$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: hEJZ05e+xYj7j7sbHo68tsoDNwL4WexUaSjjA+ZvROo= Subject key identifier: 82:79:B8:06:17:F4:FB:BB:43:39:64:E6:4E:F2:AC:64:61:80:ED:03 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 033D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 032D Signing time: Tue 07 May 2024 03:00:08 +0000 Manifest this update: Tue 07 May 2024 03:00:08 +0000 Manifest next update: Tue 14 May 2024 03:00:08 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: aF69GA+XLLcqX7y/qWdSckUxiOqGkDXGAI1tqYkdtZE=) 2: 4B167396E74111EC80E35542C4F9AE02.roa (hash: u7PlVQH0cq5BEuSWOo0gI8VTE01UeWTciTJcC0+9FF0=) 3: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: ostgJOoCwhrmvw/erlo0J2UixJvlznMcr11HPFIgFIc=) 4: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: h3saPAJhhEGRJVRkZU0IYum5xfP0CswzHKWpnOS5pMs=) 5: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: f5uc1TcPmjMgDYmNxHJmQijbeYCUJ7Nv/kgPNOiS0l8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 829 (0x33d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: May 7 03:00:08 2024 GMT Not After : May 14 03:00:08 2024 GMT Subject: CN=66399938-15c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:67:64:19:c6:8d:99:c2:a4:ae:16:13:64:52: 16:43:e8:7b:cc:8d:bf:4c:e5:eb:26:6c:23:57:97: db:ce:57:eb:fb:a0:2d:d6:41:35:a2:4c:6e:66:5b: 44:92:50:f4:76:67:63:05:49:05:19:71:70:f2:e5: 9f:9e:1a:88:b6:25:8f:c6:5e:b0:c7:04:fe:80:8f: ce:bc:de:95:81:79:b3:99:90:9c:39:66:78:d9:c2: 4c:90:ca:d3:46:a1:2e:8a:d9:cc:68:4c:b9:00:58: 03:8d:25:ef:b8:7b:d1:6d:55:d6:fb:75:48:44:e6: be:79:67:bc:4e:f1:d4:0f:60:a5:0d:7f:af:6c:41: c2:3c:31:ae:d8:ea:2a:ce:c6:ad:b4:28:56:14:e6: c0:3b:14:11:80:78:e1:ea:d8:fc:de:12:a5:1f:51: 01:66:91:7e:5c:e0:a6:7b:d1:dd:06:40:70:68:fd: 9d:d4:89:64:8f:8b:78:2b:78:7a:21:2b:7f:73:86: a8:86:5e:d3:27:47:4b:4e:3e:21:e0:9b:7f:8b:5c: 7c:0e:be:2f:00:7b:04:1c:6a:6b:a1:92:fe:a5:53: b7:d5:5c:5d:24:c5:28:ef:1a:1b:72:ed:d4:cb:c2: 25:7c:ca:c8:58:36:12:d0:ee:2a:8a:0b:1d:a4:61: 21:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:79:B8:06:17:F4:FB:BB:43:39:64:E6:4E:F2:AC:64:61:80:ED:03 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:a0:01:c4:42:b4:27:d7:24:58:64:59:c6:b0:af:ca:8b:ed: 82:f6:83:0a:a7:b5:b5:4a:74:64:c6:df:0a:3d:7b:53:04:8d: 56:6f:db:df:a9:35:28:30:28:73:6f:1e:c0:f1:93:13:17:f3: 32:23:00:6a:b6:08:a6:26:38:5e:64:68:c6:a0:15:06:35:73: 5e:ed:1e:c0:c4:54:5d:54:67:ce:fe:b3:7b:d2:8e:e6:79:3c: 40:e6:69:9c:80:bf:72:5e:96:4a:b9:a5:c1:17:05:60:7f:c2: e8:fe:89:21:cc:03:6f:70:e2:ea:05:a2:84:3f:4e:e3:2a:b6: 21:51:5c:ce:5a:04:bd:8f:1c:c5:bc:87:1d:d8:a9:c1:87:80: a0:95:0a:8a:43:2d:fb:46:36:a4:ec:3c:77:4c:7f:83:3d:e8: 22:bb:f8:46:21:75:bf:b2:b8:82:ef:08:83:2c:64:33:24:3a: 58:a6:5d:d0:c1:fd:cf:30:a2:62:bf:e9:3f:94:8f:16:f9:78: 56:3f:d7:cf:60:e7:b9:03:20:62:b2:63:af:8f:ab:b4:af:43: a3:1a:98:2a:3c:bc:23:2d:b8:27:83:9c:31:de:df:98:b1:bc: 48:34:65:e0:85:c4:fd:8f:31:6c:e7:08:c0:44:90:1d:40:03: 5d:3c:2d:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjQwNTA3MDMwMDA4WhcNMjQwNTE0MDMwMDA4WjAYMRYwFAYD VQQDEw02NjM5OTkzOC0xNWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGdkGcaNmcKkrhYTZFIWQ+h7zI2/TOXrJmwjV5fbzlfr+6At1kE1okxuZltE klD0dmdjBUkFGXFw8uWfnhqItiWPxl6wxwT+gI/OvN6VgXmzmZCcOWZ42cJMkMrT RqEuitnMaEy5AFgDjSXvuHvRbVXW+3VIROa+eWe8TvHUD2ClDX+vbEHCPDGu2Ooq zsattChWFObAOxQRgHjh6tj83hKlH1EBZpF+XOCme9HdBkBwaP2d1Ilkj4t4K3h6 ISt/c4aohl7TJ0dLTj4h4Jt/i1x8Dr4vAHsEHGproZL+pVO31VxdJMUo7xobcu3U y8IlfMrIWDYS0O4qigsdpGEhHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJ5uAYX 9Pu7Qzlk5k7yrGRhgO0DMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuoAHEQrQn1yRYZFnGsK/Ki+2C9oMKp7W1SnRkxt8KPXtTBI1Wb9vf qTUoMChzbx7A8ZMTF/MyIwBqtgimJjheZGjGoBUGNXNe7R7AxFRdVGfO/rN70o7m eTxA5mmcgL9yXpZKuaXBFwVgf8Lo/okhzANvcOLqBaKEP07jKrYhUVzOWgS9jxzF vIcd2KnBh4CglQqKQy37Rjak7Dx3TH+DPegiu/hGIXW/sriC7wiDLGQzJDpYpl3Q wf3PMKJiv+k/lI8W+XhWP9fPYOe5AyBismOvj6u0r0OjGpgqPLwjLbgng5wx3t+Y sbxINGXghcT9jzFs5wjARJAdQANdPC3r -----END CERTIFICATE-----Generated at Tue May 7 03:49:58 2024 by rpki-client on console-ams.rpki-client.org