$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: mzPY6ZSwCx7nsZ9kTlhAvog1f9LL23vrWICi6b3j6zk= Subject key identifier: FA:1A:A8:23:66:D7:75:6F:E9:A4:AF:66:37:9C:C1:33:5C:27:31:18 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 08F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 08E9 Signing time: Fri 26 Apr 2024 21:21:44 +0000 Manifest this update: Fri 26 Apr 2024 21:21:44 +0000 Manifest next update: Fri 03 May 2024 21:21:44 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: sD4NaRjDLT7R7nLSPkar1SmW7sx8MqgzhDMW4us4Zc0=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: Ow7NzKfObtU3nJ+PTgO9i8wtAOwCWAeJAoXGlU+XOYA=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: +ZoYuDO9wAVloWs+RKSdtnSjreDZ79KVPWBVCdqCAGk=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: Q5obTQjwhx08MlU24mGh4MlMfXOpa3C7cJfd8GFAt6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2297 (0x8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Apr 26 21:21:44 2024 GMT Not After : May 3 21:21:44 2024 GMT Subject: CN=662c1ae8-392e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:91:9f:4c:45:41:ac:18:de:51:4d:82:76:af: 3c:5c:38:8e:39:90:1d:00:b2:48:56:9b:9c:ad:ed: d4:ba:44:62:59:e6:34:01:e0:af:5f:bd:4d:c6:ab: e4:79:6a:b9:37:e5:53:41:08:5e:ab:90:e8:5b:d9: 60:0f:d7:ac:3f:12:bb:2f:04:6c:56:b5:4f:93:06: a7:62:e9:75:1d:6e:07:82:85:5e:f0:cb:24:dc:e2: 3d:b4:d7:7a:8a:fc:ad:0c:d4:db:4a:93:0e:cf:a6: 7d:a6:21:2d:aa:b1:8f:52:a2:e4:d6:c6:f2:52:88: 42:22:63:67:ae:06:12:0c:ba:e7:8b:4d:a0:88:6d: fd:79:0f:3f:87:7b:31:37:31:18:5a:69:8d:15:04: c1:06:f8:20:f8:bf:f3:05:38:58:d6:c4:93:28:bd: 74:2e:0b:38:52:0a:38:2b:63:bf:63:b7:c3:a7:03: c2:b5:38:d6:f6:a2:05:21:e4:42:74:e7:8a:fe:0a: 85:39:22:17:b8:26:e7:5e:d4:8f:f8:69:1c:2e:89: f5:36:54:d6:3f:0d:0f:05:08:99:a2:92:02:6c:4d: 94:07:f0:f4:bf:89:4f:e6:b3:cb:f4:ce:30:fd:39: 78:d5:37:2f:aa:31:89:b7:e1:7e:04:98:93:88:af: 04:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1A:A8:23:66:D7:75:6F:E9:A4:AF:66:37:9C:C1:33:5C:27:31:18 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:15:0c:54:0e:1f:7e:a6:65:7d:bb:07:10:05:a2:97:20:65: 47:23:ef:ed:02:3d:85:02:4f:ca:3f:8b:1f:b3:28:f5:35:2b: ce:c4:5f:8c:97:9c:ef:32:02:c6:4f:be:89:60:0b:de:d9:5c: ff:aa:c7:f9:95:32:a6:31:98:60:11:29:1d:a0:b6:1d:8c:aa: 38:2f:12:25:96:59:6e:28:c2:a0:f0:07:4b:78:43:01:54:6d: df:93:e2:e1:55:ec:14:8d:4b:c9:a9:c2:1c:7d:cc:b3:08:58: 41:aa:5a:11:70:e2:26:11:41:45:a5:3b:4f:37:c4:7e:66:c5: 2d:27:86:6d:0b:67:48:61:9e:01:d7:b7:c3:c8:93:06:6a:e5: 85:82:98:69:76:5a:90:ab:5f:b5:1d:95:e5:ee:99:2c:95:cb: fe:4f:7b:86:ed:f4:e2:5a:61:63:e9:62:44:a0:ae:ca:8c:9f: b0:b1:91:c0:78:39:a3:21:40:52:3c:40:79:cb:1d:e5:11:2a: 76:7e:50:2e:d1:64:ea:fa:8c:11:de:0f:08:9b:c5:f0:29:63: 5f:5a:85:9a:e8:c4:04:2d:2b:1d:00:9a:bb:8b:0d:0a:10:bf: 05:32:1b:ef:75:a4:34:3a:be:91:73:fb:b7:a4:0c:8d:d5:a1: 1a:07:8b:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjQwNDI2MjEyMTQ0WhcNMjQwNTAzMjEyMTQ0WjAYMRYwFAYD VQQDEw02NjJjMWFlOC0zOTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZGfTEVBrBjeUU2Cdq88XDiOOZAdALJIVpucre3UukRiWeY0AeCvX71Nxqvk eWq5N+VTQQheq5DoW9lgD9esPxK7LwRsVrVPkwanYul1HW4HgoVe8Msk3OI9tNd6 ivytDNTbSpMOz6Z9piEtqrGPUqLk1sbyUohCImNnrgYSDLrni02giG39eQ8/h3sx NzEYWmmNFQTBBvgg+L/zBThY1sSTKL10Lgs4Ugo4K2O/Y7fDpwPCtTjW9qIFIeRC dOeK/gqFOSIXuCbnXtSP+GkcLon1NlTWPw0PBQiZopICbE2UB/D0v4lP5rPL9M4w /Tl41TcvqjGJt+F+BJiTiK8ENQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPoaqCNm 13Vv6aSvZjecwTNcJzEYMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoFQxUDh9+pmV9uwcQBaKXIGVHI+/tAj2FAk/KP4sfsyj1NSvOxF+M l5zvMgLGT76JYAve2Vz/qsf5lTKmMZhgESkdoLYdjKo4LxIlllluKMKg8AdLeEMB VG3fk+LhVewUjUvJqcIcfcyzCFhBqloRcOImEUFFpTtPN8R+ZsUtJ4ZtC2dIYZ4B 17fDyJMGauWFgphpdlqQq1+1HZXl7pkslcv+T3uG7fTiWmFj6WJEoK7KjJ+wsZHA eDmjIUBSPEB5yx3lESp2flAu0WTq+owR3g8Im8XwKWNfWoWa6MQELSsdAJq7iw0K EL8FMhvvdaQ0Or6Rc/u3pAyN1aEaB4v3 -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:08 2024 by rpki-client on console-ams.rpki-client.org