$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: 9FXDsItKBTMtyIEq0OqAMqu+mfsVMWLGbjPIW2Dtz8s= Subject key identifier: 92:53:BC:3D:FF:A5:2F:5A:DA:61:AA:4B:09:43:1A:33:DE:FC:95:4F Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 29A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2983 Signing time: Thu 02 May 2024 15:54:05 +0000 Manifest this update: Thu 02 May 2024 15:54:05 +0000 Manifest next update: Thu 09 May 2024 15:54:05 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: XuKhEMSWTiqNHtFKqUivvzdBJoBa7tYsmUJEc/UlNBM=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: 11dXrtQnIPILfsEPBscm1TW4vlIoIqmiCT4wZfEh8Fs=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: DFd44NVaQA+x66nUaHpjv0bFRfAs6N1m0gvI9clk+zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10656 (0x29a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: May 2 15:54:05 2024 GMT Not After : May 9 15:54:05 2024 GMT Subject: CN=6633b71d-81d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d9:8c:72:96:8f:5a:27:5f:ac:57:5c:c1:81: 8f:32:96:00:77:2d:c3:4d:68:42:88:85:83:cb:c0: d5:68:25:11:d2:6d:01:1c:00:6b:55:e3:1f:1d:57: 97:04:c5:5d:9d:51:a7:94:83:ac:25:a1:5b:09:5b: ab:de:c2:fe:54:60:5a:bb:38:30:3c:af:b7:55:ca: bd:96:d0:f4:4c:4a:e0:ae:2a:ee:8a:70:e5:90:22: 94:6f:91:d9:55:6c:3a:97:c5:15:57:b5:60:9b:7d: 81:e0:0c:1b:fa:7b:bd:30:94:9b:2f:f3:4b:b1:4c: 85:ed:8a:2f:c8:f0:11:f5:a7:20:22:48:29:31:c9: 2c:a7:cf:ae:8f:00:8b:c6:bb:cd:e9:8a:78:50:6e: 4b:31:b5:1c:0f:19:88:55:9a:a8:70:f4:df:74:35: d4:97:e4:fb:15:37:da:1c:d4:87:ae:8c:a3:54:ac: 8b:19:7f:51:06:cd:59:aa:14:4e:12:ee:ce:da:52: 63:cb:bd:ec:a8:a2:6d:f1:0e:ac:d7:5d:06:9c:9f: c8:2b:15:21:ac:26:d1:74:93:6e:9f:1e:e9:ad:28: 57:47:c7:66:03:6e:5f:3a:d0:27:df:33:6c:3b:2d: 01:be:f3:82:e8:29:d2:b9:37:1a:5f:a8:66:36:32: c4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:53:BC:3D:FF:A5:2F:5A:DA:61:AA:4B:09:43:1A:33:DE:FC:95:4F X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:c6:d2:02:b4:ba:29:4a:2e:55:7c:28:87:d3:8e:5d:fe:05: f0:85:2f:c9:49:47:4a:3e:20:85:74:03:a5:40:3b:a8:2d:30: 2c:e2:d1:db:71:9d:5c:74:06:f4:a9:7c:99:f2:5f:45:65:cc: 9c:1e:9d:f1:1f:8a:09:e4:11:1e:a5:48:87:3d:66:e1:00:82: da:64:25:12:8d:12:a7:c2:7c:03:b3:6f:7b:ed:c2:3e:81:b1: 74:6a:23:b4:1c:96:38:08:d0:4b:d5:ab:e3:c2:80:a0:f9:88: ac:e9:98:8e:ec:7c:0c:43:ed:0e:09:ad:f8:2c:25:6d:08:ce: c9:15:df:5c:92:10:8b:b3:3f:fc:26:3b:b9:de:4a:f0:a8:33: 48:08:3c:e4:b8:1f:4c:e8:4b:a6:f4:53:42:00:89:92:54:73: 94:5a:a0:a3:9e:5b:e3:eb:a8:3b:64:45:a4:0c:3e:77:45:d8: a7:70:33:7a:3b:0d:56:50:07:f6:af:22:fb:70:c5:04:e4:8c: c5:17:48:e6:2f:ab:ae:31:8a:e3:43:13:3f:5a:10:8b:28:fa: fa:6f:27:fe:00:f9:d0:86:9c:9e:42:36:07:ec:39:06:69:8c: e9:70:f9:95:c0:96:cd:c6:45:a4:05:d1:59:69:86:3e:9b:3f: 77:7c:3f:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjQwNTAyMTU1NDA1WhcNMjQwNTA5MTU1NDA1WjAYMRYwFAYD VQQDEw02NjMzYjcxZC04MWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttmMcpaPWidfrFdcwYGPMpYAdy3DTWhCiIWDy8DVaCUR0m0BHABrVeMfHVeX BMVdnVGnlIOsJaFbCVur3sL+VGBauzgwPK+3Vcq9ltD0TErgriruinDlkCKUb5HZ VWw6l8UVV7Vgm32B4Awb+nu9MJSbL/NLsUyF7YovyPAR9acgIkgpMcksp8+ujwCL xrvN6Yp4UG5LMbUcDxmIVZqocPTfdDXUl+T7FTfaHNSHroyjVKyLGX9RBs1ZqhRO Eu7O2lJjy73sqKJt8Q6s110GnJ/IKxUhrCbRdJNunx7prShXR8dmA25fOtAn3zNs Oy0BvvOC6CnSuTcaX6hmNjLEPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJTvD3/ pS9a2mGqSwlDGjPe/JVPMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOxtICtLopSi5VfCiH045d/gXwhS/JSUdKPiCFdAOlQDuoLTAs4tHb cZ1cdAb0qXyZ8l9FZcycHp3xH4oJ5BEepUiHPWbhAILaZCUSjRKnwnwDs2977cI+ gbF0aiO0HJY4CNBL1avjwoCg+Yis6ZiO7HwMQ+0OCa34LCVtCM7JFd9ckhCLsz/8 Jju53krwqDNICDzkuB9M6Eum9FNCAImSVHOUWqCjnlvj66g7ZEWkDD53RdincDN6 Ow1WUAf2ryL7cMUE5IzFF0jmL6uuMYrjQxM/WhCLKPr6byf+APnQhpyeQjYH7DkG aYzpcPmVwJbNxkWkBdFZaYY+mz93fD8v -----END CERTIFICATE-----Generated at Thu May 2 17:18:30 2024 by rpki-client on console-ams.rpki-client.org