$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: obmdrcCTnBgS0sDogj/uhxyFWe+blRYtcKWijsKzeR0= Subject key identifier: 08:FE:AC:24:3E:62:84:79:37:8B:11:99:7B:0F:E8:CD:88:D1:8F:FB Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 08B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 08A2 Signing time: Tue 30 Apr 2024 21:52:51 +0000 Manifest this update: Tue 30 Apr 2024 21:52:51 +0000 Manifest next update: Tue 07 May 2024 21:52:51 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: JakRZpbQ4B3beVqHM6X6PDnP3f0D8oew3BwjnE80UJc=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: bUYUEG9rlvWLeJULxYTOt+yyfrQInR4t1BBt7mMKyis=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Fq/pVmaUyaXfhTK7mExdKDljB++79tgdQzG08MLch8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2231 (0x8b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Apr 30 21:52:51 2024 GMT Not After : May 7 21:52:51 2024 GMT Subject: CN=66316833-e8dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:26:a6:78:14:e2:7b:3e:00:96:21:8c:17:29: 30:11:ba:d7:78:6f:14:ec:ab:0e:c5:51:a3:b1:6f: 7e:27:75:ab:0c:c0:50:d3:c2:ee:be:54:60:f9:95: 80:fd:82:76:89:5b:15:ea:33:0f:fa:b0:d4:b0:e2: cd:34:6b:68:e3:f9:ff:3e:c3:59:2c:af:d3:73:a0: 7c:6b:65:d9:e9:71:5c:36:02:67:71:57:0b:bd:52: bd:4b:a8:ed:94:fb:13:b4:09:b6:21:92:b2:71:4b: 82:ad:12:d7:36:19:2e:32:f2:32:a3:04:af:28:e8: f2:5e:8c:3b:00:f0:4d:21:0e:a8:11:59:8c:7b:70: d6:ee:62:35:1f:72:e2:89:10:20:02:04:a9:3d:f5: 04:79:4e:a5:90:1b:12:74:6e:8b:04:b8:fd:45:77: b2:80:f7:78:85:79:b6:3b:c8:f9:b6:6e:32:28:0e: cc:26:bd:76:eb:9f:e0:14:db:0f:96:24:1a:16:4c: e8:35:11:b8:55:b7:75:b3:25:c5:46:4a:56:c5:02: 91:f2:c5:92:bd:0b:ff:8d:c0:46:bf:86:d7:7b:fa: 43:90:71:29:1e:b2:ec:99:3f:81:77:30:25:00:aa: e9:a0:f0:bf:7d:6d:30:d4:1b:4f:5c:35:1a:0f:b3: e3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:FE:AC:24:3E:62:84:79:37:8B:11:99:7B:0F:E8:CD:88:D1:8F:FB X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:26:98:30:59:e5:50:07:60:fc:d1:60:d4:1d:f5:ea:ec:aa: 3a:8c:08:aa:ca:81:83:db:87:c9:18:d7:a9:94:d3:4e:2b:df: 3c:fa:bf:cd:9b:37:dd:42:30:c8:e8:fd:67:be:85:03:7c:b6: a8:a1:66:a3:35:78:70:9b:b2:71:8b:17:3a:05:4c:ee:85:ec: 3f:03:e8:ce:e7:59:43:85:e3:70:4a:c6:8b:aa:9d:65:09:26: 47:29:0e:a1:09:84:2c:f3:fa:90:2f:3c:ce:77:0a:7f:57:ef: 0e:85:a0:02:a2:e2:6f:bf:52:55:a2:3a:c1:18:c8:e5:e6:42: 26:5f:b0:f5:b4:65:a9:a6:af:46:25:38:11:ea:38:0b:f4:58: c7:77:41:46:39:9c:d0:15:4c:71:49:1c:54:0e:48:28:56:f7: a6:4e:83:30:db:d5:de:f0:c2:9e:39:6a:d0:33:79:aa:5c:b4: 55:58:ee:a6:0f:8d:58:e2:c4:47:07:d1:f2:76:1b:bd:3f:52: a9:37:9e:f5:af:4f:21:33:ed:dd:f5:89:05:0e:90:bc:2d:39: 28:9d:87:2c:21:80:35:e2:f9:2e:73:60:52:b8:ab:9a:ab:e6: e9:13:10:10:c0:89:08:f9:81:ea:c5:6b:ad:69:9f:7e:02:4e: da:fd:1e:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjQwNDMwMjE1MjUxWhcNMjQwNTA3MjE1MjUxWjAYMRYwFAYD VQQDEw02NjMxNjgzMy1lOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyameBTiez4AliGMFykwEbrXeG8U7KsOxVGjsW9+J3WrDMBQ08LuvlRg+ZWA /YJ2iVsV6jMP+rDUsOLNNGto4/n/PsNZLK/Tc6B8a2XZ6XFcNgJncVcLvVK9S6jt lPsTtAm2IZKycUuCrRLXNhkuMvIyowSvKOjyXow7APBNIQ6oEVmMe3DW7mI1H3Li iRAgAgSpPfUEeU6lkBsSdG6LBLj9RXeygPd4hXm2O8j5tm4yKA7MJr1265/gFNsP liQaFkzoNRG4Vbd1syXFRkpWxQKR8sWSvQv/jcBGv4bXe/pDkHEpHrLsmT+BdzAl AKrpoPC/fW0w1BtPXDUaD7PjiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAj+rCQ+ YoR5N4sRmXsP6M2I0Y/7MB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6JpgwWeVQB2D80WDUHfXq7Ko6jAiqyoGD24fJGNeplNNOK988+r/N mzfdQjDI6P1nvoUDfLaooWajNXhwm7Jxixc6BUzuhew/A+jO51lDheNwSsaLqp1l CSZHKQ6hCYQs8/qQLzzOdwp/V+8OhaACouJvv1JVojrBGMjl5kImX7D1tGWppq9G JTgR6jgL9FjHd0FGOZzQFUxxSRxUDkgoVvemToMw29Xe8MKeOWrQM3mqXLRVWO6m D41Y4sRHB9Hydhu9P1KpN571r08hM+3d9YkFDpC8LTkonYcsIYA14vkuc2BSuKua q+bpExAQwIkI+YHqxWutaZ9+Ak7a/R5g -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:08 2024 by rpki-client on console-ams.rpki-client.org