$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: uBzHCyTBIpn8mR1G0DVMAX8NC5ZiadivoqGMfseMe58= Subject key identifier: 29:C7:E5:39:60:EB:1E:59:6C:20:DE:38:39:8A:C0:D1:AA:DE:51:13 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 037E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 0376 Signing time: Tue 07 May 2024 02:48:16 +0000 Manifest this update: Tue 07 May 2024 02:48:15 +0000 Manifest next update: Tue 14 May 2024 02:48:15 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: tzDzPrZswQ6bAdLb256K88oztpWqKWY5nilfHIDTe20=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: ymHEjZOmPNaZts/l9PmvTxzpZ65sqlxazk8ZELgre0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 894 (0x37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: May 7 02:48:15 2024 GMT Not After : May 14 02:48:15 2024 GMT Subject: CN=66399670-0bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a7:68:a5:c0:50:6a:78:80:56:26:98:2d:94: 70:e0:be:87:47:be:03:77:c8:c3:9f:38:46:dd:77: 31:4e:98:89:31:99:e3:30:d5:f0:3f:93:5a:00:47: b1:53:9a:cb:d2:2f:98:44:d5:5e:92:fc:f7:66:69: ce:9e:28:3b:c7:95:65:f7:35:86:00:af:3d:b8:23: 50:68:15:fa:08:ce:ab:4b:09:58:23:37:79:6a:18: 5f:5d:b4:cb:6d:f1:25:49:a6:3e:60:ed:6a:f2:a6: 44:bc:ab:fb:0c:e0:1f:36:ab:97:51:76:56:5c:8d: c3:2d:09:e0:3c:47:e1:8c:63:09:dd:a2:0f:05:1f: e3:81:91:a2:53:42:b6:65:22:62:77:bd:31:cb:51: 25:0f:ea:c2:01:e0:12:75:71:b1:00:79:f1:a2:a2: 24:85:74:60:82:7c:00:99:d3:4c:62:67:3b:3f:e2: 83:a7:f1:75:5b:d6:8e:65:be:8f:dc:3c:51:58:9d: 2a:38:da:17:25:68:c1:1b:eb:70:99:02:59:c2:4a: b1:f3:1a:15:50:c5:19:0c:73:da:a3:a9:44:2a:d2: ee:fb:04:2d:93:50:9c:25:0d:6f:04:c7:9d:d5:c3: 03:99:a9:35:b8:77:67:67:e4:c6:6d:41:2f:ab:06: 24:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C7:E5:39:60:EB:1E:59:6C:20:DE:38:39:8A:C0:D1:AA:DE:51:13 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:6c:28:19:b0:2f:f1:3b:af:a5:ff:73:7d:56:3b:7b:74:e9: d1:12:00:45:cf:96:c8:c5:48:83:21:a0:8b:e9:8f:c5:04:cb: 26:f0:09:65:df:c5:79:7b:0b:52:17:e3:05:68:a4:e5:fc:08: 88:61:58:f4:63:e7:7a:f5:4d:52:4d:b9:1a:89:59:14:39:45: 7b:5b:46:bf:06:49:98:62:4d:af:90:b9:68:0d:75:34:4a:44: 8d:37:d9:83:b1:7a:53:c9:b7:5b:cb:f3:23:cf:6c:12:d3:e5: 06:f7:ce:83:f2:02:aa:f0:19:f5:f3:6d:d8:fd:e3:80:a3:d0: 02:b5:3d:f0:1c:ef:0e:8b:f9:79:d5:fc:e4:c9:c0:e5:9b:2c: 81:6d:f9:ad:23:c4:f8:ab:3d:05:1c:88:04:2d:70:d7:6e:64: 83:f5:9f:b4:02:35:02:57:23:f0:b8:93:e0:73:d8:5c:a3:ad: 28:00:81:17:26:c8:bd:f6:30:74:29:84:ac:b2:51:b9:dd:3b: e6:5a:80:be:bc:6f:7d:5a:53:74:53:ce:29:fb:95:3b:48:f7: c3:08:a3:7a:1b:94:f3:35:ea:23:64:f1:61:03:0b:89:cc:72: f7:17:21:9f:ad:22:4c:5f:4e:20:90:d2:18:b9:c6:52:74:c5: fa:89:d1:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjQwNTA3MDI0ODE1WhcNMjQwNTE0MDI0ODE1WjAYMRYwFAYD VQQDEw02NjM5OTY3MC0wYmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqdopcBQaniAViaYLZRw4L6HR74Dd8jDnzhG3XcxTpiJMZnjMNXwP5NaAEex U5rL0i+YRNVekvz3ZmnOnig7x5Vl9zWGAK89uCNQaBX6CM6rSwlYIzd5ahhfXbTL bfElSaY+YO1q8qZEvKv7DOAfNquXUXZWXI3DLQngPEfhjGMJ3aIPBR/jgZGiU0K2 ZSJid70xy1ElD+rCAeASdXGxAHnxoqIkhXRggnwAmdNMYmc7P+KDp/F1W9aOZb6P 3DxRWJ0qONoXJWjBG+twmQJZwkqx8xoVUMUZDHPao6lEKtLu+wQtk1CcJQ1vBMed 1cMDmak1uHdnZ+TGbUEvqwYk2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnH5Tlg 6x5ZbCDeODmKwNGq3lETMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrbCgZsC/xO6+l/3N9Vjt7dOnREgBFz5bIxUiDIaCL6Y/FBMsm8All 38V5ewtSF+MFaKTl/AiIYVj0Y+d69U1STbkaiVkUOUV7W0a/BkmYYk2vkLloDXU0 SkSNN9mDsXpTybdby/Mjz2wS0+UG986D8gKq8Bn1823Y/eOAo9ACtT3wHO8Oi/l5 1fzkycDlmyyBbfmtI8T4qz0FHIgELXDXbmSD9Z+0AjUCVyPwuJPgc9hco60oAIEX Jsi99jB0KYSsslG53TvmWoC+vG99WlN0U84p+5U7SPfDCKN6G5TzNeojZPFhAwuJ zHL3FyGfrSJMX04gkNIYucZSdMX6idHq -----END CERTIFICATE-----Generated at Tue May 7 03:49:59 2024 by rpki-client on console-ams.rpki-client.org