$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: 1jEgE7tEYyOihnzItsnIq9UftMmY1jC6f0Efrv7NJwM= Subject key identifier: 49:15:D2:E3:23:AD:5D:2C:C3:DE:AD:BB:01:E7:07:BE:DE:FF:B8:AB Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 0327 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 0321 Signing time: Sun 05 May 2024 03:13:12 +0000 Manifest this update: Sun 05 May 2024 03:13:12 +0000 Manifest next update: Sun 12 May 2024 03:13:12 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: Et0IuKI0Sax5N09lTRE7oC2w6XiuhEWXLXldCDLI1aA=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: rZC8SWsdSZa+0Z4sByJs9WyDe0koVPrw0IvazT8IwQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: May 5 03:13:12 2024 GMT Not After : May 12 03:13:12 2024 GMT Subject: CN=6636f948-fe90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6e:90:7e:2e:ab:cf:c0:4e:d9:b5:1f:cf:91: 3c:61:e3:f2:42:51:c5:74:7b:6d:ff:0a:56:9b:0f: 96:5a:0f:ba:8d:0b:90:da:f9:9b:66:69:bf:0c:38: b8:2a:42:2b:49:4c:f1:80:7f:35:ae:21:4a:18:24: 47:ba:95:46:a4:37:63:30:34:9c:a2:8a:a6:2e:4c: 34:03:28:1a:90:8f:b2:c2:f0:f8:8c:4f:e7:4e:25: 9b:23:ab:85:5e:1a:ab:66:d7:26:b4:2e:73:2a:03: f1:3a:fd:87:e3:c8:4c:57:79:d3:8b:7b:3e:4f:4d: c1:fa:44:4b:49:6f:25:76:af:5c:85:bd:90:a1:90: 26:31:28:db:2b:4d:4b:98:b5:90:91:d3:c1:dd:d9: 2b:5c:20:94:fa:d3:e7:6b:22:45:95:55:2f:8a:ca: 29:1a:36:b9:22:dc:fd:81:41:51:e3:18:ec:f7:3a: d6:c7:40:75:92:c2:12:3d:b3:5e:ef:ad:8b:e6:a4: 9f:a2:3e:62:a6:84:ff:a8:d7:6e:3e:a6:e4:4e:77: ce:e0:61:cc:cb:ee:3d:c9:73:b4:29:be:b3:62:a9: f4:a4:60:12:e8:26:c4:5d:22:dc:d1:2d:c0:bb:a7: 56:3f:d3:0b:9a:ce:ae:72:86:1e:ba:a3:14:97:71: 5c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:15:D2:E3:23:AD:5D:2C:C3:DE:AD:BB:01:E7:07:BE:DE:FF:B8:AB X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:6a:07:06:b3:d9:da:e0:92:5b:12:9f:25:bb:ea:96:ff:bd: 20:4a:2f:d1:5c:ff:09:90:a6:df:40:4c:30:93:19:fe:72:b5: f1:6a:05:57:ed:5e:93:e6:27:6b:cd:ff:b7:ea:3c:4c:6f:fd: 75:62:11:a8:9c:c5:f8:5a:5d:60:6f:e9:55:50:41:b9:af:79: db:c2:af:02:d5:1c:2d:6e:2e:38:1d:eb:41:cc:3c:f5:62:94: 0b:7e:bf:f8:ab:82:9a:70:9e:0d:6e:ab:58:4b:14:aa:b2:a6: 3d:8f:04:20:2a:2b:f6:82:6f:cf:87:1e:53:c5:69:a9:62:9a: 1e:68:98:f9:05:b3:84:e2:3e:b2:79:86:4c:42:74:25:59:d2: 1c:22:8e:75:7a:ef:33:b7:4b:d9:4b:fd:8f:dc:f3:77:03:65: 90:44:1e:3c:36:fb:e9:e5:da:de:f6:4b:27:3d:e3:94:82:5f: 99:86:32:bf:dd:c5:6e:e6:2e:ad:8b:8f:15:96:04:17:24:b2: 60:6d:f0:0b:5b:23:50:a7:0d:67:2e:d6:0d:2c:5d:6e:e4:a5: d5:fc:8c:76:6a:c8:31:72:bf:be:68:2b:f9:e3:b7:1d:61:ea: 1d:6c:74:a1:7a:d0:12:db:7c:ae:f0:f0:2c:ee:20:d3:71:bf: 07:f2:8d:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjQwNTA1MDMxMzEyWhcNMjQwNTEyMDMxMzEyWjAYMRYwFAYD VQQDEw02NjM2Zjk0OC1mZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqG6Qfi6rz8BO2bUfz5E8YePyQlHFdHtt/wpWmw+WWg+6jQuQ2vmbZmm/DDi4 KkIrSUzxgH81riFKGCRHupVGpDdjMDScooqmLkw0AygakI+ywvD4jE/nTiWbI6uF XhqrZtcmtC5zKgPxOv2H48hMV3nTi3s+T03B+kRLSW8ldq9chb2QoZAmMSjbK01L mLWQkdPB3dkrXCCU+tPnayJFlVUvisopGja5Itz9gUFR4xjs9zrWx0B1ksISPbNe 762L5qSfoj5ipoT/qNduPqbkTnfO4GHMy+49yXO0Kb6zYqn0pGAS6CbEXSLc0S3A u6dWP9MLms6ucoYeuqMUl3FcKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkV0uMj rV0sw96tuwHnB77e/7irMB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhagcGs9na4JJbEp8lu+qW/70gSi/RXP8JkKbfQEwwkxn+crXxagVX 7V6T5idrzf+36jxMb/11YhGonMX4Wl1gb+lVUEG5r3nbwq8C1Rwtbi44HetBzDz1 YpQLfr/4q4KacJ4NbqtYSxSqsqY9jwQgKiv2gm/Phx5TxWmpYpoeaJj5BbOE4j6y eYZMQnQlWdIcIo51eu8zt0vZS/2P3PN3A2WQRB48Nvvp5dre9ksnPeOUgl+ZhjK/ 3cVu5i6ti48VlgQXJLJgbfALWyNQpw1nLtYNLF1u5KXV/Ix2asgxcr++aCv547cd YeodbHShetAS23yu8PAs7iDTcb8H8o1C -----END CERTIFICATE-----Generated at Sun May 5 03:52:19 2024 by rpki-client on console-ams.rpki-client.org