$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: INSdKFehppNTO8eRvpL65wIoaqMZCVf93OXQ20UzqUI= Subject key identifier: 60:86:4D:71:06:EA:80:BC:3F:AA:95:F5:05:3E:F2:0E:8A:D5:8C:18 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0A4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0A45 Signing time: Thu 02 May 2024 20:30:16 +0000 Manifest this update: Thu 02 May 2024 20:30:16 +0000 Manifest next update: Thu 09 May 2024 20:30:16 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: foKHt6618m8K7E6TUbE4yEGhDeD7h+odVtCsA8CwF2w=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: uMOaWvPtXAcMz68RxGz0irPPrj7+i6LV8JF9RYgPADs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2634 (0xa4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: May 2 20:30:16 2024 GMT Not After : May 9 20:30:16 2024 GMT Subject: CN=6633f7d8-05b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:11:e4:01:4a:33:dc:02:ed:29:3d:af:cf:b2: 21:bc:08:10:8e:94:3f:65:ce:53:db:ec:e5:60:46: 93:84:85:b6:cf:9d:bc:81:ae:50:e1:57:53:2d:d6: 53:8e:00:d5:6c:a5:d7:72:b2:ed:b2:b7:26:89:ea: 2b:f9:4c:87:a9:02:c7:85:1e:59:41:f5:e4:65:6d: ab:45:e8:62:71:63:1b:53:d3:5d:33:a9:85:18:de: 5c:b3:62:a3:4d:32:44:7e:ae:6f:20:a5:58:ba:82: 7a:6a:a3:13:0d:3a:47:7d:a1:cf:2b:be:e4:94:10: dd:c7:72:2e:4e:ef:8c:32:b2:d6:6d:72:5e:81:10: fb:d3:95:f4:13:4e:81:c4:db:ac:92:f5:97:5a:91: 41:f7:6c:cb:bc:7c:62:70:78:46:96:a1:a3:39:c6: 88:b9:ef:78:34:3a:b7:d3:e8:63:51:fa:b0:df:4e: 26:db:0d:ed:27:90:89:69:1f:e9:6b:c0:9c:19:20: 66:a4:34:f1:e2:fa:c4:1f:86:27:08:89:58:f8:6a: 18:9a:c4:fc:3f:aa:c3:c0:85:ed:64:fd:d2:c9:2f: df:49:13:fa:b9:30:f7:a2:26:4e:9d:b0:04:59:ae: fb:f3:f3:c5:d5:a1:e8:fe:e8:32:57:66:e1:77:49: ad:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:86:4D:71:06:EA:80:BC:3F:AA:95:F5:05:3E:F2:0E:8A:D5:8C:18 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:e5:cc:d7:ed:bb:01:ef:4d:3a:c4:2d:bd:4a:c5:51:0f:1e: 36:45:83:7b:37:85:fa:37:22:1b:b7:c4:a1:c6:cd:84:a2:ac: 6f:32:4e:11:1b:4b:e0:84:11:10:7d:15:77:4a:91:d1:3b:c0: c8:5b:27:1d:e9:b2:aa:57:52:1a:39:7a:78:b2:27:d9:8d:58: 82:a5:80:ac:cc:8d:ae:db:c4:2f:b3:5b:7f:63:37:2b:91:95: d4:20:6c:05:69:e6:2d:a4:ef:71:1c:81:e9:3d:c5:4b:35:70: 46:b7:fb:62:9e:ac:f3:1b:fe:79:cc:ff:cb:b2:33:04:2b:00: ee:39:77:e8:1e:8f:c7:40:27:fc:bb:8f:de:e0:e4:c4:2e:70: 80:50:f5:78:b5:5a:8a:47:9c:d7:1e:65:12:5b:89:a0:69:e4: 73:8c:09:cb:44:6c:26:4a:64:d3:b6:7f:97:d5:44:92:f2:68: e9:83:b4:8e:b6:97:12:ea:d8:4f:23:59:46:aa:48:c4:13:f5: a0:8f:7f:94:ae:64:03:39:65:32:3c:e1:b6:56:1e:8f:34:f1: 41:30:9e:1d:f8:9e:96:c9:f6:97:b4:0d:67:b5:db:94:50:fd: 3b:c2:e2:54:09:1f:9f:2c:3e:16:3a:b8:d8:bf:be:87:f3:fe: 59:52:62:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjQwNTAyMjAzMDE2WhcNMjQwNTA5MjAzMDE2WjAYMRYwFAYD VQQDEw02NjMzZjdkOC0wNWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RHkAUoz3ALtKT2vz7IhvAgQjpQ/Zc5T2+zlYEaThIW2z528ga5Q4VdTLdZT jgDVbKXXcrLtsrcmieor+UyHqQLHhR5ZQfXkZW2rRehicWMbU9NdM6mFGN5cs2Kj TTJEfq5vIKVYuoJ6aqMTDTpHfaHPK77klBDdx3IuTu+MMrLWbXJegRD705X0E06B xNuskvWXWpFB92zLvHxicHhGlqGjOcaIue94NDq30+hjUfqw304m2w3tJ5CJaR/p a8CcGSBmpDTx4vrEH4YnCIlY+GoYmsT8P6rDwIXtZP3SyS/fSRP6uTD3oiZOnbAE Wa778/PF1aHo/ugyV2bhd0mtywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCGTXEG 6oC8P6qV9QU+8g6K1YwYMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB5czX7bsB7006xC29SsVRDx42RYN7N4X6NyIbt8Shxs2EoqxvMk4R G0vghBEQfRV3SpHRO8DIWycd6bKqV1IaOXp4sifZjViCpYCszI2u28Qvs1t/Yzcr kZXUIGwFaeYtpO9xHIHpPcVLNXBGt/tinqzzG/55zP/LsjMEKwDuOXfoHo/HQCf8 u4/e4OTELnCAUPV4tVqKR5zXHmUSW4mgaeRzjAnLRGwmSmTTtn+X1USS8mjpg7SO tpcS6thPI1lGqkjEE/Wgj3+UrmQDOWUyPOG2Vh6PNPFBMJ4d+J6WyfaXtA1ntduU UP07wuJUCR+fLD4WOrjYv76H8/5ZUmIg -----END CERTIFICATE-----Generated at Thu May 2 22:13:17 2024 by rpki-client on console-fra.rpki-client.org