$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft File: rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft (raw, json) Hash identifier: iiLtfnJxKXjOBS8vP2WFQ9qZsHhB7pRU6uR8hPs9Ab0= Subject key identifier: E6:72:F3:B9:5E:E1:0F:E6:4D:14:2F:CA:BD:2A:2E:5D:03:A8:FF:72 Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 33CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft Manifest number: 33CA Signing time: Thu 02 May 2024 14:28:16 +0000 Manifest this update: Thu 02 May 2024 14:28:16 +0000 Manifest next update: Thu 09 May 2024 14:28:16 +0000 Files and hashes: 1: rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl (hash: TZncJDfk6LQe/IX2i2onfU9dtZm/T12UclhgYHQgSaI=) 2: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (hash: gOnJUoocSgq2EqmjrPm1pF8ZPeNarvBagTpUETzImxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13263 (0x33cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: May 2 14:28:16 2024 GMT Not After : May 9 14:28:16 2024 GMT Subject: CN=6633a300-b5a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:51:a1:7f:96:2a:3a:f1:72:e2:70:79:8a:85: ee:12:1a:7f:74:55:2c:55:f7:1f:21:4b:c1:b4:cd: 2c:92:90:f1:9a:8b:67:48:12:93:3e:84:4d:80:83: cc:3a:ce:21:c4:90:96:c0:26:a2:9f:85:78:7e:2a: 6f:20:f6:08:2e:89:d1:99:09:15:2d:f5:5e:b5:66: 1e:45:e2:d2:c2:cc:99:05:c5:82:77:97:50:b9:83: 31:5a:83:0d:22:b4:e6:25:1d:ce:99:e5:de:90:d4: e4:4e:ff:5f:39:bc:d1:b7:76:82:aa:28:45:d3:53: 53:a9:55:fe:4c:2b:63:b7:38:a9:f6:bc:6f:77:56: d8:7c:f2:c9:89:8d:11:9d:10:64:8c:fc:a3:22:92: f9:eb:a1:8a:88:71:f0:a3:44:d1:dd:c9:7a:67:43: 65:a5:25:b1:35:7e:40:7c:ad:d8:00:3a:d6:21:6f: a0:9d:d4:9e:3d:ab:f8:37:24:da:a1:7b:55:4d:98: 18:4c:dd:42:06:83:b8:cb:d6:98:72:4c:19:18:34: f0:66:65:7c:c3:b4:f5:74:1d:1a:2a:7a:b6:bc:ff: 1c:a3:8d:82:0c:d4:1c:9d:db:cc:88:70:ff:20:60: ea:f5:f3:fb:25:cd:61:10:1b:9e:0a:42:c1:bf:27: 47:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:72:F3:B9:5E:E1:0F:E6:4D:14:2F:CA:BD:2A:2E:5D:03:A8:FF:72 X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c5:f5:89:5a:43:8a:de:bc:29:93:bc:8e:69:c3:9e:c8:82: ef:dc:58:8f:07:49:56:f9:31:7a:16:db:b6:18:c0:0a:31:05: 14:e0:8e:f9:6b:40:3c:0f:6b:1e:fb:78:cc:0c:21:46:31:8d: b1:43:3e:43:8a:ec:16:6b:53:74:de:e7:41:ea:70:ba:2c:79: 89:66:54:e0:c5:4b:9e:29:37:e8:5c:3c:17:d9:56:a1:72:a5: 61:99:0c:24:2c:93:61:57:4f:79:70:ad:4e:9d:d1:a5:f3:3f: 38:fd:a9:97:d2:9b:6f:47:46:16:33:af:5f:13:c5:da:19:4a: 3c:4a:24:ec:1a:aa:a1:3a:0b:9c:90:27:2b:6e:92:fd:9a:e0: 77:2b:d8:85:45:b8:50:00:f1:83:d4:f1:95:a7:e8:67:c4:43: 31:b1:aa:a5:34:3a:01:45:ae:59:ed:94:48:a6:4b:86:bd:9b: df:a7:b3:96:fd:76:4c:b0:9a:2f:b4:bd:7d:6a:d1:47:b0:1b: 1e:36:53:ca:1c:6e:7a:65:c3:6c:9d:05:76:5b:38:e9:ae:70: 5f:f3:4a:f4:f4:f5:97:6a:0c:b5:85:b8:5e:20:90:9e:05:0c: af:df:7c:2a:57:88:ba:10:01:d3:8d:9f:ce:62:e7:c6:4c:7f: 79:82:44:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjQwNTAyMTQyODE2WhcNMjQwNTA5MTQyODE2WjAYMRYwFAYD VQQDEw02NjMzYTMwMC1iNWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlGhf5YqOvFy4nB5ioXuEhp/dFUsVfcfIUvBtM0skpDxmotnSBKTPoRNgIPM Os4hxJCWwCain4V4fipvIPYILonRmQkVLfVetWYeReLSwsyZBcWCd5dQuYMxWoMN IrTmJR3OmeXekNTkTv9fObzRt3aCqihF01NTqVX+TCtjtzip9rxvd1bYfPLJiY0R nRBkjPyjIpL566GKiHHwo0TR3cl6Z0NlpSWxNX5AfK3YADrWIW+gndSePav4NyTa oXtVTZgYTN1CBoO4y9aYckwZGDTwZmV8w7T1dB0aKnq2vP8co42CDNQcndvMiHD/ IGDq9fP7Jc1hEBueCkLBvydHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZy87le 4Q/mTRQvyr0qLl0DqP9yMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9FQTFCMUQ2QTFEODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NY b2MwMWNkR0RkSV9RZlpfRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADxfWJWkOK3rwpk7yOacOeyILv3FiPB0lW+TF6Ftu2GMAKMQUU4I75 a0A8D2se+3jMDCFGMY2xQz5DiuwWa1N03udB6nC6LHmJZlTgxUueKTfoXDwX2Vah cqVhmQwkLJNhV095cK1OndGl8z84/amX0ptvR0YWM69fE8XaGUo8SiTsGqqhOguc kCcrbpL9muB3K9iFRbhQAPGD1PGVp+hnxEMxsaqlNDoBRa5Z7ZRIpkuGvZvfp7OW /XZMsJovtL19atFHsBseNlPKHG56ZcNsnQV2WzjprnBf80r09PWXagy1hbheIJCe BQyv33wqV4i6EAHTjZ/OYufGTH95gkTQ -----END CERTIFICATE-----Generated at Thu May 2 17:18:25 2024 by rpki-client on console-ams.rpki-client.org