$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft File: hnHJZ--Azj0S3OowSRuUb9cGh8A.mft (raw, json) Hash identifier: SLqoD1slHSRXRlu2pNYSnlyu3vvFoOgf91tnSmJymfY= Subject key identifier: D3:16:AC:B6:B3:23:17:66:20:E0:0C:7A:F3:AC:CF:C2:84:FF:C8:C2 Authority key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 Certificate issuer: /CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Certificate serial: 12DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft Manifest number: 12B1 Signing time: Sat 04 May 2024 17:46:01 +0000 Manifest this update: Sat 04 May 2024 17:46:00 +0000 Manifest next update: Sat 11 May 2024 17:46:00 +0000 Files and hashes: 1: hnHJZ--Azj0S3OowSRuUb9cGh8A.crl (hash: oIlGSTRaMmh6WRtejpllWFw2GSFjSRNQLa5gqU6Hwfw=) 2: 12383D760AF011ECB7243C0FC4F9AE02.roa (hash: bpcEzHc+dsrBIGhfURjg1Q4WDXIFyeK81x74s7OgvpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4828 (0x12dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Validity Not Before: May 4 17:46:00 2024 GMT Not After : May 11 17:46:00 2024 GMT Subject: CN=66367459-f80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:40:43:ec:72:6d:ab:22:18:bd:db:f6:4b:af: bb:07:89:93:92:09:2f:1a:c0:01:c0:c2:c9:46:c0: 5a:92:59:a2:9f:dc:3f:8e:10:6d:2f:54:ae:81:cd: cd:9c:8a:cd:55:ff:2c:63:92:8f:24:e9:57:33:71: 03:2b:65:61:36:1f:e2:6d:3e:5f:0d:3e:b2:1f:31: 06:1a:96:68:90:fd:71:b8:1c:c7:64:9f:2c:a5:30: 54:2c:d0:b2:48:2e:b0:68:56:a7:11:96:90:13:eb: 6f:0b:49:4e:de:8d:65:83:fa:1b:fe:85:02:5c:0f: 55:65:98:b1:e1:26:4f:d7:8c:56:dc:2a:a0:12:bb: 33:5e:84:47:8d:3e:23:49:5c:b7:87:57:5e:38:83: 14:32:4f:6f:34:69:74:37:79:ff:84:eb:ff:66:f1: 7d:db:60:54:e0:7e:c7:37:1a:97:f5:f8:a8:c9:b5: 53:1d:e8:73:cd:e0:3f:fb:92:4c:1f:7e:83:0b:ee: f3:fd:26:01:15:04:f4:a8:47:63:3b:ff:48:03:73: bb:dc:5b:fb:52:b2:31:a2:f1:a7:5d:90:ae:b8:3f: 5c:16:33:e5:9b:4e:43:76:b3:13:eb:e8:41:65:1b: b5:e6:d7:33:38:09:09:47:8d:c5:73:c7:ad:53:e7: 57:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:16:AC:B6:B3:23:17:66:20:E0:0C:7A:F3:AC:CF:C2:84:FF:C8:C2 X509v3 Authority Key Identifier: keyid:86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:4c:74:82:96:95:67:78:86:9c:fd:52:a3:df:10:1d:d1:97: 4b:43:52:ad:34:d6:c7:d7:f9:20:05:51:be:ef:1b:b5:b6:90: 81:fe:ad:40:7b:57:13:ef:76:19:d5:2a:23:93:29:10:78:50: 4f:f4:a7:2a:b8:3e:c4:d3:32:b2:ec:c7:9c:9f:9a:8b:5d:f8: dd:63:86:88:cb:c0:69:f9:5d:06:59:d5:e4:82:74:8b:92:1e: 1b:b8:84:d5:78:51:94:6e:2a:2e:25:a3:d0:12:cd:d3:c9:73: 5c:6c:0a:ec:5d:a3:b0:74:e5:cd:38:03:0a:60:cb:b1:32:37: 94:5c:6b:a4:b5:71:a3:be:93:fa:ef:2f:28:2e:e3:80:da:4c: bd:30:1c:22:a5:e0:e7:43:3e:d4:74:3c:69:6e:a4:ca:a5:56: 62:37:ed:36:c3:b4:fc:b8:29:d1:b7:9e:c4:01:25:ec:76:14: db:5b:42:b0:9b:7f:fe:fb:d7:f8:e5:be:44:5c:82:bc:ce:81: 40:5b:2b:d3:b5:ec:75:9e:fe:8a:7a:37:2c:6b:9a:48:0d:5f: ad:a6:3f:df:d2:40:3a:cb:09:d0:fd:9a:c5:1c:90:5d:d0:fc: 01:a8:8f:fe:c4:84:f2:80:e6:32:22:0b:d5:fd:ce:03:4d:db: 5f:4b:a8:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhEMEUxMTAvBgNVBAUTKDg2NzFDOTY3RUY4MENFM0QxMkRDRUEzMDQ5MUI5NDZG RDcwNjg3QzAwHhcNMjQwNTA0MTc0NjAwWhcNMjQwNTExMTc0NjAwWjAYMRYwFAYD VQQDEw02NjM2NzQ1OS1mODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkBD7HJtqyIYvdv2S6+7B4mTkgkvGsABwMLJRsBaklmin9w/jhBtL1Sugc3N nIrNVf8sY5KPJOlXM3EDK2VhNh/ibT5fDT6yHzEGGpZokP1xuBzHZJ8spTBULNCy SC6waFanEZaQE+tvC0lO3o1lg/ob/oUCXA9VZZix4SZP14xW3CqgErszXoRHjT4j SVy3h1deOIMUMk9vNGl0N3n/hOv/ZvF922BU4H7HNxqX9fioybVTHehzzeA/+5JM H36DC+7z/SYBFQT0qEdjO/9IA3O73Fv7UrIxovGnXZCuuD9cFjPlm05DdrMT6+hB ZRu15tczOAkJR43Fc8etU+dXawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMWrLaz IxdmIOAMevOsz8KE/8jCMB8GA1UdIwQYMBaAFIZxyWfvgM49EtzqMEkblG/XBofA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQwRS84RTcxNDk4NEEz NUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpqMFMzT293U1J1VWI5Y0do OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huSEpaLS1BemowUzNPb3dTUnVVYjljR2g4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQwRS84RTcxNDk4NEEzNUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpq MFMzT293U1J1VWI5Y0doOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgTHSClpVneIac/VKj3xAd0ZdLQ1KtNNbH1/kgBVG+7xu1tpCB/q1A e1cT73YZ1SojkykQeFBP9KcquD7E0zKy7Mecn5qLXfjdY4aIy8Bp+V0GWdXkgnSL kh4buITVeFGUbiouJaPQEs3TyXNcbArsXaOwdOXNOAMKYMuxMjeUXGuktXGjvpP6 7y8oLuOA2ky9MBwipeDnQz7UdDxpbqTKpVZiN+02w7T8uCnRt57EASXsdhTbW0Kw m3/++9f45b5EXIK8zoFAWyvTtex1nv6Kejcsa5pIDV+tpj/f0kA6ywnQ/ZrFHJBd 0PwBqI/+xITygOYyIgvV/c4DTdtfS6gW -----END CERTIFICATE-----Generated at Sat May 4 19:58:37 2024 by rpki-client on console-ams.rpki-client.org