$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: x/09qS4bWREOIN9M1GY1ZIp4rGh9wlSKIWslUBzOcfU= Subject key identifier: 3A:EB:39:6D:5F:A6:44:F7:B2:3B:94:AC:3E:53:DD:69:00:78:B9:93 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 12BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 12AF Signing time: Sat 18 May 2024 17:36:50 +0000 Manifest this update: Sat 18 May 2024 17:36:50 +0000 Manifest next update: Sat 25 May 2024 17:36:50 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: gg5Epn0C3DLOityQelgRsH+HGXkG1dKZcIr8Oxrtjbk=) 2: 7DB1A01E769511EBBF193769C4F9AE02.roa (hash: MetsIHyjVktqHxEYWt4JcXDTpO/orpHi4sdgicQ+K6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4799 (0x12bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: May 18 17:36:50 2024 GMT Not After : May 25 17:36:50 2024 GMT Subject: CN=6648e732-b22d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:25:41:fb:b3:14:cc:d2:3f:0e:a5:02:eb:8a: 53:8b:64:87:96:ba:d6:f0:d2:f3:9b:d4:20:5f:59: 5d:2c:aa:63:d6:1a:39:c5:72:0b:a4:04:30:2f:1e: 6b:57:18:eb:f4:a8:83:04:19:cc:b9:77:91:06:11: 19:85:ec:88:15:da:49:c7:26:03:df:bc:5a:db:57: 92:8f:5e:6a:c0:b2:10:86:b2:8c:38:b9:6c:55:db: 3b:a7:13:df:ee:1c:2e:71:41:f7:ed:85:d9:12:fb: 48:7b:5d:e8:64:a5:2f:89:24:54:d7:50:74:d7:22: e3:d7:33:55:45:ba:d9:25:f9:c5:61:b5:94:86:85: d1:ae:2e:53:c3:47:9a:64:f9:54:5b:52:12:ba:9d: f0:ed:9b:00:f8:ba:73:1d:81:db:04:43:84:37:06: 52:3c:51:f9:38:83:f9:48:26:32:e0:c9:7c:2f:b8: 7f:cf:57:e5:c9:00:6c:7b:9f:59:ea:90:4f:4a:e5: 7d:9e:ee:3d:24:16:ed:2b:06:96:29:64:c9:ab:e1: f5:e7:43:39:5c:32:78:71:ad:0c:50:f6:e8:f5:82: bf:5f:1b:f7:e1:b7:a9:e0:ea:af:90:ea:dd:f1:13: e6:61:68:18:26:f4:ae:8e:b3:70:33:c7:de:ec:de: eb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:EB:39:6D:5F:A6:44:F7:B2:3B:94:AC:3E:53:DD:69:00:78:B9:93 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:20:ee:39:c9:b5:bd:5a:3b:a1:b6:71:cd:d8:76:0c:46:e3: 08:37:2c:ee:0f:d6:73:5e:60:81:8f:e2:39:a5:50:37:dc:24: c2:4f:4a:dd:81:1d:2a:fe:f2:35:5c:da:12:40:fb:b9:2d:80: c0:40:f4:27:91:65:a0:63:e6:1f:0e:d4:7f:cb:cf:60:7d:26: a1:09:f5:87:d1:53:31:35:6e:c4:5d:fd:e9:1d:63:04:3d:73: 4a:7d:61:16:6f:c3:9c:49:08:31:39:ee:17:fb:7c:da:b2:cd: 3b:a0:8f:ee:d6:47:48:a4:4d:e6:85:05:01:8c:33:10:f3:c0: a6:0d:85:a8:f1:13:06:e1:e4:04:06:0e:3c:7b:90:aa:4f:0f: ec:da:18:b9:2a:d7:b4:2f:f6:71:d8:f1:2f:13:49:e1:c0:78: 90:35:c0:17:af:29:76:6b:78:37:94:95:1e:a0:b9:3f:26:97: aa:e9:3c:f6:f2:d9:f5:10:95:7b:bb:54:0d:0e:e1:bb:c0:f0: 9e:a6:57:2b:4a:77:98:29:6c:a6:38:e7:86:dd:c3:80:95:2a: 03:85:5f:73:92:35:7c:a2:26:f4:15:a2:b4:c9:17:f5:64:c5: cc:79:97:b5:8e:1a:66:b0:9f:1e:cd:03:5b:48:8e:de:7c:23: 64:ee:c6:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjQwNTE4MTczNjUwWhcNMjQwNTI1MTczNjUwWjAYMRYwFAYD VQQDEw02NjQ4ZTczMi1iMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CVB+7MUzNI/DqUC64pTi2SHlrrW8NLzm9QgX1ldLKpj1ho5xXILpAQwLx5r Vxjr9KiDBBnMuXeRBhEZheyIFdpJxyYD37xa21eSj15qwLIQhrKMOLlsVds7pxPf 7hwucUH37YXZEvtIe13oZKUviSRU11B01yLj1zNVRbrZJfnFYbWUhoXRri5Tw0ea ZPlUW1ISup3w7ZsA+LpzHYHbBEOENwZSPFH5OIP5SCYy4Ml8L7h/z1flyQBse59Z 6pBPSuV9nu49JBbtKwaWKWTJq+H150M5XDJ4ca0MUPbo9YK/Xxv34bep4OqvkOrd 8RPmYWgYJvSujrNwM8fe7N7rSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrrOW1f pkT3sjuUrD5T3WkAeLmTMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjIO45ybW9WjuhtnHN2HYMRuMINyzuD9ZzXmCBj+I5pVA33CTCT0rd gR0q/vI1XNoSQPu5LYDAQPQnkWWgY+YfDtR/y89gfSahCfWH0VMxNW7EXf3pHWME PXNKfWEWb8OcSQgxOe4X+3zass07oI/u1kdIpE3mhQUBjDMQ88CmDYWo8RMG4eQE Bg48e5CqTw/s2hi5Kte0L/Zx2PEvE0nhwHiQNcAXryl2a3g3lJUeoLk/Jpeq6Tz2 8tn1EJV7u1QNDuG7wPCeplcrSneYKWymOOeG3cOAlSoDhV9zkjV8oib0FaK0yRf1 ZMXMeZe1jhpmsJ8ezQNbSI7efCNk7saD -----END CERTIFICATE-----Generated at Sat May 18 18:12:32 2024 by rpki-client on console-fra.rpki-client.org