$ rpki-client -vvf rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft File: jzFgL06-RV4JnABJu3sAZlWLnYk.mft (raw, json) Hash identifier: 6T6+vRTAbF7VQ2Ttx7x/oG/hGF5dK2LV4lhp3Gr/e0s= Subject key identifier: 1A:FE:87:E9:E9:08:0A:42:CD:CF:65:7D:A2:15:3A:13:F2:29:AF:B4 Authority key identifier: 8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89 Certificate issuer: /CN=A9196E6C/serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89 Certificate serial: 33DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft Manifest number: 33CD Signing time: Mon 06 May 2024 14:42:38 +0000 Manifest this update: Mon 06 May 2024 14:42:38 +0000 Manifest next update: Mon 13 May 2024 14:42:38 +0000 Files and hashes: 1: jzFgL06-RV4JnABJu3sAZlWLnYk.crl (hash: aIGu+hKFD2cNw5LRyUjgiiy5oICxu9YwUUFexneohx0=) 2: 12C0FA5EA8E811EB8801993BC4F9AE02.roa (hash: BhE/Jm0W953o6GqpVqGr68PRcM13aAwM+4wkckGBTTk=) 3: DC50B57AE84511EB87AD6B49C4F9AE02.roa (hash: agsLtp5kqnZauUNHWHhsf5K29FDtzFJsgxVV1mP2HEI=) 4: DD5C8412E84511EB87AD6B49C4F9AE02.roa (hash: lP5NMv3I1CJOsA7UOND+xbg0rBaa2Avz8htJs1Lu9+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13279 (0x33df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196E6C/serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89 Validity Not Before: May 6 14:42:38 2024 GMT Not After : May 13 14:42:38 2024 GMT Subject: CN=6638ec5e-46ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:13:83:41:09:e2:f2:a0:cf:07:e4:f7:e3:ee: 2b:65:a7:a7:b4:91:7d:02:5e:ed:bc:63:7a:05:0b: eb:41:03:d3:e0:8d:33:59:4f:b8:40:5e:53:68:6e: cb:79:70:98:1a:3f:12:da:13:e8:52:ab:4e:1b:ae: 57:9a:00:17:4e:0b:a8:df:93:03:ca:5a:60:22:a9: 42:09:39:22:a2:96:18:2a:13:45:11:7c:6c:fe:01: e6:74:94:5c:e3:cf:41:4e:47:3c:4e:11:33:3a:ff: 41:84:90:4c:d4:3b:a5:f8:86:39:da:3f:ae:b5:e3: ad:aa:57:31:b7:37:c0:c0:e9:69:5a:a1:4f:bf:e9: 90:85:d7:ec:fc:65:91:1e:03:12:3a:e5:dc:b0:cf: 79:b2:11:05:69:ac:67:4d:d0:e2:61:85:fa:f3:f9: ac:f3:11:b1:b6:e8:d1:78:a0:3f:09:be:0a:5a:d2: f9:38:15:a6:48:9e:17:46:6c:df:b9:db:4c:96:51: 83:8e:08:92:89:56:5f:89:d9:2c:f7:17:36:d9:ff: a1:58:20:3c:b9:07:50:d2:bf:df:f8:0f:9b:57:53: e5:63:d6:1f:62:1f:a7:cd:7d:c0:8f:a5:3a:3d:a5: dd:d7:b5:87:03:ba:75:19:68:05:32:31:b6:53:2d: e0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FE:87:E9:E9:08:0A:42:CD:CF:65:7D:A2:15:3A:13:F2:29:AF:B4 X509v3 Authority Key Identifier: keyid:8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:08:d2:2e:47:ee:99:e4:6b:53:9f:78:b2:3f:31:2e:1f:a5: 56:da:c6:8c:9e:15:3c:8d:15:fe:4c:41:b5:d4:57:72:2d:b8: 87:b4:c8:11:2a:6f:00:78:24:12:72:af:9d:48:de:c6:46:15: b5:bb:d9:fb:6f:95:23:f9:22:fc:5f:fc:15:ee:26:af:d0:63: 4f:52:b2:13:84:e3:36:0a:ba:cb:eb:ef:47:da:5f:6b:9a:ae: 03:a5:6c:28:72:47:bb:10:dd:14:55:ab:2e:9f:a3:ac:21:77: 54:fd:cd:a7:55:fe:1d:55:63:fd:51:28:af:8f:d7:69:12:96: 02:b5:1c:da:a1:e9:8c:ca:83:53:e2:85:33:cb:a0:06:b9:24: a9:59:44:3b:89:5b:7e:86:d2:7d:e1:89:a9:c2:5e:2e:44:bf: d6:74:de:38:1d:c8:41:76:54:61:07:76:a1:c2:3c:49:df:6b: 7a:50:0f:a8:de:71:c9:b0:7b:33:95:66:71:2a:2a:3e:3c:71: 28:9b:0b:64:23:6a:59:4a:0c:3c:21:8b:0f:3b:f1:16:40:b5: f8:25:c2:8a:31:77:f3:d0:29:c9:2d:f4:0c:c6:58:15:c8:7f: 4a:32:b9:1d:ed:e4:b4:91:06:ea:3d:fe:77:90:73:e1:2d:57: b3:f4:18:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZFNkMxMTAvBgNVBAUTKDhGMzE2MDJGNEVCRTQ1NUUwOTlDMDA0OUJCN0IwMDY2 NTU4QjlEODkwHhcNMjQwNTA2MTQ0MjM4WhcNMjQwNTEzMTQ0MjM4WjAYMRYwFAYD VQQDEw02NjM4ZWM1ZS00NmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRODQQni8qDPB+T34+4rZaentJF9Al7tvGN6BQvrQQPT4I0zWU+4QF5TaG7L eXCYGj8S2hPoUqtOG65XmgAXTguo35MDylpgIqlCCTkiopYYKhNFEXxs/gHmdJRc 489BTkc8ThEzOv9BhJBM1Dul+IY52j+uteOtqlcxtzfAwOlpWqFPv+mQhdfs/GWR HgMSOuXcsM95shEFaaxnTdDiYYX68/ms8xGxtujReKA/Cb4KWtL5OBWmSJ4XRmzf udtMllGDjgiSiVZfidks9xc22f+hWCA8uQdQ0r/f+A+bV1PlY9YfYh+nzX3Aj6U6 PaXd17WHA7p1GWgFMjG2Uy3gqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBr+h+np CApCzc9lfaIVOhPyKa+0MB8GA1UdIwQYMBaAFI8xYC9OvkVeCZwASbt7AGZVi52J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkU2Qy80MjZFM0RCQTFE OEQxMUUyOTNDNERBRUEwOEIwMkNEMi9qekZnTDA2LVJWNEpuQUJKdTNzQVpsV0xu WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p6RmdMMDYtUlY0Sm5BQkp1M3NBWmxXTG5Zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkU2Qy80MjZFM0RCQTFEOEQxMUUyOTNDNERBRUEwOEIwMkNEMi9qekZnTDA2LVJW NEpuQUJKdTNzQVpsV0xuWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaCNIuR+6Z5GtTn3iyPzEuH6VW2saMnhU8jRX+TEG11FdyLbiHtMgR Km8AeCQScq+dSN7GRhW1u9n7b5Uj+SL8X/wV7iav0GNPUrIThOM2CrrL6+9H2l9r mq4DpWwocke7EN0UVasun6OsIXdU/c2nVf4dVWP9USivj9dpEpYCtRzaoemMyoNT 4oUzy6AGuSSpWUQ7iVt+htJ94Ympwl4uRL/WdN44HchBdlRhB3ahwjxJ32t6UA+o 3nHJsHszlWZxKio+PHEomwtkI2pZSgw8IYsPO/EWQLX4JcKKMXfz0CnJLfQMxlgV yH9KMrkd7eS0kQbqPf53kHPhLVez9Bgx -----END CERTIFICATE-----Generated at Mon May 6 17:43:23 2024 by rpki-client on console-ams.rpki-client.org