$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: ms/eP2HffTp2oTrlxGpOhbfKnu+McHJeXWmp71ADxn8= Subject key identifier: 84:80:9C:13:09:EE:62:2D:5B:E7:CD:B1:56:61:75:40:57:60:39:7A Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: C1 Signing time: Sun 19 May 2024 06:21:34 +0000 Manifest this update: Sun 19 May 2024 06:21:33 +0000 Manifest next update: Sun 26 May 2024 06:21:33 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: NEu7g2yVt3xcA7LImg9RrXkMrADip9fqV3SqyM+d4L8=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: PlDX7f6npPBBb8zs0MYAaQuFOPsPasxz/dDhct2tCFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: May 19 06:21:33 2024 GMT Not After : May 26 06:21:33 2024 GMT Subject: CN=66499a6d-9f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a8:a0:8e:0e:6c:da:1b:24:56:bf:a3:eb:4d: a3:62:5e:6b:1d:cf:94:82:04:62:a6:05:ed:d8:dd: a4:fc:70:44:17:e5:03:e0:d8:81:4f:37:b2:e7:49: 39:81:5f:97:25:ad:9b:26:20:16:8a:42:f0:51:69: 2a:df:93:52:fe:1c:71:2e:2e:c4:ca:3b:d2:62:52: cd:a6:f3:d5:be:55:98:f2:c8:e0:4a:54:8c:17:c1: eb:8d:f6:49:ed:54:50:b7:ef:fd:d5:f9:48:dd:77: c9:29:fb:82:48:8a:2d:eb:51:1e:f7:27:d7:6c:c6: 1e:2b:93:e6:2b:b8:d0:c8:46:46:fc:6d:49:4e:01: 8e:df:2d:d3:44:e9:ec:27:3c:37:ee:bc:e2:85:54: 6b:b0:d1:25:80:e2:1d:f4:7f:a3:ac:62:9a:ea:c1: 27:7c:e3:5c:52:66:fe:5d:72:51:d9:9b:9d:99:a2: 98:41:32:4c:36:a6:09:73:fc:8b:b4:c1:db:4c:f8: c5:03:a3:70:87:f0:a1:21:b1:11:21:c1:eb:d8:39: 9d:2a:32:ba:01:ba:80:69:20:95:41:78:01:ee:cb: 19:8a:fb:af:b4:88:da:94:c5:7a:c3:a2:15:da:ae: dd:57:db:22:db:d4:dd:d3:27:c5:ad:3c:3e:f5:8c: c1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:80:9C:13:09:EE:62:2D:5B:E7:CD:B1:56:61:75:40:57:60:39:7A X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:71:48:f7:61:b7:6d:77:e3:85:d1:16:68:b9:61:93:10:49: c9:69:73:26:9c:06:c5:9e:30:9e:7b:54:7f:d9:8b:45:c4:2e: 1a:b7:d5:5f:e8:6b:db:e7:0b:61:1e:3e:39:1d:7f:54:dd:ce: c9:c8:4d:81:b3:7e:b4:91:3b:73:b0:00:6d:62:67:0d:b4:a7: 80:1c:6e:34:b9:33:8a:e6:66:42:1c:e0:36:1a:4c:ea:9b:b9: a4:b1:90:93:66:af:1c:30:87:4d:4c:3e:c4:8d:87:b2:01:bd: 5c:9b:97:b6:8c:17:41:81:95:08:02:9b:6f:21:4d:df:26:79: bb:37:20:98:f9:00:17:59:92:74:b5:22:a0:31:c1:0d:4f:b5: 1e:46:12:ce:89:4f:b9:22:b0:39:6b:93:0e:2f:9f:ed:76:df: 7e:28:35:53:67:8b:e2:0c:bf:14:8f:c4:4f:53:91:bb:cd:11: 86:75:4b:99:d0:6d:88:5c:fc:10:75:3d:27:e4:fb:b1:93:24: b1:de:a1:b2:db:46:d7:43:ff:ca:d0:45:1d:12:36:4f:a0:fd: 6d:f9:10:51:0f:64:d4:85:c3:30:2b:03:c4:75:b0:da:f1:59: 9b:1c:4a:38:a3:bb:bb:94:5d:34:59:ca:a3:15:19:d2:d1:ad: 66:65:14:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjQwNTE5MDYyMTMzWhcNMjQwNTI2MDYyMTMzWjAYMRYwFAYD VQQDEw02NjQ5OWE2ZC05ZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKigjg5s2hskVr+j602jYl5rHc+UggRipgXt2N2k/HBEF+UD4NiBTzey50k5 gV+XJa2bJiAWikLwUWkq35NS/hxxLi7EyjvSYlLNpvPVvlWY8sjgSlSMF8HrjfZJ 7VRQt+/91flI3XfJKfuCSIot61Ee9yfXbMYeK5PmK7jQyEZG/G1JTgGO3y3TROns Jzw37rzihVRrsNElgOId9H+jrGKa6sEnfONcUmb+XXJR2ZudmaKYQTJMNqYJc/yL tMHbTPjFA6Nwh/ChIbERIcHr2DmdKjK6AbqAaSCVQXgB7ssZivuvtIjalMV6w6IV 2q7dV9si29Td0yfFrTw+9YzBUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISAnBMJ 7mItW+fNsVZhdUBXYDl6MB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqcUj3Ybdtd+OF0RZouWGTEEnJaXMmnAbFnjCee1R/2YtFxC4at9Vf 6Gvb5wthHj45HX9U3c7JyE2Bs360kTtzsABtYmcNtKeAHG40uTOK5mZCHOA2Gkzq m7mksZCTZq8cMIdNTD7EjYeyAb1cm5e2jBdBgZUIAptvIU3fJnm7NyCY+QAXWZJ0 tSKgMcENT7UeRhLOiU+5IrA5a5MOL5/tdt9+KDVTZ4viDL8Uj8RPU5G7zRGGdUuZ 0G2IXPwQdT0n5PuxkySx3qGy20bXQ//K0EUdEjZPoP1t+RBRD2TUhcMwKwPEdbDa 8VmbHEo4o7u7lF00WcqjFRnS0a1mZRRi -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org