$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: vUQcJaZl8uuiHIo8b2lua5q1jVl147iASagrxeeiXxY= Subject key identifier: B7:BF:C0:2F:C6:2F:08:59:A6:EF:38:3C:27:BA:BD:2B:82:FD:7F:5E Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 63 Signing time: Wed 15 May 2024 07:43:39 +0000 Manifest this update: Wed 15 May 2024 07:43:39 +0000 Manifest next update: Wed 22 May 2024 07:43:39 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: g7ujppyMB3WmniBOo7Gv2fcvR7ak9p9aY14N8LsGZGo=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: QCckKoHrm9e4eOGS9nr5xC5ujq5pBtfUnu0x7UGDanM=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: fRtDuN/PZH7IUQwKVGV5NkTVNfXcpwMUrATdeN93WIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:43:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: May 15 07:43:39 2024 GMT Not After : May 22 07:43:39 2024 GMT Subject: CN=664467ab-920c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:45:33:95:7c:90:c2:41:43:8d:75:e1:be:72: 7d:29:b3:42:4a:3e:98:69:a9:d1:04:f0:9f:13:83: 7f:07:14:fc:4e:d4:3c:c3:e5:0b:69:69:f1:ca:65: e4:ce:85:d2:94:cd:5c:a3:13:c2:62:a4:4a:d2:f5: 94:cb:bc:4b:dd:7a:13:c5:f1:cc:1c:f1:f6:24:12: 67:f7:fc:ef:e1:d3:75:ce:b8:b4:ab:3e:ba:6b:0c: 22:50:b4:de:09:fd:de:f8:bd:bf:42:9d:89:e5:26: fb:3c:e9:6c:5f:05:6d:f6:ea:93:40:3a:b3:01:59: e8:aa:1e:7f:a6:19:c1:81:e6:9c:26:70:0c:fc:09: d0:c1:41:93:9a:4e:90:ac:fd:3d:59:3f:6f:c3:e5: 06:8a:c9:d3:19:5d:d6:05:b5:05:6e:4a:46:c6:35: f0:cc:0d:5d:18:55:ab:86:db:39:6c:5d:d5:2f:0c: f2:68:7e:2d:67:1c:25:df:dd:5c:b4:f3:f9:e2:06: 8e:bd:8a:f5:bc:04:70:1f:48:e3:22:38:fe:1b:64: 6a:87:2e:b3:57:6e:4f:f7:53:43:ea:5e:09:fb:13: 5a:6c:ad:8e:52:b9:eb:93:92:2f:b2:7d:60:03:6e: 22:aa:14:9d:c3:da:bd:85:99:cc:bd:92:74:16:fc: 40:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:BF:C0:2F:C6:2F:08:59:A6:EF:38:3C:27:BA:BD:2B:82:FD:7F:5E X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:af:e3:52:00:10:b2:f7:7b:29:70:5f:9c:3b:ba:3f:70:95: fb:55:2b:99:cc:3e:a9:a9:ca:cb:39:66:82:cd:29:d6:47:35: ac:45:7f:6d:39:b2:0f:e2:c9:c1:88:a4:bc:f1:6e:3f:63:d7: 38:73:10:94:c4:ea:c4:8e:95:eb:ee:55:55:08:9e:58:bf:96: 53:24:ae:1d:28:88:10:c4:e2:84:dc:e6:e2:75:4b:ca:77:b3: bb:a4:63:5f:ad:1d:68:91:ae:bc:17:14:fe:ac:93:fb:14:94: fd:ba:5a:53:84:5e:a6:d0:da:fb:e1:3d:63:aa:5b:2e:da:f9: 4d:b2:f9:85:4d:38:2b:70:75:6f:a6:b2:04:d7:b4:94:eb:ad: b7:db:53:49:d2:f0:1c:41:b4:47:d3:43:fa:72:79:61:31:48: d5:6a:8b:fb:bd:26:9a:51:d5:d5:b5:40:ba:70:49:5c:63:76: 5f:f0:02:fe:dc:5d:4a:cb:1d:cf:d8:ee:52:91:c5:7d:fc:75: fd:7f:dc:83:e8:99:2e:fa:e4:09:3d:99:c1:db:88:4a:66:ba: 3f:90:85:e1:ce:94:c2:75:80:02:db:18:c9:08:9c:24:66:35: 9c:c9:b7:d6:bb:ec:e5:ad:04:ee:fc:a7:96:7e:7a:51:60:90: f7:51:d9:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NUUxQjExMC8GA1UEBRMoODY0QzUxMzk1QTY1RDVERTcwRUNEMzBBQUQyN0E2OUY0 QjlCMjJCQzAeFw0yNDA1MTUwNzQzMzlaFw0yNDA1MjIwNzQzMzlaMBgxFjAUBgNV BAMTDTY2NDQ2N2FiLTkyMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4RTOVfJDCQUONdeG+cn0ps0JKPphpqdEE8J8Tg38HFPxO1DzD5QtpafHKZeTO hdKUzVyjE8JipErS9ZTLvEvdehPF8cwc8fYkEmf3/O/h03XOuLSrPrprDCJQtN4J /d74vb9CnYnlJvs86WxfBW326pNAOrMBWeiqHn+mGcGB5pwmcAz8CdDBQZOaTpCs /T1ZP2/D5QaKydMZXdYFtQVuSkbGNfDMDV0YVauG2zlsXdUvDPJofi1nHCXf3Vy0 8/niBo69ivW8BHAfSOMiOP4bZGqHLrNXbk/3U0PqXgn7E1psrY5SueuTki+yfWAD biKqFJ3D2r2Fmcy9knQW/EBhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt7/AL8Yv CFmm7zg8J7q9K4L9f14wHwYDVR0jBBgwFoAUhkxROVpl1d5w7NMKrSemn0ubIrww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1RTFCLzc0OTUyNTE0N0Qy MjExRUVBN0IwNzQ2MEM0RjlBRTAyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Ykly dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGt4Uk9WcGwxZDV3N05NS3JTZW1uMHViSXJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 RTFCLzc0OTUyNTE0N0QyMjExRUVBN0IwNzQ2MEM0RjlBRTAyL2hreFJPVnBsMWQ1 dzdOTUtyU2VtbjB1Yklydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACWv41IAELL3eylwX5w7uj9wlftVK5nMPqmpyss5ZoLNKdZHNaxFf205 sg/iycGIpLzxbj9j1zhzEJTE6sSOlevuVVUInli/llMkrh0oiBDE4oTc5uJ1S8p3 s7ukY1+tHWiRrrwXFP6sk/sUlP26WlOEXqbQ2vvhPWOqWy7a+U2y+YVNOCtwdW+m sgTXtJTrrbfbU0nS8BxBtEfTQ/pyeWExSNVqi/u9JppR1dW1QLpwSVxjdl/wAv7c XUrLHc/Y7lKRxX38df1/3IPomS765Ak9mcHbiEpmuj+QheHOlMJ1gALbGMkInCRm NZzJt9a77OWtBO78p5Z+elFgkPdR2bw= -----END CERTIFICATE-----Generated at Wed May 15 09:04:07 2024 by rpki-client on console-ams.rpki-client.org