$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: QHL4cuUQWQRnUq3oXGhcdc4lvtUJSxt14EZVsy3l6Zo= Subject key identifier: CB:20:EF:13:95:C2:0A:B8:23:79:F2:7E:45:5E:D6:BC:FE:FF:2A:C0 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1B18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1B0C Signing time: Sat 18 May 2024 16:40:36 +0000 Manifest this update: Sat 18 May 2024 16:40:36 +0000 Manifest next update: Sat 25 May 2024 16:40:36 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: v6IvF/EWcDoWQ9P150Bl+OnLqqQ+dLF0jHx4zxHOyd0=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: FlF6pC5hcexFI1ynxGhRxmxYnReF8nnPqoWFCF/BAjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6936 (0x1b18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: May 18 16:40:36 2024 GMT Not After : May 25 16:40:36 2024 GMT Subject: CN=6648da04-2d01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:db:c4:b4:67:3e:14:27:3f:9c:4d:08:59:e6: e9:e4:25:6d:82:9f:50:67:b8:c1:a8:a7:66:81:ed: ae:99:5a:e2:db:60:d0:eb:a2:b0:14:78:0a:2a:b9: 4e:f6:05:8b:a6:47:2b:ac:fa:a2:1b:22:f3:8f:b2: 65:ca:b0:6d:70:7a:ea:e6:b6:3a:0e:4b:6b:c0:15: f9:6e:e9:3d:89:c3:10:da:6e:a5:9c:1a:f6:7b:3b: 86:0b:5f:02:dc:89:eb:51:0e:ee:57:a2:e2:7e:d8: 74:b4:0b:87:6c:23:f6:8b:f9:e7:43:5d:f8:42:cb: 18:29:42:dc:92:90:f7:9a:75:44:ca:f5:16:c6:db: 3c:2c:8b:c2:7a:b7:14:b8:1a:8e:24:93:45:12:45: 64:c4:eb:0a:e7:67:ec:76:b7:00:64:22:35:cb:84: 40:fb:9f:19:aa:23:00:81:01:0c:17:ee:16:4b:19: 70:c2:d4:83:18:4e:6a:93:de:47:70:af:a5:a8:41: 59:bd:e9:ea:79:f2:11:36:8d:56:46:6e:6e:3a:bf: 9d:5f:1a:21:62:34:d3:5c:c3:ec:c1:58:72:0d:9b: 69:13:f6:82:1a:21:56:58:2f:78:06:d2:45:c8:35: 20:1e:d1:6e:f6:69:c9:11:e1:fd:92:17:95:e8:00: ba:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:20:EF:13:95:C2:0A:B8:23:79:F2:7E:45:5E:D6:BC:FE:FF:2A:C0 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3f:46:27:59:b7:a5:86:b5:bc:db:8a:11:9d:61:57:37:e7: 15:47:06:df:d9:d1:72:d6:f0:e4:f2:70:40:88:22:28:9d:7c: af:56:18:38:de:9e:6c:90:c7:13:af:84:2e:34:71:11:7a:9e: 3d:88:ae:dc:6d:54:7c:06:d8:56:b3:37:0f:aa:53:8f:82:a9: 1f:33:4a:70:26:cf:73:6f:ba:24:68:36:d5:b4:7c:a8:c2:17: 6f:d4:f8:07:ef:ab:84:e1:bd:e3:12:4f:9b:dc:fd:b9:f9:85: dc:74:ac:d1:15:79:63:df:01:95:e4:5b:19:30:f2:2a:1f:25: 23:6e:7a:f5:a2:78:5d:2e:d5:cb:4c:81:b6:58:0f:c3:68:bd: 56:f2:49:8f:67:b3:a6:62:04:68:54:0d:17:e8:48:9c:6c:bb: 02:79:7c:78:e5:ff:50:d8:c6:c9:7e:99:56:a6:9b:dc:28:84: eb:c9:fc:1c:3d:8b:62:c6:1a:5c:94:bd:59:f5:d7:73:b0:af: ef:75:07:cc:c1:11:75:04:ad:d5:08:a3:f4:c8:76:8e:45:a0: 8b:65:0b:76:ea:49:1d:85:cf:cd:bb:aa:a9:fe:6e:c1:4b:ad: 3f:ef:e1:59:17:5b:24:06:c6:7d:53:60:22:09:c2:31:8d:bc: b8:03:0a:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjQwNTE4MTY0MDM2WhcNMjQwNTI1MTY0MDM2WjAYMRYwFAYD VQQDEw02NjQ4ZGEwNC0yZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7tvEtGc+FCc/nE0IWebp5CVtgp9QZ7jBqKdmge2umVri22DQ66KwFHgKKrlO 9gWLpkcrrPqiGyLzj7JlyrBtcHrq5rY6DktrwBX5buk9icMQ2m6lnBr2ezuGC18C 3InrUQ7uV6Lifth0tAuHbCP2i/nnQ134QssYKULckpD3mnVEyvUWxts8LIvCercU uBqOJJNFEkVkxOsK52fsdrcAZCI1y4RA+58ZqiMAgQEMF+4WSxlwwtSDGE5qk95H cK+lqEFZvenqefIRNo1WRm5uOr+dXxohYjTTXMPswVhyDZtpE/aCGiFWWC94BtJF yDUgHtFu9mnJEeH9kheV6AC60wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsg7xOV wgq4I3nyfkVe1rz+/yrAMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClP0YnWbelhrW824oRnWFXN+cVRwbf2dFy1vDk8nBAiCIonXyvVhg4 3p5skMcTr4QuNHERep49iK7cbVR8BthWszcPqlOPgqkfM0pwJs9zb7okaDbVtHyo whdv1PgH76uE4b3jEk+b3P25+YXcdKzRFXlj3wGV5FsZMPIqHyUjbnr1onhdLtXL TIG2WA/DaL1W8kmPZ7OmYgRoVA0X6EicbLsCeXx45f9Q2MbJfplWppvcKITryfwc PYtixhpclL1Z9ddzsK/vdQfMwRF1BK3VCKP0yHaORaCLZQt26kkdhc/Nu6qp/m7B S60/7+FZF1skBsZ9U2AiCcIxjby4AwpE -----END CERTIFICATE-----Generated at Sat May 18 17:20:05 2024 by rpki-client on console-ams.rpki-client.org