$ rpki-client -vvf rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.mft File: hM4p-GFBrPuKdekE8CcjhS3mMzg.mft (raw, json) Hash identifier: bGZl7S9F1Y8o0nKp9lcoOFsyWWIntsy7w32RO7QZ8Oo= Subject key identifier: 0B:77:22:7A:19:25:68:0B:19:58:15:75:05:4B:C5:06:0E:EF:20:5E Authority key identifier: 84:CE:29:F8:61:41:AC:FB:8A:75:E9:04:F0:27:23:85:2D:E6:33:38 Certificate issuer: /CN=A9114FFB/serialNumber=84CE29F86141ACFB8A75E904F02723852DE63338 Certificate serial: 0970 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hM4p-GFBrPuKdekE8CcjhS3mMzg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.mft Manifest number: 0968 Signing time: Sat 18 May 2024 21:01:31 +0000 Manifest this update: Sat 18 May 2024 21:01:30 +0000 Manifest next update: Sat 25 May 2024 21:01:30 +0000 Files and hashes: 1: hM4p-GFBrPuKdekE8CcjhS3mMzg.crl (hash: jXTYvuM13bDZlb4OpYTIJDzrGayDsRI0rhiT+5X8qcs=) 2: 267A24046E7D11EAADB09659C4F9AE02.roa (hash: iuQBORVLtuzDIuncz9VmwS8znnsu9e38o4Zo2zyKz8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.crl rsync://rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hM4p-GFBrPuKdekE8CcjhS3mMzg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2416 (0x970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114FFB/serialNumber=84CE29F86141ACFB8A75E904F02723852DE63338 Validity Not Before: May 18 21:01:30 2024 GMT Not After : May 25 21:01:30 2024 GMT Subject: CN=6649172b-b555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3f:7e:e5:27:93:f5:a9:aa:e3:62:87:ff:31: 68:5c:54:04:54:44:a8:a8:c2:0c:c1:b9:fc:53:56: 08:20:c1:05:00:00:13:31:2e:01:54:44:23:59:52: 20:b2:d1:d9:7a:dc:b7:92:af:cc:7f:88:88:86:7d: 6b:0a:32:3b:38:65:2d:8d:56:70:9a:07:82:27:7f: d6:95:87:f7:47:7f:e6:b7:d0:83:a7:69:bc:a4:a7: d1:ce:48:10:da:ed:90:0c:b3:1f:46:9d:f1:3d:94: b0:ef:e7:60:89:61:82:9b:20:58:ed:01:0c:aa:cd: a7:ee:66:e2:7b:f1:d5:4b:8c:8e:ee:65:f6:69:49: 82:cc:d6:f5:fa:10:f5:e4:71:8a:b1:61:88:89:8e: 39:01:8c:c0:4d:84:59:fa:95:98:9e:d0:95:58:e1: 15:5a:9f:2a:49:f9:18:36:6e:8d:87:f3:92:f3:8d: 2c:9e:29:4d:64:ad:12:0f:e7:24:82:c4:7d:e6:06: f3:7e:b8:53:55:c9:14:81:e9:40:e6:e6:65:6d:69: 7e:1b:98:69:a9:68:b9:8b:ea:8e:78:33:ac:ce:ec: 6b:b9:3b:58:b3:7d:e0:48:58:47:a5:70:df:78:e9: 16:6d:95:91:b9:76:22:5a:dc:5c:6b:81:a9:b0:81: c9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:77:22:7A:19:25:68:0B:19:58:15:75:05:4B:C5:06:0E:EF:20:5E X509v3 Authority Key Identifier: keyid:84:CE:29:F8:61:41:AC:FB:8A:75:E9:04:F0:27:23:85:2D:E6:33:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hM4p-GFBrPuKdekE8CcjhS3mMzg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114FFB/6AC1F16A6E7C11EA8B3F0E59C4F9AE02/hM4p-GFBrPuKdekE8CcjhS3mMzg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:57:33:b8:19:4e:4b:76:ae:72:a6:47:2f:e1:c3:98:a0:db: 17:93:48:1b:77:cd:60:3a:8e:e1:2f:f1:c9:f1:0a:f6:6a:15: 75:75:8c:ff:0a:48:51:33:c6:31:5b:82:22:39:02:76:c8:7f: 3e:0a:19:c8:28:05:f0:df:04:71:63:9d:34:15:dc:2b:d3:56: 11:da:4d:7b:04:55:05:90:9b:a9:ab:a1:83:e1:cd:85:08:53: be:00:a1:bb:dd:d6:63:a7:55:5f:42:cb:90:96:ba:09:0c:df: 67:0f:00:98:05:73:ec:72:b7:ce:09:67:c3:b4:fe:6a:6a:a2: 0d:c7:2e:1e:e0:73:62:d1:76:2f:f5:b9:82:64:d5:b5:08:e7: 6a:4c:2e:60:8b:28:09:62:28:fa:90:bd:13:6d:58:30:dc:1c: 1d:a1:ee:c2:3d:b9:a3:a7:b2:20:7a:a4:8f:f1:6b:b0:1f:50: 59:f4:d1:19:d2:c6:b1:bd:17:fd:63:69:a9:ec:7e:28:09:b7: d9:38:c5:68:06:44:17:c1:db:a2:1b:e3:ef:50:09:75:d1:20: c6:29:8e:6d:c3:2e:f5:09:2b:91:b7:fd:09:a2:f1:16:3a:bb: 8b:d4:10:d6:e0:8a:ef:c8:4f:53:19:6e:28:44:8b:36:3e:ce: b7:9b:ed:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRGRkIxMTAvBgNVBAUTKDg0Q0UyOUY4NjE0MUFDRkI4QTc1RTkwNEYwMjcyMzg1 MkRFNjMzMzgwHhcNMjQwNTE4MjEwMTMwWhcNMjQwNTI1MjEwMTMwWjAYMRYwFAYD VQQDEw02NjQ5MTcyYi1iNTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtz9+5SeT9amq42KH/zFoXFQEVESoqMIMwbn8U1YIIMEFAAATMS4BVEQjWVIg stHZety3kq/Mf4iIhn1rCjI7OGUtjVZwmgeCJ3/WlYf3R3/mt9CDp2m8pKfRzkgQ 2u2QDLMfRp3xPZSw7+dgiWGCmyBY7QEMqs2n7mbie/HVS4yO7mX2aUmCzNb1+hD1 5HGKsWGIiY45AYzATYRZ+pWYntCVWOEVWp8qSfkYNm6Nh/OS840snilNZK0SD+ck gsR95gbzfrhTVckUgelA5uZlbWl+G5hpqWi5i+qOeDOszuxruTtYs33gSFhHpXDf eOkWbZWRuXYiWtxca4GpsIHJqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAt3InoZ JWgLGVgVdQVLxQYO7yBeMB8GA1UdIwQYMBaAFITOKfhhQaz7inXpBPAnI4Ut5jM4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEZGQi82QUMxRjE2QTZF N0MxMUVBOEIzRjBFNTlDNEY5QUUwMi9oTTRwLUdGQnJQdUtkZWtFOENjamhTM21N emcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hNNHAtR0ZCclB1S2Rla0U4Q2NqaFMzbU16Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEZGQi82QUMxRjE2QTZFN0MxMUVBOEIzRjBFNTlDNEY5QUUwMi9oTTRwLUdGQnJQ dUtkZWtFOENjamhTM21NemcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTVzO4GU5Ldq5ypkcv4cOYoNsXk0gbd81gOo7hL/HJ8Qr2ahV1dYz/ CkhRM8YxW4IiOQJ2yH8+ChnIKAXw3wRxY500Fdwr01YR2k17BFUFkJupq6GD4c2F CFO+AKG73dZjp1VfQsuQlroJDN9nDwCYBXPscrfOCWfDtP5qaqINxy4e4HNi0XYv 9bmCZNW1COdqTC5giygJYij6kL0TbVgw3Bwdoe7CPbmjp7IgeqSP8WuwH1BZ9NEZ 0saxvRf9Y2mp7H4oCbfZOMVoBkQXwduiG+PvUAl10SDGKY5twy71CSuRt/0JovEW OruL1BDW4IrvyE9TGW4oRIs2Ps63m+1O -----END CERTIFICATE-----Generated at Sat May 18 21:24:20 2024 by rpki-client on console-fra.rpki-client.org