$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: 1+muqV7owPoZl5XiGqd/JlW8aU+7nZ32agMJL3BC3tE= Subject key identifier: 9B:4E:A9:C5:CF:5A:CD:C3:A9:4C:52:6F:A3:73:52:E8:9E:FD:28:3E Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0713 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 0709 Signing time: Fri 31 May 2024 23:28:19 +0000 Manifest this update: Fri 31 May 2024 23:28:19 +0000 Manifest next update: Fri 07 Jun 2024 23:28:19 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: zgatnbZhlXWZEqZ2OoL7uVytfRrx8qKa9o172I2pMzU=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: kYI3WNDSztfRXZUlgxH0YUCRVyT+2DmftetsgBmSN8Y=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: eQp+KNojP7FrZXXNy8xSk8f/R+qu8SqcLiMXunoIGOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1811 (0x713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: May 31 23:28:19 2024 GMT Not After : Jun 7 23:28:19 2024 GMT Subject: CN=665a5d13-1b6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:97:5b:f7:28:54:7c:69:bc:ce:d0:30:51:f1: 38:d7:99:65:9c:90:a9:a8:6d:e4:63:d1:6e:3e:99: c7:1f:01:cd:54:9f:4b:2b:b7:00:ac:3a:19:65:fb: 1d:be:d0:13:18:11:cc:ce:61:d6:89:83:3f:38:e1: 35:48:bb:fa:48:6f:dd:4d:6c:19:16:41:cc:3a:86: 1b:35:23:9e:e4:58:4a:d0:cf:07:77:14:5a:8b:c8: cf:43:f8:17:fb:75:bc:ac:e3:0f:c5:3c:8e:44:2b: 48:a2:5f:06:a4:6f:d6:e1:b8:67:3b:e4:00:a5:f8: 22:84:bc:47:16:15:5f:dc:62:48:dd:55:d7:22:68: ee:27:35:ef:58:f6:48:ac:21:73:af:bb:5f:ed:42: 5a:d1:92:bc:60:c0:e0:94:1e:b8:df:de:bc:31:b7: 2e:a4:0f:aa:67:a9:af:9c:b9:85:c8:37:37:77:52: d4:a0:cf:c4:23:3c:91:bc:09:a1:62:61:c6:28:c6: 93:8a:76:2f:64:28:39:6f:72:20:41:12:c9:2a:eb: 1d:b9:3c:59:79:70:2b:a2:f4:19:d0:50:dc:a4:87: cc:04:90:0d:6e:d1:0c:d3:4d:55:e7:b4:02:91:46: 19:c2:9a:74:6d:5e:29:b1:eb:30:f7:07:e2:88:0a: 03:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:4E:A9:C5:CF:5A:CD:C3:A9:4C:52:6F:A3:73:52:E8:9E:FD:28:3E X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:29:be:7e:66:4e:ec:1f:db:e5:cf:af:40:da:d2:67:b7:97: 7e:aa:31:ef:f4:73:a3:26:26:cc:23:ed:11:75:4f:af:be:9a: 2c:30:36:cc:84:4d:c1:53:ff:92:42:f4:66:f9:c7:c9:c1:ec: 7f:80:31:38:a4:01:cd:59:a0:66:3f:58:bc:e4:de:5a:42:c7: ac:18:b3:8b:3f:38:93:51:be:cb:71:c8:34:a2:16:9e:52:d2: 37:03:a5:c1:72:56:d1:30:df:8e:bd:c8:c8:72:c8:d4:23:98: 1c:02:40:ef:46:43:18:09:f6:ab:0b:32:33:ca:cd:3e:03:04: 79:4c:5c:ec:d0:b0:5f:c7:ff:ab:88:12:d6:e8:de:48:8a:1a: b7:02:09:bf:c0:a9:21:9a:6f:66:66:bf:f1:b0:75:10:03:4e: 3d:22:8b:2b:da:e4:d9:6e:ac:cf:2a:63:29:e7:c8:d7:0a:db: 60:5c:ae:cf:68:53:32:6a:71:a4:c5:4f:98:65:0b:eb:1f:94: 56:26:5b:e5:c8:98:f0:3b:18:fa:08:31:c7:fb:1b:b0:a1:80: fd:fc:21:56:d5:35:64:a4:41:7e:df:ed:3b:69:6a:69:7c:65: a4:95:fe:65:19:d4:81:7e:8e:52:bb:47:a1:37:26:31:26:02: af:5c:16:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjQwNTMxMjMyODE5WhcNMjQwNjA3MjMyODE5WjAYMRYwFAYD VQQDEw02NjVhNWQxMy0xYjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlpdb9yhUfGm8ztAwUfE415llnJCpqG3kY9FuPpnHHwHNVJ9LK7cArDoZZfsd vtATGBHMzmHWiYM/OOE1SLv6SG/dTWwZFkHMOoYbNSOe5FhK0M8HdxRai8jPQ/gX +3W8rOMPxTyORCtIol8GpG/W4bhnO+QApfgihLxHFhVf3GJI3VXXImjuJzXvWPZI rCFzr7tf7UJa0ZK8YMDglB643968MbcupA+qZ6mvnLmFyDc3d1LUoM/EIzyRvAmh YmHGKMaTinYvZCg5b3IgQRLJKusduTxZeXArovQZ0FDcpIfMBJANbtEM001V57QC kUYZwpp0bV4psesw9wfiiAoD7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtOqcXP Ws3DqUxSb6NzUuie/Sg+MB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjKb5+Zk7sH9vlz69A2tJnt5d+qjHv9HOjJibMI+0RdU+vvposMDbM hE3BU/+SQvRm+cfJwex/gDE4pAHNWaBmP1i85N5aQsesGLOLPziTUb7Lccg0ohae UtI3A6XBclbRMN+OvcjIcsjUI5gcAkDvRkMYCfarCzIzys0+AwR5TFzs0LBfx/+r iBLW6N5Iihq3Agm/wKkhmm9mZr/xsHUQA049Iosr2uTZbqzPKmMp58jXCttgXK7P aFMyanGkxU+YZQvrH5RWJlvlyJjwOxj6CDHH+xuwoYD9/CFW1TVkpEF+3+07aWpp fGWklf5lGdSBfo5Su0ehNyYxJgKvXBaN -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:19 2024 by rpki-client on console-ams.rpki-client.org