$ rpki-client -vvf rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft File: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft (raw, json) Hash identifier: BTLjPiVOL3nFhoou1UzoPcfBMLa/ukJYRqC982YRpUU= Subject key identifier: 96:A4:10:24:C9:06:3F:EE:2B:07:61:60:3A:4F:A7:C9:B5:72:6A:1A Authority key identifier: 8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 Certificate issuer: /CN=A919DD2D/serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Certificate serial: 112A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft Manifest number: 1124 Signing time: Tue 30 Apr 2024 18:03:43 +0000 Manifest this update: Tue 30 Apr 2024 18:03:43 +0000 Manifest next update: Tue 07 May 2024 18:03:43 +0000 Files and hashes: 1: jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl (hash: eQRAevuSKrxXAx9MsJAJ8WtPbREFZzmvSBsWqG+JFlM=) 2: A295F860E71011E8899C3917C4F9AE02.roa (hash: u/IYCOtHZEv0BJCOwv8wDmLpOf4iqAeSbenmkSkZoe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:03:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4394 (0x112a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DD2D/serialNumber=8CF423980FD3A7F67EC5F4A543A203A53E3CE676 Validity Not Before: Apr 30 18:03:43 2024 GMT Not After : May 7 18:03:43 2024 GMT Subject: CN=6631327f-429b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:dc:35:eb:2c:79:3d:06:a5:38:e8:d6:dc:98: 69:cc:f4:69:0d:ef:b1:cb:8e:fb:c8:39:c5:c2:d4: c9:d9:7d:0a:bf:aa:bc:60:48:86:ca:95:5c:04:32: 97:cb:b7:83:dc:fb:d0:8d:49:ac:34:be:82:47:4c: 5e:3c:11:6d:47:e2:1b:45:4d:67:22:3b:aa:b8:a6: 0b:51:8c:29:6d:d5:d6:47:7c:89:90:8f:31:b2:27: df:74:1c:dd:18:f5:86:c6:7a:7d:59:55:c2:ea:b2: 7c:a1:18:f0:5d:fa:f1:f3:ab:ca:c5:37:4a:42:4a: e7:92:32:0c:b5:42:f4:e7:21:14:42:8a:96:e7:29: 65:46:f4:d2:86:8f:f4:6c:7c:6a:83:04:3d:83:3e: 1f:55:56:cc:0d:e7:78:d9:5e:01:6f:b5:39:99:42: ee:0e:d2:b4:d9:83:da:b8:df:9b:db:0c:5e:95:5c: c7:48:a8:4c:b8:e0:00:20:3d:c9:ee:98:2e:ba:16: 37:69:0d:df:07:c1:ef:cd:b6:79:cc:52:ca:71:e9: d9:29:a1:b8:49:1d:cc:c7:9a:2f:f2:dc:d7:40:38: fb:9d:00:1a:3b:04:08:8f:a5:76:03:78:a1:7e:62: cc:dc:39:e7:c0:7a:42:e0:e5:2f:24:d7:f7:8c:87: 41:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A4:10:24:C9:06:3F:EE:2B:07:61:60:3A:4F:A7:C9:B5:72:6A:1A X509v3 Authority Key Identifier: keyid:8C:F4:23:98:0F:D3:A7:F6:7E:C5:F4:A5:43:A2:03:A5:3E:3C:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DD2D/9D12695CE70E11E89A963D11C4F9AE02/jPQjmA_Tp_Z-xfSlQ6IDpT485nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:45:4f:0f:d1:7e:32:1d:a1:ca:64:e9:d6:01:5c:35:5c:87: d5:93:c9:38:47:de:48:38:3c:e9:13:5e:60:43:0c:2e:e9:da: aa:88:26:bb:4f:1b:86:da:b3:c5:c4:02:e2:36:c7:5c:db:42: 44:5a:c6:15:c0:0a:b6:27:99:aa:65:55:fd:12:3c:98:38:82: 6c:11:2b:3e:cd:41:ef:b5:a2:89:d0:00:d4:95:75:75:3b:78: b9:ab:e1:5d:82:93:30:92:bb:81:82:7a:49:8e:90:d6:22:99: 24:8e:93:16:af:55:b0:c6:97:09:e8:e1:8c:b1:97:cc:bd:a3: 4e:89:b4:83:c0:32:85:34:92:a8:53:f6:ce:2a:98:8b:e9:b8: b3:5d:45:bd:23:d3:44:14:22:72:bb:b8:c8:4b:50:fc:75:2c: a9:0a:3a:bd:8c:e4:e0:94:5c:f7:af:22:0a:31:eb:02:b8:ed: 94:67:b2:43:0a:25:ba:01:01:8e:d9:a6:6d:6d:c0:ca:f7:42: 3f:b3:fb:d9:4d:80:cb:b3:0d:1b:c9:11:87:68:c6:ca:84:16: 77:69:28:5e:eb:80:08:82:36:64:e4:92:be:44:92:f9:41:cf: 6b:0f:2b:02:6d:99:04:2e:92:5e:c9:81:ed:66:92:b4:ed:65: 2a:1d:a6:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUREMkQxMTAvBgNVBAUTKDhDRjQyMzk4MEZEM0E3RjY3RUM1RjRBNTQzQTIwM0E1 M0UzQ0U2NzYwHhcNMjQwNDMwMTgwMzQzWhcNMjQwNTA3MTgwMzQzWjAYMRYwFAYD VQQDEw02NjMxMzI3Zi00MjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNw16yx5PQalOOjW3JhpzPRpDe+xy477yDnFwtTJ2X0Kv6q8YEiGypVcBDKX y7eD3PvQjUmsNL6CR0xePBFtR+IbRU1nIjuquKYLUYwpbdXWR3yJkI8xsiffdBzd GPWGxnp9WVXC6rJ8oRjwXfrx86vKxTdKQkrnkjIMtUL05yEUQoqW5yllRvTSho/0 bHxqgwQ9gz4fVVbMDed42V4Bb7U5mULuDtK02YPauN+b2wxelVzHSKhMuOAAID3J 7pguuhY3aQ3fB8HvzbZ5zFLKcenZKaG4SR3Mx5ov8tzXQDj7nQAaOwQIj6V2A3ih fmLM3DnnwHpC4OUvJNf3jIdBlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJakECTJ Bj/uKwdhYDpPp8m1cmoaMB8GA1UdIwQYMBaAFIz0I5gP06f2fsX0pUOiA6U+POZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REQyRC85RDEyNjk1Q0U3 MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBfWi14ZlNsUTZJRHBUNDg1 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pQUWptQV9UcF9aLXhmU2xRNklEcFQ0ODVuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REQyRC85RDEyNjk1Q0U3MEUxMUU4OUE5NjNEMTFDNEY5QUUwMi9qUFFqbUFfVHBf Wi14ZlNsUTZJRHBUNDg1blkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbRU8P0X4yHaHKZOnWAVw1XIfVk8k4R95IODzpE15gQwwu6dqqiCa7 TxuG2rPFxALiNsdc20JEWsYVwAq2J5mqZVX9EjyYOIJsESs+zUHvtaKJ0ADUlXV1 O3i5q+FdgpMwkruBgnpJjpDWIpkkjpMWr1WwxpcJ6OGMsZfMvaNOibSDwDKFNJKo U/bOKpiL6bizXUW9I9NEFCJyu7jIS1D8dSypCjq9jOTglFz3ryIKMesCuO2UZ7JD CiW6AQGO2aZtbcDK90I/s/vZTYDLsw0byRGHaMbKhBZ3aShe64AIgjZk5JK+RJL5 Qc9rDysCbZkELpJeyYHtZpK07WUqHaZD -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:16 2024 by rpki-client on console-ams.rpki-client.org