$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: p+c7SmUBUPZiiHrSgrzWn8VuDFGGnzUQduYL1Ys3dGg= Subject key identifier: FC:4C:84:43:63:28:44:10:AB:28:C2:9C:D0:47:B0:7F:7F:F2:BA:86 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 010D Signing time: Tue 07 May 2024 05:28:51 +0000 Manifest this update: Tue 07 May 2024 05:28:50 +0000 Manifest next update: Tue 14 May 2024 05:28:50 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: Oe5WGqf8DPIbGVBjQZqxHHzJp9BweyVMkB2V9rNLvfs=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: NRQXP8/Yyxz2onFKhHMZs9OvKvOabIesSucdhpClwHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: May 7 05:28:50 2024 GMT Not After : May 14 05:28:50 2024 GMT Subject: CN=6639bc12-19a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:51:33:20:b8:b8:50:f6:b2:b2:c9:f1:0a:ea: 10:24:72:a2:c5:55:da:f1:b9:c8:31:ce:1c:70:79: 57:a6:a3:bc:4a:ed:79:f7:21:2f:39:ea:ef:d1:de: d4:84:bb:65:46:d0:99:46:4e:c1:e2:38:c2:ee:eb: 73:e0:a6:0b:51:73:97:c9:76:b2:cd:8a:4e:8e:5b: e6:ae:44:d6:17:18:ef:86:3f:39:bd:d8:6f:35:97: 75:73:62:3f:cf:80:7a:55:2f:ca:22:e3:86:9f:d5: fb:00:02:cb:4d:a2:cf:08:51:3f:bb:9d:35:bb:6f: 81:0c:07:ca:8d:b7:5d:8c:a8:68:66:ba:f9:d3:a4: b3:58:e5:b1:4a:17:ae:02:85:fa:36:54:87:2f:56: c5:f8:f6:d4:95:a0:29:74:91:45:39:35:fd:ec:b0: fd:ee:f0:e7:7c:96:d9:9e:2a:b1:c8:cc:b7:88:fd: b6:f5:58:bf:0b:bf:a7:95:fe:70:b2:a3:4b:a8:1b: d4:a6:af:a8:75:99:eb:18:2a:1a:b5:49:74:b2:b3: e0:f5:b2:8c:b1:bc:1c:95:03:d2:40:6f:13:88:66: 31:30:99:04:36:cb:33:37:a3:2c:3a:9e:f4:af:aa: 7d:66:a0:58:ae:df:3c:e4:a1:8f:7f:9d:6c:9c:c6: 75:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4C:84:43:63:28:44:10:AB:28:C2:9C:D0:47:B0:7F:7F:F2:BA:86 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:b6:b2:0d:83:2b:d4:52:4c:fd:b7:5a:02:3b:c5:21:1b:8d: 7c:3d:a3:c4:3f:8b:80:e7:18:77:fd:06:01:e0:ff:41:a3:72: 21:2d:de:ac:0d:5d:f0:80:97:07:6c:91:6c:52:77:00:b2:58: 8e:7d:b7:91:cb:22:65:0e:71:26:00:07:f3:1f:a9:42:1d:a4: 1b:22:b4:9e:35:72:1a:8d:cc:01:09:39:e6:0c:d7:0b:4a:df: 27:56:e2:f4:33:47:85:77:dd:94:39:4a:0a:98:ef:97:05:40: 30:bf:33:4e:48:c6:a2:ce:eb:91:48:57:38:b5:7c:54:a6:24: ff:87:bc:32:ba:8b:4e:61:92:7e:95:76:10:f6:8f:43:97:eb: 9a:13:ab:9a:8e:b7:39:50:23:d2:17:55:3f:e6:3b:b2:67:b6: d8:3e:40:1a:7c:ad:01:b4:bc:73:d4:e9:e7:d0:ab:46:04:5b: 96:2e:ef:87:24:9a:d5:12:ad:7c:2a:eb:15:df:b0:17:b8:2a: 33:69:14:29:09:b8:83:72:ec:3b:25:3f:73:b2:75:98:c9:7b: 08:fa:d7:1e:d8:4e:86:8a:da:63:f9:09:8b:ff:0c:27:9e:07: ed:20:d4:97:e5:5c:7d:a1:4b:40:f4:46:76:fe:c7:77:3c:d1: 10:90:e6:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjQwNTA3MDUyODUwWhcNMjQwNTE0MDUyODUwWjAYMRYwFAYD VQQDEw02NjM5YmMxMi0xOWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVEzILi4UPayssnxCuoQJHKixVXa8bnIMc4ccHlXpqO8Su159yEvOerv0d7U hLtlRtCZRk7B4jjC7utz4KYLUXOXyXayzYpOjlvmrkTWFxjvhj85vdhvNZd1c2I/ z4B6VS/KIuOGn9X7AALLTaLPCFE/u501u2+BDAfKjbddjKhoZrr506SzWOWxSheu AoX6NlSHL1bF+PbUlaApdJFFOTX97LD97vDnfJbZniqxyMy3iP229Vi/C7+nlf5w sqNLqBvUpq+odZnrGCoatUl0srPg9bKMsbwclQPSQG8TiGYxMJkENsszN6MsOp70 r6p9ZqBYrt885KGPf51snMZ1eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxMhENj KEQQqyjCnNBHsH9/8rqGMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCatrINgyvUUkz9t1oCO8UhG418PaPEP4uA5xh3/QYB4P9Bo3IhLd6s DV3wgJcHbJFsUncAsliOfbeRyyJlDnEmAAfzH6lCHaQbIrSeNXIajcwBCTnmDNcL St8nVuL0M0eFd92UOUoKmO+XBUAwvzNOSMaizuuRSFc4tXxUpiT/h7wyuotOYZJ+ lXYQ9o9Dl+uaE6uajrc5UCPSF1U/5juyZ7bYPkAafK0BtLxz1Onn0KtGBFuWLu+H JJrVEq18KusV37AXuCozaRQpCbiDcuw7JT9zsnWYyXsI+tce2E6Gitpj+QmL/wwn ngftINSX5Vx9oUtA9EZ2/sd3PNEQkOYt -----END CERTIFICATE-----Generated at Tue May 7 06:29:48 2024 by rpki-client on console-ams.rpki-client.org