$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft File: k32ZUe4fk_ysJDM7CD-dfy458Pk.mft (raw, json) Hash identifier: FaT3y+jyiz5z42QIh98jf/wZJ+T9p9avrdSc8d71t3s= Subject key identifier: 07:0A:07:A4:1A:81:64:E8:20:E3:43:07:2C:78:68:E1:75:E3:3F:B8 Authority key identifier: 93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 Certificate issuer: /CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Certificate serial: 07D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft Manifest number: 07CD Signing time: Thu 02 May 2024 22:10:01 +0000 Manifest this update: Thu 02 May 2024 22:10:01 +0000 Manifest next update: Thu 09 May 2024 22:10:01 +0000 Files and hashes: 1: k32ZUe4fk_ysJDM7CD-dfy458Pk.crl (hash: UOTuBVSVj64SgRrX7sMt+2iDjIDYzqf8BvQnUu60mXE=) 2: 6A3C327ABD1711EA8A3C8E20C4F9AE02.roa (hash: ZaOhtNpoJXpwbixd1fVCzbCopkeyjuePv/WgNhSqITE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2003 (0x7d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Validity Not Before: May 2 22:10:01 2024 GMT Not After : May 9 22:10:01 2024 GMT Subject: CN=66340f39-c233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a8:6e:a7:ba:db:01:ae:6a:92:c8:a5:35:16: 45:c2:61:23:f5:5c:b0:af:26:5d:61:4b:e5:70:09: 5e:c5:84:06:49:7f:9a:56:98:12:11:0f:0d:3c:79: f3:c7:64:97:0f:d0:de:e1:77:b4:b7:2b:33:88:1a: b7:b8:84:71:1c:ef:85:8f:fa:2a:bf:d7:41:0a:3a: c3:63:e1:65:6d:e4:c5:6d:68:e9:dd:60:de:82:f1: 5b:f3:7d:99:97:08:a4:7e:4d:7d:ab:1f:17:44:ed: db:42:15:e0:65:00:9e:d6:8c:4e:5c:47:22:69:b8: e0:73:bb:20:c1:21:4c:a8:59:7b:2a:b6:1a:8e:12: 4b:0f:b0:7b:01:83:e8:34:44:0e:27:c5:5e:b7:8f: 55:26:00:6e:3f:0f:35:9f:dc:8c:5c:87:4e:75:38: 38:d3:eb:93:fb:87:47:34:f6:27:19:cc:9e:c4:74: 6e:f3:a3:90:f6:f3:ad:41:45:a1:66:76:71:e4:4f: df:3b:a1:80:71:7b:eb:22:5a:8e:ce:a4:52:fb:b4: 39:3b:a5:06:61:97:a9:cb:a3:a0:af:97:ef:f4:50: fd:e4:ef:5c:bc:1f:41:ab:88:54:af:3b:4a:33:8f: 2f:cc:d7:e8:9f:59:94:0c:98:3c:a6:5a:aa:13:9c: 06:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:0A:07:A4:1A:81:64:E8:20:E3:43:07:2C:78:68:E1:75:E3:3F:B8 X509v3 Authority Key Identifier: keyid:93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:8a:8e:de:c2:08:ff:5a:fd:3a:3d:8a:4d:d2:82:46:cd:3d: 41:e7:d1:99:6c:a9:c4:d4:f2:b8:ee:00:8c:a1:cd:c1:eb:17: e7:2b:36:ff:c5:b6:ee:67:89:f3:ca:d0:51:5f:99:0f:7a:f4: 17:7c:75:42:e2:41:a8:a6:d7:6c:9c:a7:79:3b:6b:f6:19:2f: 59:eb:7c:77:cb:24:ef:84:55:fa:5e:b1:ed:8b:06:99:8b:cc: a7:75:35:65:92:e6:d6:29:65:5a:68:dc:90:43:6c:8f:d6:7c: 60:0a:da:23:93:d1:c5:9b:bb:b1:1b:d5:8a:b8:7b:3e:2e:24: 84:f1:ae:5d:b5:e0:12:1a:0e:a3:bf:2f:f0:be:66:09:49:7a: 08:6d:fb:f8:57:78:81:6c:97:ab:e8:ab:dd:0b:36:90:a2:79: ea:16:fe:9b:c3:32:ae:0c:e1:ec:1e:41:89:6b:0b:f2:75:68: 49:91:3a:7d:97:74:5a:cf:65:d1:6d:53:1a:d3:5c:a2:d7:7c: a6:b5:fb:db:9f:cb:06:a8:f5:c9:69:60:61:d8:ea:07:b7:ab: 3d:08:e9:3f:37:2b:7d:ce:9d:29:0d:44:99:06:a5:92:11:33: e6:db:cd:d2:4e:fe:44:a4:66:ee:14:a5:a6:ee:65:a6:55:cf: 0c:62:54:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4QzQxMTAvBgNVBAUTKDkzN0Q5OTUxRUUxRjkzRkNBQzI0MzMzQjA4M0Y5RDdG MkUzOUYwRjkwHhcNMjQwNTAyMjIxMDAxWhcNMjQwNTA5MjIxMDAxWjAYMRYwFAYD VQQDEw02NjM0MGYzOS1jMjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Khup7rbAa5qksilNRZFwmEj9VywryZdYUvlcAlexYQGSX+aVpgSEQ8NPHnz x2SXD9De4Xe0tysziBq3uIRxHO+Fj/oqv9dBCjrDY+FlbeTFbWjp3WDegvFb832Z lwikfk19qx8XRO3bQhXgZQCe1oxOXEciabjgc7sgwSFMqFl7KrYajhJLD7B7AYPo NEQOJ8Vet49VJgBuPw81n9yMXIdOdTg40+uT+4dHNPYnGcyexHRu86OQ9vOtQUWh ZnZx5E/fO6GAcXvrIlqOzqRS+7Q5O6UGYZepy6Ogr5fv9FD95O9cvB9Bq4hUrztK M48vzNfon1mUDJg8plqqE5wGjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcKB6Qa gWToIONDByx4aOF14z+4MB8GA1UdIwQYMBaAFJN9mVHuH5P8rCQzOwg/nX8uOfD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhDNC9DMjQ0QzgzQUJE MTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0ZmtfeXNKRE03Q0QtZGZ5NDU4 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szMlpVZTRma195c0pETTdDRC1kZnk0NThQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhDNC9DMjQ0QzgzQUJEMTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0Zmtf eXNKRE03Q0QtZGZ5NDU4UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQio7ewgj/Wv06PYpN0oJGzT1B59GZbKnE1PK47gCMoc3B6xfnKzb/ xbbuZ4nzytBRX5kPevQXfHVC4kGoptdsnKd5O2v2GS9Z63x3yyTvhFX6XrHtiwaZ i8yndTVlkubWKWVaaNyQQ2yP1nxgCtojk9HFm7uxG9WKuHs+LiSE8a5dteASGg6j vy/wvmYJSXoIbfv4V3iBbJer6KvdCzaQonnqFv6bwzKuDOHsHkGJawvydWhJkTp9 l3Raz2XRbVMa01yi13ymtfvbn8sGqPXJaWBh2OoHt6s9COk/Nyt9zp0pDUSZBqWS ETPm283STv5EpGbuFKWm7mWmVc8MYlSZ -----END CERTIFICATE-----Generated at Thu May 2 23:19:02 2024 by rpki-client on console-ams.rpki-client.org