$ rpki-client -vvf rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft File: DihwYx-g7-rpRTHbDiYEXKO8gZs.mft (raw, json) Hash identifier: Qm/5PkfD1I8i8RmpDmtIqlBBfqhwNWeenzhXyeMFzMo= Subject key identifier: 35:FB:F4:9E:93:1B:FF:78:A7:C6:AC:D5:32:1B:CF:E7:C1:60:87:10 Authority key identifier: 0E:28:70:63:1F:A0:EF:EA:E9:45:31:DB:0E:26:04:5C:A3:BC:81:9B Certificate issuer: /CN=A9162DD6/serialNumber=0E2870631FA0EFEAE94531DB0E26045CA3BC819B Certificate serial: 0F86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft Manifest number: 0F73 Signing time: Sat 18 May 2024 18:09:22 +0000 Manifest this update: Sat 18 May 2024 18:09:22 +0000 Manifest next update: Sat 25 May 2024 18:09:22 +0000 Files and hashes: 1: DihwYx-g7-rpRTHbDiYEXKO8gZs.crl (hash: jRUDdvlhPLZMvXPJEAwH2KW1Q9B+U9Vhw25KZ//cwKI=) 2: D97D5F6A3FEB11E9882E830FC4F9AE02.roa (hash: 1xAA2p3bRzKtkuwJYgmnpWotzfIy6qgcGQhWEvGOqKo=) 3: DA3261943FEB11E9882E830FC4F9AE02.roa (hash: KDtUJt1Jtjn2LNZNEN2QFLXYazsl0VQjLQGBBHjjEOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.crl rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3974 (0xf86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162DD6/serialNumber=0E2870631FA0EFEAE94531DB0E26045CA3BC819B Validity Not Before: May 18 18:09:22 2024 GMT Not After : May 25 18:09:22 2024 GMT Subject: CN=6648eed2-15d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:32:7d:00:9c:7a:2b:8b:cc:ee:0c:4e:ca:f4: 08:be:1f:9a:71:2d:c6:dc:1c:3a:bc:3c:63:77:17: ea:a2:e2:ef:03:4f:4c:a0:b9:47:db:2f:c5:ad:a8: 2d:bc:38:ea:a7:2b:de:33:4b:ed:4b:3d:76:fd:d9: b6:e1:97:31:b7:93:be:a9:a6:9a:51:ad:6e:4d:60: 5e:01:3f:47:e2:18:52:d0:8b:2f:70:28:7c:03:a7: 84:84:3c:84:f9:a3:87:ba:1e:36:b0:13:90:89:9f: 1c:49:e3:f6:08:eb:cb:2e:47:d7:93:79:da:62:3b: 1c:94:65:82:3e:16:50:7e:e0:27:63:a8:32:82:df: ad:00:b4:13:f5:4e:b4:5a:09:76:21:4c:39:f4:8d: e8:94:34:f4:ba:09:bc:82:fc:45:b8:be:f8:4c:05: 73:cd:e7:0a:2f:5c:37:2e:7b:27:ed:1b:eb:b3:a6: 05:f7:09:7c:72:75:31:40:aa:83:55:bf:87:44:61: da:ba:f9:29:57:24:9e:86:29:86:68:84:fe:e8:b2: 1d:ff:84:be:e8:2b:5d:0a:25:75:63:73:69:8e:d0: 51:bb:62:31:b1:18:65:ae:35:42:16:8a:e9:b4:7b: da:c5:33:e9:bd:a5:bd:0b:9f:42:fb:41:7a:f6:df: 26:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FB:F4:9E:93:1B:FF:78:A7:C6:AC:D5:32:1B:CF:E7:C1:60:87:10 X509v3 Authority Key Identifier: keyid:0E:28:70:63:1F:A0:EF:EA:E9:45:31:DB:0E:26:04:5C:A3:BC:81:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:9e:19:25:b5:84:aa:c7:a4:62:89:77:f7:48:3f:21:a3:87: d2:3c:2f:b1:af:b4:c8:71:07:06:a4:ab:2b:3f:6e:ec:15:11: ca:44:b4:8e:2b:09:94:4a:5b:f2:17:5a:17:4e:b9:c1:f5:ba: 74:28:8f:c7:f7:3a:8e:b8:7c:c2:84:84:a7:ab:be:8f:0d:76: 99:e6:45:f7:08:d8:64:40:08:60:e0:4c:fe:ac:17:86:11:92: 5a:c3:7a:94:ad:2b:36:a4:bb:3d:be:f5:d1:a6:35:bc:da:56: 37:94:10:e1:79:a4:dd:d4:d8:47:7b:05:27:f1:88:1e:97:2f: bd:bb:0e:be:08:a4:e9:d1:73:64:8e:02:bf:86:d1:9d:34:d7: 54:35:fe:6c:a1:03:bb:8b:ac:b1:1e:d6:32:38:86:27:bb:0b: 49:9e:40:e8:d0:c0:26:dd:28:db:bd:eb:e6:f4:d9:a3:9e:6f: f8:06:37:bb:d1:11:8e:3f:23:30:c3:77:37:9d:9f:91:d4:bd: 8c:ac:c3:d9:16:04:a9:e4:f1:d8:8f:6b:2e:09:b8:a8:a5:73: 52:f4:32:42:5a:76:69:bd:32:41:5a:1a:a4:f3:ee:8f:ce:85: 94:94:9e:de:a8:b9:4c:3f:52:c7:d0:e9:73:0f:55:19:cb:8e: df:12:bc:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJERDYxMTAvBgNVBAUTKDBFMjg3MDYzMUZBMEVGRUFFOTQ1MzFEQjBFMjYwNDVD QTNCQzgxOUIwHhcNMjQwNTE4MTgwOTIyWhcNMjQwNTI1MTgwOTIyWjAYMRYwFAYD VQQDEw02NjQ4ZWVkMi0xNWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jJ9AJx6K4vM7gxOyvQIvh+acS3G3Bw6vDxjdxfqouLvA09MoLlH2y/Fragt vDjqpyveM0vtSz12/dm24Zcxt5O+qaaaUa1uTWBeAT9H4hhS0IsvcCh8A6eEhDyE +aOHuh42sBOQiZ8cSeP2COvLLkfXk3naYjsclGWCPhZQfuAnY6gygt+tALQT9U60 Wgl2IUw59I3olDT0ugm8gvxFuL74TAVzzecKL1w3Lnsn7Rvrs6YF9wl8cnUxQKqD Vb+HRGHauvkpVySehimGaIT+6LId/4S+6CtdCiV1Y3NpjtBRu2IxsRhlrjVCForp tHvaxTPpvaW9C59C+0F69t8mgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDX79J6T G/94p8as1TIbz+fBYIcQMB8GA1UdIwQYMBaAFA4ocGMfoO/q6UUx2w4mBFyjvIGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkRENi85Q0Q3Q0IwQTNG RUExMUU5OTE4MzlEMERDNEY5QUUwMi9EaWh3WXgtZzctcnBSVEhiRGlZRVhLTzhn WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpaHdZeC1nNy1ycFJUSGJEaVlFWEtPOGdacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MkRENi85Q0Q3Q0IwQTNGRUExMUU5OTE4MzlEMERDNEY5QUUwMi9EaWh3WXgtZzct cnBSVEhiRGlZRVhLTzhnWnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjnhkltYSqx6RiiXf3SD8ho4fSPC+xr7TIcQcGpKsrP27sFRHKRLSO KwmUSlvyF1oXTrnB9bp0KI/H9zqOuHzChISnq76PDXaZ5kX3CNhkQAhg4Ez+rBeG EZJaw3qUrSs2pLs9vvXRpjW82lY3lBDheaTd1NhHewUn8Ygely+9uw6+CKTp0XNk jgK/htGdNNdUNf5soQO7i6yxHtYyOIYnuwtJnkDo0MAm3Sjbvevm9Nmjnm/4Bje7 0RGOPyMww3c3nZ+R1L2MrMPZFgSp5PHYj2suCbiopXNS9DJCWnZpvTJBWhqk8+6P zoWUlJ7eqLlMP1LH0OlzD1UZy47fErwI -----END CERTIFICATE-----Generated at Sat May 18 19:15:24 2024 by rpki-client on console-ams.rpki-client.org