$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: pqdEirDX61orOyLPIB5p0WaRLHvHRBuMtOG6v9Z+R1A= Subject key identifier: 96:40:73:19:46:0E:75:35:61:C7:D8:59:D7:C5:C4:70:FE:32:46:A2 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 0596 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 0590 Signing time: Sun 19 May 2024 00:29:23 +0000 Manifest this update: Sun 19 May 2024 00:29:22 +0000 Manifest next update: Sun 26 May 2024 00:29:22 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: fwP9JR9nuZ6mPw2MuX1Fd+aB0p+CDCzBAGmuLXbxSAU=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: BiDJ4XF6Ax6PI7rFoQvYoHT4M7blNEix6qUHG/hXUqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: May 19 00:29:22 2024 GMT Not After : May 26 00:29:22 2024 GMT Subject: CN=664947e2-5554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:63:c0:f5:4c:29:e8:a4:41:40:bb:bc:c9:67: 00:bf:ad:08:a3:79:ca:9a:4d:20:95:3d:79:e0:f9: bf:18:af:c4:2f:56:e4:00:8b:b3:36:c9:87:c2:f9: 13:3b:97:0c:cf:fc:01:14:3c:7e:c5:87:bd:0d:f2: 7b:e1:fa:9f:c6:4d:7b:5b:1a:46:de:f8:ad:8b:9c: 7e:48:12:95:6b:4d:e8:ac:dc:3d:8b:92:78:64:2a: f5:cb:e1:ce:e7:5b:36:ed:7f:2b:44:4b:b5:e7:12: 1f:98:e5:a3:c1:f0:35:86:a8:03:54:20:6d:61:1c: 81:c3:b0:8d:c6:56:71:b9:76:69:09:85:55:75:82: 2d:f6:f4:0a:37:bb:a2:d1:35:82:b3:00:d1:85:de: d7:06:f9:b4:b5:b5:db:14:72:fa:9d:12:c2:9f:0b: 72:c8:a2:7d:66:0a:ab:d3:9a:1a:5b:91:14:2e:d0: 99:fd:0e:0d:0c:c5:36:d6:96:56:f3:32:21:ba:06: 5c:ef:7f:bd:19:8e:a8:3d:3b:16:26:cd:50:17:d9: 26:73:6a:92:72:62:22:a8:50:8a:8a:b2:9a:12:ad: 52:ae:c6:e3:b8:2e:00:60:5b:05:c9:25:82:60:e0: ba:5c:75:17:d8:19:83:44:36:97:16:49:d3:ab:8f: 8b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:40:73:19:46:0E:75:35:61:C7:D8:59:D7:C5:C4:70:FE:32:46:A2 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a7:b5:3f:fc:f6:b2:f9:21:8d:c4:93:84:56:69:6e:a0:31: b9:4b:e6:f2:4c:b3:b9:36:7f:24:4e:ea:a9:66:68:53:c2:ea: 11:c8:6c:08:1e:15:aa:8b:8c:d2:93:c6:12:a7:3e:b5:39:09: 4b:ee:95:fe:30:02:95:70:97:e5:f7:00:34:e9:a4:47:d0:ea: 29:63:c9:f9:fa:91:18:02:7a:4c:a2:5f:c8:de:2d:70:b0:ed: 8b:6e:29:24:e0:4b:93:8c:cf:f9:26:92:e3:64:a2:c2:e5:47: 5d:70:0b:de:33:17:14:a9:6d:fd:b6:a3:a0:7c:75:0e:1d:90: 6a:fc:4b:12:19:5d:90:d8:d0:17:f5:62:23:63:28:66:f8:06: ea:2c:3d:27:da:80:e5:99:fe:7e:5e:90:8a:ae:49:b5:de:47: 04:0f:b9:49:4f:fe:e4:02:00:4d:8d:e7:00:39:23:57:1c:2c: 17:e9:fd:ab:db:91:45:eb:1d:3e:1b:a2:3d:72:d1:ef:04:49: 12:73:ea:3c:ca:03:2d:33:20:54:a9:32:99:76:cb:81:0b:a2: ac:26:d3:f3:0c:b5:db:33:1d:85:74:84:67:80:60:23:5e:27: 75:0d:02:e8:0c:3b:c7:31:56:d0:c7:90:b6:67:bb:56:03:13: e1:cd:37:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjQwNTE5MDAyOTIyWhcNMjQwNTI2MDAyOTIyWjAYMRYwFAYD VQQDEw02NjQ5NDdlMi01NTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmmPA9Uwp6KRBQLu8yWcAv60Io3nKmk0glT154Pm/GK/EL1bkAIuzNsmHwvkT O5cMz/wBFDx+xYe9DfJ74fqfxk17WxpG3viti5x+SBKVa03orNw9i5J4ZCr1y+HO 51s27X8rREu15xIfmOWjwfA1hqgDVCBtYRyBw7CNxlZxuXZpCYVVdYIt9vQKN7ui 0TWCswDRhd7XBvm0tbXbFHL6nRLCnwtyyKJ9Zgqr05oaW5EULtCZ/Q4NDMU21pZW 8zIhugZc73+9GY6oPTsWJs1QF9kmc2qScmIiqFCKirKaEq1SrsbjuC4AYFsFySWC YOC6XHUX2BmDRDaXFknTq4+LGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZAcxlG DnU1YcfYWdfFxHD+MkaiMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADp7U//Pay+SGNxJOEVmluoDG5S+byTLO5Nn8kTuqpZmhTwuoRyGwI HhWqi4zSk8YSpz61OQlL7pX+MAKVcJfl9wA06aRH0OopY8n5+pEYAnpMol/I3i1w sO2Lbikk4EuTjM/5JpLjZKLC5UddcAveMxcUqW39tqOgfHUOHZBq/EsSGV2Q2NAX 9WIjYyhm+AbqLD0n2oDlmf5+XpCKrkm13kcED7lJT/7kAgBNjecAOSNXHCwX6f2r 25FF6x0+G6I9ctHvBEkSc+o8ygMtMyBUqTKZdsuBC6KsJtPzDLXbMx2FdIRngGAj Xid1DQLoDDvHMVbQx5C2Z7tWAxPhzTfA -----END CERTIFICATE-----Generated at Sun May 19 01:47:08 2024 by rpki-client on console-ams.rpki-client.org