$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: IXJtyo0iFrLJ/Ogwwiblb1TTdEubX33Dr/CE+8C+lxY= Subject key identifier: A2:DC:36:D5:21:A9:36:E4:15:63:06:0F:37:5C:39:6C:80:08:30:F0 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0B82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0B79 Signing time: Sat 04 May 2024 19:39:40 +0000 Manifest this update: Sat 04 May 2024 19:39:39 +0000 Manifest next update: Sat 11 May 2024 19:39:39 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: JReCKUXGceSoCKaJHUB26a0PA8eSoFBueKC+NrlT8Nk=) 2: A473C9A008F311EE98719810C4F9AE02.roa (hash: F8JEAecdPy/HZW7a+QjHMWFtFt8CeCKmNxJzk2+ga9M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2946 (0xb82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: May 4 19:39:39 2024 GMT Not After : May 11 19:39:39 2024 GMT Subject: CN=66368efc-4976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e3:ab:84:2d:d2:fc:25:b4:54:f7:d1:2c:99: 68:0c:5e:57:16:71:4b:fe:ee:ae:1c:d7:5c:83:eb: 44:5b:aa:e9:35:c9:af:8b:6f:63:eb:d3:1f:0a:84: 0d:17:c9:35:57:6b:42:3d:18:bb:42:9a:be:24:77: 3b:22:fe:21:c5:ab:0d:f2:b5:8f:d4:b3:69:a8:3c: de:28:9a:f5:bf:0c:1a:30:52:c6:c9:46:0c:a6:69: 20:f6:de:e4:53:d2:18:75:1b:57:fe:d6:ed:d4:3a: d5:eb:65:56:38:ad:e6:c4:c4:2e:1d:47:68:d9:40: 1d:68:f6:a5:09:de:75:84:e1:9e:9d:21:36:47:46: 0a:9c:5d:c6:77:7a:a6:5c:7a:aa:35:18:91:1e:a1: 59:61:90:02:c4:c1:73:f2:7b:11:8d:34:fe:0e:6f: 54:b3:a2:1f:3a:8d:61:95:f5:90:71:db:7c:64:52: 44:ff:5e:5b:aa:30:f8:45:46:c7:82:28:41:9a:bd: 95:e5:c0:45:a3:d2:74:f6:19:d9:b3:8f:05:a4:04: 52:52:34:b4:b2:7c:6d:33:01:ff:4f:7b:21:44:71: e4:07:a9:14:52:20:f2:08:c9:8d:c1:f4:e4:65:55: aa:7e:b4:92:95:7f:79:22:b9:60:97:57:10:ad:21: 32:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:DC:36:D5:21:A9:36:E4:15:63:06:0F:37:5C:39:6C:80:08:30:F0 X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4c:d9:21:0f:a2:16:02:ff:6c:f1:f5:45:67:6a:16:ef:d6: d3:7b:b1:4a:4e:ef:81:6d:99:79:65:46:61:f0:2a:54:1b:9e: 4f:04:18:75:a3:15:fb:43:2e:d6:29:04:e2:c8:00:bd:a5:3c: ef:01:72:9f:b7:28:d6:b4:d2:e9:5a:07:18:ed:ad:1a:52:47: f5:7d:59:8f:d9:c5:9c:3f:a9:aa:22:7d:f0:a4:69:9b:91:03: 3f:c0:32:d7:3b:76:09:ee:d2:1b:6f:31:a3:2c:13:41:6e:b6: 86:db:8e:3a:5d:f1:34:55:32:bb:94:4c:7c:d2:a5:2a:6f:78: e3:b6:bb:82:ee:43:18:f4:59:eb:e7:6f:17:dd:5c:8d:16:ec: e4:24:bb:a2:70:96:d0:49:ca:01:e8:1d:6a:2c:44:2e:e5:85: c1:db:d5:d0:00:2a:e4:a9:fd:a5:c9:2e:dc:46:90:25:10:69: b5:a2:c6:17:84:2b:97:72:2a:88:eb:e3:f3:28:5e:2c:82:88: 1c:9e:df:45:1e:79:c6:bf:08:91:8c:b6:8e:c5:db:14:79:e1: 3b:84:40:74:b5:32:c3:9d:89:11:a5:e7:d8:19:49:46:b9:9f: 86:40:09:e9:5c:33:a1:b7:66:cc:50:cc:ab:a4:a6:8e:7b:f1: 7c:ec:cb:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjQwNTA0MTkzOTM5WhcNMjQwNTExMTkzOTM5WjAYMRYwFAYD VQQDEw02NjM2OGVmYy00OTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+OrhC3S/CW0VPfRLJloDF5XFnFL/u6uHNdcg+tEW6rpNcmvi29j69MfCoQN F8k1V2tCPRi7Qpq+JHc7Iv4hxasN8rWP1LNpqDzeKJr1vwwaMFLGyUYMpmkg9t7k U9IYdRtX/tbt1DrV62VWOK3mxMQuHUdo2UAdaPalCd51hOGenSE2R0YKnF3Gd3qm XHqqNRiRHqFZYZACxMFz8nsRjTT+Dm9Us6IfOo1hlfWQcdt8ZFJE/15bqjD4RUbH gihBmr2V5cBFo9J09hnZs48FpARSUjS0snxtMwH/T3shRHHkB6kUUiDyCMmNwfTk ZVWqfrSSlX95Irlgl1cQrSEypQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLcNtUh qTbkFWMGDzdcOWyACDDwMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASTNkhD6IWAv9s8fVFZ2oW79bTe7FKTu+BbZl5ZUZh8CpUG55PBBh1 oxX7Qy7WKQTiyAC9pTzvAXKftyjWtNLpWgcY7a0aUkf1fVmP2cWcP6mqIn3wpGmb kQM/wDLXO3YJ7tIbbzGjLBNBbraG2446XfE0VTK7lEx80qUqb3jjtruC7kMY9Fnr 528X3VyNFuzkJLuicJbQScoB6B1qLEQu5YXB29XQACrkqf2lyS7cRpAlEGm1osYX hCuXciqI6+PzKF4sgogcnt9FHnnGvwiRjLaOxdsUeeE7hEB0tTLDnYkRpefYGUlG uZ+GQAnpXDOht2bMUMyrpKaOe/F87MsF -----END CERTIFICATE-----Generated at Sat May 4 21:19:29 2024 by rpki-client on console-ams.rpki-client.org