$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: UqhicyWbF0ZUkRXB471eZfRAC0rt+/o3A1Ok7rKT0AY= Subject key identifier: 44:D0:4A:32:80:BE:C5:43:E4:22:84:9E:56:68:8A:59:98:3C:E4:8D Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0A54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0A4E Signing time: Sat 18 May 2024 20:22:56 +0000 Manifest this update: Sat 18 May 2024 20:22:56 +0000 Manifest next update: Sat 25 May 2024 20:22:56 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: 89X9ab1Kum74bmsdUUCP3lsdzAdi2Prxg+qg70DdpqQ=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: haC4mzBCka2C4XI2abEqyRFQojyis7K+gx1fbeV1iug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2644 (0xa54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: May 18 20:22:56 2024 GMT Not After : May 25 20:22:56 2024 GMT Subject: CN=66490e20-90e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4c:4e:ca:69:70:2e:a5:d1:33:55:2d:71:ac: be:69:e3:ce:8a:72:1f:3c:39:9d:52:f8:e7:c9:72: 2e:e0:06:93:cd:fd:3c:2a:f1:da:cf:2a:b4:78:7c: 31:28:cc:e0:56:18:6c:bd:d0:b3:82:4b:c7:e1:83: ef:6b:27:22:65:c4:8b:18:ae:b6:02:db:82:18:cc: 60:3a:8d:c9:c7:4d:d5:55:84:67:08:74:4d:fa:6b: 7b:37:db:1c:c0:65:eb:21:81:be:0e:68:76:2a:57: 4e:8b:3a:3f:46:8e:8b:10:83:cf:a2:21:ed:71:83: 5c:e5:af:f7:14:4e:ba:63:67:be:32:55:87:28:48: d4:bf:f4:8e:94:64:e7:d3:a2:c1:3e:30:34:4c:ec: d7:25:38:75:30:24:5e:85:fb:37:63:f0:3f:3e:90: 24:03:05:a8:b7:14:9b:4a:4d:25:8c:12:5b:35:ab: 5a:59:00:c2:8f:b2:82:28:ac:1f:0e:a5:87:6e:63: c1:fe:68:cf:50:c4:c7:23:97:85:eb:39:5e:f1:98: 94:4a:c8:6a:4a:89:01:6a:80:5f:37:e8:da:b8:ed: 1c:2e:ed:99:5f:73:6a:57:4e:62:bf:b4:0f:fb:cd: de:8d:c1:85:7c:38:43:b5:c9:c1:b3:7d:63:da:a9: 20:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D0:4A:32:80:BE:C5:43:E4:22:84:9E:56:68:8A:59:98:3C:E4:8D X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:21:87:0b:f7:eb:76:65:f1:3b:75:18:b1:79:88:c7:32:df: 79:c4:d1:9c:a1:af:78:0c:f3:90:45:fd:04:83:8d:60:b0:c9: 0a:49:c5:2b:36:4a:5f:77:95:ab:01:29:75:2d:77:4b:5e:76: 52:8e:0b:9f:df:27:ed:45:2e:01:44:23:67:93:e8:0a:a8:b8: 0b:75:46:ec:bb:5a:a6:9b:21:4e:9d:40:3d:c9:46:b6:8b:52: 3a:e4:bc:60:e8:36:93:9e:6a:66:1b:9f:c8:52:ef:86:12:11: 5e:d7:22:c5:7a:ce:29:a4:67:38:28:ba:ad:78:4f:13:86:a9: ec:c2:3d:a8:46:6a:e4:6d:c1:7b:d1:28:4c:82:1b:8c:1f:f1: f8:98:e4:ed:16:19:eb:f9:c6:12:dd:35:d5:e8:7b:fd:c4:6c: 7a:02:e4:9d:1b:bb:ba:8d:1b:d7:87:11:a1:97:83:be:9d:43: 13:93:51:c7:cd:c7:a6:d4:da:bf:9a:e0:17:2f:b6:65:a2:c8: 06:f2:90:07:11:a5:19:a1:76:56:26:84:04:48:82:dd:d0:ac: a3:62:ec:62:24:12:ea:1f:c2:cf:12:79:da:b7:46:df:3f:e4: f9:e8:88:70:78:0f:ef:cc:6a:53:2b:0d:55:5d:b0:de:1c:09: 14:ba:82:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjQwNTE4MjAyMjU2WhcNMjQwNTI1MjAyMjU2WjAYMRYwFAYD VQQDEw02NjQ5MGUyMC05MGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0xOymlwLqXRM1Utcay+aePOinIfPDmdUvjnyXIu4AaTzf08KvHazyq0eHwx KMzgVhhsvdCzgkvH4YPvayciZcSLGK62AtuCGMxgOo3Jx03VVYRnCHRN+mt7N9sc wGXrIYG+Dmh2KldOizo/Ro6LEIPPoiHtcYNc5a/3FE66Y2e+MlWHKEjUv/SOlGTn 06LBPjA0TOzXJTh1MCRehfs3Y/A/PpAkAwWotxSbSk0ljBJbNataWQDCj7KCKKwf DqWHbmPB/mjPUMTHI5eF6zle8ZiUSshqSokBaoBfN+jauO0cLu2ZX3NqV05iv7QP +83ejcGFfDhDtcnBs31j2qkgawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETQSjKA vsVD5CKEnlZoilmYPOSNMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfIYcL9+t2ZfE7dRixeYjHMt95xNGcoa94DPOQRf0Eg41gsMkKScUr Nkpfd5WrASl1LXdLXnZSjguf3yftRS4BRCNnk+gKqLgLdUbsu1qmmyFOnUA9yUa2 i1I65Lxg6DaTnmpmG5/IUu+GEhFe1yLFes4ppGc4KLqteE8Thqnswj2oRmrkbcF7 0ShMghuMH/H4mOTtFhnr+cYS3TXV6Hv9xGx6AuSdG7u6jRvXhxGhl4O+nUMTk1HH zcem1Nq/muAXL7ZlosgG8pAHEaUZoXZWJoQESILd0KyjYuxiJBLqH8LPEnnat0bf P+T56IhweA/vzGpTKw1VXbDeHAkUuoJc -----END CERTIFICATE-----Generated at Sat May 18 21:31:28 2024 by rpki-client on console-ams.rpki-client.org