$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft File: 9R3GadtZYYTQv5SqHkHl3hWejaU.mft (raw, json) Hash identifier: r1tDVgMZevFecrqeR4k/eGviwpfWHvoA6TP1hbmJ+3w= Subject key identifier: BE:0E:25:45:88:53:8B:A6:66:50:1F:DB:AE:9E:11:F1:9C:95:92:EE Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 Certificate issuer: /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Certificate serial: 0B8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft Manifest number: 0B82 Signing time: Sat 04 May 2024 19:34:06 +0000 Manifest this update: Sat 04 May 2024 19:34:06 +0000 Manifest next update: Sat 11 May 2024 19:34:06 +0000 Files and hashes: 1: 9R3GadtZYYTQv5SqHkHl3hWejaU.crl (hash: ZMCmn4QYLk2OHWs+Yx0Dmj3FrpUyIudzltZN1BuvL6g=) 2: 2DE1069C050311EA93648E33C4F9AE02.roa (hash: zDl80I2OXRgu8XAGzajWbluuoVqJ4qa8l1cE9aEJ0WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Validity Not Before: May 4 19:34:06 2024 GMT Not After : May 11 19:34:06 2024 GMT Subject: CN=66368dae-14b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:33:15:fd:78:54:9e:20:be:72:1b:cf:a5:ba: ce:3a:8c:d5:87:c8:70:e7:0f:90:d3:e7:0b:38:c9: aa:4f:4a:36:19:9e:b7:b6:d7:ac:48:28:0d:79:74: 2e:f9:ad:b7:bc:c8:0f:00:a9:96:da:77:ab:a3:11: ff:e6:1c:36:61:10:fd:62:6d:3d:c2:db:43:41:e2: a7:81:0c:f4:86:3a:49:14:30:bd:14:40:64:85:b6: b3:f1:ff:81:47:91:c4:3c:d2:9b:da:d2:73:c7:38: e9:3b:a2:60:ad:81:fe:d0:41:d7:54:59:b4:9e:50: a8:1d:9c:22:4b:db:9d:bd:d7:d3:de:16:aa:d2:6b: 66:9d:32:96:19:de:c3:5a:d0:ee:c7:e0:cb:8f:e0: 8b:cf:58:c6:9a:32:d1:7c:ed:f0:37:1d:d0:0e:50: 67:9d:f0:7e:40:44:e8:0d:ce:c9:32:39:34:c0:1d: 20:12:d9:f8:13:45:f3:71:45:f8:e2:a1:86:89:d7: b3:40:eb:37:f0:43:5a:61:d4:ef:d3:17:93:97:a5: 71:74:6f:cc:65:ff:1e:a6:43:0a:96:8c:cb:f9:84: b4:49:cc:19:a2:9d:71:c6:2a:64:c2:d8:d1:5b:cd: 6e:32:e2:15:66:72:60:b8:b3:99:81:8b:0d:0d:6b: 0b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0E:25:45:88:53:8B:A6:66:50:1F:DB:AE:9E:11:F1:9C:95:92:EE X509v3 Authority Key Identifier: keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:e8:9e:a8:9b:ef:91:74:5b:60:b2:a0:a3:fd:a9:6a:12:f9: 9e:22:d6:05:73:c6:e3:2a:01:d8:3b:55:6e:d1:4c:54:a8:23: 6f:cc:12:5b:3f:a6:d3:21:3b:f2:a6:4f:43:5e:94:bb:f6:4e: 1c:fa:ee:4f:84:da:26:dc:8b:7c:77:2d:e4:2a:a1:4a:cf:ed: 9a:5a:14:3f:c6:ec:01:66:02:fc:6c:47:c6:7b:da:82:bf:7a: 5e:8a:f4:f6:20:63:6b:a0:80:54:79:ed:14:a9:a0:11:45:8d: 85:48:79:d6:a1:fe:48:6c:f5:c4:08:45:00:d7:56:d7:6c:4d: df:8c:e6:a5:12:20:99:ad:08:f8:80:95:52:bb:18:5b:7f:fd: ab:78:50:b8:9d:f6:17:46:af:23:fc:e5:94:cf:ef:87:97:e5: 31:aa:e7:ba:a5:12:5a:3d:0f:ba:29:74:1a:5c:2a:cd:c8:27: 75:ef:81:98:5d:f1:8d:89:ad:56:2c:ae:8b:4b:1d:0a:ac:b1: e2:7c:4c:76:6a:a9:77:b9:a4:5a:25:97:92:68:fc:58:ed:79: a7:d3:8e:a0:a5:ee:1b:b6:3a:67:85:fa:88:cd:67:b2:ff:59: 5d:6b:39:44:37:57:64:c5:06:23:57:b4:8b:9b:04:3e:9b:01: 73:53:6b:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNENTAxMTAvBgNVBAUTKEY1MURDNjY5REI1OTYxODREMEJGOTRBQTFFNDFFNURF MTU5RThEQTUwHhcNMjQwNTA0MTkzNDA2WhcNMjQwNTExMTkzNDA2WjAYMRYwFAYD VQQDEw02NjM2OGRhZS0xNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojMV/XhUniC+chvPpbrOOozVh8hw5w+Q0+cLOMmqT0o2GZ63ttesSCgNeXQu +a23vMgPAKmW2neroxH/5hw2YRD9Ym09wttDQeKngQz0hjpJFDC9FEBkhbaz8f+B R5HEPNKb2tJzxzjpO6JgrYH+0EHXVFm0nlCoHZwiS9udvdfT3haq0mtmnTKWGd7D WtDux+DLj+CLz1jGmjLRfO3wNx3QDlBnnfB+QEToDc7JMjk0wB0gEtn4E0XzcUX4 4qGGidezQOs38ENaYdTv0xeTl6VxdG/MZf8epkMKlozL+YS0ScwZop1xxipkwtjR W81uMuIVZnJguLOZgYsNDWsL9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4OJUWI U4umZlAf266eEfGclZLuMB8GA1UdIwQYMBaAFPUdxmnbWWGE0L+Uqh5B5d4Vno2l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q1MC8xNTQ2NEZENjA1 MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZVFF2NVNxSGtIbDNoV2Vq YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSM0dhZHRaWVlUUXY1U3FIa0hsM2hXZWphVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Q1MC8xNTQ2NEZENjA1MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZ VFF2NVNxSGtIbDNoV2VqYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx6J6om++RdFtgsqCj/alqEvmeItYFc8bjKgHYO1Vu0UxUqCNvzBJb P6bTITvypk9DXpS79k4c+u5PhNom3It8dy3kKqFKz+2aWhQ/xuwBZgL8bEfGe9qC v3peivT2IGNroIBUee0UqaARRY2FSHnWof5IbPXECEUA11bXbE3fjOalEiCZrQj4 gJVSuxhbf/2reFC4nfYXRq8j/OWUz++Hl+Uxque6pRJaPQ+6KXQaXCrNyCd174GY XfGNia1WLK6LSx0KrLHifEx2aql3uaRaJZeSaPxY7Xmn046gpe4btjpnhfqIzWey /1ldazlEN1dkxQYjV7SLmwQ+mwFzU2vu -----END CERTIFICATE-----Generated at Sat May 4 21:19:32 2024 by rpki-client on console-ams.rpki-client.org