$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: WJg6813QiIupfuo00Kjr3L51c2W3ZbECrlvNFrLbsP0= Subject key identifier: 43:4A:4D:E7:68:90:B7:B7:FD:DD:0A:85:2A:07:D5:06:00:75:59:76 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 0703 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 06EF Signing time: Sat 18 May 2024 22:55:54 +0000 Manifest this update: Sat 18 May 2024 22:55:54 +0000 Manifest next update: Sat 25 May 2024 22:55:54 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: o2ikWo2Yg7NoNw1WJgKgZ1Ce9s8MsGVpa34z5AR7eAw=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: Vyg6+POtNSEnTBAoWuD3J5tcnzIVlgG0O+xzvLd8qPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1795 (0x703) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: May 18 22:55:54 2024 GMT Not After : May 25 22:55:54 2024 GMT Subject: CN=664931fa-abd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a9:ac:8e:33:31:78:ac:c4:9f:bd:64:70:07: ed:f9:c8:08:70:3a:b4:25:43:53:78:a9:35:36:e3: 6a:a0:88:cb:d7:f9:12:9c:ec:99:95:12:33:f8:4f: 7c:08:4e:79:a8:38:ed:cd:6c:80:e0:15:f3:30:1c: df:a9:75:8d:f6:49:6a:4b:3a:de:61:f0:9e:d3:3a: 2f:94:0a:d1:b8:ab:6f:87:2b:62:b4:4b:9f:e9:7a: 3f:31:ec:4c:b1:b8:bd:a4:c1:7f:b8:bb:6c:27:1c: 22:ee:ca:a1:b7:63:6f:66:03:b6:7a:eb:93:a1:04: 9b:8e:18:b4:98:21:5b:98:e8:a6:9c:e8:78:85:da: d1:ef:2c:b3:70:18:1d:b4:c6:80:76:7d:cf:e1:cb: 27:d2:f5:b5:05:38:36:2f:c7:b5:23:ce:eb:6a:78: d5:2f:2e:f1:b6:10:4f:6d:75:95:64:f8:8f:95:74: f5:eb:23:2e:11:bb:70:84:7c:ec:5e:e7:6e:fd:ab: 72:b0:0e:7a:d0:1f:c3:57:e0:49:a0:cd:dd:39:92: c6:88:49:8b:13:aa:d7:da:f0:b4:be:0e:3d:b1:e6: 69:12:ac:18:14:e2:34:6f:08:e4:fc:f2:e3:82:43: c2:3a:87:18:82:5b:1a:3c:0a:ef:09:09:f2:c2:0a: ca:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4A:4D:E7:68:90:B7:B7:FD:DD:0A:85:2A:07:D5:06:00:75:59:76 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:65:e3:bf:03:fc:9a:ba:e9:68:46:c0:d5:5f:54:7c:aa:86: 10:bd:aa:01:6a:a3:c5:6a:18:37:5b:8f:04:c1:95:c2:c8:e0: aa:1d:40:4e:0a:5c:26:78:17:7d:b4:06:c7:b3:f4:fc:90:87: 2f:c7:56:92:58:e8:7c:4a:0e:d3:11:4c:73:a8:1a:b9:cb:19: b6:d5:c0:ba:a7:ad:75:cc:8b:8c:fa:ed:f7:8f:27:99:44:00: 8b:0d:61:77:11:7b:3e:89:a7:24:41:52:d0:78:75:13:f5:c8: 63:9e:e1:52:d0:d6:1d:5c:a1:2e:08:8e:9e:6c:06:3b:82:3c: cf:02:77:7c:b2:cb:2d:8c:48:1d:bd:f0:d6:48:56:38:cd:b5: d8:7f:e5:53:c6:67:c2:f1:56:7d:d3:c0:05:be:03:72:d3:c9: b9:87:c8:47:e3:b9:ab:86:ee:68:a2:a6:5f:8b:e0:dd:59:73: 25:54:a8:4a:16:e9:30:22:04:8d:26:73:ff:9c:7b:f1:8b:52: 6b:e2:e8:4b:db:a7:84:72:11:7f:47:68:43:a9:56:83:2d:26: ee:1c:8e:b6:63:98:6e:c8:6c:f5:30:22:e7:13:81:b6:b7:15: b3:85:29:38:fc:e1:c8:fc:0c:2e:b4:07:8c:47:d0:66:f5:8c: 6a:e7:c6:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjQwNTE4MjI1NTU0WhcNMjQwNTI1MjI1NTU0WjAYMRYwFAYD VQQDEw02NjQ5MzFmYS1hYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6amsjjMxeKzEn71kcAft+cgIcDq0JUNTeKk1NuNqoIjL1/kSnOyZlRIz+E98 CE55qDjtzWyA4BXzMBzfqXWN9klqSzreYfCe0zovlArRuKtvhytitEuf6Xo/MexM sbi9pMF/uLtsJxwi7sqht2NvZgO2euuToQSbjhi0mCFbmOimnOh4hdrR7yyzcBgd tMaAdn3P4csn0vW1BTg2L8e1I87ranjVLy7xthBPbXWVZPiPlXT16yMuEbtwhHzs Xudu/atysA560B/DV+BJoM3dOZLGiEmLE6rX2vC0vg49seZpEqwYFOI0bwjk/PLj gkPCOocYglsaPArvCQnywgrKqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENKTedo kLe3/d0KhSoH1QYAdVl2MB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaZeO/A/yauuloRsDVX1R8qoYQvaoBaqPFahg3W48EwZXCyOCqHUBO ClwmeBd9tAbHs/T8kIcvx1aSWOh8Sg7TEUxzqBq5yxm21cC6p611zIuM+u33jyeZ RACLDWF3EXs+iackQVLQeHUT9chjnuFS0NYdXKEuCI6ebAY7gjzPAnd8ssstjEgd vfDWSFY4zbXYf+VTxmfC8VZ908AFvgNy08m5h8hH47mrhu5ooqZfi+DdWXMlVKhK FukwIgSNJnP/nHvxi1Jr4uhL26eEchF/R2hDqVaDLSbuHI62Y5huyGz1MCLnE4G2 txWzhSk4/OHI/AwutAeMR9Bm9Yxq58bM -----END CERTIFICATE-----Generated at Sun May 19 00:30:16 2024 by rpki-client on console-ams.rpki-client.org