$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft File: _dkd0w6bH-o7t-Eq73YhZigSmyM.mft (raw, json) Hash identifier: HV4j72DtsBXSmknwUrvZ1T9EiR49G0ISCHfcTUsoFl8= Subject key identifier: A3:29:99:49:BB:C4:A4:11:67:DD:EF:C3:5D:D9:D0:46:13:67:62:F0 Authority key identifier: FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 Certificate issuer: /CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft Manifest number: 4A Signing time: Fri 17 May 2024 08:06:19 +0000 Manifest this update: Fri 17 May 2024 08:06:19 +0000 Manifest next update: Fri 24 May 2024 08:06:19 +0000 Files and hashes: 1: _dkd0w6bH-o7t-Eq73YhZigSmyM.crl (hash: AuLp6zTRdCU5UUyhwsFHax3+08joM6X2kHSMoxdUqR8=) 2: DECE1662A87D11EE882D7B6EC4F9AE02.roa (hash: Lonvm/OZLKDxplecUeCYCiHwkdpqzMiL+zaeBSIideY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Validity Not Before: May 17 08:06:19 2024 GMT Not After : May 24 08:06:19 2024 GMT Subject: CN=66470ffb-9d62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7e:53:e2:df:7f:ec:7b:cf:68:a0:99:ee:df: 63:70:d6:93:ae:c8:ec:79:95:9e:b1:58:c2:90:5e: 1c:97:3a:ec:ed:44:2d:6f:a6:80:0d:f2:60:a3:e1: aa:56:e5:2b:47:78:5e:54:ab:e9:b7:a8:ca:e2:a8: f3:a0:94:02:0e:b2:bb:4d:24:05:0e:39:0b:6e:1d: 9a:d9:fc:c3:94:d3:d3:8e:7e:77:ae:8f:86:c2:1e: ba:94:d8:e7:e2:0d:47:c9:d8:c8:2a:fe:61:6a:b6: a9:ee:e3:8f:f5:21:75:c9:ae:7f:69:f0:26:43:ef: d5:73:e0:00:13:0b:11:9b:73:72:64:b8:95:30:f6: a1:09:6e:22:d6:03:88:64:94:b8:80:3e:eb:ab:c8: 71:a0:be:53:b2:f7:60:a2:41:6d:63:f1:0a:29:3a: bc:3b:66:fa:b5:cc:70:aa:d1:39:91:4f:67:09:89: c5:dd:e8:34:ee:86:d0:9b:ef:f9:45:43:0a:40:3b: fa:f4:ec:11:d2:bf:da:04:52:4e:43:80:56:ce:52: bf:a3:ce:7d:95:54:8e:1f:61:cf:e3:87:08:77:07: 6b:b2:4a:57:2b:da:1e:73:28:d1:29:72:03:f3:81: d3:b8:2e:02:bf:e2:47:38:66:bb:44:76:e9:78:a3: 77:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:29:99:49:BB:C4:A4:11:67:DD:EF:C3:5D:D9:D0:46:13:67:62:F0 X509v3 Authority Key Identifier: keyid:FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:b0:0d:88:8a:92:7c:a5:a1:ff:43:2f:4e:4a:15:6e:0d:a7: 38:4c:99:29:03:08:2b:ff:56:1b:90:3c:fd:b0:bf:67:c6:4e: 44:f5:42:57:f1:69:e1:d2:a7:56:a2:d0:41:ea:53:64:45:97: 26:bf:3d:e2:3c:f1:8e:b0:5d:b3:8b:7a:b8:d4:94:80:4a:7c: fe:18:a6:dc:44:bc:61:0c:3a:93:de:7e:90:14:94:42:4a:0b: 3f:63:8d:95:4b:99:fa:3c:73:ed:01:d5:92:ec:84:e8:9e:33: a6:6a:d2:61:45:9b:4c:d6:e5:73:98:34:76:38:c4:53:84:70: 0e:80:a6:ba:5d:eb:3a:9c:3f:29:7e:da:24:4e:f6:e0:98:f5: 9d:5f:b5:c7:a8:78:d5:7e:7b:92:6e:5b:4c:d1:3f:87:21:e8: 9c:c9:d5:5d:8d:d3:9d:89:f8:b2:92:52:56:f8:b9:d1:b9:f0: 19:9e:40:11:92:18:63:85:67:2a:80:4f:7a:c9:4c:ce:9b:a8: b9:12:44:06:4f:5f:17:b4:cb:9c:8a:84:3b:c5:50:f0:2c:73: d0:ad:82:7d:a4:d9:51:b5:16:5c:0b:33:98:74:df:25:ac:cc: b2:4f:ee:ce:0f:f0:84:63:52:a5:91:1d:68:f7:d9:19:1b:25: 39:34:dd:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkI4NjExMC8GA1UEBRMoRkREOTFERDMwRTlCMUZFQTNCQjdFMTJBRUY3NjIxNjYy ODEyOUIyMzAeFw0yNDA1MTcwODA2MTlaFw0yNDA1MjQwODA2MTlaMBgxFjAUBgNV BAMTDTY2NDcwZmZiLTlkNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTflPi33/se89ooJnu32Nw1pOuyOx5lZ6xWMKQXhyXOuztRC1vpoAN8mCj4apW 5StHeF5Uq+m3qMriqPOglAIOsrtNJAUOOQtuHZrZ/MOU09OOfneuj4bCHrqU2Ofi DUfJ2Mgq/mFqtqnu44/1IXXJrn9p8CZD79Vz4AATCxGbc3JkuJUw9qEJbiLWA4hk lLiAPuuryHGgvlOy92CiQW1j8QopOrw7Zvq1zHCq0TmRT2cJicXd6DTuhtCb7/lF QwpAO/r07BHSv9oEUk5DgFbOUr+jzn2VVI4fYc/jhwh3B2uySlcr2h5zKNEpcgPz gdO4LgK/4kc4ZrtEdul4o3fNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoymZSbvE pBFn3e/DXdnQRhNnYvAwHwYDVR0jBBgwFoAU/dkd0w6bH+o7t+Eq73YhZigSmyMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQjg2Lzg2RTk3N0NBQTg3 RDExRUU5RkE1NUE2REM0RjlBRTAyL19ka2QwdzZiSC1vN3QtRXE3M1loWmlnU215 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX2RrZDB3NmJILW83dC1FcTczWWhaaWdTbXlNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky Qjg2Lzg2RTk3N0NBQTg3RDExRUU5RkE1NUE2REM0RjlBRTAyL19ka2QwdzZiSC1v N3QtRXE3M1loWmlnU215TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAawDYiKknylof9DL05KFW4NpzhMmSkDCCv/VhuQPP2wv2fGTkT1Qlfx aeHSp1ai0EHqU2RFlya/PeI88Y6wXbOLerjUlIBKfP4YptxEvGEMOpPefpAUlEJK Cz9jjZVLmfo8c+0B1ZLshOieM6Zq0mFFm0zW5XOYNHY4xFOEcA6Aprpd6zqcPyl+ 2iRO9uCY9Z1ftceoeNV+e5JuW0zRP4ch6JzJ1V2N052J+LKSUlb4udG58BmeQBGS GGOFZyqAT3rJTM6bqLkSRAZPXxe0y5yKhDvFUPAsc9Ctgn2k2VG1FlwLM5h03yWs zLJP7s4P8IRjUqWRHWj32RkbJTk03Zg= -----END CERTIFICATE-----Generated at Fri May 17 08:52:51 2024 by rpki-client on console-ams.rpki-client.org