$ rpki-client -vvf rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft File: 10rBuKMzUkP8svmQW8UdvcsOI20.mft (raw, json) Hash identifier: IxCld4cKGwqcfXMNnsC2RXew5p/1SYv8gzm7vxvwmNA= Subject key identifier: 12:AE:02:99:10:E9:C3:B7:8E:10:95:A5:86:27:6B:17:85:05:CE:2D Authority key identifier: D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D Certificate issuer: /CN=A917E726/serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Certificate serial: 0A0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft Manifest number: 09FA Signing time: Sat 04 May 2024 20:52:38 +0000 Manifest this update: Sat 04 May 2024 20:52:37 +0000 Manifest next update: Sat 11 May 2024 20:52:37 +0000 Files and hashes: 1: 10rBuKMzUkP8svmQW8UdvcsOI20.crl (hash: ePodsv5zLFhoxZfSkuhJgsFz4GgXxgrCx5d59VB2seo=) 2: 98DBD8B660D311EEA9C80344C4F9AE02.roa (hash: qobh4w9osO4ki3CXJVAypXeKLZL/LsHsyelYml99k+0=) 3: AF3CEA305ADB11EEA96AE979C4F9AE02.roa (hash: wxVKUqydm62Dk782SZrIhbwE5T75wUycQIm2l+eMW2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 20:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2571 (0xa0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E726/serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Validity Not Before: May 4 20:52:37 2024 GMT Not After : May 11 20:52:37 2024 GMT Subject: CN=6636a016-0fd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:fb:93:4d:fa:b6:92:7b:16:fb:e1:bb:76:24: 9d:65:ac:8f:30:0c:9f:98:41:42:97:a9:0f:4b:f9: 2f:d4:8e:fa:09:00:07:67:bf:f4:d6:dd:ba:e0:ad: 08:76:ee:d7:cf:99:30:cc:ec:e5:0c:98:e2:7d:0a: 41:79:ff:fc:af:95:93:04:ed:74:a7:73:d1:9d:6b: d6:0d:65:6d:a4:e3:88:d2:7e:b0:f2:18:07:db:dd: 1d:56:30:fe:e6:a3:9b:b3:57:8b:19:af:7c:d6:d4: ef:af:75:f8:b0:c1:33:80:d7:c4:69:7e:da:24:82: ea:ab:79:b8:85:aa:c2:76:4a:0e:9e:cd:0c:ab:45: 77:29:2a:ad:62:5e:e9:cc:ee:cd:5f:1d:ca:ea:69: d6:d8:0b:e8:dd:9f:7e:96:20:4e:d7:97:d1:21:cb: f3:83:39:90:73:9b:58:de:ba:b6:f2:f8:38:8a:a6: 05:ee:6f:c5:6e:bc:4c:be:d8:80:e9:d4:30:a2:0c: 86:b2:cb:6b:0b:cf:9c:38:64:d9:ea:bc:db:f0:9a: 74:da:25:3d:b1:95:04:4d:67:11:7e:e1:d7:54:76: 93:7b:04:34:f1:21:7a:56:b4:c5:ab:6c:87:09:18: 51:b4:7e:59:32:52:03:e6:eb:8f:ea:74:22:82:5f: 3f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:AE:02:99:10:E9:C3:B7:8E:10:95:A5:86:27:6B:17:85:05:CE:2D X509v3 Authority Key Identifier: keyid:D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:b3:1a:7c:c0:22:dd:9a:eb:1f:c1:1d:fd:f5:72:9f:c9:2f: f7:1a:6f:e3:33:46:63:d3:54:19:07:67:b8:cc:4f:16:9f:6f: 76:96:3a:a0:36:57:9d:92:f4:76:6b:25:d1:95:fb:ea:d9:9e: 73:9d:de:27:6b:c7:ea:9b:b0:d1:2f:e3:04:6c:cb:12:25:44: 53:7b:55:cd:57:d0:de:76:e3:fc:d7:e5:79:e4:15:ba:7b:be: f5:74:88:67:09:7c:a5:2f:36:0a:e0:ba:6b:5a:b6:eb:26:14: ae:cd:94:3f:e0:d6:5f:7b:25:51:cc:2e:4c:27:23:0a:e1:d6: c0:54:a0:d9:9e:97:fb:5d:c6:56:a7:e9:3d:0d:2d:52:62:1a: ee:db:c9:6a:70:3e:6f:e4:3a:48:3e:56:87:a8:e6:06:d5:15: 6e:2f:3e:8a:ce:79:6a:21:d7:04:bf:dd:a2:06:98:d3:d1:11: f8:8a:6b:9d:50:2c:28:ac:72:8e:39:36:37:3c:0f:f2:46:dc: 89:b3:66:4c:b5:fb:77:1b:fa:74:77:4d:47:f6:97:3f:cf:4a: f0:f6:22:3e:32:5e:93:56:ab:b7:24:e0:99:c0:32:cd:19:e5: 39:ff:56:99:07:37:4b:f8:a4:ff:2b:8e:6e:d8:64:48:67:e2: 1d:8f:43:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3MjYxMTAvBgNVBAUTKEQ3NEFDMUI4QTMzMzUyNDNGQ0IyRjk5MDVCQzUxREJE Q0IwRTIzNkQwHhcNMjQwNTA0MjA1MjM3WhcNMjQwNTExMjA1MjM3WjAYMRYwFAYD VQQDEw02NjM2YTAxNi0wZmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/uTTfq2knsW++G7diSdZayPMAyfmEFCl6kPS/kv1I76CQAHZ7/01t264K0I du7Xz5kwzOzlDJjifQpBef/8r5WTBO10p3PRnWvWDWVtpOOI0n6w8hgH290dVjD+ 5qObs1eLGa981tTvr3X4sMEzgNfEaX7aJILqq3m4harCdkoOns0Mq0V3KSqtYl7p zO7NXx3K6mnW2Avo3Z9+liBO15fRIcvzgzmQc5tY3rq28vg4iqYF7m/FbrxMvtiA 6dQwogyGsstrC8+cOGTZ6rzb8Jp02iU9sZUETWcRfuHXVHaTewQ08SF6VrTFq2yH CRhRtH5ZMlID5uuP6nQigl8/KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKuApkQ 6cO3jhCVpYYnaxeFBc4tMB8GA1UdIwQYMBaAFNdKwbijM1JD/LL5kFvFHb3LDiNt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTcyNi82REJGQTM4QTUy RDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVrUDhzdm1RVzhVZHZjc09J MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwckJ1S016VWtQOHN2bVFXOFVkdmNzT0kyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTcyNi82REJGQTM4QTUyRDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVr UDhzdm1RVzhVZHZjc09JMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/sxp8wCLdmusfwR399XKfyS/3Gm/jM0Zj01QZB2e4zE8Wn292ljqg NledkvR2ayXRlfvq2Z5znd4na8fqm7DRL+MEbMsSJURTe1XNV9DeduP81+V55BW6 e771dIhnCXylLzYK4LprWrbrJhSuzZQ/4NZfeyVRzC5MJyMK4dbAVKDZnpf7XcZW p+k9DS1SYhru28lqcD5v5DpIPlaHqOYG1RVuLz6KznlqIdcEv92iBpjT0RH4imud UCworHKOOTY3PA/yRtyJs2ZMtft3G/p0d01H9pc/z0rw9iI+Ml6TVqu3JOCZwDLN GeU5/1aZBzdL+KT/K45u2GRIZ+Idj0P7 -----END CERTIFICATE-----Generated at Sat May 4 22:06:52 2024 by rpki-client on console-ams.rpki-client.org