$ rpki-client -vvf rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft File: IHyMoVvzGwa9xuxD_3V51L-6TPY.mft (raw, json) Hash identifier: GVdyf1zI6OJGx0IFZjOHNi9BnYEAe/9r/5tqIeHFD9E= Subject key identifier: EC:8A:BB:B0:55:F7:85:94:71:90:04:B7:A9:34:5D:34:1D:A9:5E:47 Authority key identifier: 20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6 Certificate issuer: /CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6 Certificate serial: 134B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft Manifest number: 1344 Signing time: Fri 26 Apr 2024 00:59:19 +0000 Manifest this update: Fri 26 Apr 2024 00:59:19 +0000 Manifest next update: Fri 03 May 2024 00:59:19 +0000 Files and hashes: 1: IHyMoVvzGwa9xuxD_3V51L-6TPY.crl (hash: Jd0Zh/Oxbxx8vbxQ8qjQlmvFmtE6Q+cEow+EnSjgE6M=) 2: E9E3F1A823C511E9920FD80FC4F9AE02.roa (hash: 82ds4gDxUhSuEM0F+mz4GI4QNnQGEZ9sfC/aw/oaNLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.crl rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 00:59:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4939 (0x134b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6 Validity Not Before: Apr 26 00:59:19 2024 GMT Not After : May 3 00:59:19 2024 GMT Subject: CN=662afc67-32a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:db:65:a0:47:ea:37:aa:97:14:7a:ed:4f:f0: c1:48:b9:e9:a6:b3:8b:78:02:33:09:81:31:d8:91: 84:71:22:7c:fb:70:99:2d:c0:71:8c:a1:56:21:ae: 02:95:8e:6d:78:af:9d:8b:14:63:72:7c:a1:a4:d3: 53:ab:2c:dd:8d:e3:4d:f8:33:a2:7f:70:f6:b1:01: 5c:2c:18:14:b0:8d:6b:84:b7:12:08:a9:c6:20:40: 19:0a:de:f6:65:6d:1c:29:61:93:89:d6:43:c1:af: af:32:3f:88:ef:24:b9:21:e8:02:48:21:09:12:7f: 44:b4:cd:12:14:2e:b6:a8:eb:5e:73:f1:41:63:5e: 54:e2:9c:48:4c:de:34:76:92:91:5e:1f:e2:f2:2d: 05:ab:65:42:fa:68:65:c7:14:ff:22:34:2f:92:2d: 7e:62:6f:08:9f:5d:0f:b1:69:07:29:2b:2f:13:3e: a3:2b:c5:28:a4:a8:54:47:39:61:86:f4:f9:c1:ec: 5a:42:a1:27:bc:fd:dc:03:63:03:78:48:e4:3e:22: 82:43:c5:ee:05:ea:70:86:5a:c5:09:d4:ae:6a:74: 64:1d:ba:10:fb:ce:7f:d3:b0:03:da:2f:bb:2f:13: cb:ae:fe:b4:04:46:70:15:a8:d4:44:ba:c9:8a:e3: 73:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:8A:BB:B0:55:F7:85:94:71:90:04:B7:A9:34:5D:34:1D:A9:5E:47 X509v3 Authority Key Identifier: keyid:20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:90:ee:a6:a4:8d:9a:8d:c7:2f:69:66:94:91:23:33:53:96: 0c:f9:10:a8:88:3f:b9:35:d3:96:f0:44:07:d6:1d:4f:e7:46: eb:fb:bb:96:09:b3:1a:46:6e:10:63:18:f8:83:8d:77:92:a7: c1:21:15:9e:08:4d:70:a8:e4:4e:2b:54:97:55:a8:8c:a7:bb: bc:24:3f:ab:1f:dc:72:88:89:20:9a:84:27:35:34:81:03:0a: 40:99:da:24:fc:86:62:72:66:9a:e1:83:bd:12:94:5d:99:ee: 2d:00:ea:52:fb:2c:c3:cd:13:15:57:10:b1:79:d3:07:8a:cb: 3a:bb:9a:cd:22:b2:98:83:05:7c:f0:f4:04:52:85:24:ff:68: 22:fa:e3:ff:7c:23:a3:c6:a9:ae:92:7a:06:87:d5:86:c7:a8: 83:4d:3b:4e:f4:e2:9c:6b:03:aa:7b:6f:4d:71:8a:6b:1c:2c: 3b:74:5c:66:67:96:67:b5:d0:85:26:e8:5d:ca:17:cf:76:c6: b2:fc:24:c8:d3:3b:ee:a9:25:39:d6:03:f8:4e:43:8f:77:63: 5e:22:81:40:e0:87:89:0f:df:89:7d:65:94:5b:a4:31:5f:2e: 07:9f:32:12:59:2b:4a:60:28:7c:d6:5e:55:53:03:33:40:41: 4a:cf:12:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjYyNjExMTAvBgNVBAUTKDIwN0M4Q0ExNUJGMzFCMDZCREM2RUM0M0ZGNzU3OUQ0 QkZCQTRDRjYwHhcNMjQwNDI2MDA1OTE5WhcNMjQwNTAzMDA1OTE5WjAYMRYwFAYD VQQDEw02NjJhZmM2Ny0zMmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ttloEfqN6qXFHrtT/DBSLnpprOLeAIzCYEx2JGEcSJ8+3CZLcBxjKFWIa4C lY5teK+dixRjcnyhpNNTqyzdjeNN+DOif3D2sQFcLBgUsI1rhLcSCKnGIEAZCt72 ZW0cKWGTidZDwa+vMj+I7yS5IegCSCEJEn9EtM0SFC62qOtec/FBY15U4pxITN40 dpKRXh/i8i0Fq2VC+mhlxxT/IjQvki1+Ym8In10PsWkHKSsvEz6jK8UopKhURzlh hvT5wexaQqEnvP3cA2MDeEjkPiKCQ8XuBepwhlrFCdSuanRkHboQ+85/07AD2i+7 LxPLrv60BEZwFajURLrJiuNzewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyKu7BV 94WUcZAEt6k0XTQdqV5HMB8GA1UdIwQYMBaAFCB8jKFb8xsGvcbsQ/91edS/ukz2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjI2MS9FQkMyNzNFNDdE REMxMUU4ODQ2RDM5NERDNEY5QUUwMi9JSHlNb1Z2ekd3YTl4dXhEXzNWNTFMLTZU UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lIeU1vVnZ6R3dhOXh1eERfM1Y1MUwtNlRQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjI2MS9FQkMyNzNFNDdEREMxMUU4ODQ2RDM5NERDNEY5QUUwMi9JSHlNb1Z2ekd3 YTl4dXhEXzNWNTFMLTZUUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9kO6mpI2ajccvaWaUkSMzU5YM+RCoiD+5NdOW8EQH1h1P50br+7uW CbMaRm4QYxj4g413kqfBIRWeCE1wqOROK1SXVaiMp7u8JD+rH9xyiIkgmoQnNTSB AwpAmdok/IZicmaa4YO9EpRdme4tAOpS+yzDzRMVVxCxedMHiss6u5rNIrKYgwV8 8PQEUoUk/2gi+uP/fCOjxqmuknoGh9WGx6iDTTtO9OKcawOqe29NcYprHCw7dFxm Z5ZntdCFJuhdyhfPdsay/CTI0zvuqSU51gP4TkOPd2NeIoFA4IeJD9+JfWWUW6Qx Xy4HnzISWStKYCh81l5VUwMzQEFKzxJA -----END CERTIFICATE-----Generated at Fri Apr 26 13:36:17 2024 by rpki-client on console-ams.rpki-client.org