$ rpki-client -vvf rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft File: 6BH2N9bdhj5cdPMuKbziePqyWPc.mft (raw, json) Hash identifier: 1GGE3W7Wm64RNnQGzjwhQ6/cUzOAVF69/uXbufNEiLI= Subject key identifier: D6:38:07:8D:5F:0A:72:5D:5C:2B:D8:5E:4A:22:25:03:2E:00:30:76 Authority key identifier: E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 Certificate issuer: /CN=A912B751/serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft Manifest number: 01D4 Signing time: Tue 23 Apr 2024 04:21:52 +0000 Manifest this update: Tue 23 Apr 2024 04:21:52 +0000 Manifest next update: Tue 30 Apr 2024 04:21:52 +0000 Files and hashes: 1: 6BH2N9bdhj5cdPMuKbziePqyWPc.crl (hash: BMm8G1mgnqUcrVsuUi8CwL73mX++AyvvcnV2bGDmddM=) 2: AF219A78FDDA11EC86771758C4F9AE02.roa (hash: hANerDzFNwXTft/3Zqry/UnzZFMdSsgrM8rWzTpfS/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 04:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B751/serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Validity Not Before: Apr 23 04:21:52 2024 GMT Not After : Apr 30 04:21:52 2024 GMT Subject: CN=66273760-c495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1f:78:a4:7f:ff:52:61:ab:09:54:eb:1c:39: b8:c6:27:06:a0:f9:8c:2c:36:c5:40:72:87:6e:90: 5b:45:1c:d3:1b:ff:d3:72:3f:5b:77:0b:8f:78:9e: 82:c2:25:ff:f1:b1:3d:67:ab:16:a2:8d:ff:e8:cf: 3d:1d:67:c2:17:5e:60:89:74:3e:cd:d7:5d:e9:e8: 54:e8:9d:32:d2:1d:c8:ad:68:a3:8a:8e:7d:e4:fb: d3:41:dc:e3:08:2c:ae:ef:10:a7:19:00:26:3e:68: 20:f8:69:59:fa:71:07:b5:63:7c:f8:7a:59:f5:88: 48:6e:1b:37:c9:bf:f0:ce:0f:96:f8:1f:e8:ed:ee: 71:be:7c:01:55:42:3d:95:c2:b2:ae:44:c4:e7:4d: 0b:e8:8e:76:e6:bc:15:52:70:d8:7f:26:7f:0a:63: 6a:27:67:cc:6e:c7:28:f4:8a:83:4c:0b:75:fc:1f: a1:f0:36:9c:58:f5:1f:3a:72:7b:52:0d:33:6a:15: 74:ce:bf:3b:f5:cf:41:b4:83:23:e9:0b:da:e9:96: bd:58:3d:33:11:eb:64:a0:f6:92:43:15:5a:2c:23: 26:52:e3:36:43:37:4b:b0:0f:19:bd:97:8d:d3:7d: c2:3b:ea:f8:13:5e:da:76:e3:59:2a:2d:25:74:d4: 6d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:38:07:8D:5F:0A:72:5D:5C:2B:D8:5E:4A:22:25:03:2E:00:30:76 X509v3 Authority Key Identifier: keyid:E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:16:53:c5:18:64:62:eb:cd:e3:a3:0b:59:14:59:0d:d2:ec: cb:49:ff:94:f6:d1:96:19:c0:9a:79:9f:af:e4:fc:1c:19:c3: 13:83:74:03:f1:8e:31:bf:52:f9:6b:cb:a5:23:63:8b:55:a9: d9:9d:84:b3:16:d0:92:07:0a:3b:86:e1:a4:ba:db:52:01:6c: b2:e5:47:7c:0e:02:97:1a:1a:01:9e:0c:e4:a2:cf:15:0a:14: b9:44:2f:f3:d0:ad:47:f6:e6:70:e6:35:a0:e1:1d:bc:13:26: da:6d:f3:5c:cd:f9:1d:77:d2:da:4f:80:f0:30:50:a1:62:10: 97:75:46:2d:e1:d7:79:52:b8:a9:ac:d6:7c:0f:80:79:17:1e: 8f:a3:8f:40:34:f3:75:e9:c9:50:1d:92:93:ad:2f:0b:7c:05: bb:24:19:84:12:f4:4f:b7:11:4e:16:1f:06:de:18:82:60:0b: 71:e0:a8:89:91:bb:e3:70:37:1a:b6:e4:45:ed:57:6c:22:84: 81:ca:d0:18:0c:48:23:4d:12:21:3e:51:f3:0c:f5:48:ef:e1: 91:30:5a:9d:d9:5e:f9:12:09:1e:83:9a:3b:5d:81:da:4f:d3: 57:98:b2:e8:c9:68:09:e4:58:6c:cf:2d:8a:2e:85:4e:37:08: e4:ee:9f:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI3NTExMTAvBgNVBAUTKEU4MTFGNjM3RDZERDg2M0U1Qzc0RjMyRTI5QkNFMjc4 RkFCMjU4RjcwHhcNMjQwNDIzMDQyMTUyWhcNMjQwNDMwMDQyMTUyWjAYMRYwFAYD VQQDEw02NjI3Mzc2MC1jNDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAox94pH//UmGrCVTrHDm4xicGoPmMLDbFQHKHbpBbRRzTG//Tcj9bdwuPeJ6C wiX/8bE9Z6sWoo3/6M89HWfCF15giXQ+zddd6ehU6J0y0h3IrWijio595PvTQdzj CCyu7xCnGQAmPmgg+GlZ+nEHtWN8+HpZ9YhIbhs3yb/wzg+W+B/o7e5xvnwBVUI9 lcKyrkTE500L6I525rwVUnDYfyZ/CmNqJ2fMbsco9IqDTAt1/B+h8DacWPUfOnJ7 Ug0zahV0zr879c9BtIMj6Qva6Za9WD0zEetkoPaSQxVaLCMmUuM2QzdLsA8ZvZeN 033CO+r4E17aduNZKi0ldNRt/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNY4B41f CnJdXCvYXkoiJQMuADB2MB8GA1UdIwQYMBaAFOgR9jfW3YY+XHTzLim84nj6slj3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjc1MS83MkQ3RDhCNEZE RDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhqNWNkUE11S2J6aWVQcXlX UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZCSDJOOWJkaGo1Y2RQTXVLYnppZVBxeVdQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Qjc1MS83MkQ3RDhCNEZERDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhq NWNkUE11S2J6aWVQcXlXUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHFlPFGGRi683jowtZFFkN0uzLSf+U9tGWGcCaeZ+v5PwcGcMTg3QD 8Y4xv1L5a8ulI2OLVanZnYSzFtCSBwo7huGkuttSAWyy5Ud8DgKXGhoBngzkos8V ChS5RC/z0K1H9uZw5jWg4R28EybabfNczfkdd9LaT4DwMFChYhCXdUYt4dd5Urip rNZ8D4B5Fx6Po49ANPN16clQHZKTrS8LfAW7JBmEEvRPtxFOFh8G3hiCYAtx4KiJ kbvjcDcatuRF7VdsIoSBytAYDEgjTRIhPlHzDPVI7+GRMFqd2V75Egkeg5o7XYHa T9NXmLLoyWgJ5Fhszy2KLoVONwjk7p/X -----END CERTIFICATE-----Generated at Tue Apr 23 18:42:17 2024 by rpki-client on console-ams.rpki-client.org