$ rpki-client -vvf rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft File: VwO1XNjigCKWBKELyM9bOAERY_o.mft (raw, json) Hash identifier: cSTJtI8aTyv7H5VRaSmd0FpHhLBtV/8261WyZCVB/ps= Subject key identifier: 24:13:26:36:3C:74:63:91:40:A0:97:8D:76:A3:ED:DB:59:54:42:5C Authority key identifier: 57:03:B5:5C:D8:E2:80:22:96:04:A1:0B:C8:CF:5B:38:01:11:63:FA Certificate issuer: /CN=A9183EB3/serialNumber=5703B55CD8E280229604A10BC8CF5B38011163FA Certificate serial: 099E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft Manifest number: 0998 Signing time: Thu 02 May 2024 20:59:55 +0000 Manifest this update: Thu 02 May 2024 20:59:55 +0000 Manifest next update: Thu 09 May 2024 20:59:55 +0000 Files and hashes: 1: VwO1XNjigCKWBKELyM9bOAERY_o.crl (hash: E1E/W/MDeHnc6+7SACtVfsUExxgoH26aqDUeK6QX6J0=) 2: D67C31E8637511EA8A698E0BC4F9AE02.roa (hash: yH51MrOnrCMRnU8jdZMxQRRlfTnvexHS8d47tx5HLls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.crl rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2462 (0x99e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183EB3/serialNumber=5703B55CD8E280229604A10BC8CF5B38011163FA Validity Not Before: May 2 20:59:55 2024 GMT Not After : May 9 20:59:55 2024 GMT Subject: CN=6633fecb-c8e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d5:88:82:58:60:6a:00:bc:b7:7e:be:df:b6: 3f:4d:1c:64:18:f4:82:39:31:84:fb:a3:b3:7a:c4: 6e:83:a0:fa:e1:bd:9b:c9:30:32:95:93:37:ff:39: 01:49:52:b2:21:5d:80:fe:3d:8b:4b:78:a1:0a:90: 6f:6e:9d:5c:00:3b:b6:c1:eb:ae:b2:82:13:7a:fb: b3:bc:7b:e7:7b:e5:05:a2:a1:c1:21:0f:13:b6:a6: cc:b9:a5:ed:05:35:10:91:85:cb:54:ba:45:d4:99: 15:61:0e:10:e6:ac:89:34:32:80:fd:16:ee:03:11: ee:4a:b3:3a:bf:93:93:87:48:60:12:ea:01:1a:52: df:8e:0e:bb:90:c4:ad:7c:84:84:57:50:1c:bb:73: 7a:48:a5:0f:41:7c:ff:30:2b:1d:03:2f:70:2f:c9: 41:e3:44:e5:3c:53:f2:09:8f:fa:b1:bd:18:2c:15: df:97:eb:fe:81:95:ff:05:c4:32:7f:71:2c:cf:3c: 84:09:aa:43:bd:8d:aa:31:97:6a:1e:81:27:f5:26: b3:bf:d9:a7:e3:02:8e:98:9a:47:62:58:d0:17:27: 5c:94:a0:60:b2:cb:9a:92:bb:55:a8:d5:7e:2a:29: 12:61:99:5a:6b:3a:b3:e9:c8:89:43:bc:fc:8a:8c: c0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:13:26:36:3C:74:63:91:40:A0:97:8D:76:A3:ED:DB:59:54:42:5C X509v3 Authority Key Identifier: keyid:57:03:B5:5C:D8:E2:80:22:96:04:A1:0B:C8:CF:5B:38:01:11:63:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:68:0b:a1:7e:16:57:2a:fe:05:95:cb:99:b7:8a:5c:25:f3: 4f:7c:93:6c:20:e8:17:d6:13:51:09:c5:7b:f5:56:a1:79:4d: 03:f6:0c:49:ec:1f:9f:00:fb:18:5b:78:08:53:69:3c:94:18: d6:b8:66:b7:23:24:cd:97:20:f3:91:e7:42:6a:ae:73:f6:3c: ae:92:3d:b2:00:5a:9c:fd:3a:d5:f6:c6:28:83:30:f7:d0:b1: 71:12:66:99:44:1c:c9:89:55:da:78:17:4b:bd:ba:8d:ac:22: b2:34:ae:10:a2:39:64:92:a7:36:4d:7c:2d:1c:c9:26:c6:8f: 6c:11:75:29:ed:bb:d1:5d:31:c2:a8:c0:06:30:f8:4c:ac:7b: d6:03:be:1f:45:40:73:b4:ac:83:32:e8:d0:2f:f5:e6:b2:b1: 84:ed:a8:63:5d:85:04:09:ab:c9:24:70:11:20:72:5b:b8:4e: 1b:ee:59:d1:dd:e0:a4:27:15:41:77:d6:18:de:84:d1:b1:91: 4f:88:11:da:b2:c5:ff:27:4d:ca:85:c1:ce:c2:f9:61:8d:3f: ad:9a:55:ab:a4:a4:5f:1c:d9:e6:e0:fb:19:68:d2:3c:5a:84: 6f:b1:97:c7:94:98:47:cd:4d:21:55:71:b7:d5:f8:01:9b:e0: 3a:3a:a6:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNFQjMxMTAvBgNVBAUTKDU3MDNCNTVDRDhFMjgwMjI5NjA0QTEwQkM4Q0Y1QjM4 MDExMTYzRkEwHhcNMjQwNTAyMjA1OTU1WhcNMjQwNTA5MjA1OTU1WjAYMRYwFAYD VQQDEw02NjMzZmVjYi1jOGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9WIglhgagC8t36+37Y/TRxkGPSCOTGE+6OzesRug6D64b2byTAylZM3/zkB SVKyIV2A/j2LS3ihCpBvbp1cADu2weuusoITevuzvHvne+UFoqHBIQ8TtqbMuaXt BTUQkYXLVLpF1JkVYQ4Q5qyJNDKA/RbuAxHuSrM6v5OTh0hgEuoBGlLfjg67kMSt fISEV1Acu3N6SKUPQXz/MCsdAy9wL8lB40TlPFPyCY/6sb0YLBXfl+v+gZX/BcQy f3EszzyECapDvY2qMZdqHoEn9Sazv9mn4wKOmJpHYljQFydclKBgssuakrtVqNV+ KikSYZlaazqz6ciJQ7z8iozAVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQTJjY8 dGORQKCXjXaj7dtZVEJcMB8GA1UdIwQYMBaAFFcDtVzY4oAilgShC8jPWzgBEWP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0VCMy8zREI2QTM2MjYz NzUxMUVBQjlDMzY4MEJDNEY5QUUwMi9Wd08xWE5qaWdDS1dCS0VMeU05Yk9BRVJZ X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z3TzFYTmppZ0NLV0JLRUx5TTliT0FFUllfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0VCMy8zREI2QTM2MjYzNzUxMUVBQjlDMzY4MEJDNEY5QUUwMi9Wd08xWE5qaWdD S1dCS0VMeU05Yk9BRVJZX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdaAuhfhZXKv4FlcuZt4pcJfNPfJNsIOgX1hNRCcV79VaheU0D9gxJ 7B+fAPsYW3gIU2k8lBjWuGa3IyTNlyDzkedCaq5z9jyukj2yAFqc/TrV9sYogzD3 0LFxEmaZRBzJiVXaeBdLvbqNrCKyNK4Qojlkkqc2TXwtHMkmxo9sEXUp7bvRXTHC qMAGMPhMrHvWA74fRUBztKyDMujQL/XmsrGE7ahjXYUECavJJHARIHJbuE4b7lnR 3eCkJxVBd9YY3oTRsZFPiBHassX/J03KhcHOwvlhjT+tmlWrpKRfHNnm4PsZaNI8 WoRvsZfHlJhHzU0hVXG31fgBm+A6OqaP -----END CERTIFICATE-----Generated at Thu May 2 22:28:52 2024 by rpki-client on console-ams.rpki-client.org