$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: O3PeyYrUW4E+TN/0LOGZWlrdWgHfeAFHgI3/vhBOMk8= Subject key identifier: DA:24:88:14:70:AA:1D:04:75:F2:E6:8C:42:37:78:BD:8B:B1:92:FE Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0CBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0CA1 Signing time: Fri 26 Apr 2024 18:50:45 +0000 Manifest this update: Fri 26 Apr 2024 18:50:45 +0000 Manifest next update: Fri 03 May 2024 18:50:45 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: GckjDoG0r8F53sVILwyz+5DGNVkTPu9mjMejAjyZduk=) 2: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: zbSRxwSdD1wB4PeT5tasCFiqgMdpyK/LCt3nabcUcbc=) 3: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: 5HH7pTnlgjeixOKGFFz84lUPoqp0/yGKwdS97A1LqJc=) 4: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: Y60gxV7vj6JoehSPKBPcOo+au9ew002ZnJfydT6OZMI=) 5: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: OsPZvCPB8crG8IgjfnSn5QQ08umkgujL+7zgt9nBk64=) 6: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: /eAIAgbkZCIP0fMr2TN/5lT1l6GiWI+JgsgVyciFAmQ=) 7: F2826A504FCF11EB88444467C4F9AE02.roa (hash: ylMYLzY/O00/kxSVjte6bmxUwkqtmUX09lis2sR8hOs=) 8: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: q6HOXjPvoPSb3o84w9d02NTWY2hXWWUYQ38latAJtSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 18:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Apr 26 18:50:45 2024 GMT Not After : May 3 18:50:45 2024 GMT Subject: CN=662bf785-778b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b0:a0:2e:ef:49:02:a5:48:4c:3d:9d:99:ab: 5a:30:fc:30:05:57:e5:21:75:a1:56:a8:81:09:8c: 33:94:76:5f:40:87:70:2b:61:17:09:bf:cd:c8:4d: d1:39:2d:89:37:b0:cb:b8:fe:d0:dc:27:e2:2f:f3: 07:b1:17:50:75:5a:3e:e7:5d:31:49:73:0e:08:e3: 21:25:57:00:1f:ec:fd:45:0e:a0:2c:a7:1b:e4:ea: 44:73:9c:95:f3:bb:81:6f:dc:01:96:1b:ce:b0:e7: 0b:7b:38:b3:24:6c:cf:07:09:a7:c7:ea:30:17:60: d6:f5:0f:f1:d6:40:f5:4f:19:4c:4b:44:0a:5a:6c: 9f:4e:70:c4:fc:48:ad:f0:66:02:35:6f:69:2b:a0: 3b:75:52:c2:67:4e:96:b6:30:64:0f:5b:06:d3:0b: 4c:b4:78:1e:02:59:54:4d:de:8f:b4:99:96:21:e2: 15:3d:44:8e:a0:c5:50:b5:2c:a5:ea:c8:67:ee:d4: 2a:85:a6:d7:5b:48:8d:f8:4f:a9:a0:c6:3f:39:c6: 4d:8a:f1:da:da:31:fc:cb:bc:c8:f0:62:e1:2f:06: 7f:87:68:25:69:5a:b4:9c:88:23:2e:2a:4d:37:7f: a8:05:fa:8d:bb:e3:47:42:12:42:c2:df:70:e8:12: c0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:24:88:14:70:AA:1D:04:75:F2:E6:8C:42:37:78:BD:8B:B1:92:FE X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:82:7d:cc:e4:29:b2:87:91:1c:07:83:ec:c5:49:7c:f6:83: 59:6a:3d:71:78:11:e8:98:a1:da:cf:ba:6b:63:fb:97:35:d0: 82:26:9d:47:68:d7:fa:68:7a:bb:e8:95:e3:53:2b:f7:9f:6d: 11:76:3f:08:6a:74:e2:60:4a:88:8d:ee:89:bf:a4:96:33:fe: 80:0b:95:75:50:d6:fb:72:7e:33:07:42:b8:12:40:ee:de:51: de:94:e7:bb:4a:e7:8f:6e:8b:ee:d0:ae:96:87:9c:1f:57:2d: 95:b0:0d:3b:d0:30:50:7c:19:7d:f2:5b:cc:e5:c1:e0:46:aa: f3:c6:fb:c6:5f:90:e2:9f:06:c0:ba:4e:a0:5d:91:12:6e:ab: 91:a9:bc:55:b9:db:51:27:44:c6:6c:d8:f9:1c:a5:76:97:1e: 54:e9:ca:5e:21:77:ee:26:64:92:58:fa:a3:66:ea:f5:38:49: 58:82:5b:23:77:92:f2:5b:26:9e:c0:96:fb:37:0d:bc:33:22: 26:a9:da:21:28:59:15:33:71:64:5c:02:dd:b4:db:20:6a:95: 0a:b1:df:ad:aa:6b:d8:c0:03:2e:89:23:33:16:52:c5:cf:5f: a8:21:d5:80:32:44:dc:20:1a:b5:2f:a0:62:95:4d:e2:e6:53: 96:ce:14:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjQwNDI2MTg1MDQ1WhcNMjQwNTAzMTg1MDQ1WjAYMRYwFAYD VQQDEw02NjJiZjc4NS03NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbCgLu9JAqVITD2dmataMPwwBVflIXWhVqiBCYwzlHZfQIdwK2EXCb/NyE3R OS2JN7DLuP7Q3CfiL/MHsRdQdVo+510xSXMOCOMhJVcAH+z9RQ6gLKcb5OpEc5yV 87uBb9wBlhvOsOcLezizJGzPBwmnx+owF2DW9Q/x1kD1TxlMS0QKWmyfTnDE/Eit 8GYCNW9pK6A7dVLCZ06WtjBkD1sG0wtMtHgeAllUTd6PtJmWIeIVPUSOoMVQtSyl 6shn7tQqhabXW0iN+E+poMY/OcZNivHa2jH8y7zI8GLhLwZ/h2glaVq0nIgjLipN N3+oBfqNu+NHQhJCwt9w6BLA/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNokiBRw qh0EdfLmjEI3eL2LsZL+MB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVgn3M5Cmyh5EcB4PsxUl89oNZaj1xeBHomKHaz7prY/uXNdCCJp1H aNf6aHq76JXjUyv3n20Rdj8IanTiYEqIje6Jv6SWM/6AC5V1UNb7cn4zB0K4EkDu 3lHelOe7SuePbovu0K6Wh5wfVy2VsA070DBQfBl98lvM5cHgRqrzxvvGX5DinwbA uk6gXZESbquRqbxVudtRJ0TGbNj5HKV2lx5U6cpeIXfuJmSSWPqjZur1OElYglsj d5LyWyaewJb7Nw28MyImqdohKFkVM3FkXALdtNsgapUKsd+tqmvYwAMuiSMzFlLF z1+oIdWAMkTcIBq1L6BilU3i5lOWzhRr -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:56 2024 by rpki-client on console-ams.rpki-client.org