HW82MziIrRokUnD YlyNWCvsf5UVZLrg1FhC33h0PO62ptQBOlchKosXe86LPyrwBwSOKIJKWsJRs/A+ Rk5ETaIGZ79bFuTvIW7efzPaL7GXqSrL/sOJigYAJvahNupgn7JJYOxVziYceNPl A1y+b9sExbEh+0cZnlC7wXXG/rV1WHeo -----END CERTIFICATE-----Generated at Wed May 1 01:38:27 2024 by rpki-client on console-ams.rpki-client.org