$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: /fdAVv4Igws1UQDrNulw7P3l9UiCdSaYSPYJUPcPI4M= Subject key identifier: E8:3F:45:25:69:35:41:BE:AB:9D:1A:F9:2E:34:61:31:52:23:A5:81 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 08C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 08B8 Signing time: Tue 30 Apr 2024 21:49:12 +0000 Manifest this update: Tue 30 Apr 2024 21:49:12 +0000 Manifest next update: Tue 07 May 2024 21:49:12 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: HoJtrBrHPbCoSD4Ckd6u8SQVJ6PO0Tzqk1SiVsPNmUo=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: eNqcJy9MbfULRfN7s1K38VlPL6Fzdy+Md4Shbxk/lNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2240 (0x8c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Apr 30 21:49:12 2024 GMT Not After : May 7 21:49:12 2024 GMT Subject: CN=66316758-261b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1a:fe:32:32:79:87:26:ce:e4:10:7f:c8:e6: cc:c4:e1:e1:d3:02:c6:a3:88:58:39:d7:9e:1a:d1: 3f:c0:bb:7f:4e:55:89:ea:81:08:ac:06:bc:e4:df: 29:25:03:c8:7d:a7:4d:c5:05:48:fd:d4:0f:4e:c7: c8:6d:30:72:64:d4:45:1b:34:ee:fc:31:89:54:27: 96:85:67:c7:ab:3c:f3:27:29:0b:26:fc:2f:a9:2c: 2e:f4:53:15:5d:62:bf:24:4e:7b:84:30:44:33:27: e1:9e:7a:39:f6:e3:50:61:03:f0:cc:3d:00:a6:0f: 4c:ef:18:f0:70:09:eb:d0:8b:fc:62:f4:38:34:a4: 55:58:cb:65:b1:8c:67:80:29:24:33:1f:5d:59:d5: e1:75:a0:12:56:35:52:de:73:af:19:e8:f0:72:e5: d4:fb:e9:fc:1d:bc:5e:0f:2f:92:1d:b3:c2:72:96: ef:59:21:bd:18:1d:ac:b6:54:54:f5:19:f8:3f:ec: 7f:92:d4:23:43:95:68:f4:e8:35:47:ef:1c:0e:46: 6e:fb:23:cb:7a:3f:df:2a:84:46:f5:df:73:e8:67: 62:36:8e:f5:6d:25:4e:5e:d9:77:20:76:cf:b9:1b: 82:2f:4e:4c:08:e7:2d:29:07:d8:7e:5d:b1:dd:f6: c8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3F:45:25:69:35:41:BE:AB:9D:1A:F9:2E:34:61:31:52:23:A5:81 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:fa:44:38:39:05:da:ec:a4:02:56:cf:6b:50:bb:ea:bd:a3: 24:2a:39:7e:ac:26:1e:fc:69:ea:f0:0e:3d:88:04:ca:ff:c0: 2c:c8:a7:35:31:7f:2d:14:0d:d6:c3:fa:ca:8d:9f:15:a2:5b: e8:83:fc:2d:12:f5:63:af:10:14:63:92:bf:09:70:cf:97:df: bb:5b:d0:bb:d7:f4:71:92:69:b6:f4:cd:82:ba:60:99:6a:c5: eb:db:f3:df:e5:aa:73:24:64:f2:40:6e:85:f8:6a:05:d1:d2: 7b:33:ea:e9:5f:4e:a6:3b:3c:64:c8:8b:ae:c6:0b:81:d9:d9: ae:99:73:9d:10:c1:25:18:90:22:e6:3a:f4:35:b1:46:ab:ee: a7:31:f7:bf:6f:f5:c2:d1:9a:0e:67:da:a6:7e:33:aa:7d:25: e2:a6:e9:49:a0:9e:16:58:86:dc:60:11:6a:ec:e1:00:7c:7f: 8c:e5:26:5b:3e:28:bd:1b:ac:6c:1f:88:2d:82:ca:72:aa:d9: 13:93:c8:98:e0:f1:06:83:7b:cf:fd:86:a6:72:a3:23:87:32: 57:1d:d7:8a:31:3c:c9:0e:4a:c0:de:bd:d5:0b:7c:7b:aa:78: 7f:05:4b:a8:1a:61:ff:f9:79:e3:35:76:2e:8e:b3:f8:92:12: d8:40:6e:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjQwNDMwMjE0OTEyWhcNMjQwNTA3MjE0OTEyWjAYMRYwFAYD VQQDEw02NjMxNjc1OC0yNjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshr+MjJ5hybO5BB/yObMxOHh0wLGo4hYOdeeGtE/wLt/TlWJ6oEIrAa85N8p JQPIfadNxQVI/dQPTsfIbTByZNRFGzTu/DGJVCeWhWfHqzzzJykLJvwvqSwu9FMV XWK/JE57hDBEMyfhnno59uNQYQPwzD0Apg9M7xjwcAnr0Iv8YvQ4NKRVWMtlsYxn gCkkMx9dWdXhdaASVjVS3nOvGejwcuXU++n8HbxeDy+SHbPCcpbvWSG9GB2stlRU 9Rn4P+x/ktQjQ5Vo9Og1R+8cDkZu+yPLej/fKoRG9d9z6GdiNo71bSVOXtl3IHbP uRuCL05MCOctKQfYfl2x3fbItQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOg/RSVp NUG+q50a+S40YTFSI6WBMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp+kQ4OQXa7KQCVs9rULvqvaMkKjl+rCYe/Gnq8A49iATK/8AsyKc1 MX8tFA3Ww/rKjZ8Volvog/wtEvVjrxAUY5K/CXDPl9+7W9C71/Rxkmm29M2CumCZ asXr2/Pf5apzJGTyQG6F+GoF0dJ7M+rpX06mOzxkyIuuxguB2dmumXOdEMElGJAi 5jr0NbFGq+6nMfe/b/XC0ZoOZ9qmfjOqfSXipulJoJ4WWIbcYBFq7OEAfH+M5SZb Pii9G6xsH4gtgspyqtkTk8iY4PEGg3vP/YamcqMjhzJXHdeKMTzJDkrA3r3VC3x7 qnh/BUuoGmH/+XnjNXYujrP4khLYQG5f -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:08 2024 by rpki-client on console-ams.rpki-client.org