$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: xBv3LyRuBZ9AXRz1blmOom5qJkgjfpi2LVO1FOa+8OA= Subject key identifier: E9:47:B8:65:2E:21:84:1C:36:06:8C:9F:CE:55:6F:5F:87:18:2C:38 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 12B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 12A9 Signing time: Mon 06 May 2024 17:42:07 +0000 Manifest this update: Mon 06 May 2024 17:42:07 +0000 Manifest next update: Mon 13 May 2024 17:42:07 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: ZLOA63wEhMoGO7TC5eSUex8evESvyuHfdlfoBgbv0qQ=) 2: 7DB1A01E769511EBBF193769C4F9AE02.roa (hash: MetsIHyjVktqHxEYWt4JcXDTpO/orpHi4sdgicQ+K6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4793 (0x12b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: May 6 17:42:07 2024 GMT Not After : May 13 17:42:07 2024 GMT Subject: CN=6639166f-da1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:68:7e:0b:80:bd:08:6a:57:34:00:ff:4e:a7: 72:5c:2f:d2:64:7b:37:f1:0f:6e:5a:53:76:e1:b7: 39:6e:4d:21:cd:e2:f2:04:13:03:23:54:40:d2:2d: b3:0b:69:e8:8c:b8:09:28:67:e6:95:84:f6:57:12: e9:55:f7:58:53:f7:2b:48:5e:99:fb:e0:bc:5d:c2: b9:05:d1:20:79:50:d6:52:65:d3:f3:f8:79:de:34: e9:26:7d:73:8d:be:66:70:7e:76:08:81:48:20:12: af:d7:31:97:fd:3e:73:21:0d:77:e0:14:5d:f5:e8: d4:c3:50:fa:cf:17:d3:bf:66:d5:96:02:73:03:52: c5:c7:8b:07:b7:4b:ff:d7:e5:ac:37:0e:43:ec:47: 6f:a7:9e:c5:07:c1:d9:e2:11:12:6e:dc:94:74:83: 7e:73:f3:d1:6f:4e:50:5e:be:43:73:bd:be:a9:cf: b8:21:b6:b3:2c:c9:47:13:c6:ef:f4:d2:c7:19:e8: 17:e8:98:13:d2:74:fb:c6:b7:6f:b8:ea:b3:32:2a: 5e:0d:02:4c:ea:6a:7b:38:dd:58:b2:7e:22:56:01: 8b:ff:57:4a:92:7d:19:28:9d:2d:ab:72:36:b8:f8: dd:ef:24:a6:54:b1:f4:0e:1e:97:c4:ce:1b:9c:d6: af:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:47:B8:65:2E:21:84:1C:36:06:8C:9F:CE:55:6F:5F:87:18:2C:38 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c4:62:1c:0a:61:61:91:45:66:19:e6:b0:90:a8:75:f1:4a: cf:f0:ea:ca:8d:db:9d:56:e3:78:87:57:08:43:df:ea:96:81: 4c:46:ba:f5:6c:ea:c1:7e:83:ad:f1:19:e9:d2:c5:6c:8c:50: 51:4b:ab:77:d4:a6:74:39:f9:94:78:74:32:6c:bf:c0:af:25: 7e:d3:ba:d5:5f:4d:38:f8:a6:ef:d1:ac:c0:ab:0f:f4:0a:f3: 5d:26:28:9c:5c:a6:d5:47:c8:98:82:4a:e6:14:ab:06:3f:ff: 25:f7:2a:7f:95:97:3b:23:33:e8:de:ee:50:ed:a7:9e:94:80: 28:8a:d4:06:c8:1a:ab:a9:cc:43:64:d8:43:7a:a9:ac:c6:02: ab:d3:80:a1:34:9e:4b:2b:af:8f:b3:80:2b:69:c3:76:72:3e: d6:a4:96:47:80:b0:f8:c3:83:b1:8f:7b:98:eb:a0:bc:05:8c: ef:b3:d1:0b:9e:e9:10:e0:73:0a:22:e0:a4:3c:2a:94:ee:4a: f8:97:d4:d4:bd:38:89:02:98:7a:de:5e:1a:62:9b:0a:72:7c: 75:64:62:3e:85:90:9b:df:0d:1b:43:59:5b:5f:7a:38:9d:1d: ae:65:c0:d8:78:91:1d:44:7e:f9:71:ea:c4:9b:0f:06:50:43: e0:36:93:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICErkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjQwNTA2MTc0MjA3WhcNMjQwNTEzMTc0MjA3WjAYMRYwFAYD VQQDEw02NjM5MTY2Zi1kYTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGh+C4C9CGpXNAD/TqdyXC/SZHs38Q9uWlN24bc5bk0hzeLyBBMDI1RA0i2z C2nojLgJKGfmlYT2VxLpVfdYU/crSF6Z++C8XcK5BdEgeVDWUmXT8/h53jTpJn1z jb5mcH52CIFIIBKv1zGX/T5zIQ134BRd9ejUw1D6zxfTv2bVlgJzA1LFx4sHt0v/ 1+WsNw5D7Edvp57FB8HZ4hESbtyUdIN+c/PRb05QXr5Dc72+qc+4IbazLMlHE8bv 9NLHGegX6JgT0nT7xrdvuOqzMipeDQJM6mp7ON1Ysn4iVgGL/1dKkn0ZKJ0tq3I2 uPjd7ySmVLH0Dh6XxM4bnNav+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlHuGUu IYQcNgaMn85Vb1+HGCw4MB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGxGIcCmFhkUVmGeawkKh18UrP8OrKjdudVuN4h1cIQ9/qloFMRrr1 bOrBfoOt8Rnp0sVsjFBRS6t31KZ0OfmUeHQybL/AryV+07rVX004+Kbv0azAqw/0 CvNdJiicXKbVR8iYgkrmFKsGP/8l9yp/lZc7IzPo3u5Q7aeelIAoitQGyBqrqcxD ZNhDeqmsxgKr04ChNJ5LK6+Ps4AracN2cj7WpJZHgLD4w4Oxj3uY66C8BYzvs9EL nukQ4HMKIuCkPCqU7kr4l9TUvTiJAph63l4aYpsKcnx1ZGI+hZCb3w0bQ1lbX3o4 nR2uZcDYeJEdRH75cerEmw8GUEPgNpMa -----END CERTIFICATE-----Generated at Mon May 6 20:19:31 2024 by rpki-client on console-ams.rpki-client.org