$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: w+bS6QQdq2z78Lqom27P+0ZH6P+XEoOVHf73ALdZBqE= Subject key identifier: 95:45:2E:A1:FB:09:8B:26:13:FE:60:EC:B9:75:12:B3:46:92:CE:85 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 01CD Signing time: Sun 05 May 2024 04:33:39 +0000 Manifest this update: Sun 05 May 2024 04:33:39 +0000 Manifest next update: Sun 12 May 2024 04:33:39 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: vPSHI0IVVolHgDaYiwIGRc17kghv1c9UhQQP5Z9sstk=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: Si46K6clShpzd0dKA2PJX7F6dutQCsqznJD5EkfQr7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: May 5 04:33:39 2024 GMT Not After : May 12 04:33:39 2024 GMT Subject: CN=66370c23-745b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:30:bb:dc:53:5f:77:71:ed:0a:d9:49:8d: e8:6d:8c:11:d5:bb:47:66:f8:de:72:cc:13:ee:56: e8:e3:f4:2e:5e:45:38:e7:26:82:a0:cf:88:10:90: f4:76:23:f7:e3:3f:94:84:3a:c0:db:7a:90:b6:ce: f2:cf:a2:19:71:33:f9:86:ad:07:0d:05:4a:bc:20: 6b:74:dc:e1:76:5c:d7:03:b6:71:67:a4:a0:35:7e: ba:fb:1c:11:96:9e:6e:e5:66:77:c2:ac:c4:db:ef: a1:8c:af:bd:3a:54:75:e6:7c:ce:32:06:15:dc:8a: 4c:f8:30:72:cd:39:50:6b:d2:c6:28:3b:d8:0f:89: 3b:83:35:25:b2:fc:43:85:d7:14:8d:58:67:3e:b2: da:32:ec:3f:73:9f:03:4f:ab:96:98:d1:26:99:22: 6c:91:1f:44:95:35:60:66:48:45:6d:25:52:8d:30: 48:88:5f:13:3f:11:74:cf:63:f3:f2:8a:df:84:36: 8b:ee:a7:26:4e:89:31:cf:5d:01:78:43:2d:5c:eb: eb:9f:8f:3d:ae:36:67:06:19:76:e9:34:3b:91:61: c3:02:8c:e0:f6:3e:c1:a1:e0:66:d4:70:42:a9:e3: 34:97:dc:01:2e:5c:9e:d3:7a:c6:92:93:63:5b:20: 33:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:45:2E:A1:FB:09:8B:26:13:FE:60:EC:B9:75:12:B3:46:92:CE:85 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:4f:50:de:00:ef:c5:3a:4f:aa:05:03:32:c7:93:a6:c4:35: 81:99:d2:aa:55:cc:39:9b:9a:68:cc:00:1a:01:1c:33:24:77: cc:4e:a8:84:67:85:1d:01:1a:4d:3b:d2:39:8d:5d:91:fe:05: 9b:4f:f8:c7:c9:8c:1c:79:3b:73:f2:b9:8f:2f:d6:d2:9c:c1: 71:4c:06:06:ef:49:e3:a9:9f:bf:d3:94:e6:75:28:40:76:48: 1e:61:3f:2f:ad:8a:39:ff:9b:2c:46:02:db:e6:c5:ee:7b:37: 51:7f:b6:79:39:09:8f:af:7d:96:c9:76:22:fe:ec:bd:19:11: 23:c7:d9:d7:33:39:0e:87:6a:92:c1:2f:bd:58:73:35:fd:0f: 77:3f:63:af:30:82:00:35:8f:72:1b:5a:e9:53:e1:41:d0:0c: 4c:57:15:14:f0:cb:7e:9e:c7:86:81:e8:12:e9:3f:84:e0:3b: 5f:b8:8a:59:2d:e3:5f:a6:d2:6c:bd:56:a8:67:6c:fe:e1:39: 55:de:b1:c1:ea:bd:1d:1a:a6:26:f7:76:0a:f6:cc:87:51:91: af:36:70:af:d1:dd:7b:46:1b:7f:a8:f0:d1:f5:ec:aa:7e:d1: cc:76:a6:c2:c9:a1:a0:63:dc:db:76:44:8f:2a:95:2b:b9:3e: 98:1b:4e:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjQwNTA1MDQzMzM5WhcNMjQwNTEyMDQzMzM5WjAYMRYwFAYD VQQDEw02NjM3MGMyMy03NDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN0wu9xTX3dx7QrZSY3obYwR1btHZvjecswT7lbo4/QuXkU45yaCoM+IEJD0 diP34z+UhDrA23qQts7yz6IZcTP5hq0HDQVKvCBrdNzhdlzXA7ZxZ6SgNX66+xwR lp5u5WZ3wqzE2++hjK+9OlR15nzOMgYV3IpM+DByzTlQa9LGKDvYD4k7gzUlsvxD hdcUjVhnPrLaMuw/c58DT6uWmNEmmSJskR9ElTVgZkhFbSVSjTBIiF8TPxF0z2Pz 8orfhDaL7qcmTokxz10BeEMtXOvrn489rjZnBhl26TQ7kWHDAozg9j7BoeBm1HBC qeM0l9wBLlye03rGkpNjWyAzYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVFLqH7 CYsmE/5g7Ll1ErNGks6FMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZT1DeAO/FOk+qBQMyx5OmxDWBmdKqVcw5m5pozAAaARwzJHfMTqiE Z4UdARpNO9I5jV2R/gWbT/jHyYwceTtz8rmPL9bSnMFxTAYG70njqZ+/05TmdShA dkgeYT8vrYo5/5ssRgLb5sXuezdRf7Z5OQmPr32WyXYi/uy9GREjx9nXMzkOh2qS wS+9WHM1/Q93P2OvMIIANY9yG1rpU+FB0AxMVxUU8Mt+nseGgegS6T+E4DtfuIpZ LeNfptJsvVaoZ2z+4TlV3rHB6r0dGqYm93YK9syHUZGvNnCv0d17Rht/qPDR9eyq ftHMdqbCyaGgY9zbdkSPKpUruT6YG04o -----END CERTIFICATE-----Generated at Sun May 5 05:30:48 2024 by rpki-client on console-ams.rpki-client.org