$ rpki-client -vvf rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft File: H2wzTrxkYqJkUoZ6u1-E72itwCw.mft (raw, json) Hash identifier: bWU/cUvyFhmIurR3PQYFLe6S+IqKQg27RTkWeprrsMk= Subject key identifier: 10:C4:AF:3C:AB:AC:B9:81:03:A7:A4:07:E3:B3:B1:4A:21:CC:0D:F4 Authority key identifier: 1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C Certificate issuer: /CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft Manifest number: 0818 Signing time: Sat 18 May 2024 21:51:08 +0000 Manifest this update: Sat 18 May 2024 21:51:07 +0000 Manifest next update: Sat 25 May 2024 21:51:07 +0000 Files and hashes: 1: H2wzTrxkYqJkUoZ6u1-E72itwCw.crl (hash: C80b404TE5XEEzesLEL7hiS+sqLc9L+zmFKhDVWIC8M=) 2: 6AD73A584A8811ED8D0B8B38C4F9AE02.roa (hash: RRY+97N0/PMxoRFxybD0iyWr/GVb7HFoYJuP5zLtvJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138447/serialNumber=1F6C334EBC6462A26452867ABB5F84EF68ADC02C Validity Not Before: May 18 21:51:07 2024 GMT Not After : May 25 21:51:07 2024 GMT Subject: CN=664922cc-fc62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7f:b2:9d:50:f8:1a:87:ba:28:37:09:e2:8d: 54:3d:e1:0e:4a:cf:49:75:78:de:68:e1:19:af:78: 08:a0:4a:d5:ad:94:ca:8d:48:a6:e6:0d:c4:c4:91: bf:28:bf:26:bc:f6:2c:27:13:38:2e:38:c5:82:a5: 47:1b:ae:f2:76:aa:7b:6d:8c:32:aa:ff:f1:2d:ab: c5:bf:c2:32:85:36:2d:44:34:62:ee:cf:c3:36:b1: 59:48:b6:d8:ae:41:0e:89:10:6a:84:55:d1:3e:2e: 9b:55:ec:3a:4e:c5:89:0f:d5:65:cd:0b:22:00:d9: 7c:64:33:49:b0:14:27:c2:51:8d:32:97:e7:0c:e3: 42:81:2b:7e:60:e1:23:e0:bb:e8:ca:94:71:11:7e: 4c:ed:09:90:ef:fb:80:07:3f:3e:96:c3:1e:17:cd: 78:7c:a2:75:2c:2e:f1:b0:55:d1:f0:46:eb:aa:95: ed:91:dd:17:cc:6f:24:6f:2b:82:b8:24:91:d3:1d: 14:83:03:4e:18:09:ad:f9:5d:9c:aa:20:b1:50:58: 69:01:ba:61:14:68:6b:d2:27:d4:39:5b:7f:4d:24: 87:48:92:ea:6c:d0:e6:16:e3:c4:3d:03:6b:3a:8b: f9:b0:2c:ab:f0:9e:d3:1c:79:64:01:63:07:e6:d5: bd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C4:AF:3C:AB:AC:B9:81:03:A7:A4:07:E3:B3:B1:4A:21:CC:0D:F4 X509v3 Authority Key Identifier: keyid:1F:6C:33:4E:BC:64:62:A2:64:52:86:7A:BB:5F:84:EF:68:AD:C0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2wzTrxkYqJkUoZ6u1-E72itwCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138447/4CEB3C3CB0FD11EA8A099242C4F9AE02/H2wzTrxkYqJkUoZ6u1-E72itwCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:4a:7e:b8:e9:87:38:19:ad:48:1c:62:fe:69:cb:79:f8:ae: ef:4e:df:ba:0b:97:76:72:97:c6:d5:43:64:87:ba:cc:97:6d: 49:4f:0c:ab:7b:c8:2b:ce:51:b3:aa:b6:fc:47:bc:f5:c4:cc: e4:c2:24:15:26:fb:b5:8b:2e:df:00:2a:26:38:90:b8:3f:7a: e8:c4:d3:6c:89:de:4b:5e:45:c3:89:ef:a8:04:6e:a3:27:da: e3:7f:a3:7b:2c:67:c9:f6:6e:73:4b:fe:57:0f:f4:10:98:02: 22:ca:e6:9c:95:36:2f:fc:e8:cb:37:6e:18:a3:a7:bf:dd:dd: 9d:a7:bb:84:24:c5:ae:43:6b:1d:c9:37:8f:43:0c:a0:99:6b: bd:bd:5c:16:f4:1a:b4:b4:67:4d:0d:7d:d4:ba:dd:50:d1:62: db:49:30:9f:33:68:19:5d:44:7f:43:fc:8f:43:47:47:24:63: 98:29:b5:e9:1d:84:86:e0:c2:ca:92:c9:72:af:8f:83:a2:cd: 8d:fd:27:a8:9b:ac:e4:e0:ea:86:1a:ce:62:82:dd:1b:a1:cb: 6a:52:3d:6f:08:d7:38:c2:a5:38:f3:df:1c:9f:8c:36:21:c3: 26:f8:59:b9:65:59:af:30:5b:f7:40:d2:00:5a:23:cc:49:12: 7c:cd:59:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NDcxMTAvBgNVBAUTKDFGNkMzMzRFQkM2NDYyQTI2NDUyODY3QUJCNUY4NEVG NjhBREMwMkMwHhcNMjQwNTE4MjE1MTA3WhcNMjQwNTI1MjE1MTA3WjAYMRYwFAYD VQQDEw02NjQ5MjJjYy1mYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X+ynVD4Goe6KDcJ4o1UPeEOSs9JdXjeaOEZr3gIoErVrZTKjUim5g3ExJG/ KL8mvPYsJxM4LjjFgqVHG67ydqp7bYwyqv/xLavFv8IyhTYtRDRi7s/DNrFZSLbY rkEOiRBqhFXRPi6bVew6TsWJD9VlzQsiANl8ZDNJsBQnwlGNMpfnDONCgSt+YOEj 4LvoypRxEX5M7QmQ7/uABz8+lsMeF814fKJ1LC7xsFXR8EbrqpXtkd0XzG8kbyuC uCSR0x0UgwNOGAmt+V2cqiCxUFhpAbphFGhr0ifUOVt/TSSHSJLqbNDmFuPEPQNr Oov5sCyr8J7THHlkAWMH5tW9wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDErzyr rLmBA6ekB+OzsUohzA30MB8GA1UdIwQYMBaAFB9sM068ZGKiZFKGertfhO9orcAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ0Ny80Q0VCM0MzQ0Iw RkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lxSmtVb1o2dTEtRTcyaXR3 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyd3pUcnhrWXFKa1VvWjZ1MS1FNzJpdHdDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODQ0Ny80Q0VCM0MzQ0IwRkQxMUVBOEEwOTkyNDJDNEY5QUUwMi9IMnd6VHJ4a1lx SmtVb1o2dTEtRTcyaXR3Q3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPSn646Yc4Ga1IHGL+act5+K7vTt+6C5d2cpfG1UNkh7rMl21JTwyr e8grzlGzqrb8R7z1xMzkwiQVJvu1iy7fAComOJC4P3roxNNsid5LXkXDie+oBG6j J9rjf6N7LGfJ9m5zS/5XD/QQmAIiyuaclTYv/OjLN24Yo6e/3d2dp7uEJMWuQ2sd yTePQwygmWu9vVwW9Bq0tGdNDX3Uut1Q0WLbSTCfM2gZXUR/Q/yPQ0dHJGOYKbXp HYSG4MLKkslyr4+Dos2N/Seom6zk4OqGGs5igt0boctqUj1vCNc4wqU4898cn4w2 IcMm+Fm5ZVmvMFv3QNIAWiPMSRJ8zVmr -----END CERTIFICATE-----Generated at Sat May 18 22:27:53 2024 by rpki-client on console-ams.rpki-client.org