$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: RuUU5TNRYIOY89cs73JE+ab7Oi3dCznDX945RhXSFWk= Subject key identifier: 60:E4:00:7A:9D:66:97:E6:6E:18:1F:A9:76:F0:1E:51:C5:88:4C:4D Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 04BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 04B9 Signing time: Sat 01 Jun 2024 02:27:33 +0000 Manifest this update: Sat 01 Jun 2024 02:27:33 +0000 Manifest next update: Sat 08 Jun 2024 02:27:33 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: warTcn1QEbNnl6aEbe9b6+vsAJEAN8Csxtz36tbQCPk=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: w1owcK2mckoEuX9+Lc25wtlfWu1DJwi/7WwJkItqVkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Jun 1 02:27:33 2024 GMT Not After : Jun 8 02:27:33 2024 GMT Subject: CN=665a8715-9d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f1:28:3e:20:50:cd:5f:0c:08:bf:a0:76:f3: 42:a9:45:bc:21:2f:22:90:49:71:59:45:35:f7:db: 11:c0:51:46:74:3f:a0:ca:10:bc:df:9a:bb:5d:7c: 3f:6e:88:48:cf:3d:ce:f1:cb:80:1a:fc:16:1a:58: 29:dd:84:40:c7:62:17:cd:ef:0f:79:be:5f:3f:e9: f8:d3:81:20:95:ab:02:64:4a:bb:ae:fd:d8:cd:31: ad:3f:77:2a:3f:3a:43:d8:c2:5d:dd:5b:86:cf:76: 77:52:8f:bc:44:ce:25:8f:5c:2c:0c:38:f4:b5:83: 3a:f3:0c:00:11:15:69:38:72:e9:33:7c:41:a0:4d: 90:dd:2d:05:8d:ec:e7:b3:0f:c6:56:53:a0:1a:10: 71:cf:9d:a9:0c:b4:1e:db:ef:10:c2:a2:8a:88:6c: 3b:50:a2:f1:26:d5:07:8d:db:38:72:ca:ac:09:89: a3:75:88:85:26:7a:66:39:35:16:4a:b7:e8:8e:68: f0:e7:82:b5:b1:b2:9e:8a:3a:2b:0d:f4:5e:4f:b7: 54:bf:a5:3c:82:7c:5d:18:a6:d0:82:86:b2:f8:af: a8:19:1d:b6:d3:47:d1:33:79:29:c4:48:2e:f5:ae: 87:6f:0b:76:73:3a:2e:45:65:a0:48:a4:55:2f:82: cf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E4:00:7A:9D:66:97:E6:6E:18:1F:A9:76:F0:1E:51:C5:88:4C:4D X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:63:ec:35:ac:89:10:16:45:a1:a9:64:29:4a:a9:5a:ed:93: af:14:68:c2:22:12:7b:2d:ef:22:6e:50:23:86:1e:e7:6a:21: 4e:cc:67:47:11:ea:c4:7c:72:02:7f:db:ee:43:bb:38:43:ae: 17:27:a3:95:05:41:91:98:62:46:01:62:da:d0:97:eb:bd:58: cf:28:a1:87:96:b7:91:a2:2d:4e:b5:34:95:48:f9:33:f9:d4: 94:76:7e:dc:68:3d:7f:ef:39:35:fc:1f:8f:d0:be:b0:e6:f2: 6c:9d:73:13:c8:74:24:85:ad:65:73:82:3c:ec:b5:23:e7:3a: f6:c7:d5:2a:d4:02:97:2f:20:d7:54:c0:78:f9:8b:14:2a:ca: e7:36:0a:a7:09:40:57:4e:ac:aa:53:dd:72:64:e0:6c:e1:21: 01:b3:ea:73:88:86:3d:b3:37:c4:e1:0c:09:32:6b:87:2a:7f: 61:2d:67:bb:10:b8:36:61:b7:0b:65:73:3d:60:f3:40:83:66: 84:52:a6:8d:ca:c3:91:74:9d:f0:12:a5:78:64:ef:94:9d:d6: e4:6b:a7:f9:24:03:09:6f:45:6b:30:6b:24:14:79:a3:47:7f: 8b:b9:03:db:b9:6d:fd:5b:8b:cc:18:60:71:ac:2a:4f:cf:e2: 9c:6b:55:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjQwNjAxMDIyNzMzWhcNMjQwNjA4MDIyNzMzWjAYMRYwFAYD VQQDEw02NjVhODcxNS05ZDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvEoPiBQzV8MCL+gdvNCqUW8IS8ikElxWUU199sRwFFGdD+gyhC835q7XXw/ bohIzz3O8cuAGvwWGlgp3YRAx2IXze8Peb5fP+n404EglasCZEq7rv3YzTGtP3cq PzpD2MJd3VuGz3Z3Uo+8RM4lj1wsDDj0tYM68wwAERVpOHLpM3xBoE2Q3S0Fjezn sw/GVlOgGhBxz52pDLQe2+8QwqKKiGw7UKLxJtUHjds4csqsCYmjdYiFJnpmOTUW Srfojmjw54K1sbKeijorDfReT7dUv6U8gnxdGKbQgoay+K+oGR2200fRM3kpxEgu 9a6Hbwt2czouRWWgSKRVL4LPIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDkAHqd ZpfmbhgfqXbwHlHFiExNMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTY+w1rIkQFkWhqWQpSqla7ZOvFGjCIhJ7Le8iblAjhh7naiFOzGdH EerEfHICf9vuQ7s4Q64XJ6OVBUGRmGJGAWLa0JfrvVjPKKGHlreRoi1OtTSVSPkz +dSUdn7caD1/7zk1/B+P0L6w5vJsnXMTyHQkha1lc4I87LUj5zr2x9Uq1AKXLyDX VMB4+YsUKsrnNgqnCUBXTqyqU91yZOBs4SEBs+pziIY9szfE4QwJMmuHKn9hLWe7 ELg2YbcLZXM9YPNAg2aEUqaNysORdJ3wEqV4ZO+Undbka6f5JAMJb0VrMGskFHmj R3+LuQPbuW39W4vMGGBxrCpPz+Kca1W2 -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:17 2024 by rpki-client on console-fra.rpki-client.org