$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: raLhU5Lsd+SknFb1guf6y1P0enIewrWeRnVIUj/eUwU= Subject key identifier: A7:50:75:F6:75:45:C8:5A:54:5E:A7:45:99:A8:BE:C7:3D:4A:40:F7 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1B10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1B04 Signing time: Thu 02 May 2024 16:44:13 +0000 Manifest this update: Thu 02 May 2024 16:44:12 +0000 Manifest next update: Thu 09 May 2024 16:44:12 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: PbqSNLgRPA24LAiUEmOlzIRhn1bq0AfVuLmcloVA/GA=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: FlF6pC5hcexFI1ynxGhRxmxYnReF8nnPqoWFCF/BAjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6928 (0x1b10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: May 2 16:44:12 2024 GMT Not After : May 9 16:44:12 2024 GMT Subject: CN=6633c2dc-6e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:65:42:73:82:86:86:fd:d7:53:25:0b:20:bf: 8e:68:c6:30:0e:85:71:4d:23:0f:98:70:33:47:da: 6d:8e:68:90:33:ae:52:4b:9b:62:92:e8:8d:3e:4e: 38:9e:c9:86:5e:c0:08:f8:62:81:34:bb:dc:9e:c8: b4:97:b7:34:89:d1:40:02:ff:21:06:ac:78:59:5b: e6:e2:27:35:a5:43:b8:76:3a:21:7d:d2:c8:51:6c: 16:1c:a8:67:8d:38:57:e4:55:b9:1b:31:60:56:a8: 98:c8:ac:39:89:84:e5:04:c0:7b:1f:10:e9:e6:01: 7c:c7:0c:f9:7f:1b:1a:e9:3d:f8:55:b0:88:02:d4: b9:be:d3:66:f7:8b:2e:00:68:72:b6:a8:c2:b0:eb: f8:a6:21:0d:67:86:ea:5c:5c:a1:f5:a8:08:ce:16: c4:a8:9e:fc:d5:f5:d9:94:fb:ca:72:e0:85:bf:12: e8:37:34:12:77:ba:2a:58:c3:5e:1d:e5:b4:aa:70: ab:d0:1a:06:2c:28:8b:09:9a:14:b5:fb:f0:87:39: fb:db:5e:3d:13:73:40:a1:f5:0f:ff:0f:80:88:49: 02:51:ae:3c:f8:bb:78:af:60:f9:56:de:41:e9:e4: c9:01:3f:0c:bd:0f:52:d8:4a:a2:a5:fe:fd:0d:e3: d1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:50:75:F6:75:45:C8:5A:54:5E:A7:45:99:A8:BE:C7:3D:4A:40:F7 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:66:8b:c8:6d:9d:22:5d:01:13:2e:71:87:10:a1:c9:c7:53: 86:18:bb:50:64:e9:89:53:97:c2:59:ba:18:51:f4:91:f6:c2: dc:e3:a1:46:95:23:6e:9b:9d:5f:f6:6f:de:08:d0:ad:b0:9d: b4:3b:b6:94:dc:02:e4:b8:26:ad:b3:74:91:af:ef:2a:21:68: 9f:9e:3a:4c:af:5c:d9:29:4f:4e:54:51:be:63:07:d4:0a:ea: cf:da:85:f0:42:e0:9f:20:6b:9b:af:ad:0e:7e:e4:4d:49:76: fd:9d:d1:b8:37:03:8d:48:e7:4b:3d:dd:0c:f2:47:70:fe:72: c4:a3:cd:d2:d5:5b:0b:7b:bd:cc:bd:ba:60:a7:bd:71:d2:72: 5e:81:b9:97:55:20:3e:3e:3a:e0:ca:0f:ef:84:da:fd:f3:d2: ee:1c:64:5d:e5:c9:f5:d3:4b:2c:37:79:fb:a3:3f:34:7f:80: c7:04:18:d2:af:18:a3:33:0e:88:c9:a5:eb:68:da:f1:c2:56: ec:07:0f:c6:3e:e4:db:8c:c8:7b:f6:79:7e:af:ca:a6:70:79: a0:f8:3e:80:d1:53:31:33:93:ee:46:c3:a8:20:29:8c:4b:fe: 6a:4d:ca:a0:56:11:ea:b2:3a:c7:ed:30:c0:d7:70:7b:57:d4: 9c:bc:9b:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjQwNTAyMTY0NDEyWhcNMjQwNTA5MTY0NDEyWjAYMRYwFAYD VQQDEw02NjMzYzJkYy02ZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmVCc4KGhv3XUyULIL+OaMYwDoVxTSMPmHAzR9ptjmiQM65SS5tikuiNPk44 nsmGXsAI+GKBNLvcnsi0l7c0idFAAv8hBqx4WVvm4ic1pUO4djohfdLIUWwWHKhn jThX5FW5GzFgVqiYyKw5iYTlBMB7HxDp5gF8xwz5fxsa6T34VbCIAtS5vtNm94su AGhytqjCsOv4piENZ4bqXFyh9agIzhbEqJ781fXZlPvKcuCFvxLoNzQSd7oqWMNe HeW0qnCr0BoGLCiLCZoUtfvwhzn72149E3NAofUP/w+AiEkCUa48+Lt4r2D5Vt5B 6eTJAT8MvQ9S2Eqipf79DePRUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdQdfZ1 RchaVF6nRZmovsc9SkD3MB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsZovIbZ0iXQETLnGHEKHJx1OGGLtQZOmJU5fCWboYUfSR9sLc46FG lSNum51f9m/eCNCtsJ20O7aU3ALkuCats3SRr+8qIWifnjpMr1zZKU9OVFG+YwfU CurP2oXwQuCfIGubr60OfuRNSXb9ndG4NwONSOdLPd0M8kdw/nLEo83S1VsLe73M vbpgp71x0nJegbmXVSA+Pjrgyg/vhNr989LuHGRd5cn100ssN3n7oz80f4DHBBjS rxijMw6IyaXraNrxwlbsBw/GPuTbjMh79nl+r8qmcHmg+D6A0VMxM5PuRsOoICmM S/5qTcqgVhHqsjrH7TDA13B7V9ScvJsU -----END CERTIFICATE-----Generated at Thu May 2 17:43:09 2024 by rpki-client on console-fra.rpki-client.org