$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: O0ENZYhAM7lLYisQId7Kuu87fIypdczueHDNevwDu8Q= Subject key identifier: C8:49:8F:9C:21:4D:31:B5:B9:1C:4B:E2:94:BA:85:13:65:EE:1B:2F Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1B0E Signing time: Fri 26 Apr 2024 16:40:37 +0000 Manifest this update: Fri 26 Apr 2024 16:40:37 +0000 Manifest next update: Fri 03 May 2024 16:40:37 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: LU6nN2rtYc4BJ22nnBLFVWNAiDRErPqgigZiDkFsel0=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: hRTHvov5kcr4ci8mlf/+s2ablUrnizRu5Hp+fPVJPyU=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: e+nnHqsSXjcst0jgKsFSCtqmvZobXZzEGEA8nesrhMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6941 (0x1b1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Apr 26 16:40:37 2024 GMT Not After : May 3 16:40:37 2024 GMT Subject: CN=662bd905-4e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:16:1e:0b:ba:c2:49:2a:2f:8b:76:03:86:75: 80:bc:69:35:4f:27:22:b9:53:fc:ff:3c:a7:c5:16: fa:6b:0a:30:5c:e4:15:72:4a:77:9d:2d:8f:c9:83: 36:01:d0:67:00:16:79:3d:e7:81:a0:9b:97:be:23: f6:85:0e:eb:3c:d0:02:56:34:ee:c5:14:e4:52:50: c9:d8:5c:de:7a:c1:64:56:30:e0:67:ee:9b:4b:0d: 25:38:db:cd:cb:0f:50:cb:aa:48:37:7e:14:d2:36: 1e:5e:02:62:75:1c:8c:82:d2:29:e8:07:aa:d1:d0: 83:8f:42:5d:c6:0d:8f:e5:96:d4:71:3e:cb:e9:38: 26:88:28:99:9e:5c:6f:24:6e:1c:68:11:a4:a2:b1: 0e:bf:db:d2:41:68:b9:48:79:b8:d3:78:40:5f:37: 3a:82:bc:1f:45:1a:65:a9:8e:14:d1:fd:da:55:7c: e7:4e:c1:68:81:38:4f:a9:6f:bf:ce:a3:7b:c9:c8: 87:b3:6f:ea:17:a3:af:d9:83:5f:09:79:d8:44:5c: 76:9c:f4:9d:6e:84:86:07:92:2a:b5:9a:7d:62:9c: a1:74:fa:93:fb:da:ba:ca:d9:ae:e8:69:5a:63:02: fa:b9:ca:c9:36:5c:7e:7d:af:fa:7e:5b:8e:9a:fe: 60:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:49:8F:9C:21:4D:31:B5:B9:1C:4B:E2:94:BA:85:13:65:EE:1B:2F X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:78:16:ba:b7:12:49:93:c0:0b:2e:4d:d4:65:dd:f7:03:9c: 01:d7:25:8c:6a:5f:85:6b:d4:0c:26:86:8a:b0:a8:ec:57:31: 8b:62:b9:89:55:2b:49:25:4b:ad:c2:5c:fb:b1:c3:ff:7a:bf: 93:2f:85:39:4e:1a:02:79:78:b2:67:27:9f:67:fc:93:61:07: 6e:5e:e1:3e:97:d5:2e:6b:69:81:b6:c8:8a:00:30:99:43:e9: 8c:85:dd:bb:85:5f:fc:b6:08:4d:86:73:5c:e4:a8:1f:29:2d: 44:6c:6d:c1:59:46:32:53:59:9b:70:9b:80:8e:3e:c0:6e:08: c1:97:3e:8f:47:6c:02:0c:ab:86:0c:8a:31:99:9a:77:bf:59: 07:0c:24:f5:49:b3:47:9e:27:14:9a:c5:cc:a0:b1:2c:5c:8f: 16:ba:bd:4b:b3:db:87:66:f7:a4:e2:f4:93:6a:a8:fd:7f:4f: dc:80:62:a6:45:62:4a:45:18:20:05:c6:b4:6d:07:60:0e:f1: 35:d9:3c:ed:70:60:18:8d:30:d8:ee:30:f9:96:92:a1:2d:d9: c8:f9:d5:b7:c1:03:4f:06:8d:2b:c0:84:35:3e:9e:bb:33:dd: 57:ff:31:79:b3:90:4b:e3:6e:df:da:49:0e:01:d2:b3:40:ef: 8e:ca:30:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjQwNDI2MTY0MDM3WhcNMjQwNTAzMTY0MDM3WjAYMRYwFAYD VQQDEw02NjJiZDkwNS00ZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxYeC7rCSSovi3YDhnWAvGk1TyciuVP8/zynxRb6awowXOQVckp3nS2PyYM2 AdBnABZ5PeeBoJuXviP2hQ7rPNACVjTuxRTkUlDJ2FzeesFkVjDgZ+6bSw0lONvN yw9Qy6pIN34U0jYeXgJidRyMgtIp6Aeq0dCDj0Jdxg2P5ZbUcT7L6TgmiCiZnlxv JG4caBGkorEOv9vSQWi5SHm403hAXzc6grwfRRplqY4U0f3aVXznTsFogThPqW+/ zqN7yciHs2/qF6Ov2YNfCXnYRFx2nPSdboSGB5IqtZp9YpyhdPqT+9q6ytmu6Gla YwL6ucrJNlx+fa/6fluOmv5gxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhJj5wh TTG1uRxL4pS6hRNl7hsvMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCieBa6txJJk8ALLk3UZd33A5wB1yWMal+Fa9QMJoaKsKjsVzGLYrmJ VStJJUutwlz7scP/er+TL4U5ThoCeXiyZyefZ/yTYQduXuE+l9Uua2mBtsiKADCZ Q+mMhd27hV/8tghNhnNc5KgfKS1EbG3BWUYyU1mbcJuAjj7AbgjBlz6PR2wCDKuG DIoxmZp3v1kHDCT1SbNHnicUmsXMoLEsXI8Wur1Ls9uHZvek4vSTaqj9f0/cgGKm RWJKRRggBca0bQdgDvE12TztcGAYjTDY7jD5lpKhLdnI+dW3wQNPBo0rwIQ1Pp67 M91X/zF5s5BL427f2kkOAdKzQO+OyjCw -----END CERTIFICATE-----Generated at Sat Apr 27 10:21:01 2024 by rpki-client on console-ams.rpki-client.org