$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: V/JQ41E1RvEYGonwJ5qDptPb9uvxJrWJOhUe/Hv1nrA= Subject key identifier: D2:2C:89:9E:14:E1:75:DA:5E:93:00:47:1D:DC:77:66:F5:F9:3F:C2 Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 02F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 02F3 Signing time: Wed 01 May 2024 03:33:30 +0000 Manifest this update: Wed 01 May 2024 03:33:30 +0000 Manifest next update: Wed 08 May 2024 03:33:30 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: jQZ0veKE0GPxLLzQIRS/FHvq1fAkUY2Tk39QZmBxrsg=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: nlvzWGcCzQ3g4WB0QEnebQiCK2io0J1tCDKfBVlK9FY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: May 1 03:33:30 2024 GMT Not After : May 8 03:33:30 2024 GMT Subject: CN=6631b80a-74d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:56:09:a7:b7:3c:1b:94:94:a0:45:3b:6e: 29:f3:ef:37:3c:e3:2f:3f:8f:76:18:e8:40:91:d8: 57:19:b2:f7:74:2b:50:d5:2f:8d:72:2e:90:80:78: 8c:b1:ad:e7:33:5a:25:08:f3:b1:41:1d:44:23:3d: 0e:2c:91:9d:cf:d2:c5:83:33:b2:98:02:90:bd:97: 6f:d5:5f:65:91:fd:03:42:ed:ad:ae:8e:5d:0f:e4: cf:22:af:8b:79:fc:a5:6e:c5:7e:7d:d4:24:98:d9: 6f:9a:1f:90:5d:ee:d3:49:4c:d7:d7:79:54:b4:12: 1b:3e:08:f1:80:5d:6c:4d:85:80:4f:a4:03:44:47: fb:1b:ce:3c:53:87:9d:39:ca:be:aa:80:7d:00:f2: 5c:0a:c4:64:55:87:90:a5:3d:a3:60:bd:cc:47:d7: 92:00:59:9c:0c:9d:19:8a:40:c7:31:64:1c:0a:ed: 5b:4b:a6:60:c2:ad:34:44:01:ca:87:ce:8d:20:8c: 87:3e:4e:b7:fd:b4:00:5a:1c:a4:a3:ef:dc:f9:c3: 41:4b:fa:fa:bd:b6:23:26:d2:a3:72:e5:82:07:4c: fe:dc:a3:f7:c8:cb:36:7f:81:c3:84:93:32:61:4d: 73:25:48:aa:79:50:b3:e1:db:06:1c:cf:35:66:47: 0f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2C:89:9E:14:E1:75:DA:5E:93:00:47:1D:DC:77:66:F5:F9:3F:C2 X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:59:92:f4:48:5a:4a:15:c5:5d:df:14:7b:d0:36:e1:ad:77: a6:96:81:b8:d6:83:4b:79:d4:40:8b:d2:5f:10:16:4d:7e:db: 3c:47:e3:0a:bc:98:6b:85:21:74:c0:8f:c9:32:47:83:c3:14: d0:b0:17:5b:ab:d2:1d:c8:22:54:fe:3d:14:41:40:c8:97:b4: 24:88:6a:78:ed:68:b5:59:6f:10:03:0e:92:4d:b0:73:0d:c4: 0d:ef:a4:c9:2f:8f:ce:f7:92:56:5d:03:1b:d7:c2:85:cb:ec: 74:48:fb:8d:0b:d2:05:fc:b5:d6:45:5f:f7:dc:3c:9e:d4:ef: 9b:9f:2a:a6:a1:d0:d1:6a:04:10:6d:12:d6:fd:9f:07:5a:3f: 95:fa:a5:cc:6f:96:6e:6f:bd:4b:51:14:cb:99:4a:27:d7:a4: e2:63:b2:46:54:ea:f1:3e:5e:53:e2:f4:9d:47:b9:53:b9:45: b4:ee:4e:16:54:23:07:70:f2:41:93:66:52:b3:03:1c:91:76: 33:96:01:31:fc:46:20:d9:95:dd:ff:df:03:a3:e3:5b:5c:d2: 41:e2:c2:48:2a:bf:1a:f7:74:fe:98:b6:ad:bc:48:86:81:0a: 8a:bf:54:7b:e7:09:3d:20:36:fe:7c:f2:ef:d7:cd:b7:20:85: 67:cd:cd:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjQwNTAxMDMzMzMwWhcNMjQwNTA4MDMzMzMwWjAYMRYwFAYD VQQDEw02NjMxYjgwYS03NGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNtWCae3PBuUlKBFO24p8+83POMvP492GOhAkdhXGbL3dCtQ1S+Nci6QgHiM sa3nM1olCPOxQR1EIz0OLJGdz9LFgzOymAKQvZdv1V9lkf0DQu2tro5dD+TPIq+L efylbsV+fdQkmNlvmh+QXe7TSUzX13lUtBIbPgjxgF1sTYWAT6QDREf7G848U4ed Ocq+qoB9APJcCsRkVYeQpT2jYL3MR9eSAFmcDJ0ZikDHMWQcCu1bS6Zgwq00RAHK h86NIIyHPk63/bQAWhyko+/c+cNBS/r6vbYjJtKjcuWCB0z+3KP3yMs2f4HDhJMy YU1zJUiqeVCz4dsGHM81ZkcPmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIsiZ4U 4XXaXpMARx3cd2b1+T/CMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVWZL0SFpKFcVd3xR70DbhrXemloG41oNLedRAi9JfEBZNfts8R+MK vJhrhSF0wI/JMkeDwxTQsBdbq9IdyCJU/j0UQUDIl7QkiGp47Wi1WW8QAw6STbBz DcQN76TJL4/O95JWXQMb18KFy+x0SPuNC9IF/LXWRV/33Dye1O+bnyqmodDRagQQ bRLW/Z8HWj+V+qXMb5Zub71LURTLmUon16TiY7JGVOrxPl5T4vSdR7lTuUW07k4W VCMHcPJBk2ZSswMckXYzlgEx/EYg2ZXd/98Do+NbXNJB4sJIKr8a93T+mLatvEiG gQqKv1R75wk9IDb+fPLv1823IIVnzc0r -----END CERTIFICATE-----Generated at Wed May 1 04:49:24 2024 by rpki-client on console-ams.rpki-client.org