$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: e2RDdNMYDc581Unx6vsu44dpdNyo5kF7WlrurMpwJ20= Subject key identifier: 05:FA:13:A4:31:38:5C:B7:26:70:AD:E7:16:B4:04:F6:82:44:C6:4B Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0A29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0A1F Signing time: Fri 26 Apr 2024 20:34:55 +0000 Manifest this update: Fri 26 Apr 2024 20:34:55 +0000 Manifest next update: Fri 03 May 2024 20:34:55 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: fVI7ioYt3JM6VTdI9xrZLMJu2MfbjZpfjR5E3adeQ9E=) 2: 6DF2EF1A4A3411ED8523151BC4F9AE02.roa (hash: rKu5P/dZn5K2grrJn8pRrFKNalUkL4kGoQzjtM5Tawo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 20:34:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2601 (0xa29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Apr 26 20:34:55 2024 GMT Not After : May 3 20:34:55 2024 GMT Subject: CN=662c0fef-10df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:97:a6:28:9e:20:8e:a3:ff:6e:79:53:05:8e: ce:20:06:af:1c:61:78:b9:28:2a:f8:e6:57:91:e3: 5f:74:f5:30:34:09:d9:89:99:3a:5e:4b:2c:1f:2b: 1a:79:f6:e3:ba:00:7d:3c:0a:78:0a:7f:44:3f:52: 96:34:d7:f3:bc:78:70:2f:1a:04:a7:26:ad:e0:43: 80:c1:15:ba:02:85:e0:6f:f5:90:e9:6b:16:3a:18: bb:92:a5:5b:13:c2:2b:8f:19:f0:8b:3c:16:4a:14: 54:8e:7e:56:0d:61:f1:d8:d2:a7:c9:20:60:f6:12: 0d:b5:2d:5d:76:e6:b1:b5:7a:d2:46:0d:6a:bd:3d: 53:ed:c9:70:ab:63:02:dd:27:7e:0a:fd:e9:ee:37: e5:c6:bb:fc:6f:0b:f8:39:07:8f:13:1a:d8:c1:ce: ba:40:11:ba:77:e0:5b:0e:bc:f7:45:6f:d8:44:64: 19:f5:fe:e9:90:8b:50:b5:ec:ad:20:f9:40:9a:b1: 30:59:a5:22:44:5e:fa:d2:35:14:af:52:52:7b:95: b7:f4:20:b2:a1:02:3e:39:d7:58:f3:2c:83:a5:e4: ee:07:53:66:c9:92:c3:56:2a:3e:ea:cb:06:4d:b2: 2e:b9:75:32:e1:e1:0e:90:b7:7c:82:5f:5c:3c:93: 66:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FA:13:A4:31:38:5C:B7:26:70:AD:E7:16:B4:04:F6:82:44:C6:4B X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:25:6d:18:69:af:04:16:15:da:01:4e:d2:1a:a6:ae:6c:04: c6:44:a1:16:d2:ae:41:82:6f:a7:97:d5:2c:e6:7a:58:21:77: a1:26:17:6e:f5:cd:e3:b1:43:ee:fa:69:94:a6:33:09:88:c3: 06:f6:cc:c9:ce:28:6b:70:af:a9:4b:af:0e:60:eb:67:0e:59: ed:30:1c:52:34:fa:9c:39:3e:05:ac:7d:63:ee:e7:ff:85:52: 1b:77:e1:a3:00:88:f5:d6:bd:51:15:8e:8d:de:12:05:36:da: 7c:f5:0b:f9:24:aa:50:71:35:6d:8b:1a:5e:d9:e9:75:4d:62: 3f:3c:82:e6:3b:5b:17:32:3e:69:a8:c9:31:ab:3f:ab:0c:3e: e9:33:6a:93:48:95:e2:6e:ae:59:85:40:5a:90:50:1f:cf:f7: 4a:3c:e6:41:43:b3:83:24:aa:27:65:0a:d8:7b:51:d7:eb:0b: 94:9a:bf:0d:20:77:86:87:5d:45:ae:c3:71:dc:5a:69:f4:27: ac:e0:76:16:1b:f4:a0:9b:7c:0c:10:fd:46:e4:34:3b:6b:ed: cc:67:8c:ba:fa:14:12:65:63:d0:bd:23:4b:61:0d:6b:37:7d: f8:72:7d:9b:70:02:e6:60:ce:9f:f7:56:88:99:59:08:dc:c3: 93:8d:e7:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjQwNDI2MjAzNDU1WhcNMjQwNTAzMjAzNDU1WjAYMRYwFAYD VQQDEw02NjJjMGZlZi0xMGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZemKJ4gjqP/bnlTBY7OIAavHGF4uSgq+OZXkeNfdPUwNAnZiZk6XkssHysa efbjugB9PAp4Cn9EP1KWNNfzvHhwLxoEpyat4EOAwRW6AoXgb/WQ6WsWOhi7kqVb E8IrjxnwizwWShRUjn5WDWHx2NKnySBg9hINtS1dduaxtXrSRg1qvT1T7clwq2MC 3Sd+Cv3p7jflxrv8bwv4OQePExrYwc66QBG6d+BbDrz3RW/YRGQZ9f7pkItQteyt IPlAmrEwWaUiRF760jUUr1JSe5W39CCyoQI+OddY8yyDpeTuB1NmyZLDVio+6ssG TbIuuXUy4eEOkLd8gl9cPJNm/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAX6E6Qx OFy3JnCt5xa0BPaCRMZLMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrJW0Yaa8EFhXaAU7SGqaubATGRKEW0q5Bgm+nl9Us5npYIXehJhdu 9c3jsUPu+mmUpjMJiMMG9szJzihrcK+pS68OYOtnDlntMBxSNPqcOT4FrH1j7uf/ hVIbd+GjAIj11r1RFY6N3hIFNtp89Qv5JKpQcTVtixpe2el1TWI/PILmO1sXMj5p qMkxqz+rDD7pM2qTSJXibq5ZhUBakFAfz/dKPOZBQ7ODJKonZQrYe1HX6wuUmr8N IHeGh11FrsNx3Fpp9Ces4HYWG/Sgm3wMEP1G5DQ7a+3MZ4y6+hQSZWPQvSNLYQ1r N334cn2bcALmYM6f91aImVkI3MOTjecT -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:22 2024 by rpki-client on console-ams.rpki-client.org