$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: Lg9/lxs8YywTXKJ7ETZSPLM6dxBdwnz1ilGtfwDgxVU= Subject key identifier: 3B:7C:94:24:CA:28:B1:98:E6:E0:C8:2B:80:60:D9:FF:80:3D:38:3C Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0B72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0B69 Signing time: Sat 18 May 2024 19:34:44 +0000 Manifest this update: Sat 18 May 2024 19:34:43 +0000 Manifest next update: Sat 25 May 2024 19:34:43 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: 3MxBPsKQPAbu7thXCqEZJJ+k7btlH+ymRhI1ZMulXGg=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: eYGljnryFLeKq5KJduqVaf7xJpDCtcvFC1IfiKxMpf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2930 (0xb72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: May 18 19:34:43 2024 GMT Not After : May 25 19:34:43 2024 GMT Subject: CN=664902d3-7a64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:33:37:b0:83:1a:2a:8f:68:e0:67:b2:ba:37: d8:0d:74:fc:c5:5e:f0:16:79:9c:c8:65:dd:d5:06: 28:ec:28:1c:99:c1:e2:5a:6e:3b:17:da:52:5c:56: 43:85:61:67:07:bc:d3:b5:b1:92:ba:6d:a2:cc:00: 4c:06:5f:f3:ea:3d:90:1a:ad:5d:9a:20:74:45:ff: ce:2d:1a:ff:1c:84:19:8d:5a:08:70:9d:6a:27:01: 69:56:84:3f:37:53:38:ca:73:4b:07:e2:7f:b3:6c: 30:3b:f7:2d:34:4f:41:22:cb:89:3b:5c:16:39:88: 4b:91:a1:09:57:0c:6d:9c:42:89:ff:61:76:df:e2: 0f:9f:34:0a:f0:d8:04:50:f3:d5:6d:8f:42:f2:36: 94:f4:96:01:7b:af:95:98:da:da:49:b5:26:5b:dc: 93:02:d1:4d:2e:25:f1:6c:09:b4:db:f4:fa:f5:34: a1:b2:dc:14:68:61:6e:df:fd:52:17:ab:ac:b5:97: 7f:d7:c7:87:63:fe:2f:3e:cf:67:aa:64:c5:24:40: d1:bd:48:03:59:e3:96:c6:58:05:99:a5:70:ef:02: de:be:ad:17:7e:18:fc:bb:77:38:6a:ec:ee:fb:22: 8e:78:97:b2:81:4b:80:eb:79:18:e1:99:60:62:55: 4d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:7C:94:24:CA:28:B1:98:E6:E0:C8:2B:80:60:D9:FF:80:3D:38:3C X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:c4:23:25:21:c4:05:23:e2:5e:ed:6f:cb:e1:c0:e1:2e:88: 42:c9:92:d3:bc:48:54:51:ef:dd:16:b3:b0:c6:02:d5:1e:66: 29:36:ca:2f:fa:fa:9d:88:46:f0:81:04:c5:30:c0:03:7c:d7: 84:30:e3:da:7c:f7:cf:e6:27:85:a4:43:1f:44:bc:30:96:0b: 81:cd:24:18:f1:43:fc:99:4d:eb:8b:67:42:48:97:34:f8:86: 54:6a:8a:0e:63:43:00:16:48:c4:be:79:34:26:98:50:6d:3a: 3b:09:1a:ab:5c:c8:8e:78:69:b4:e4:33:31:e3:8f:79:4f:87: 0c:22:72:e0:a5:b1:b7:54:d0:ad:7f:4b:c8:fb:3b:ac:7b:96: b7:c9:a2:c0:2a:b3:7e:5b:06:a7:d2:c4:f4:41:f7:1b:8b:15: d2:4a:32:d5:92:50:6a:e4:ca:29:b3:7a:38:0f:2e:da:06:70: 05:cd:ed:a5:4b:48:39:52:66:ab:07:3d:2a:e9:6e:2d:3c:33: 21:09:45:eb:51:a1:5c:0a:14:c6:4f:be:db:bd:98:7f:78:bc: 73:f1:37:1d:c4:b6:f4:c6:b6:2a:3c:8d:97:bf:de:80:ed:12: fd:38:d9:f9:eb:b4:68:06:01:0f:20:39:9e:ce:5a:b0:13:ca: 37:ee:df:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjQwNTE4MTkzNDQzWhcNMjQwNTI1MTkzNDQzWjAYMRYwFAYD VQQDEw02NjQ5MDJkMy03YTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zM3sIMaKo9o4GeyujfYDXT8xV7wFnmcyGXd1QYo7CgcmcHiWm47F9pSXFZD hWFnB7zTtbGSum2izABMBl/z6j2QGq1dmiB0Rf/OLRr/HIQZjVoIcJ1qJwFpVoQ/ N1M4ynNLB+J/s2wwO/ctNE9BIsuJO1wWOYhLkaEJVwxtnEKJ/2F23+IPnzQK8NgE UPPVbY9C8jaU9JYBe6+VmNraSbUmW9yTAtFNLiXxbAm02/T69TShstwUaGFu3/1S F6ustZd/18eHY/4vPs9nqmTFJEDRvUgDWeOWxlgFmaVw7wLevq0Xfhj8u3c4auzu +yKOeJeygUuA63kY4ZlgYlVNCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDt8lCTK KLGY5uDIK4Bg2f+APTg8MB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVxCMlIcQFI+Je7W/L4cDhLohCyZLTvEhUUe/dFrOwxgLVHmYpNsov +vqdiEbwgQTFMMADfNeEMOPafPfP5ieFpEMfRLwwlguBzSQY8UP8mU3ri2dCSJc0 +IZUaooOY0MAFkjEvnk0JphQbTo7CRqrXMiOeGm05DMx4495T4cMInLgpbG3VNCt f0vI+zuse5a3yaLAKrN+Wwan0sT0QfcbixXSSjLVklBq5Mops3o4Dy7aBnAFze2l S0g5UmarBz0q6W4tPDMhCUXrUaFcChTGT77bvZh/eLxz8TcdxLb0xrYqPI2Xv96A 7RL9ONn567RoBgEPIDmezlqwE8o37t+f -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org