$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft File: iaMdROlPHMJ4ULusFsAsIKqznOU.mft (raw, json) Hash identifier: qhVHVnw8FgGz5qZCe48/gYm/yzzfjSsOSrvsgPDKmXA= Subject key identifier: E2:14:AB:DC:E9:8D:45:1D:F3:76:29:35:DD:22:F5:FC:85:28:84:48 Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Certificate serial: 09F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft Manifest number: 09EA Signing time: Thu 02 May 2024 20:50:16 +0000 Manifest this update: Thu 02 May 2024 20:50:16 +0000 Manifest next update: Thu 09 May 2024 20:50:16 +0000 Files and hashes: 1: iaMdROlPHMJ4ULusFsAsIKqznOU.crl (hash: 0l/cVfVLLuv5E2re/xfwQYNxA67pPPmt5/RT0xOtu9k=) 2: 9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa (hash: azNLWyQtsna0ToR5xIDq69XlfBRyTv4GpuhLiIlA5aY=) 3: F392CF9E53A311EAB1641213C4F9AE02.roa (hash: 1iE7kBeondhrkCQCx5MNz4LLtrc9mO8DV7fQcaqPi8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2552 (0x9f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Validity Not Before: May 2 20:50:16 2024 GMT Not After : May 9 20:50:16 2024 GMT Subject: CN=6633fc88-26a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b0:1d:b6:d2:ef:d9:53:e8:a8:74:5b:ea:83: 36:b7:50:34:1b:9a:b8:f3:54:d2:97:84:0c:03:1a: 91:28:e9:01:41:c0:a6:60:16:49:33:7d:50:64:d2: bf:27:fb:45:dc:6a:d6:6f:1b:98:73:e6:99:8e:e1: 04:5f:e5:93:72:40:71:9c:51:ab:d9:58:d2:10:9a: a5:00:74:c3:10:15:fa:60:21:9c:9e:43:39:bf:d3: 8a:e9:da:50:34:cb:63:a9:c0:d9:e2:47:0b:4f:ac: a5:6b:9f:64:09:e6:eb:78:76:25:2a:91:57:05:19: c5:0b:24:57:b2:d8:9c:a2:ed:05:da:fd:99:2f:ee: 5e:73:71:02:96:51:13:e2:5d:2b:7d:63:d3:ce:65: 7c:06:2d:b8:32:04:48:61:43:a9:dd:66:42:aa:5e: 72:fc:bd:ab:7e:1e:25:f6:b0:c5:6c:92:a8:ef:2d: 43:07:8b:10:89:64:59:1f:48:24:61:78:9d:3e:6f: 98:2a:54:42:ba:15:46:53:11:e1:6a:f6:32:20:dc: 76:20:66:fe:1d:ef:43:97:cc:38:09:76:47:fc:7a: 58:b6:f8:07:f4:69:cc:8c:13:b7:0b:de:2b:b1:76: a3:ae:3e:5c:59:5d:16:82:7a:c3:bd:9b:45:f4:d6: 57:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:14:AB:DC:E9:8D:45:1D:F3:76:29:35:DD:22:F5:FC:85:28:84:48 X509v3 Authority Key Identifier: keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:94:d9:29:e2:55:22:28:0f:3a:5e:00:61:89:d6:5e:bc:72: 1b:fd:fe:4a:f3:7d:6c:38:82:1e:f1:8d:55:25:0b:db:9d:4d: 3c:01:14:d9:fc:c1:13:05:36:9f:d8:af:d7:3f:b5:bb:a2:de: ee:64:9e:ac:88:3e:f0:34:98:78:59:b6:0c:22:d2:88:e2:4e: 3e:5c:9a:d5:7e:f3:e6:ab:be:73:01:c8:ca:2e:0a:99:63:ac: f6:08:2c:f9:99:17:8d:0a:e3:7a:de:ff:98:a9:a8:6a:99:4f: 8b:bc:c0:04:72:3d:b9:5e:09:92:67:3b:57:7f:e2:83:0c:c1: 3e:c2:ae:1b:13:94:56:3e:18:63:92:72:fb:c0:d5:3f:db:1b: 1e:8f:1d:44:c7:8a:42:7c:75:96:de:ec:61:5c:9f:f9:b3:8e: 0a:2e:84:d6:e1:d5:97:d1:da:12:87:ac:ed:78:22:46:e7:eb: 13:44:08:4e:98:af:a6:bb:3a:94:6b:ef:b7:25:39:40:2f:94: 1e:0c:de:0a:50:71:ca:18:f4:68:f9:db:71:61:9c:cf:a6:17: 1f:ee:10:88:65:5f:71:8a:5b:5a:9a:7e:f3:aa:66:30:26:13: 66:ca:02:bb:f0:40:fe:0c:b5:92:85:b1:21:1e:91:46:47:14: 21:b3:cc:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGNzMxMTAvBgNVBAUTKDg5QTMxRDQ0RTk0RjFDQzI3ODUwQkJBQzE2QzAyQzIw QUFCMzlDRTUwHhcNMjQwNTAyMjA1MDE2WhcNMjQwNTA5MjA1MDE2WjAYMRYwFAYD VQQDEw02NjMzZmM4OC0yNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLAdttLv2VPoqHRb6oM2t1A0G5q481TSl4QMAxqRKOkBQcCmYBZJM31QZNK/ J/tF3GrWbxuYc+aZjuEEX+WTckBxnFGr2VjSEJqlAHTDEBX6YCGcnkM5v9OK6dpQ NMtjqcDZ4kcLT6yla59kCebreHYlKpFXBRnFCyRXsticou0F2v2ZL+5ec3ECllET 4l0rfWPTzmV8Bi24MgRIYUOp3WZCql5y/L2rfh4l9rDFbJKo7y1DB4sQiWRZH0gk YXidPm+YKlRCuhVGUxHhavYyINx2IGb+He9Dl8w4CXZH/HpYtvgH9GnMjBO3C94r sXajrj5cWV0WgnrDvZtF9NZXNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIUq9zp jUUd83YpNd0i9fyFKIRIMB8GA1UdIwQYMBaAFImjHUTpTxzCeFC7rBbALCCqs5zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3My9BMjk3MDdGNjUz QTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhNSjRVTHVzRnNBc0lLcXpu T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhTWRST2xQSE1KNFVMdXNGc0FzSUtxem5PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkY3My9BMjk3MDdGNjUzQTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhN SjRVTHVzRnNBc0lLcXpuT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIlNkp4lUiKA86XgBhidZevHIb/f5K831sOIIe8Y1VJQvbnU08ARTZ /METBTaf2K/XP7W7ot7uZJ6siD7wNJh4WbYMItKI4k4+XJrVfvPmq75zAcjKLgqZ Y6z2CCz5mReNCuN63v+YqahqmU+LvMAEcj25XgmSZztXf+KDDME+wq4bE5RWPhhj knL7wNU/2xsejx1Ex4pCfHWW3uxhXJ/5s44KLoTW4dWX0doSh6zteCJG5+sTRAhO mK+muzqUa++3JTlAL5QeDN4KUHHKGPRo+dtxYZzPphcf7hCIZV9xiltamn7zqmYw JhNmygK78ED+DLWShbEhHpFGRxQhs8xl -----END CERTIFICATE-----Generated at Thu May 2 22:28:53 2024 by rpki-client on console-ams.rpki-client.org