$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft File: rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft (raw, json) Hash identifier: cV5RzQpwSwcJYs/Wpsq6lmYzD9kdKEYgREy5kC/KSD8= Subject key identifier: A8:D8:4E:B2:DF:27:F3:9B:49:95:B5:7D:BB:B0:33:A1:3E:49:38:D2 Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 33D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft Manifest number: 33D2 Signing time: Sat 18 May 2024 14:28:36 +0000 Manifest this update: Sat 18 May 2024 14:28:35 +0000 Manifest next update: Sat 25 May 2024 14:28:35 +0000 Files and hashes: 1: rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl (hash: Ycot/sIyVJD/FVuMCwlzdBuEGgv+xN6j2DE0SrrUHy0=) 2: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (hash: gOnJUoocSgq2EqmjrPm1pF8ZPeNarvBagTpUETzImxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13271 (0x33d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: May 18 14:28:35 2024 GMT Not After : May 25 14:28:35 2024 GMT Subject: CN=6648bb13-fc26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:30:c2:a5:77:3a:76:e7:2a:8c:55:27:6e:48: fd:a5:d4:e3:74:c7:73:28:75:f4:ef:d9:17:a8:cb: 58:d6:e8:00:6a:49:ce:3d:8b:96:f6:06:d1:ef:3f: 2e:d9:cb:d4:02:38:e1:3d:40:3b:e8:09:65:91:4a: 3f:0a:bc:c1:5b:27:53:80:bb:86:af:cd:f2:83:b7: 81:22:b3:fc:09:71:95:a4:b7:e9:d7:4e:b2:76:db: 24:9b:f0:de:5c:9d:2f:70:39:14:44:bd:7e:b2:00: 51:b2:f4:eb:5f:6e:b7:b0:50:60:d9:3e:6d:de:8a: 38:02:88:94:46:5c:b9:15:3e:69:5b:81:cf:25:b4: 5a:d9:22:4e:0c:a4:17:c9:05:d6:b3:b4:f4:91:4f: b5:7c:f2:ed:ff:60:64:ef:61:07:7d:3a:f6:99:b4: 60:b3:e8:3e:5a:51:51:e1:21:04:5b:92:eb:3f:33: e3:4d:41:aa:83:2f:00:98:5b:3e:c1:97:7a:41:5d: cd:9a:2d:8e:9c:71:23:bb:2c:02:0f:c1:7a:c6:53: 5f:b3:71:b9:c5:b6:e9:65:3b:0b:9b:fd:1c:c9:7c: 1f:03:4d:06:6a:ad:25:37:2c:bc:54:06:ac:8f:35: 44:c8:90:6f:f6:3f:01:c3:fa:2d:88:7c:01:f5:66: d9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D8:4E:B2:DF:27:F3:9B:49:95:B5:7D:BB:B0:33:A1:3E:49:38:D2 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:f2:c1:f3:e2:50:73:f7:7f:23:12:bb:4a:5f:23:8f:00:69: c3:9e:fd:1d:da:73:4d:99:a4:88:71:2b:c0:44:9b:a5:bf:bf: 5f:d6:e7:55:40:a9:f4:cd:ab:40:cf:39:1f:ab:c8:18:5c:ec: 41:b5:87:13:c7:0c:bf:de:50:21:fb:02:9e:7e:c6:db:fd:5e: 6b:93:74:d0:c1:35:e3:95:eb:67:4f:16:5a:29:e5:60:4d:ea: cc:8b:ce:22:c2:b6:49:39:eb:be:ec:dd:4c:62:c3:f8:cb:c7: 89:da:0c:9a:e0:1e:b9:71:5f:5b:3c:25:e5:e7:7d:13:9d:aa: f9:b2:fa:b6:f7:18:ff:cb:c6:86:c4:f7:7f:c8:02:b9:dc:10: 69:0c:1e:d2:d2:e7:51:e2:6e:c7:67:95:ad:c2:23:05:2f:4b: 2a:83:da:ad:ac:2b:22:ec:56:c4:31:58:55:c1:d9:da:64:4a: 89:40:55:5c:20:40:53:87:75:86:ac:dd:e6:bb:72:da:f7:3e: bf:29:70:6b:75:0a:e0:51:75:a1:78:d4:d2:c7:0d:9c:a0:9d: f3:98:1d:d4:13:f6:68:01:8c:eb:06:44:83:a0:d8:be:39:fd: eb:ac:07:95:c1:48:60:b9:da:7a:58:12:f7:cf:a4:8c:05:21: 98:cb:2d:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjQwNTE4MTQyODM1WhcNMjQwNTI1MTQyODM1WjAYMRYwFAYD VQQDEw02NjQ4YmIxMy1mYzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTDCpXc6ducqjFUnbkj9pdTjdMdzKHX079kXqMtY1ugAaknOPYuW9gbR7z8u 2cvUAjjhPUA76AllkUo/CrzBWydTgLuGr83yg7eBIrP8CXGVpLfp106ydtskm/De XJ0vcDkURL1+sgBRsvTrX263sFBg2T5t3oo4AoiURly5FT5pW4HPJbRa2SJODKQX yQXWs7T0kU+1fPLt/2Bk72EHfTr2mbRgs+g+WlFR4SEEW5LrPzPjTUGqgy8AmFs+ wZd6QV3Nmi2OnHEjuywCD8F6xlNfs3G5xbbpZTsLm/0cyXwfA00Gaq0lNyy8VAas jzVEyJBv9j8Bw/otiHwB9WbZZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjYTrLf J/ObSZW1fbuwM6E+STjSMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9FQTFCMUQ2QTFEODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NY b2MwMWNkR0RkSV9RZlpfRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv8sHz4lBz938jErtKXyOPAGnDnv0d2nNNmaSIcSvARJulv79f1udV QKn0zatAzzkfq8gYXOxBtYcTxwy/3lAh+wKefsbb/V5rk3TQwTXjletnTxZaKeVg TerMi84iwrZJOeu+7N1MYsP4y8eJ2gya4B65cV9bPCXl530Tnar5svq29xj/y8aG xPd/yAK53BBpDB7S0udR4m7HZ5WtwiMFL0sqg9qtrCsi7FbEMVhVwdnaZEqJQFVc IEBTh3WGrN3mu3La9z6/KXBrdQrgUXWheNTSxw2coJ3zmB3UE/ZoAYzrBkSDoNi+ Of3rrAeVwUhgudp6WBL3z6SMBSGYyy1L -----END CERTIFICATE-----Generated at Sat May 18 15:58:20 2024 by rpki-client on console-ams.rpki-client.org