$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: phQdAGx7Job5iAbdhIP2b6BUSpsXGqx3nZMR7Xqoul4= Subject key identifier: 8E:F8:BA:96:F3:F0:71:0D:30:9D:00:66:08:F3:48:C5:A2:16:53:5A Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0DEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0DE1 Signing time: Thu 02 May 2024 18:32:27 +0000 Manifest this update: Thu 02 May 2024 18:32:25 +0000 Manifest next update: Thu 09 May 2024 18:32:25 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: B7YEYfJoWzM6kb8yZyszzxdYawCibExjl3eqhPNLw50=) 2: DFBF502035C111ED8FD8923EC4F9AE02.roa (hash: augMxpUY8ubD0crgJhz8bbs3yVWk1zA6WP2kZq3tWEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: May 2 18:32:25 2024 GMT Not After : May 9 18:32:25 2024 GMT Subject: CN=6633dc3a-1c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9f:2c:8c:23:0e:ef:63:13:5c:84:cd:28:a1: 31:6c:03:83:92:ea:f2:8f:c8:d1:4f:89:02:34:20: 03:9a:b7:7a:6b:70:30:19:d4:13:4b:a3:39:b6:6f: 95:4c:8c:6b:75:b1:21:64:91:4e:b2:93:0c:12:3e: 71:28:7e:08:22:83:c4:ec:d5:b2:b6:02:c3:1e:a3: 3c:fe:11:61:eb:de:b2:a8:ac:cd:03:cc:87:74:60: e0:04:e2:b0:dc:5e:4d:7d:8a:96:c5:24:5d:97:e4: 25:0c:5f:3a:2c:c3:dc:90:43:99:30:40:46:34:bb: fb:40:0d:2f:4b:42:73:6b:ea:9c:a0:d5:43:6e:27: f6:a7:b4:92:a3:f6:93:d5:0b:6c:d4:6a:c0:82:6b: bc:42:01:52:55:67:ba:24:3a:af:99:df:93:f0:b5: ed:7f:8a:fd:13:67:7c:db:1c:87:3d:85:b2:1a:b4: ff:89:a4:32:8b:68:eb:88:42:82:7f:c8:64:8b:9a: aa:50:d8:11:73:19:2f:c3:66:f2:6c:e7:6e:aa:75: b1:bb:f8:0a:97:ae:a8:12:58:28:a6:e1:19:54:14: 65:95:5c:c9:24:62:71:e0:e5:4b:91:25:ef:0e:c2: 9c:fd:1d:91:ca:81:34:a5:c8:34:b3:c8:6d:18:7a: b4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F8:BA:96:F3:F0:71:0D:30:9D:00:66:08:F3:48:C5:A2:16:53:5A X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:e2:e5:f0:7c:e6:0f:ca:52:3c:16:dc:4a:e6:d8:db:c9:05: 5f:c1:7f:28:6f:1e:59:ab:14:e2:ee:d6:75:da:6b:b9:6f:70: c0:a2:d5:16:20:57:a3:7e:4a:96:7f:c1:e2:c2:42:f9:18:51: 7b:72:c2:38:3d:15:15:15:4c:2e:6a:a1:08:a3:96:6b:4e:5a: 32:f3:55:52:a1:e7:ac:24:b7:62:1f:3d:ef:ed:35:c9:98:2a: 46:95:5d:e2:be:7a:6d:86:6a:7d:81:b3:45:ca:ad:21:20:61: 47:d3:5f:04:06:09:88:58:b7:3e:b0:42:c2:b2:bc:21:58:82: d2:11:5b:10:3f:a0:2d:dd:9b:2c:71:ca:2f:0d:8e:f6:3d:65: 85:ac:df:b9:3b:8f:30:b3:43:94:46:af:ac:5b:a0:c2:c8:f3: 96:98:4c:37:18:a1:7e:93:c0:9f:d1:74:81:31:fd:74:b1:d8: b2:42:4f:6b:eb:c1:a9:6d:b5:b5:9f:1a:68:02:c4:2e:c5:40: 1d:06:19:12:45:e4:f9:ef:ca:23:43:9a:07:dc:a3:5b:65:ac: 99:0c:b7:63:51:b6:44:55:a3:e4:91:ad:7b:a0:d1:27:29:2d: 46:34:4f:fd:aa:48:3f:17:e1:01:c5:b2:04:af:88:68:70:a7: 62:24:05:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjQwNTAyMTgzMjI1WhcNMjQwNTA5MTgzMjI1WjAYMRYwFAYD VQQDEw02NjMzZGMzYS0xYzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3J8sjCMO72MTXITNKKExbAODkuryj8jRT4kCNCADmrd6a3AwGdQTS6M5tm+V TIxrdbEhZJFOspMMEj5xKH4IIoPE7NWytgLDHqM8/hFh696yqKzNA8yHdGDgBOKw 3F5NfYqWxSRdl+QlDF86LMPckEOZMEBGNLv7QA0vS0Jza+qcoNVDbif2p7SSo/aT 1Qts1GrAgmu8QgFSVWe6JDqvmd+T8LXtf4r9E2d82xyHPYWyGrT/iaQyi2jriEKC f8hki5qqUNgRcxkvw2bybOduqnWxu/gKl66oElgopuEZVBRllVzJJGJx4OVLkSXv DsKc/R2RyoE0pcg0s8htGHq0pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI74upbz 8HENMJ0AZgjzSMWiFlNaMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt4uXwfOYPylI8FtxK5tjbyQVfwX8obx5ZqxTi7tZ12mu5b3DAotUW IFejfkqWf8HiwkL5GFF7csI4PRUVFUwuaqEIo5ZrTloy81VSoeesJLdiHz3v7TXJ mCpGlV3ivnpthmp9gbNFyq0hIGFH018EBgmIWLc+sELCsrwhWILSEVsQP6At3Zss ccovDY72PWWFrN+5O48ws0OURq+sW6DCyPOWmEw3GKF+k8Cf0XSBMf10sdiyQk9r 68GpbbW1nxpoAsQuxUAdBhkSReT578ojQ5oH3KNbZayZDLdjUbZEVaPkka17oNEn KS1GNE/9qkg/F+EBxbIEr4hocKdiJAUv -----END CERTIFICATE-----Generated at Thu May 2 20:04:49 2024 by rpki-client on console-ams.rpki-client.org