$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json) Hash identifier: 2Mwbdh/P5W4pdwsfVglAY3cx4Ao8WEBFNxWHaMBNQxk= Subject key identifier: BA:25:30:76:04:E3:58:DB:2E:86:A7:21:4B:35:21:F3:15:EC:E6:EA Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft Manifest number: 0282 Signing time: Sun 19 May 2024 03:44:37 +0000 Manifest this update: Sun 19 May 2024 03:44:36 +0000 Manifest next update: Sun 26 May 2024 03:44:36 +0000 Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: GTGD/F0r6tp8CE7bfRPTfX3S8Wr445kQR1xXl5WNd3s=) 2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: taMyIDzO1vlUXRYaPsYdYd8BkonOZKJihKtBLoTsORQ=) 3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: HWHRnqC1a0H3SGc60fLUgFgxYUnWe0xctbvL2o7N144=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Validity Not Before: May 19 03:44:36 2024 GMT Not After : May 26 03:44:36 2024 GMT Subject: CN=664975a5-3bb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:05:03:c8:23:7c:f7:8c:31:87:b9:aa:92:6e: 49:e1:ca:1e:32:a8:82:b9:47:e0:c8:a4:8b:52:70: d4:9d:6e:93:fb:38:7f:83:5b:ce:9f:5a:7f:65:1c: f6:24:50:49:6a:44:fd:6f:f9:10:33:8d:f2:02:e3: e4:47:e4:ec:c0:9c:31:2c:af:eb:5b:1e:b2:44:c9: 9c:0d:2f:ff:7b:55:1f:07:a6:13:00:25:52:ba:14: db:36:1c:cc:4e:07:62:5d:09:35:2e:d6:fe:64:21: 3d:8e:6f:ba:ca:37:ed:04:64:07:0d:0b:53:96:21: eb:7d:6a:af:6d:c5:0e:eb:12:64:b3:0c:74:b5:5f: 64:d3:c1:8e:b8:77:01:c1:81:aa:51:cb:80:ac:2c: 8e:e8:b2:b8:29:bd:2c:75:69:d0:b7:17:12:f5:b9: d6:31:92:82:78:12:91:f2:64:4b:3f:eb:8c:87:6e: 6a:38:8c:64:de:8b:18:b4:fb:e6:0e:8a:e4:43:64: de:00:92:cf:39:81:ca:7b:76:f4:6b:af:8c:d6:f5: c9:93:54:c8:3a:90:3d:5a:a1:e4:4e:4f:f4:3c:8a: 86:10:08:69:92:d7:dc:fb:72:33:86:d3:8a:cc:ee: 46:ab:f5:85:2d:50:0d:75:02:d7:d9:0e:cd:55:cb: 86:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:25:30:76:04:E3:58:DB:2E:86:A7:21:4B:35:21:F3:15:EC:E6:EA X509v3 Authority Key Identifier: keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:a1:e0:19:3f:e4:dc:10:73:0d:3e:14:c6:b4:ef:6e:b5:75: 6e:4c:41:68:30:7c:02:b1:05:4f:5e:db:70:01:9b:81:e0:9f: fa:23:ad:7b:32:ac:d5:51:fd:ad:f2:f4:7e:3e:50:ea:28:72: a7:14:b0:6d:48:c2:3a:3f:da:ea:31:c3:5d:62:28:ed:73:4b: 98:5f:7c:6a:fb:6c:b8:c9:f3:e3:16:e2:d6:e5:3e:2f:3a:a3: c6:28:e5:e6:ea:57:3b:8b:42:73:9d:e7:7c:9a:61:1c:ad:3a: e1:fc:14:ce:74:72:db:b3:26:35:88:e2:c4:df:e4:f1:34:00: d7:f1:15:0f:11:86:e1:a2:35:f8:8e:5c:29:68:c9:d9:ad:b3: 72:83:2e:f2:17:f7:fb:46:f1:e3:1d:d1:e5:d0:42:9b:99:1c: 24:11:73:81:ba:f5:63:0d:65:e8:20:f7:9f:68:44:48:63:4d: 32:12:9a:e8:56:23:54:fa:ee:2f:d1:47:24:01:b3:35:a3:49: 19:51:9b:46:4f:21:5d:c1:2a:2c:73:49:b3:e7:81:ff:20:bc: fe:78:55:18:51:53:33:65:09:4a:d8:10:34:24:af:cc:a4:38: bb:b1:bf:71:12:c3:76:96:01:6b:81:26:01:18:03:87:58:92: 5d:89:15:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKDRFODFFMEY2QTgzQURDMkFENTIzMjY2NEE5NTREMjY3 Q0I0M0Q5MEEwHhcNMjQwNTE5MDM0NDM2WhcNMjQwNTI2MDM0NDM2WjAYMRYwFAYD VQQDEw02NjQ5NzVhNS0zYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwUDyCN894wxh7mqkm5J4coeMqiCuUfgyKSLUnDUnW6T+zh/g1vOn1p/ZRz2 JFBJakT9b/kQM43yAuPkR+TswJwxLK/rWx6yRMmcDS//e1UfB6YTACVSuhTbNhzM TgdiXQk1Ltb+ZCE9jm+6yjftBGQHDQtTliHrfWqvbcUO6xJkswx0tV9k08GOuHcB wYGqUcuArCyO6LK4Kb0sdWnQtxcS9bnWMZKCeBKR8mRLP+uMh25qOIxk3osYtPvm DorkQ2TeAJLPOYHKe3b0a6+M1vXJk1TIOpA9WqHkTk/0PIqGEAhpktfc+3IzhtOK zO5Gq/WFLVANdQLX2Q7NVcuGMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLolMHYE 41jbLoanIUs1IfMV7ObqMB8GA1UdIwQYMBaAFE6B4PaoOtwq1SMmZKlU0mfLQ9kK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC82M0E0RDFCQ0M0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjNDclZJeVprcVZUU1o4dEQy UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RvSGc5cWc2M0NyVkl5WmtxVlRTWjh0RDJRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC82M0E0RDFCQ0M0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjND clZJeVprcVZUU1o4dEQyUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAoeAZP+TcEHMNPhTGtO9utXVuTEFoMHwCsQVPXttwAZuB4J/6I617 MqzVUf2t8vR+PlDqKHKnFLBtSMI6P9rqMcNdYijtc0uYX3xq+2y4yfPjFuLW5T4v OqPGKOXm6lc7i0Jzned8mmEcrTrh/BTOdHLbsyY1iOLE3+TxNADX8RUPEYbhojX4 jlwpaMnZrbNygy7yF/f7RvHjHdHl0EKbmRwkEXOBuvVjDWXoIPefaERIY00yEpro ViNU+u4v0UckAbM1o0kZUZtGTyFdwSosc0mz54H/ILz+eFUYUVMzZQlK2BA0JK/M pDi7sb9xEsN2lgFrgSYBGAOHWJJdiRWc -----END CERTIFICATE-----Generated at Sun May 19 04:20:42 2024 by rpki-client on console-ams.rpki-client.org