$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: piiPpKgRnbuWGBeUn5cl8Fg9utf6vlP198RXAqEPrVo= Subject key identifier: A5:36:B2:D3:67:80:30:EE:12:25:5A:8B:77:20:BA:AA:19:CD:23:5D Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 042B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 0414 Signing time: Sat 27 Apr 2024 02:07:35 +0000 Manifest this update: Sat 27 Apr 2024 02:07:35 +0000 Manifest next update: Sat 04 May 2024 02:07:35 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: xN03203IyRopSMZNDu99bILMETl53pn6rMVmuaV/BKc=) 2: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: 9kRfdvF65IulS7ZzTZmvqSmyOFIzvZrEm45tsxjB9uI=) 3: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (hash: UT8feWjhyQrq1iGWYI0jw13wLL7dpnckr6c2FJ0EwLc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Apr 27 02:07:35 2024 GMT Not After : May 4 02:07:35 2024 GMT Subject: CN=662c5de7-2c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ea:8c:b2:12:25:e6:82:9a:6c:30:c0:69:2e: 74:8b:14:3f:70:d4:17:4e:5b:e0:d8:56:cd:c8:33: 4e:d8:fa:c7:2e:f8:4a:a0:70:d3:bd:bd:32:45:d5: 35:5f:be:eb:68:a1:ae:c1:8d:93:52:1c:76:67:bc: 20:1b:1a:65:71:c5:75:5d:4d:2e:e0:88:a2:0e:cb: 5c:91:98:07:34:d1:fe:85:47:0a:58:91:30:a0:eb: 64:24:e0:f6:68:15:6a:90:87:45:5f:7e:f7:e4:7a: 56:5c:b0:44:87:64:d9:66:66:d4:9f:f0:05:69:43: b6:d1:14:c7:99:8f:c3:0a:1d:d3:71:e4:db:16:76: d4:7f:94:e3:42:6c:71:1c:c9:94:a2:14:21:d4:9d: e4:ba:57:62:f8:14:a6:f9:6e:11:5e:1e:f9:d4:9f: 21:91:98:3d:f9:df:c6:fb:bd:a5:e3:cf:a7:a2:80: a9:98:34:d9:0b:fc:d2:f3:bb:f9:e1:97:87:79:a6: f2:33:86:1f:c3:e6:27:f5:8c:a1:3a:0b:e7:b1:a2: 99:e5:6d:9d:55:91:f4:b3:0e:77:be:1b:2d:ea:bc: d0:a1:ba:f4:4e:c2:8e:de:9b:b8:e4:ce:f9:02:31: 06:fc:72:d4:11:25:eb:24:ec:e3:40:d5:d4:d5:94: cb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:36:B2:D3:67:80:30:EE:12:25:5A:8B:77:20:BA:AA:19:CD:23:5D X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:ef:bc:72:4a:87:85:2f:bf:0e:ee:09:07:16:10:bd:43:c8: 2d:70:4f:c5:51:e9:52:05:42:b3:b8:2e:2c:1d:ae:c1:ff:96: 28:8e:a6:50:79:9b:77:d6:a3:62:51:fd:65:89:90:99:e0:f0: 45:7a:28:32:04:04:65:c0:49:81:45:55:f1:01:e1:4d:3c:64: 13:a4:37:33:c2:c8:37:3f:3e:23:95:66:09:e5:3f:9e:5f:1b: 1b:81:cc:25:37:e5:64:56:ff:8a:bc:1c:e8:cc:bf:65:0d:c7: 7f:73:92:1c:b1:2d:49:51:9e:42:7f:9c:c7:b3:8c:15:bd:6a: 5b:27:a7:bd:86:f6:3a:f4:9f:fc:ef:53:cb:54:77:8c:42:8e: 20:21:3e:72:c0:1b:12:56:e6:65:8a:6e:2e:36:18:84:b9:50: cd:54:92:c2:03:2f:7e:0e:33:9c:a7:64:2d:1a:8a:d7:e0:cc: 64:06:e3:93:07:ba:22:35:94:c7:8f:48:8a:d1:b2:b5:aa:d9: e5:8a:cc:9c:aa:e7:db:67:ed:f6:44:9d:b8:a9:0e:3f:5b:67: 54:08:9e:bb:68:51:05:6e:5f:20:4c:c9:6f:60:8b:4a:c0:8d: 17:be:c0:4c:1d:5c:d7:c4:7f:53:c2:56:2d:8a:33:a9:7d:e6: bd:fe:0b:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjQwNDI3MDIwNzM1WhcNMjQwNTA0MDIwNzM1WjAYMRYwFAYD VQQDEw02NjJjNWRlNy0yYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eqMshIl5oKabDDAaS50ixQ/cNQXTlvg2FbNyDNO2PrHLvhKoHDTvb0yRdU1 X77raKGuwY2TUhx2Z7wgGxplccV1XU0u4IiiDstckZgHNNH+hUcKWJEwoOtkJOD2 aBVqkIdFX3735HpWXLBEh2TZZmbUn/AFaUO20RTHmY/DCh3TceTbFnbUf5TjQmxx HMmUohQh1J3kuldi+BSm+W4RXh751J8hkZg9+d/G+72l48+nooCpmDTZC/zS87v5 4ZeHeabyM4Yfw+Yn9YyhOgvnsaKZ5W2dVZH0sw53vhst6rzQobr0TsKO3pu45M75 AjEG/HLUESXrJOzjQNXU1ZTLYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKU2stNn gDDuEiVai3cguqoZzSNdMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF77xySoeFL78O7gkHFhC9Q8gtcE/FUelSBUKzuC4sHa7B/5YojqZQ eZt31qNiUf1liZCZ4PBFeigyBARlwEmBRVXxAeFNPGQTpDczwsg3Pz4jlWYJ5T+e XxsbgcwlN+VkVv+KvBzozL9lDcd/c5IcsS1JUZ5Cf5zHs4wVvWpbJ6e9hvY69J/8 71PLVHeMQo4gIT5ywBsSVuZlim4uNhiEuVDNVJLCAy9+DjOcp2QtGorX4MxkBuOT B7oiNZTHj0iK0bK1qtnlisycqufbZ+32RJ24qQ4/W2dUCJ67aFEFbl8gTMlvYItK wI0XvsBMHVzXxH9TwlYtijOpfea9/gvE -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:42 2024 by rpki-client on console-ams.rpki-client.org