$ rpki-client -vvf rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft File: 276b_H-KPTvgW7W2Ah91Rb6YG_A.mft (raw, json) Hash identifier: 3o5biB+l7Uo+rXUtGYtFGgfWu5vZ0TgL4sg0B2EGfy4= Subject key identifier: 0C:B5:90:F7:A5:0A:9E:BF:B2:64:28:8B:33:C6:66:9B:99:6B:96:2A Authority key identifier: DB:BE:9B:FC:7F:8A:3D:3B:E0:5B:B5:B6:02:1F:75:45:BE:98:1B:F0 Certificate issuer: /CN=A913D03A/serialNumber=DBBE9BFC7F8A3D3BE05BB5B6021F7545BE981BF0 Certificate serial: 0699 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft Manifest number: 0693 Signing time: Sat 04 May 2024 23:29:23 +0000 Manifest this update: Sat 04 May 2024 23:29:22 +0000 Manifest next update: Sat 11 May 2024 23:29:22 +0000 Files and hashes: 1: 276b_H-KPTvgW7W2Ah91Rb6YG_A.crl (hash: F8U83rhWRx+W5o8XqHe6vicYfhl/wEBzd4qLQsCr7ek=) 2: 3A9F3ADC234A11EBA0C40C2FC4F9AE02.roa (hash: c5S3jivnMzihTeQ1ZJ3sWnsuARNuYLHgxboNFnhTsJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.crl rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D03A/serialNumber=DBBE9BFC7F8A3D3BE05BB5B6021F7545BE981BF0 Validity Not Before: May 4 23:29:22 2024 GMT Not After : May 11 23:29:22 2024 GMT Subject: CN=6636c4d2-c377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:45:83:5a:5d:be:64:ab:cf:77:6f:4e:ad:ff: 52:3b:91:d4:1c:fc:49:bf:7e:d4:da:31:1e:93:4d: b9:71:5a:8e:6c:43:ee:d5:fa:a2:e0:e4:1f:6f:91: b5:0c:05:96:be:93:f2:46:74:14:d9:00:6f:09:4a: 04:10:ce:5d:74:02:69:0d:72:44:43:29:38:d2:63: b8:f1:03:81:3e:2f:e2:b6:c2:de:9b:8e:09:63:02: 90:94:89:0d:24:46:91:91:ef:dd:8b:35:29:e1:81: a9:0a:32:e7:ce:9f:76:b8:9d:0c:a6:a2:f9:e8:c0: 32:17:c8:86:9e:b7:ad:9b:74:67:24:28:20:65:da: 29:74:d5:59:70:4d:09:c5:20:6d:31:68:26:fc:41: 2e:2d:c8:a4:ae:2d:d1:49:a4:3d:96:f1:e9:f1:6d: 5f:34:68:49:00:b2:06:29:6c:97:74:ae:28:0d:cc: ae:41:79:af:30:05:b3:38:81:07:fb:5c:ae:1e:03: 79:aa:3d:36:2b:07:45:d3:fb:47:fb:0a:86:97:49: 65:c6:b7:0c:4f:dd:5b:7c:6c:be:1b:e2:38:56:8e: 3e:15:62:26:bc:f7:bc:aa:d0:ba:79:57:45:92:2d: e9:1e:a0:4b:99:8e:06:8e:78:55:74:0f:e5:bf:d7: 98:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:B5:90:F7:A5:0A:9E:BF:B2:64:28:8B:33:C6:66:9B:99:6B:96:2A X509v3 Authority Key Identifier: keyid:DB:BE:9B:FC:7F:8A:3D:3B:E0:5B:B5:B6:02:1F:75:45:BE:98:1B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:7a:36:68:d9:e4:32:0d:56:c8:03:e8:1b:fd:78:d9:13:12: f0:1c:a2:57:0c:e8:41:39:04:33:06:13:25:df:fa:f6:eb:a6: 7c:cd:17:19:18:a2:b5:8c:08:64:86:6b:ca:15:15:06:a4:99: 46:48:e9:4a:7d:ce:24:ce:13:22:16:ff:1e:c1:bd:d3:c9:68: d8:8c:7a:7b:26:6b:7d:de:01:93:a6:53:54:25:7d:2d:59:6b: af:c0:d5:37:65:ac:a1:ac:59:7f:86:8f:7f:72:99:ce:4a:60: 6e:ba:ad:37:85:47:fb:0b:f6:e6:19:0d:6c:d4:67:1f:27:af: 7c:3c:97:de:90:ab:ef:dc:8a:a0:26:2d:75:06:a8:3c:68:43: 60:94:8b:c0:74:dd:eb:18:89:45:b6:b9:0d:90:73:b7:e0:04: 1d:5b:16:27:c9:a0:7c:23:84:0e:51:1e:9c:d6:b6:6d:47:e9: cd:21:6d:3d:b0:47:8b:ff:43:8b:57:21:9c:d6:38:d3:ce:78: 4d:c0:d0:10:8f:e7:95:f7:f0:7b:53:98:a7:e6:92:bf:9f:d6: b7:ef:f4:0b:b8:c0:d0:26:a2:f6:04:cd:3f:73:03:24:03:d6: b5:fc:2e:f2:8f:ad:fd:26:f1:04:a6:b9:07:02:20:c3:af:c5: 36:69:30:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QwM0ExMTAvBgNVBAUTKERCQkU5QkZDN0Y4QTNEM0JFMDVCQjVCNjAyMUY3NTQ1 QkU5ODFCRjAwHhcNMjQwNTA0MjMyOTIyWhcNMjQwNTExMjMyOTIyWjAYMRYwFAYD VQQDEw02NjM2YzRkMi1jMzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UWDWl2+ZKvPd29Orf9SO5HUHPxJv37U2jEek025cVqObEPu1fqi4OQfb5G1 DAWWvpPyRnQU2QBvCUoEEM5ddAJpDXJEQyk40mO48QOBPi/itsLem44JYwKQlIkN JEaRke/dizUp4YGpCjLnzp92uJ0MpqL56MAyF8iGnretm3RnJCggZdopdNVZcE0J xSBtMWgm/EEuLcikri3RSaQ9lvHp8W1fNGhJALIGKWyXdK4oDcyuQXmvMAWzOIEH +1yuHgN5qj02KwdF0/tH+wqGl0llxrcMT91bfGy+G+I4Vo4+FWImvPe8qtC6eVdF ki3pHqBLmY4GjnhVdA/lv9eYUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAy1kPel Cp6/smQoizPGZpuZa5YqMB8GA1UdIwQYMBaAFNu+m/x/ij074Fu1tgIfdUW+mBvw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDAzQS85MjZCNDNFODIx OTAxMUVCODJBNDFCNDhDNEY5QUUwMi8yNzZiX0gtS1BUdmdXN1cyQWg5MVJiNllH X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI3NmJfSC1LUFR2Z1c3VzJBaDkxUmI2WUdfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDAzQS85MjZCNDNFODIxOTAxMUVCODJBNDFCNDhDNEY5QUUwMi8yNzZiX0gtS1BU dmdXN1cyQWg5MVJiNllHX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxejZo2eQyDVbIA+gb/XjZExLwHKJXDOhBOQQzBhMl3/r266Z8zRcZ GKK1jAhkhmvKFRUGpJlGSOlKfc4kzhMiFv8ewb3TyWjYjHp7Jmt93gGTplNUJX0t WWuvwNU3ZayhrFl/ho9/cpnOSmBuuq03hUf7C/bmGQ1s1GcfJ698PJfekKvv3Iqg Ji11Bqg8aENglIvAdN3rGIlFtrkNkHO34AQdWxYnyaB8I4QOUR6c1rZtR+nNIW09 sEeL/0OLVyGc1jjTznhNwNAQj+eV9/B7U5in5pK/n9a37/QLuMDQJqL2BM0/cwMk A9a1/C7yj639JvEEprkHAiDDr8U2aTBW -----END CERTIFICATE-----Generated at Sun May 5 00:14:41 2024 by rpki-client on console-ams.rpki-client.org