$ rpki-client -vvf rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft File: clTejLmzOZRVQ9h-jrBW8VPVH1A.mft (raw, json) Hash identifier: Zsy6mE5paC6O81zDCIMcXhcqnmHBbQROAw+fK6yerjM= Subject key identifier: 59:78:ED:2B:2F:0E:CC:55:3C:A2:F7:F3:C9:2E:91:C2:5F:6E:A8:0C Authority key identifier: 72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 Certificate issuer: /CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft Manifest number: 0128 Signing time: Wed 15 May 2024 05:10:15 +0000 Manifest this update: Wed 15 May 2024 05:10:15 +0000 Manifest next update: Wed 22 May 2024 05:10:15 +0000 Files and hashes: 1: clTejLmzOZRVQ9h-jrBW8VPVH1A.crl (hash: 1rAcl6NNz99zLP0qgvDhzp8Ngh2wG+mhJDsVwlyseUk=) 2: A968BCA24C8511ED94579477C4F9AE02.roa (hash: 4KL1W1yXQ5sV+BSE+r37ZihmVY+0fGoeVcOLKae4ER0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Validity Not Before: May 15 05:10:15 2024 GMT Not After : May 22 05:10:15 2024 GMT Subject: CN=664443b7-999d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:64:d8:dc:91:e0:3c:70:4f:39:09:10:83:e3: 25:1c:61:51:2d:ad:b4:e8:cd:cf:ea:64:8f:4c:24: e3:9d:6a:51:b0:09:81:d0:f7:6b:f0:34:6b:0d:a0: 60:de:a7:9f:f2:ac:ec:c9:4f:38:5b:b5:05:18:69: b0:42:93:71:7e:e8:cf:dc:0b:64:83:47:81:e1:a9: bb:5c:a2:dd:11:7c:60:58:54:e2:1f:a8:45:18:3f: 16:de:ff:a1:fe:d9:50:3f:6f:4f:cb:d5:d3:a3:1e: 23:bc:0b:0c:22:bf:c2:31:2c:32:8a:ab:28:5a:d1: 59:71:64:0e:7c:be:c5:af:c3:e8:56:88:6f:12:ba: 52:b5:e6:1b:77:4a:d6:05:20:80:bc:98:02:d2:e7: 1f:f4:11:50:d8:0e:37:a1:70:b2:55:5d:34:ec:3f: ee:85:c2:ca:e8:7c:f1:69:7a:53:fa:3a:b3:73:9b: d9:19:91:52:bc:bd:c7:d6:ff:c2:67:97:f9:03:cb: 0f:9d:0c:e5:af:d9:82:b8:e7:c4:31:92:b5:db:c3: a8:5e:1d:bc:df:39:d2:c5:e2:6a:6c:f1:5d:8e:05: 53:7e:84:89:71:bb:e1:7a:4b:01:ac:1c:d5:0c:56: d2:2a:55:a2:0b:71:1c:b2:d2:cf:78:76:00:50:18: 22:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:78:ED:2B:2F:0E:CC:55:3C:A2:F7:F3:C9:2E:91:C2:5F:6E:A8:0C X509v3 Authority Key Identifier: keyid:72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:4c:7e:84:3a:04:16:aa:fe:e9:f8:3c:4d:3c:86:b7:84:53: a8:45:15:e9:24:21:ee:f0:29:48:e6:da:8e:9b:e5:6c:66:89: 1e:c7:18:75:81:77:d2:56:34:04:f8:9a:d7:92:1a:c9:fd:22: bd:6c:8d:cf:44:a5:0d:9f:4b:37:39:96:77:45:48:1f:c7:24: d4:5f:27:5f:a1:e7:36:c5:f8:55:fe:f7:ef:69:dc:60:a9:db: 77:9a:c0:f3:ff:16:a4:91:94:43:06:c7:c3:af:32:fc:1b:b8: a5:d5:ec:c1:20:06:f2:d0:fe:78:96:10:62:a8:0a:c0:67:7f: 92:5c:02:ae:55:f5:c4:cc:cf:fe:23:f6:71:4b:67:f6:82:e0: 25:94:10:2c:92:16:9e:03:0b:12:04:54:f0:d5:3a:11:bd:c6: e5:27:14:24:db:37:20:b5:73:46:d1:3f:ec:5c:7b:77:bc:6b: 21:25:43:e8:e4:f9:55:f9:a6:cc:6e:27:5b:1a:64:65:d8:8e: 87:cb:f5:0f:ee:4d:e5:f4:75:15:a4:cd:f6:0a:b7:d5:f3:69: 63:df:be:43:ba:14:d3:9d:5c:26:62:62:93:51:9e:72:80:e2: b0:4e:ce:a7:06:b4:fc:c3:52:57:ad:d1:2e:03:63:c5:41:ea: e9:46:e1:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgxNjYxMTAvBgNVBAUTKDcyNTRERThDQjlCMzM5OTQ1NTQzRDg3RThFQjA1NkYx NTNENTFGNTAwHhcNMjQwNTE1MDUxMDE1WhcNMjQwNTIyMDUxMDE1WjAYMRYwFAYD VQQDEw02NjQ0NDNiNy05OTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mTY3JHgPHBPOQkQg+MlHGFRLa206M3P6mSPTCTjnWpRsAmB0Pdr8DRrDaBg 3qef8qzsyU84W7UFGGmwQpNxfujP3Atkg0eB4am7XKLdEXxgWFTiH6hFGD8W3v+h /tlQP29Py9XTox4jvAsMIr/CMSwyiqsoWtFZcWQOfL7Fr8PoVohvErpSteYbd0rW BSCAvJgC0ucf9BFQ2A43oXCyVV007D/uhcLK6HzxaXpT+jqzc5vZGZFSvL3H1v/C Z5f5A8sPnQzlr9mCuOfEMZK128OoXh283znSxeJqbPFdjgVTfoSJcbvheksBrBzV DFbSKlWiC3EcstLPeHYAUBgi3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFl47Ssv DsxVPKL388kukcJfbqgMMB8GA1UdIwQYMBaAFHJU3oy5szmUVUPYfo6wVvFT1R9Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODE2Ni8zRTYxMjI5NDRD ODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9aUlZROWgtanJCVzhWUFZI MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsVGVqTG16T1pSVlE5aC1qckJXOFZQVkgxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODE2Ni8zRTYxMjI5NDRDODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9a UlZROWgtanJCVzhWUFZIMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4TH6EOgQWqv7p+DxNPIa3hFOoRRXpJCHu8ClI5tqOm+VsZokexxh1 gXfSVjQE+JrXkhrJ/SK9bI3PRKUNn0s3OZZ3RUgfxyTUXydfoec2xfhV/vfvadxg qdt3msDz/xakkZRDBsfDrzL8G7il1ezBIAby0P54lhBiqArAZ3+SXAKuVfXEzM/+ I/ZxS2f2guAllBAskhaeAwsSBFTw1ToRvcblJxQk2zcgtXNG0T/sXHt3vGshJUPo 5PlV+abMbidbGmRl2I6Hy/UP7k3l9HUVpM32CrfV82lj375DuhTTnVwmYmKTUZ5y gOKwTs6nBrT8w1JXrdEuA2PFQerpRuFp -----END CERTIFICATE-----Generated at Wed May 15 06:10:18 2024 by rpki-client on console-ams.rpki-client.org