$ rpki-client -vvf rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft File: 0fxphnCiQetFTVXFZ6paY1rwoGM.mft (raw, json) Hash identifier: G/ow0U99xQCETlmYGRnOf0rGAhmrFpeE6rsyXGin9bE= Subject key identifier: 74:0E:77:8B:BC:80:B9:13:C6:44:61:6B:24:FF:03:2B:23:F4:39:02 Authority key identifier: D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 Certificate issuer: /CN=A918681B/serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft Manifest number: 042C Signing time: Sun 05 May 2024 02:12:01 +0000 Manifest this update: Sun 05 May 2024 02:12:01 +0000 Manifest next update: Sun 12 May 2024 02:12:01 +0000 Files and hashes: 1: 0fxphnCiQetFTVXFZ6paY1rwoGM.crl (hash: aI8CSvV6YpjNu64VrExNBeE/7TGKqMnfSUI8g8SbADA=) 2: 5D4D3E261A3E11ECB42D0B80C4F9AE02.roa (hash: e0KkfPde2Ts0xEPyM0nzVu8DuSx5aG7PPxte7ZOWQ/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918681B/serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Validity Not Before: May 5 02:12:01 2024 GMT Not After : May 12 02:12:01 2024 GMT Subject: CN=6636eaf1-4fad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5f:8b:17:b6:af:09:1e:ea:2b:15:e0:94:01: 30:e1:2e:42:58:3f:85:cd:22:be:9f:58:2e:36:84: 09:8c:4f:3c:c3:7d:f1:6c:05:cd:85:8a:1c:48:0c: c0:d4:7a:be:03:4d:70:8c:13:7c:b3:77:b9:1c:2c: 5b:b4:d9:4e:67:da:e3:e4:5f:a3:36:61:5d:d7:29: 4b:ea:80:b8:34:12:81:2e:92:7f:b8:df:35:7a:a2: 4f:d9:a2:38:b7:53:38:e2:5a:e9:d2:bd:b0:fd:c3: d5:29:42:c4:66:19:f7:1f:00:e5:df:4b:e2:1f:e3: 5c:0f:c3:a5:4f:f3:5e:96:fd:2d:12:71:db:e7:2a: 92:8d:b7:67:5c:b7:61:8f:ed:95:4e:2b:18:93:bc: cb:8d:24:9b:40:6d:e4:c5:24:7a:de:e0:9a:e1:c5: 1b:f9:68:52:ec:19:ce:43:3c:ca:62:17:55:1f:85: 69:b5:ed:2e:23:1d:26:51:b1:16:67:dc:9b:0d:62: 23:32:76:37:e0:ba:a6:b1:77:5c:32:97:61:19:04: 4f:91:b7:35:1b:2c:7e:05:20:bd:e2:ba:83:5d:fe: 91:38:fc:71:7f:bf:4f:dc:05:f8:ed:38:7a:e3:4d: aa:53:44:8a:f8:9e:da:b0:76:23:93:67:5c:79:63: ad:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:0E:77:8B:BC:80:B9:13:C6:44:61:6B:24:FF:03:2B:23:F4:39:02 X509v3 Authority Key Identifier: keyid:D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:39:a7:05:5d:7b:c5:96:aa:40:98:32:f2:a4:90:97:27:b3: c5:7c:27:38:4d:43:a7:9f:30:e9:31:a0:6b:32:f2:a4:ee:25: 27:0d:45:3c:3f:eb:86:2a:56:de:b8:1e:51:75:57:29:b0:2d: eb:e8:aa:92:23:7e:15:16:78:76:1e:19:9f:da:72:76:ed:f3: 2a:9f:01:89:32:e5:4b:41:87:85:07:0e:ed:81:d9:d9:bd:f2: 0c:18:14:55:21:a5:3b:3f:72:24:1b:66:63:b9:97:b3:75:52: 4a:12:ae:47:f7:a2:7a:ec:8e:54:00:1c:8e:1b:3c:10:89:8a: dc:b1:5b:00:98:b1:15:80:62:8a:ea:56:4f:3a:80:45:00:6c: 4d:4b:36:d1:b4:4d:c7:dd:a9:9a:11:ed:f8:c6:3d:0b:68:13: 81:50:da:41:ce:e9:b4:51:22:98:11:57:dd:6d:24:66:69:26: 46:ff:f2:b1:1f:28:b9:b4:1c:2e:40:73:68:01:a6:04:ff:f1: d4:91:c9:14:23:46:79:cb:71:aa:21:b2:09:14:b3:ee:f1:20: b1:46:69:c8:11:73:8b:92:cb:1d:55:a1:48:fe:c5:71:19:61: bf:ed:75:81:5d:73:ac:7b:ac:b9:63:0f:45:9a:fc:29:a6:9c: 14:0b:27:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY4MUIxMTAvBgNVBAUTKEQxRkM2OTg2NzBBMjQxRUI0NTRENTVDNTY3QUE1QTYz NUFGMEEwNjMwHhcNMjQwNTA1MDIxMjAxWhcNMjQwNTEyMDIxMjAxWjAYMRYwFAYD VQQDEw02NjM2ZWFmMS00ZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1+LF7avCR7qKxXglAEw4S5CWD+FzSK+n1guNoQJjE88w33xbAXNhYocSAzA 1Hq+A01wjBN8s3e5HCxbtNlOZ9rj5F+jNmFd1ylL6oC4NBKBLpJ/uN81eqJP2aI4 t1M44lrp0r2w/cPVKULEZhn3HwDl30viH+NcD8OlT/Nelv0tEnHb5yqSjbdnXLdh j+2VTisYk7zLjSSbQG3kxSR63uCa4cUb+WhS7BnOQzzKYhdVH4Vpte0uIx0mUbEW Z9ybDWIjMnY34LqmsXdcMpdhGQRPkbc1Gyx+BSC94rqDXf6ROPxxf79P3AX47Th6 402qU0SK+J7asHYjk2dceWOtfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQOd4u8 gLkTxkRhayT/Aysj9DkCMB8GA1UdIwQYMBaAFNH8aYZwokHrRU1VxWeqWmNa8KBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjgxQi9DNDNGQkQwNjFB M0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFldEZUVlhGWjZwYVkxcndv R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmeHBobkNpUWV0RlRWWEZaNnBhWTFyd29HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjgxQi9DNDNGQkQwNjFBM0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFl dEZUVlhGWjZwYVkxcndvR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQOacFXXvFlqpAmDLypJCXJ7PFfCc4TUOnnzDpMaBrMvKk7iUnDUU8 P+uGKlbeuB5RdVcpsC3r6KqSI34VFnh2Hhmf2nJ27fMqnwGJMuVLQYeFBw7tgdnZ vfIMGBRVIaU7P3IkG2ZjuZezdVJKEq5H96J67I5UAByOGzwQiYrcsVsAmLEVgGKK 6lZPOoBFAGxNSzbRtE3H3amaEe34xj0LaBOBUNpBzum0USKYEVfdbSRmaSZG//Kx Hyi5tBwuQHNoAaYE//HUkckUI0Z5y3GqIbIJFLPu8SCxRmnIEXOLkssdVaFI/sVx GWG/7XWBXXOse6y5Yw9FmvwpppwUCyd8 -----END CERTIFICATE-----Generated at Sun May 5 03:09:55 2024 by rpki-client on console-ams.rpki-client.org