$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: HxhlSbhwoQq6xdTis++2Pf46KUdBgi0bVfUPIlAnUeE= Subject key identifier: 7D:9A:AD:9F:A2:D5:83:66:D6:81:1C:06:8D:DB:E2:F0:B1:91:22:BB Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 0177 Signing time: Sun 05 May 2024 04:54:03 +0000 Manifest this update: Sun 05 May 2024 04:54:03 +0000 Manifest next update: Sun 12 May 2024 04:54:03 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: fNGQLiF0pHmGJN0pXP5yvsBh1Mh6TY04+saROdzEvaI=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: PobFppQ9Shhj4JZZQT+n/6MGUZit80hQSAvZEp9yBts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: May 5 04:54:03 2024 GMT Not After : May 12 04:54:03 2024 GMT Subject: CN=663710eb-c881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:87:a3:bc:96:0f:f9:ce:f9:84:ab:bb:5d:00: f0:dc:ac:55:c7:a5:d0:82:b9:11:f9:70:10:76:22: bf:a3:d2:49:d0:21:d2:33:9e:3f:0f:82:5b:70:53: 8e:76:07:49:d9:a7:8b:3b:16:cb:14:6c:36:8d:c1: e8:58:0a:f8:cf:1e:46:1d:9f:07:76:83:55:34:e9: 05:43:1f:27:55:ed:b1:5f:e1:ae:2f:f5:95:ca:97: 1c:98:96:d3:ee:1a:1d:65:e9:d2:5f:5f:65:6c:d4: 03:c3:82:25:a1:bf:ab:e2:75:15:22:21:73:ca:29: 01:3d:f4:ab:ea:dd:8e:6a:f3:b4:53:94:ad:3f:72: b0:a1:a6:d1:fc:19:6d:18:6e:32:83:3b:a0:e4:18: 59:61:cd:b1:06:af:c2:3f:5a:07:38:f3:38:88:fc: 4d:c4:87:03:c1:b2:a0:92:37:66:53:e9:06:a0:3f: a4:f2:93:8e:15:88:22:9d:23:af:2e:73:a9:78:e6: 15:94:d3:72:f7:b2:cb:b4:09:fc:5a:09:9b:b9:d7: 31:8c:62:52:a5:6a:b4:e9:a3:a1:72:91:16:9d:87: 02:f2:2e:a3:a3:52:2c:6c:32:39:5b:34:af:fa:8c: 7b:80:2f:78:69:06:ea:03:50:cc:55:15:72:2d:9d: 26:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:9A:AD:9F:A2:D5:83:66:D6:81:1C:06:8D:DB:E2:F0:B1:91:22:BB X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d3:d1:e9:d6:49:75:50:9e:e1:96:4e:03:a2:8a:e5:3b:e6: 66:9e:49:e6:6b:22:ef:03:f5:fe:ce:8e:f5:39:5c:a9:26:5a: 88:52:5e:01:a0:86:c6:e8:a9:f0:50:dd:68:98:6a:23:52:d2: fa:5a:cc:cb:49:c9:ae:7c:9d:6e:2f:5d:a6:4f:3e:a8:39:74: df:9a:42:0a:69:98:88:65:c5:1a:6e:48:00:78:8e:1a:1d:4a: 85:5b:83:18:b7:68:ae:17:82:25:4d:f9:0d:d4:61:c0:e6:52: d3:60:e0:7d:bd:fe:93:e7:79:7b:e4:4e:74:1d:64:a5:52:51: c3:c2:6d:11:5f:73:82:17:9d:c3:a5:68:53:e6:05:7e:9d:e9: f4:f1:c2:b3:19:9b:c0:90:84:92:54:29:9a:16:81:98:e9:13: d0:d6:ec:d1:d3:88:fd:c3:3c:0b:73:5e:61:46:03:42:8b:68: 6d:bb:ed:d5:d1:b3:61:bb:bf:fa:81:4a:b4:b3:bb:8c:6e:e1: 48:73:90:85:2f:fb:15:ac:99:ed:68:f7:02:83:cb:e8:65:76: ad:40:6a:aa:1a:e5:ea:b8:77:40:8a:b4:32:ce:63:b6:21:77: 88:79:88:42:6e:b5:79:cb:7f:96:98:32:e1:0b:8c:e3:63:f9: 3f:08:e9:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjQwNTA1MDQ1NDAzWhcNMjQwNTEyMDQ1NDAzWjAYMRYwFAYD VQQDEw02NjM3MTBlYi1jODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4ejvJYP+c75hKu7XQDw3KxVx6XQgrkR+XAQdiK/o9JJ0CHSM54/D4JbcFOO dgdJ2aeLOxbLFGw2jcHoWAr4zx5GHZ8HdoNVNOkFQx8nVe2xX+GuL/WVypccmJbT 7hodZenSX19lbNQDw4Ilob+r4nUVIiFzyikBPfSr6t2OavO0U5StP3KwoabR/Blt GG4ygzug5BhZYc2xBq/CP1oHOPM4iPxNxIcDwbKgkjdmU+kGoD+k8pOOFYginSOv LnOpeOYVlNNy97LLtAn8WgmbudcxjGJSpWq06aOhcpEWnYcC8i6jo1IsbDI5WzSv +ox7gC94aQbqA1DMVRVyLZ0miwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2arZ+i 1YNm1oEcBo3b4vCxkSK7MB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY09Hp1kl1UJ7hlk4DoorlO+ZmnknmayLvA/X+zo71OVypJlqIUl4B oIbG6KnwUN1omGojUtL6WszLScmufJ1uL12mTz6oOXTfmkIKaZiIZcUabkgAeI4a HUqFW4MYt2iuF4IlTfkN1GHA5lLTYOB9vf6T53l75E50HWSlUlHDwm0RX3OCF53D pWhT5gV+nen08cKzGZvAkISSVCmaFoGY6RPQ1uzR04j9wzwLc15hRgNCi2htu+3V 0bNhu7/6gUq0s7uMbuFIc5CFL/sVrJntaPcCg8voZXatQGqqGuXquHdAirQyzmO2 IXeIeYhCbrV5y3+WmDLhC4zjY/k/COnE -----END CERTIFICATE-----Generated at Sun May 5 05:30:50 2024 by rpki-client on console-ams.rpki-client.org