$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: xKf7EYY5PFfC8edrvoxG9WCHWSe/dh+xtxzQ9jWcvyo= Subject key identifier: 41:A7:4D:43:C6:DE:2D:18:DF:1F:B7:63:A7:EF:B1:21:19:BF:88:FF Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0B74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0B6A Signing time: Sat 18 May 2024 19:33:26 +0000 Manifest this update: Sat 18 May 2024 19:33:25 +0000 Manifest next update: Sat 25 May 2024 19:33:25 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: /1eIoTizvoLgOwCQBBHTwYCG5itRrrCqwvOmrhEOCcc=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: XeiiuxFkH6SuATXXDEdao70V+G6KNK3pgpHICGc+Hvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2932 (0xb74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: May 18 19:33:25 2024 GMT Not After : May 25 19:33:25 2024 GMT Subject: CN=66490285-9c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:62:f4:8d:73:49:0d:4f:af:b8:af:00:ef:a0: 7e:4e:6a:7c:06:19:42:ce:b8:e8:0b:f1:fb:1e:39: af:3d:be:a9:9c:18:95:16:0f:20:93:f0:9e:8a:37: aa:04:13:5b:63:d7:0d:f4:34:cc:bd:46:96:f6:39: 8d:c7:02:69:0e:4b:32:cc:e0:33:16:87:6a:0e:c2: de:30:ac:35:75:35:e9:22:c5:58:c8:cd:ba:3a:c0: d9:d4:3c:81:ac:12:97:04:fa:ed:2d:77:27:15:f0: b4:f8:38:53:9c:2e:3f:b0:a9:91:ba:60:e3:6b:c7: c8:55:c2:b4:30:e3:17:f0:51:1e:23:7e:b6:31:74: 92:1e:21:d5:eb:48:d7:e4:e0:63:ce:69:c8:d9:c2: 03:78:d3:03:d9:02:9e:cd:31:49:f2:a3:46:92:16: 01:1b:15:26:07:0d:d4:3c:c9:f8:5b:2b:c7:a1:45: 98:cf:d2:17:69:11:b4:d9:83:0f:22:4d:7b:b0:cb: a0:35:4e:96:fa:8a:5a:02:d7:60:f1:8d:be:4f:5c: 66:f7:80:3c:7f:3a:1a:92:08:d2:50:e1:20:70:ac: 13:21:b3:a1:b7:62:3b:52:f9:fd:86:07:a4:f7:14: f3:71:53:48:92:02:92:ef:5f:20:cd:41:55:82:cf: ea:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A7:4D:43:C6:DE:2D:18:DF:1F:B7:63:A7:EF:B1:21:19:BF:88:FF X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:0d:d0:44:a7:77:a7:66:65:3a:f6:4a:6a:7c:0d:ae:e1:5b: 8a:8d:56:4a:1a:a3:a5:13:17:a1:09:1a:d6:13:1f:bb:39:c9: 8e:2e:85:16:e9:53:93:65:3b:df:d8:5a:f3:c4:dc:39:eb:5c: 7d:7d:0e:4b:b2:08:1e:14:72:5f:52:33:46:7c:68:1b:27:5c: a3:c6:b5:e0:64:db:34:ed:a8:1e:0e:66:25:d3:2e:6a:df:22: 8d:d3:f6:1f:b7:99:c2:c3:d5:56:53:f6:8e:15:48:9b:b4:b7: c0:36:e8:08:94:ce:b5:89:55:8f:ad:95:fe:84:23:a2:34:0a: 5e:c4:8c:86:e0:cd:74:a6:6e:d4:5f:14:92:19:4e:e4:ad:b4: e6:f6:c3:04:f6:11:06:a0:0f:77:98:6b:34:97:f0:b8:77:54: 4d:d2:29:a7:d0:44:57:13:48:c8:66:a0:a6:0b:5c:98:47:7e: e0:af:03:a4:25:4c:db:f7:33:59:64:c5:4e:a6:a8:52:5f:f4: a7:a7:a1:9b:fc:67:16:5b:ef:4b:a0:b3:e1:15:e3:a5:ac:78: a2:63:12:52:98:4e:1f:63:21:cc:9d:bf:bf:9f:8b:72:a0:35: 22:e4:b1:be:a2:e0:20:a3:24:57:0d:67:00:59:62:f5:0f:b3: 8b:d0:ab:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjQwNTE4MTkzMzI1WhcNMjQwNTI1MTkzMzI1WjAYMRYwFAYD VQQDEw02NjQ5MDI4NS05YzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WL0jXNJDU+vuK8A76B+Tmp8BhlCzrjoC/H7HjmvPb6pnBiVFg8gk/Ceijeq BBNbY9cN9DTMvUaW9jmNxwJpDksyzOAzFodqDsLeMKw1dTXpIsVYyM26OsDZ1DyB rBKXBPrtLXcnFfC0+DhTnC4/sKmRumDja8fIVcK0MOMX8FEeI362MXSSHiHV60jX 5OBjzmnI2cIDeNMD2QKezTFJ8qNGkhYBGxUmBw3UPMn4WyvHoUWYz9IXaRG02YMP Ik17sMugNU6W+opaAtdg8Y2+T1xm94A8fzoakgjSUOEgcKwTIbOht2I7Uvn9hgek 9xTzcVNIkgKS718gzUFVgs/qAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGnTUPG 3i0Y3x+3Y6fvsSEZv4j/MB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDODdBEp3enZmU69kpqfA2u4VuKjVZKGqOlExehCRrWEx+7OcmOLoUW 6VOTZTvf2FrzxNw561x9fQ5LsggeFHJfUjNGfGgbJ1yjxrXgZNs07ageDmYl0y5q 3yKN0/Yft5nCw9VWU/aOFUibtLfANugIlM61iVWPrZX+hCOiNApexIyG4M10pm7U XxSSGU7krbTm9sME9hEGoA93mGs0l/C4d1RN0imn0ERXE0jIZqCmC1yYR37grwOk JUzb9zNZZMVOpqhSX/Snp6Gb/GcWW+9LoLPhFeOlrHiiYxJSmE4fYyHMnb+/n4ty oDUi5LG+ouAgoyRXDWcAWWL1D7OL0Kv0 -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org