$ rpki-client -vvf rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft File: H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft (raw, json) Hash identifier: WpvgV6jdfbDDy0yWJ9r+rZ1f9HduLTDgFZF5YnQCUlc= Subject key identifier: CD:5C:C3:1A:9C:A9:F8:19:43:49:E3:7B:A0:C7:49:F2:4F:DC:39:67 Authority key identifier: 1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB Certificate issuer: /CN=A912708C/serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Certificate serial: 04F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft Manifest number: 04EF Signing time: Wed 01 May 2024 01:34:45 +0000 Manifest this update: Wed 01 May 2024 01:34:44 +0000 Manifest next update: Wed 08 May 2024 01:34:44 +0000 Files and hashes: 1: H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl (hash: 5XTac8+qvpIPxcnzMQzd4/40OaWekWxR41P8dZhZYAA=) 2: 8AA59866C55511EBA7DB557EC4F9AE02.roa (hash: mAOvaoinpXY+Xfr5QMKEg7nJawd/RdSHeugE/mbfaAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 01:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1267 (0x4f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912708C/serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Validity Not Before: May 1 01:34:44 2024 GMT Not After : May 8 01:34:44 2024 GMT Subject: CN=66319c34-d8c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1c:07:d5:e4:6d:53:8f:9b:67:06:69:34:58: b7:b1:96:df:e2:5e:a4:0e:51:a8:a4:14:25:f6:a0: a7:c3:fa:fe:25:06:22:09:54:af:5b:55:d4:f2:04: 14:f4:73:29:30:4e:08:85:cb:52:73:54:15:70:ab: b8:52:4f:c6:3f:2b:0e:14:18:0c:40:12:a8:07:21: 61:05:fe:19:88:48:cf:c8:d2:b7:a9:ae:16:3e:a4: 54:3c:8f:bc:6a:e6:04:20:a6:be:da:be:8d:19:fb: 99:14:21:26:1a:7c:2f:7c:f4:6e:da:52:bb:f0:80: bd:9e:43:c0:28:9b:4b:b4:5c:bf:5e:82:92:53:84: a3:b0:92:00:26:d1:f7:fa:0c:97:22:39:a4:cc:cb: a9:c6:ec:2f:b5:9c:31:91:a6:63:ff:71:9f:ff:b4: eb:30:ca:ad:44:d6:18:7b:7e:25:2f:ee:ef:04:cd: f4:1a:c8:91:9b:38:ab:e9:83:9a:d2:9a:39:82:c5: ee:ef:fc:4c:f6:75:1b:38:ed:b2:a5:ee:80:a1:04: 4c:2a:62:c7:42:a8:96:24:6f:2f:c6:bf:87:5f:c3: 05:64:b8:d3:80:5a:4b:70:72:8f:7a:2f:5e:0b:74: de:80:46:48:12:b9:9e:e6:88:a1:f7:d7:89:15:dc: 45:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:5C:C3:1A:9C:A9:F8:19:43:49:E3:7B:A0:C7:49:F2:4F:DC:39:67 X509v3 Authority Key Identifier: keyid:1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:d9:2b:74:cb:e4:b3:37:3a:f8:0a:62:b3:74:b0:db:05:08: de:a8:25:01:61:6b:1e:24:90:c5:13:71:11:7e:b7:a0:95:c7: e5:57:04:5a:47:43:89:80:47:04:a8:19:c3:53:f8:3d:5c:b9: 64:c2:89:3f:8f:18:f2:a9:bf:df:b4:f7:bf:fa:ec:c9:dc:5b: 3a:80:80:4d:25:51:d9:3f:7c:8d:91:c3:7b:21:eb:13:0d:f6: 24:e2:bd:bd:31:4c:b9:24:48:9c:92:0e:d3:45:08:8a:57:33: ee:03:ef:57:5e:75:b3:74:36:f9:63:69:13:7d:76:02:06:04: fd:b5:d8:40:b3:0b:55:09:08:62:10:14:39:ed:b5:bc:35:2b: 09:1e:19:5d:06:9f:44:c8:b7:a8:fe:8b:3c:7b:a3:06:b0:a2: cc:7d:bd:9e:14:23:ea:ef:68:b1:7d:64:cd:a5:ba:4c:71:18: 7b:05:f5:52:0e:e8:94:a6:b2:ab:92:67:1e:4d:fc:d2:b4:d9: 29:8a:ec:14:08:b6:eb:9e:aa:d2:b2:f5:fa:aa:6a:82:c2:52: f1:33:0f:6d:77:db:51:2a:cd:33:1c:ab:a9:e9:c3:01:71:96: 66:17:5c:b4:cd:9a:30:c8:ca:67:fa:9f:d4:fb:f1:f7:28:7c: cd:67:a3:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcwOEMxMTAvBgNVBAUTKDFGRDVBMTgyRDU5MzM0NzU3MEYyRDkxODZEMjQ4NEM5 MDk1QzVGRkIwHhcNMjQwNTAxMDEzNDQ0WhcNMjQwNTA4MDEzNDQ0WjAYMRYwFAYD VQQDEw02NjMxOWMzNC1kOGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxwH1eRtU4+bZwZpNFi3sZbf4l6kDlGopBQl9qCnw/r+JQYiCVSvW1XU8gQU 9HMpME4IhctSc1QVcKu4Uk/GPysOFBgMQBKoByFhBf4ZiEjPyNK3qa4WPqRUPI+8 auYEIKa+2r6NGfuZFCEmGnwvfPRu2lK78IC9nkPAKJtLtFy/XoKSU4SjsJIAJtH3 +gyXIjmkzMupxuwvtZwxkaZj/3Gf/7TrMMqtRNYYe34lL+7vBM30GsiRmzir6YOa 0po5gsXu7/xM9nUbOO2ype6AoQRMKmLHQqiWJG8vxr+HX8MFZLjTgFpLcHKPei9e C3TegEZIErme5oih99eJFdxFqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1cwxqc qfgZQ0nje6DHSfJP3DlnMB8GA1UdIwQYMBaAFB/VoYLVkzR1cPLZGG0khMkJXF/7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzA4Qy8xNjgwMzRGRUM1 NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5IVnc4dGtZYlNTRXlRbGNY X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5V2hndFdUTkhWdzh0a1liU1NFeVFsY1hfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzA4Qy8xNjgwMzRGRUM1NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5I Vnc4dGtZYlNTRXlRbGNYX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo2St0y+SzNzr4CmKzdLDbBQjeqCUBYWseJJDFE3ERfreglcflVwRa R0OJgEcEqBnDU/g9XLlkwok/jxjyqb/ftPe/+uzJ3Fs6gIBNJVHZP3yNkcN7IesT DfYk4r29MUy5JEickg7TRQiKVzPuA+9XXnWzdDb5Y2kTfXYCBgT9tdhAswtVCQhi EBQ57bW8NSsJHhldBp9EyLeo/os8e6MGsKLMfb2eFCPq72ixfWTNpbpMcRh7BfVS DuiUprKrkmceTfzStNkpiuwUCLbrnqrSsvX6qmqCwlLxMw9td9tRKs0zHKup6cMB cZZmF1y0zZowyMpn+p/U+/H3KHzNZ6P7 -----END CERTIFICATE-----Generated at Wed May 1 02:46:17 2024 by rpki-client on console-ams.rpki-client.org