$ rpki-client -vvf rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft File: H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft (raw, json) Hash identifier: DSHIQ52WCWd6VhpAmzDTPhMYOkzvxM3OTMw9ZRlIO/4= Subject key identifier: 6F:70:3D:EC:42:A3:46:A7:52:8E:3E:7B:D5:DF:1B:51:CA:26:31:04 Authority key identifier: 1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF Certificate issuer: /CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Certificate serial: 2794 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft Manifest number: 274D Signing time: Sat 18 May 2024 15:54:46 +0000 Manifest this update: Sat 18 May 2024 15:54:45 +0000 Manifest next update: Sat 25 May 2024 15:54:45 +0000 Files and hashes: 1: H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl (hash: GUntCJD9iMFvaoowoJb5LFlgGZeWmcwfDNkVhQv//Rs=) 2: 864CD63A752B11ED9675D15FC4F9AE02.roa (hash: SnJS90lH4PlvNGVA3KVUUsEh6JU+BPy8ZQq912PGXhU=) 3: 02E7C9A629AC11E793618B6BC4F9AE02.roa (hash: Zsv/kKMxG1Mg42/9wooAIhBTIkgYHLrAjvk1hPgEhZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10132 (0x2794) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Validity Not Before: May 18 15:54:45 2024 GMT Not After : May 25 15:54:45 2024 GMT Subject: CN=6648cf46-0214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:be:67:9d:69:3a:79:cc:31:1c:c5:c1:09:9a: 79:94:81:df:cf:be:89:12:5a:53:1e:3d:c2:30:f2: 7c:fd:56:97:bc:61:c3:d6:5f:84:d3:e3:6e:5e:76: c2:1c:8d:2d:e7:f7:17:1d:f9:7d:de:f8:7a:f5:8d: 3c:c4:66:9f:e6:7e:14:f3:0f:59:ef:d9:4c:ba:1a: 90:a9:46:ba:59:2f:b0:6c:6d:4d:f5:9d:15:64:69: 2c:c2:b3:4c:09:93:f7:e8:52:30:76:04:8f:10:86: 82:3d:c5:c6:2e:9f:a3:3f:af:33:dc:97:c6:8c:9d: 37:55:ca:e2:81:9d:9b:67:c8:7a:12:96:e6:8c:e3: 82:8b:6a:da:f9:3a:5d:8b:56:e7:fc:f6:02:e6:24: db:88:99:52:92:75:1f:88:62:fd:25:ff:5f:44:d2: cf:fa:e2:30:57:5c:d2:1b:0e:5c:a7:7b:1b:c6:ea: fb:ed:0e:e9:ba:72:2e:b2:65:ba:6f:14:ce:cd:8a: 98:b0:49:a4:bd:36:b0:59:45:46:69:1f:38:b4:5a: 06:6c:df:ab:28:93:43:46:61:8c:a0:50:8d:de:93: dc:40:ea:ff:11:12:74:26:0f:d4:ef:fd:db:e0:52: e8:84:d7:42:e0:72:cb:83:93:47:b2:7e:94:51:a8: 44:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:70:3D:EC:42:A3:46:A7:52:8E:3E:7B:D5:DF:1B:51:CA:26:31:04 X509v3 Authority Key Identifier: keyid:1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:9f:4f:78:5f:87:46:b1:33:f0:54:97:ee:12:b8:e4:98:bb: b7:90:88:17:d2:61:e2:48:2c:e1:a6:67:d4:97:06:c5:7d:13: 22:f9:d4:11:0f:4b:e1:18:19:fb:57:07:6e:51:d0:06:dd:36: 28:28:a2:2d:09:62:1b:16:bf:97:3b:ec:c0:d0:b7:54:36:f3: 9c:cd:13:97:a7:94:44:40:a6:6f:38:43:3f:20:a9:83:78:8e: 47:58:fe:79:20:e0:cf:d8:28:e1:7e:20:df:07:12:a0:ce:ce: 1f:ff:6c:76:70:c0:13:74:5c:f4:62:8c:eb:be:96:e4:7f:b7: fe:a0:09:50:06:e6:bf:f5:56:62:cb:b5:f9:46:78:01:18:4d: 5d:5c:0e:70:32:ec:2f:1e:88:4d:4b:97:ec:40:2f:b2:18:ec: e1:e6:b9:54:60:a4:7a:d0:ec:18:4a:e8:c7:0f:02:e8:72:69: c6:96:2b:d8:8b:8d:34:69:af:24:2f:d8:4c:92:70:13:cf:e9: f4:2f:0c:4f:64:3d:dd:88:40:48:ab:09:81:6e:92:6f:0e:e5: 8b:6d:6b:18:77:83:b1:8e:c3:fb:a2:9c:2e:bb:69:2d:9f:6a: b1:a0:fc:d1:a6:24:05:b0:a0:da:13:f3:44:e7:2b:6f:32:e9: a8:f5:34:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE0NDcxMTAvBgNVBAUTKDFGNjgyNThDNTI2QzVEQkM3MTU0MzQzNTdEMzgwMDIw MTQ2NDQwRUYwHhcNMjQwNTE4MTU1NDQ1WhcNMjQwNTI1MTU1NDQ1WjAYMRYwFAYD VQQDEw02NjQ4Y2Y0Ni0wMjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA575nnWk6ecwxHMXBCZp5lIHfz76JElpTHj3CMPJ8/VaXvGHD1l+E0+NuXnbC HI0t5/cXHfl93vh69Y08xGaf5n4U8w9Z79lMuhqQqUa6WS+wbG1N9Z0VZGkswrNM CZP36FIwdgSPEIaCPcXGLp+jP68z3JfGjJ03VcrigZ2bZ8h6EpbmjOOCi2ra+Tpd i1bn/PYC5iTbiJlSknUfiGL9Jf9fRNLP+uIwV1zSGw5cp3sbxur77Q7punIusmW6 bxTOzYqYsEmkvTawWUVGaR84tFoGbN+rKJNDRmGMoFCN3pPcQOr/ERJ0Jg/U7/3b 4FLohNdC4HLLg5NHsn6UUahEdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9wPexC o0anUo4+e9XfG1HKJjEEMB8GA1UdIwQYMBaAFB9oJYxSbF28cVQ0NX04ACAUZEDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTQ0Ny9EMjA3NTgxNEEw OUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hieHhWRFExZlRnQUlCUmtR TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyZ2xqRkpzWGJ4eFZEUTFmVGdBSUJSa1FPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTQ0Ny9EMjA3NTgxNEEwOUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hi eHhWRFExZlRnQUlCUmtRTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmn094X4dGsTPwVJfuErjkmLu3kIgX0mHiSCzhpmfUlwbFfRMi+dQR D0vhGBn7VwduUdAG3TYoKKItCWIbFr+XO+zA0LdUNvOczROXp5REQKZvOEM/IKmD eI5HWP55IODP2CjhfiDfBxKgzs4f/2x2cMATdFz0Yozrvpbkf7f+oAlQBua/9VZi y7X5RngBGE1dXA5wMuwvHohNS5fsQC+yGOzh5rlUYKR60OwYSujHDwLocmnGlivY i400aa8kL9hMknATz+n0LwxPZD3diEBIqwmBbpJvDuWLbWsYd4OxjsP7opwuu2kt n2qxoPzRpiQFsKDaE/NE5ytvMumo9TT8 -----END CERTIFICATE-----Generated at Sat May 18 17:20:05 2024 by rpki-client on console-ams.rpki-client.org