$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json) Hash identifier: weKX5uLq8QvMc+nAMY6Avtp9Cmi9E/iKoqdntfap/nE= Subject key identifier: 97:F3:0C:64:50:82:D9:BF:E9:CF:75:B7:13:0C:A9:E2:CD:C9:D7:8E Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Certificate serial: 0290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft Manifest number: 027D Signing time: Tue 07 May 2024 03:44:55 +0000 Manifest this update: Tue 07 May 2024 03:44:55 +0000 Manifest next update: Tue 14 May 2024 03:44:55 +0000 Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: RtUPUPiR12iSglrAZtgSZ8If8kQpTHoH1TVPg8ZanO0=) 2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: taMyIDzO1vlUXRYaPsYdYd8BkonOZKJihKtBLoTsORQ=) 3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: HWHRnqC1a0H3SGc60fLUgFgxYUnWe0xctbvL2o7N144=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Validity Not Before: May 7 03:44:55 2024 GMT Not After : May 14 03:44:55 2024 GMT Subject: CN=6639a3b7-1897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:cc:12:18:74:8a:fa:48:2b:a7:4b:fd:1f: 42:2a:2f:81:7e:6a:aa:b6:e9:06:f2:ee:b6:f8:4c: 1a:5b:1a:ae:c8:cd:30:0b:8d:53:2e:d0:89:3d:6e: b6:3f:50:44:c9:8b:af:d6:9f:4b:d9:40:03:a8:f7: 4e:23:cc:bf:4d:76:2e:63:7c:28:2e:62:1b:38:c9: 02:58:6b:20:df:2f:a9:86:84:43:e3:36:0d:c6:6e: 3c:af:e1:c2:0e:2c:c4:21:d1:80:cd:15:99:82:d5: 5f:59:64:7a:c8:76:52:39:9b:e1:ca:a8:2a:66:0e: 67:e1:2c:22:3e:1a:f7:85:0c:44:a0:07:d8:fb:60: e8:e5:cc:2d:65:ad:a2:26:77:33:81:00:8f:9f:de: 7d:33:e3:96:f9:ba:6e:42:c1:90:b1:7e:7b:39:9a: 13:33:2b:29:2d:95:7e:5c:0e:09:f5:4a:d2:c9:f1: 0c:ce:48:31:a9:ae:58:b0:fc:77:20:fc:37:f2:d0: a1:19:59:36:65:88:2d:a9:b5:23:87:a1:48:15:68: ad:c2:32:44:48:c6:18:c0:ce:53:2c:7c:b1:ed:b3: fa:66:c9:68:d6:4f:f4:73:10:a1:16:5e:18:89:01: b9:36:10:94:40:e1:2d:2a:df:b3:f4:99:b1:df:cb: c4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F3:0C:64:50:82:D9:BF:E9:CF:75:B7:13:0C:A9:E2:CD:C9:D7:8E X509v3 Authority Key Identifier: keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:a3:ee:9a:bf:90:ee:8c:20:29:b5:33:82:70:0a:a1:3e:35: 80:14:12:3d:c3:c4:f0:44:c4:80:09:95:e1:c1:6b:52:6b:09: 50:f1:12:c5:11:55:01:bb:3b:8d:6f:60:84:df:3c:ef:6a:f8: 1c:a8:e8:1c:38:9f:18:ef:89:21:ed:bd:52:72:c5:1c:81:a0: 02:b9:38:9f:b0:96:92:5d:02:ee:6a:a2:13:40:85:2d:b6:cd: 03:2f:69:c0:7e:db:86:16:5c:70:fc:02:3c:ba:e0:a9:a0:dc: 8d:f9:d5:ca:af:a9:61:1b:7c:4b:f4:6a:e7:3f:aa:a6:94:2f: 59:56:c8:f1:92:cd:6a:40:df:37:ef:82:b8:3d:86:85:be:e2: c9:ff:07:98:9b:28:f5:a3:de:58:5e:51:70:33:8f:4f:c6:ef: 15:6e:62:51:c0:a8:03:39:5b:a4:8c:7e:ad:95:1d:43:57:8a: d1:6c:9d:26:07:96:e2:51:62:48:f7:ab:df:c7:a3:d4:d9:ad: a6:ab:65:ba:8a:51:85:16:4b:46:b1:25:98:31:63:a9:9b:49: 0b:0c:5d:7b:ec:84:e7:ea:6a:a9:c9:7e:88:d2:94:7a:ed:20: e7:53:f8:9b:fd:d2:12:ab:d6:12:fe:7a:4f:c9:2c:5e:03:3b: 72:82:90:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKDRFODFFMEY2QTgzQURDMkFENTIzMjY2NEE5NTREMjY3 Q0I0M0Q5MEEwHhcNMjQwNTA3MDM0NDU1WhcNMjQwNTE0MDM0NDU1WjAYMRYwFAYD VQQDEw02NjM5YTNiNy0xODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwrMEhh0ivpIK6dL/R9CKi+BfmqqtukG8u62+EwaWxquyM0wC41TLtCJPW62 P1BEyYuv1p9L2UADqPdOI8y/TXYuY3woLmIbOMkCWGsg3y+phoRD4zYNxm48r+HC DizEIdGAzRWZgtVfWWR6yHZSOZvhyqgqZg5n4SwiPhr3hQxEoAfY+2Do5cwtZa2i JnczgQCPn959M+OW+bpuQsGQsX57OZoTMyspLZV+XA4J9UrSyfEMzkgxqa5YsPx3 IPw38tChGVk2ZYgtqbUjh6FIFWitwjJESMYYwM5TLHyx7bP6Zslo1k/0cxChFl4Y iQG5NhCUQOEtKt+z9Jmx38vEiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfzDGRQ gtm/6c91txMMqeLNydeOMB8GA1UdIwQYMBaAFE6B4PaoOtwq1SMmZKlU0mfLQ9kK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC82M0E0RDFCQ0M0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjNDclZJeVprcVZUU1o4dEQy UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RvSGc5cWc2M0NyVkl5WmtxVlRTWjh0RDJRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC82M0E0RDFCQ0M0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjND clZJeVprcVZUU1o4dEQyUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACo+6av5DujCAptTOCcAqhPjWAFBI9w8TwRMSACZXhwWtSawlQ8RLF EVUBuzuNb2CE3zzvavgcqOgcOJ8Y74kh7b1ScsUcgaACuTifsJaSXQLuaqITQIUt ts0DL2nAftuGFlxw/AI8uuCpoNyN+dXKr6lhG3xL9GrnP6qmlC9ZVsjxks1qQN83 74K4PYaFvuLJ/weYmyj1o95YXlFwM49Pxu8VbmJRwKgDOVukjH6tlR1DV4rRbJ0m B5biUWJI96vfx6PU2a2mq2W6ilGFFktGsSWYMWOpm0kLDF177ITn6mqpyX6I0pR6 7SDnU/ib/dISq9YS/npPySxeAztygpBo -----END CERTIFICATE-----Generated at Tue May 7 04:35:39 2024 by rpki-client on console-ams.rpki-client.org