$ rpki-client -vvf rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft File: H7fzr2-da5fjcg7FSsv1iTrGk2g.mft (raw, json) Hash identifier: wf3GBui46iFUe+/mQFRa4fwulEFDRjukeurpRj/AFP8= Subject key identifier: 48:52:3F:11:9C:89:E6:1B:D4:0F:CF:8C:20:77:80:F6:34:A5:58:BC Authority key identifier: 1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 Certificate issuer: /CN=A9117DD2/serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft Manifest number: D4 Signing time: Sun 19 May 2024 06:07:52 +0000 Manifest this update: Sun 19 May 2024 06:07:52 +0000 Manifest next update: Sun 26 May 2024 06:07:52 +0000 Files and hashes: 1: H7fzr2-da5fjcg7FSsv1iTrGk2g.crl (hash: AtTMjRQke6ouvoDbADDyn/BK7/p+N4Lk3Euwjx0GdO4=) 2: 2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa (hash: qb9g7FTmeUvfQ3jWHaVTWWP184YmK/fETA+P+nkZNew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117DD2/serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Validity Not Before: May 19 06:07:52 2024 GMT Not After : May 26 06:07:52 2024 GMT Subject: CN=66499738-c385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9b:35:97:2d:46:ca:5a:5a:f2:ac:da:7f:ac: 23:a9:ea:e2:db:db:40:f0:a3:1f:0f:af:71:e8:84: ec:b4:d5:e9:80:75:a6:73:8a:83:81:77:ef:36:f8: e6:d8:0d:f5:91:48:04:d3:de:f0:f2:84:a7:0e:2a: bd:f3:36:ab:9b:d4:23:d0:08:1a:71:23:8d:91:9d: 07:26:97:68:d2:7f:75:c9:29:ee:6b:ae:bb:3b:ff: 57:e5:a4:de:0e:c4:48:01:af:34:37:bc:4b:5e:d5: 3e:13:e0:cf:18:59:94:75:6b:2a:ca:b1:b0:88:c9: fd:78:67:ff:76:7b:04:41:c4:cd:6c:ac:12:21:08: 11:73:c7:e2:f5:ce:e6:08:a1:fb:5f:81:93:b6:6c: b1:5d:e6:b3:c5:14:19:4b:56:37:66:c0:a6:06:7c: eb:d7:fd:59:d3:4b:a7:2b:19:15:b2:e7:d9:bc:37: 38:d9:15:ee:bd:d1:c9:ab:64:a0:56:e1:6f:ef:69: b1:d0:cd:c3:08:8e:1f:0c:20:ea:a0:22:a5:11:4b: 32:21:da:0f:13:7a:f4:c6:53:39:b3:67:71:eb:db: 7a:bd:16:82:03:5f:e2:d8:f1:e0:72:17:ef:49:8f: 26:ec:3e:22:a0:7f:8f:09:07:b1:e0:32:08:f2:1b: 5f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:52:3F:11:9C:89:E6:1B:D4:0F:CF:8C:20:77:80:F6:34:A5:58:BC X509v3 Authority Key Identifier: keyid:1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:88:5c:1d:6d:f3:05:87:ff:8d:dc:5c:4a:bf:eb:9c:32:f8: dc:39:ae:8e:4f:a5:bf:0e:1a:02:dd:12:f4:81:ca:71:6d:fa: f5:af:b0:01:ab:7f:25:8f:09:dd:06:54:a8:dc:ff:6c:a8:9c: 2b:77:4e:58:49:21:23:bc:e0:ce:3d:14:44:ff:f0:49:47:76: 28:c0:d6:f3:fb:17:50:20:10:71:17:6f:06:ed:ce:bf:97:c8: c6:56:05:fb:6f:9c:d6:bd:e3:87:7f:12:ee:7d:45:d8:d1:98: f1:1e:51:60:06:48:f8:5e:8c:27:62:c1:ee:00:ec:4b:65:01: 4e:64:2c:b9:0a:d1:d9:3b:4c:19:50:67:ca:b2:17:2c:cd:40: c5:60:92:3d:30:9e:56:dc:ce:3f:c2:5a:55:a5:bc:7b:d2:8e: c3:01:f2:bf:65:8a:59:66:f9:d7:d2:96:ec:ff:da:e6:e8:93: c7:f1:53:28:67:c6:4e:75:90:6f:08:f3:6d:08:40:e6:86:ab: 52:06:b3:b9:7e:eb:51:6a:4d:25:f2:7d:97:25:38:4f:76:f6: 37:e0:0d:a5:65:2e:32:3e:c2:49:fe:18:dd:a2:7e:5d:92:9a: 92:b9:d2:46:ec:d7:c9:65:c8:67:cc:cd:46:58:38:5f:88:cc: ba:7e:5e:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdERDIxMTAvBgNVBAUTKDFGQjdGM0FGNkY5RDZCOTdFMzcyMEVDNTRBQ0JGNTg5 M0FDNjkzNjgwHhcNMjQwNTE5MDYwNzUyWhcNMjQwNTI2MDYwNzUyWjAYMRYwFAYD VQQDEw02NjQ5OTczOC1jMzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZs1ly1Gylpa8qzaf6wjqeri29tA8KMfD69x6ITstNXpgHWmc4qDgXfvNvjm 2A31kUgE097w8oSnDiq98zarm9Qj0AgacSONkZ0HJpdo0n91ySnua667O/9X5aTe DsRIAa80N7xLXtU+E+DPGFmUdWsqyrGwiMn9eGf/dnsEQcTNbKwSIQgRc8fi9c7m CKH7X4GTtmyxXeazxRQZS1Y3ZsCmBnzr1/1Z00unKxkVsufZvDc42RXuvdHJq2Sg VuFv72mx0M3DCI4fDCDqoCKlEUsyIdoPE3r0xlM5s2dx69t6vRaCA1/i2PHgchfv SY8m7D4ioH+PCQex4DII8htfFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhSPxGc ieYb1A/PjCB3gPY0pVi8MB8GA1UdIwQYMBaAFB+3869vnWuX43IOxUrL9Yk6xpNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0REMi8xMDFFREFFQUQx QzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1ZmpjZzdGU3N2MWlUckdr MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3ZnpyMi1kYTVmamNnN0ZTc3YxaVRyR2syZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0REMi8xMDFFREFFQUQxQzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1 ZmpjZzdGU3N2MWlUckdrMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4iFwdbfMFh/+N3FxKv+ucMvjcOa6OT6W/DhoC3RL0gcpxbfr1r7AB q38ljwndBlSo3P9sqJwrd05YSSEjvODOPRRE//BJR3YowNbz+xdQIBBxF28G7c6/ l8jGVgX7b5zWveOHfxLufUXY0ZjxHlFgBkj4XownYsHuAOxLZQFOZCy5CtHZO0wZ UGfKshcszUDFYJI9MJ5W3M4/wlpVpbx70o7DAfK/ZYpZZvnX0pbs/9rm6JPH8VMo Z8ZOdZBvCPNtCEDmhqtSBrO5futRak0l8n2XJThPdvY34A2lZS4yPsJJ/hjdon5d kpqSudJG7NfJZchnzM1GWDhfiMy6fl6q -----END CERTIFICATE-----Generated at Sun May 19 08:24:56 2024 by rpki-client on console-ams.rpki-client.org