$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: r/kdQYertu8t5t7JyVlvgbqiD8brssvNEzzO8uSbtkY= Subject key identifier: 86:53:46:6C:C0:22:FA:C6:D5:AD:02:8C:3D:F5:C8:AD:D3:FC:5B:F5 Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 0235 Signing time: Wed 01 May 2024 04:19:28 +0000 Manifest this update: Wed 01 May 2024 04:19:28 +0000 Manifest next update: Wed 08 May 2024 04:19:28 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: +e/MA8ZPOC/PHETOZwcDtHBKPH8VkUUaJVP4nX/yS7U=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: hytWkUSCqorBjsVGcfJr5jv9464HjP/9t0YsgMlNUeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: May 1 04:19:28 2024 GMT Not After : May 8 04:19:28 2024 GMT Subject: CN=6631c2d0-9cd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b6:66:9c:14:95:15:2d:cc:8f:1f:5d:b1:52: e6:62:5c:3a:7b:5d:ac:11:44:b9:fc:d5:1d:6d:93: 3d:fe:19:18:04:32:84:39:08:55:19:c0:92:6a:18: 1e:08:b4:33:5e:ae:25:1d:c9:1f:52:ff:2b:76:81: 66:5e:01:0a:6e:d9:4a:08:18:46:a7:b5:b6:89:78: 1e:1b:9e:18:3b:e0:aa:8b:e6:45:f6:82:46:a9:44: b7:55:4a:f7:c1:8f:b5:d1:0b:9f:66:36:58:1d:ce: 05:df:31:22:c0:2e:be:de:ab:61:f7:a9:72:00:a3: 8c:02:a2:49:db:87:28:ec:3f:0b:6b:5e:82:4d:08: 38:99:ce:31:71:31:01:0d:b5:8a:1c:cf:6c:da:90: fc:94:42:09:6a:14:01:ba:50:02:24:8d:fd:ab:53: 4c:fd:0c:8f:cd:12:1c:5b:35:a4:26:65:36:2d:bb: 38:47:01:39:f0:31:7e:20:08:bd:4d:cf:83:f3:c3: 9f:54:26:c4:6a:a7:73:9c:83:08:c8:04:06:0d:ef: 90:f6:ad:37:54:b9:11:38:23:d9:0d:f1:5b:05:55: 4a:f9:c2:d0:de:0f:4c:7c:42:f6:53:4a:a4:d7:c4: 99:f3:16:2a:e1:b9:00:7a:e4:2f:7c:6b:4d:9b:58: c6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:53:46:6C:C0:22:FA:C6:D5:AD:02:8C:3D:F5:C8:AD:D3:FC:5B:F5 X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:9d:71:53:c9:31:6d:cd:a8:8d:1c:20:0a:37:93:82:19:bc: cd:f4:3d:dd:e5:cf:12:67:3e:a5:2c:d2:4a:6d:2d:de:ae:77: 17:a0:f5:b1:8d:ab:35:2d:a6:14:ea:3c:ad:91:a2:af:1b:7f: db:3f:34:be:34:77:59:bb:34:9e:c9:43:24:20:6e:d2:2f:c9: 69:98:be:94:9c:0f:dd:98:a9:ad:fc:e1:6b:fd:d4:66:c5:81: 3d:ca:d9:ef:41:b6:2d:c2:24:cd:71:36:43:c1:2b:20:ae:a9: 27:75:17:2a:c5:cd:33:6b:3d:4f:a1:11:6a:62:ad:80:b2:b7: fc:3d:92:78:0e:80:25:5b:f4:e3:fb:11:4e:46:df:a2:76:57: be:20:a5:03:9f:9c:36:cf:d9:0c:be:d5:3d:5b:c4:34:4c:8a: 5f:49:69:ef:47:91:d7:bd:06:d3:11:e1:de:62:a9:b5:df:ee: 6b:2c:b7:2e:a6:ef:b7:73:b9:06:f1:33:3f:43:95:4e:4c:0f: ac:0c:5e:b5:5d:3a:61:b3:ea:31:f7:87:74:8e:be:cf:10:08: 13:fe:12:77:7f:78:56:f2:26:74:0b:13:ac:87:26:33:87:2f: b9:cc:55:8a:16:b2:87:23:af:16:d9:d8:29:e5:4a:7d:53:dd: 30:4b:42:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjQwNTAxMDQxOTI4WhcNMjQwNTA4MDQxOTI4WjAYMRYwFAYD VQQDEw02NjMxYzJkMC05Y2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7ZmnBSVFS3Mjx9dsVLmYlw6e12sEUS5/NUdbZM9/hkYBDKEOQhVGcCSahge CLQzXq4lHckfUv8rdoFmXgEKbtlKCBhGp7W2iXgeG54YO+Cqi+ZF9oJGqUS3VUr3 wY+10QufZjZYHc4F3zEiwC6+3qth96lyAKOMAqJJ24co7D8La16CTQg4mc4xcTEB DbWKHM9s2pD8lEIJahQBulACJI39q1NM/QyPzRIcWzWkJmU2Lbs4RwE58DF+IAi9 Tc+D88OfVCbEaqdznIMIyAQGDe+Q9q03VLkROCPZDfFbBVVK+cLQ3g9MfEL2U0qk 18SZ8xYq4bkAeuQvfGtNm1jGVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZTRmzA IvrG1a0CjD31yK3T/Fv1MB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDnXFTyTFtzaiNHCAKN5OCGbzN9D3d5c8SZz6lLNJKbS3erncXoPWx jas1LaYU6jytkaKvG3/bPzS+NHdZuzSeyUMkIG7SL8lpmL6UnA/dmKmt/OFr/dRm xYE9ytnvQbYtwiTNcTZDwSsgrqkndRcqxc0zaz1PoRFqYq2Asrf8PZJ4DoAlW/Tj +xFORt+idle+IKUDn5w2z9kMvtU9W8Q0TIpfSWnvR5HXvQbTEeHeYqm13+5rLLcu pu+3c7kG8TM/Q5VOTA+sDF61XTphs+ox94d0jr7PEAgT/hJ3f3hW8iZ0CxOshyYz hy+5zFWKFrKHI68W2dgp5Up9U90wS0J1 -----END CERTIFICATE-----Generated at Wed May 1 05:55:43 2024 by rpki-client on console-ams.rpki-client.org