$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft File: 8CJFNT_B8ZSpAipKwBl33l_eNvk.mft (raw, json) Hash identifier: MxBSWDRGJJTNLVLsZbRQLq0CbCqV5wE0mszlHxRdVR0= Subject key identifier: F9:B9:27:6F:1E:63:E1:B7:67:59:0C:AD:9E:9B:48:1B:C2:8F:24:C7 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 0294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft Manifest number: 0288 Signing time: Fri 03 May 2024 03:49:46 +0000 Manifest this update: Fri 03 May 2024 03:49:45 +0000 Manifest next update: Fri 10 May 2024 03:49:45 +0000 Files and hashes: 1: 8CJFNT_B8ZSpAipKwBl33l_eNvk.crl (hash: uhtvlkhBMDAXVvZhHIdNBxtpaK57uHQXCzvY89N9cws=) 2: 5C6E8A88077011EFAC619280C4F9AE02.roa (hash: yce4MsSaFBi7mitzw8R0cVX5ZLmXB45vE1MBtpW5pbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: May 3 03:49:45 2024 GMT Not After : May 10 03:49:45 2024 GMT Subject: CN=66345ed9-64c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f0:92:92:3c:d3:68:f7:8b:8d:e6:89:bd:f4: 51:40:12:1f:5a:9a:ca:96:85:0d:b9:b3:7e:40:a9: 47:a8:51:f9:18:aa:2d:54:73:8b:c2:b4:bc:d7:30: 50:14:62:eb:37:09:38:5f:95:59:10:c7:de:b9:92: a1:38:15:50:89:f0:66:1d:8e:09:93:57:a5:f0:70: f6:76:53:ae:14:17:4b:38:0e:0c:b4:56:0c:67:0d: 95:a3:48:9b:df:b1:94:b3:a7:46:cc:8e:8f:77:a2: 5d:3f:e4:72:18:48:2e:1a:a3:ca:fb:58:e4:be:b4: 8e:43:1c:f0:f7:05:ac:66:60:c6:4b:af:10:9c:ac: 99:87:a3:cb:7f:00:48:06:4b:d3:72:e7:19:d7:51: e8:d7:bf:d3:57:19:a1:d5:50:4c:47:62:e4:ae:5e: bd:68:30:fa:17:a0:cf:9b:72:cc:cf:ba:ad:21:d8: 04:ff:9e:af:8b:51:24:d0:4e:a3:e6:59:e6:7c:b6: fb:b4:50:2d:7c:12:91:7e:73:58:ee:90:05:44:8b: f3:0d:6c:85:b1:bd:be:22:54:93:39:95:4c:fd:5b: 75:a7:d7:8f:ee:b6:91:43:45:c8:a5:9f:a8:0e:c2: 63:5b:f3:74:dd:7c:19:34:ca:a4:93:59:a5:5d:35: 6c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B9:27:6F:1E:63:E1:B7:67:59:0C:AD:9E:9B:48:1B:C2:8F:24:C7 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:96:78:94:c0:47:43:4f:a0:f4:ce:5b:03:cb:0e:37:a2:11: 4b:e3:74:cb:b5:73:3a:db:34:ae:32:40:2e:61:59:ca:88:04: 28:2f:f4:a8:80:28:a4:12:5c:e6:44:3c:b2:e4:95:45:b5:88: eb:f2:22:fa:f0:39:b1:28:59:84:33:bc:2e:a9:51:56:c0:ce: ca:d6:73:80:26:41:2a:9d:df:8e:eb:dc:e4:01:57:61:15:9d: 64:74:df:86:92:f0:48:1d:aa:da:20:8c:6b:33:8d:e7:06:91: 7b:43:cb:3a:40:60:53:b4:26:39:58:24:d7:c1:aa:0f:51:26: e3:35:ee:37:5d:91:cf:8e:18:f9:56:31:f1:e4:76:87:3e:e0: 9b:65:ef:39:14:75:70:5d:35:78:92:ff:64:22:36:ad:77:86: 54:ee:20:cf:5f:ed:95:3d:1d:70:07:ec:c6:07:ea:82:b3:fc: 0e:7b:57:f3:39:fd:7b:f7:25:76:19:82:2f:34:df:55:5d:21: af:5e:93:27:a3:e4:13:79:40:1b:2c:86:de:65:0b:58:66:67: 85:83:42:04:58:7f:21:22:a9:85:4e:7e:26:90:64:4a:71:f0: 58:f5:db:c6:8d:03:da:6c:6c:ea:92:f2:da:3c:ef:75:03:50: 10:37:cf:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjQwNTAzMDM0OTQ1WhcNMjQwNTEwMDM0OTQ1WjAYMRYwFAYD VQQDEw02NjM0NWVkOS02NGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PCSkjzTaPeLjeaJvfRRQBIfWprKloUNubN+QKlHqFH5GKotVHOLwrS81zBQ FGLrNwk4X5VZEMfeuZKhOBVQifBmHY4Jk1el8HD2dlOuFBdLOA4MtFYMZw2Vo0ib 37GUs6dGzI6Pd6JdP+RyGEguGqPK+1jkvrSOQxzw9wWsZmDGS68QnKyZh6PLfwBI BkvTcucZ11Ho17/TVxmh1VBMR2Lkrl69aDD6F6DPm3LMz7qtIdgE/56vi1Ek0E6j 5lnmfLb7tFAtfBKRfnNY7pAFRIvzDWyFsb2+IlSTOZVM/Vt1p9eP7raRQ0XIpZ+o DsJjW/N03XwZNMqkk1mlXTVshQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPm5J28e Y+G3Z1kMrZ6bSBvCjyTHMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTk2QS8yODc4NUY2MEJGQkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjha U3BBaXBLd0JsMzNsX2VOdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBlniUwEdDT6D0zlsDyw43ohFL43TLtXM62zSuMkAuYVnKiAQoL/So gCikElzmRDyy5JVFtYjr8iL68DmxKFmEM7wuqVFWwM7K1nOAJkEqnd+O69zkAVdh FZ1kdN+GkvBIHaraIIxrM43nBpF7Q8s6QGBTtCY5WCTXwaoPUSbjNe43XZHPjhj5 VjHx5HaHPuCbZe85FHVwXTV4kv9kIjatd4ZU7iDPX+2VPR1wB+zGB+qCs/wOe1fz Of179yV2GYIvNN9VXSGvXpMno+QTeUAbLIbeZQtYZmeFg0IEWH8hIqmFTn4mkGRK cfBY9dvGjQPabGzqkvLaPO91A1AQN8+I -----END CERTIFICATE-----Generated at Fri May 3 04:45:19 2024 by rpki-client on console-fra.rpki-client.org