$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft File: hctAGQp33J5olNhX9zu3qQ4JdOQ.mft (raw, json) Hash identifier: e3+WhNmAjLnwv0ueNfRrkLPMW/SrlE9eZ+ZHwRS6inM= Subject key identifier: D5:20:70:C0:94:9D:B0:06:96:8E:5D:F6:1B:FC:A7:11:08:65:7F:66 Authority key identifier: 85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 Certificate issuer: /CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Certificate serial: 04A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft Manifest number: 04A0 Signing time: Tue 07 May 2024 01:33:58 +0000 Manifest this update: Tue 07 May 2024 01:33:58 +0000 Manifest next update: Tue 14 May 2024 01:33:58 +0000 Files and hashes: 1: hctAGQp33J5olNhX9zu3qQ4JdOQ.crl (hash: 09J0ZDMdyEjtadLkEmXANVClmMfiz4E13Esgr7BdyeA=) 2: 7FCFB4745E8411EE89DF693EC4F9AE02.roa (hash: fxzcj7Ti+u+oPK+vxTvHo5UpqB3L29d6LTgtXNK/5HU=) 3: FD9A4AA0E53111EBAB62446EC4F9AE02.roa (hash: QMaNZz8A/1wAjSRCmeaUTYUnqLadlxV+1b/Xc7UahV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1192 (0x4a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4 Validity Not Before: May 7 01:33:58 2024 GMT Not After : May 14 01:33:58 2024 GMT Subject: CN=66398506-da7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:17:ca:b2:37:c6:77:4d:84:30:ad:3e:bf:1c: 4a:5b:89:02:da:f4:21:31:b2:ee:f2:60:6a:a0:32: 85:ce:b2:15:0c:a4:bb:e8:ba:70:b2:b8:14:45:92: 47:98:34:59:91:fb:18:de:c0:9c:25:05:7d:a2:22: a0:f6:1b:de:35:53:fc:4d:6d:21:9e:1f:de:d2:17: d3:0d:4d:b3:46:9a:63:c5:9f:07:99:61:88:50:9b: 56:a2:d7:2e:95:c3:ac:75:66:f2:1e:2b:fd:27:de: 86:cc:42:14:ad:4f:94:e0:fd:44:7f:3c:99:ee:c3: 91:1b:76:8b:4a:93:bf:12:f6:10:9b:69:03:72:bc: 5d:71:28:68:3e:f1:13:1f:94:c8:cd:24:6e:26:3d: f2:30:5e:57:55:90:60:2a:f7:52:25:71:1b:04:94: 20:5c:28:06:ff:2d:dd:89:b8:0f:99:c3:81:db:41: 56:1b:ba:73:3c:66:ae:3d:af:ac:ef:c4:15:1d:e1: 2b:21:d8:83:78:8c:28:b6:07:28:9b:7d:20:f8:0c: 5a:c0:0d:8d:15:f0:3d:90:aa:6d:f6:9c:18:c6:84: a7:ce:79:23:7e:e2:1e:ba:e7:60:35:b0:e3:05:79: 8f:a5:07:56:e6:6e:f8:98:e0:95:64:f5:42:3b:90: 8b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:20:70:C0:94:9D:B0:06:96:8E:5D:F6:1B:FC:A7:11:08:65:7F:66 X509v3 Authority Key Identifier: keyid:85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:c8:f5:29:a4:ee:13:c4:60:2f:28:cf:a0:dc:74:d3:4d:b0: 0e:9a:e9:11:3c:89:d8:ee:5b:52:12:41:4c:dd:3c:e3:8a:d3: dd:24:44:00:9b:90:f4:94:c6:5f:39:d4:d8:41:1f:04:30:e1: 62:12:2a:17:ae:b8:c4:97:0d:82:c5:00:f5:03:48:4a:ca:f2: f2:48:f8:7b:64:3d:73:98:71:0f:1e:62:93:44:33:ce:d2:41: 9e:ed:5d:30:0c:5f:8f:f2:7d:e6:a4:8b:83:6a:2e:16:5a:68: 01:64:40:b7:6b:b1:65:4e:05:14:27:df:d5:48:f2:d4:2a:c5: 55:fe:25:11:00:84:36:a9:32:b2:e3:f7:c0:28:86:ab:ef:51: ef:4c:2d:c6:90:f6:b8:38:d7:9b:7c:b4:39:d6:4a:74:aa:d9: d2:79:1e:ca:0f:67:3e:b0:14:17:8b:a2:30:52:d3:25:ea:02: 3a:2d:42:28:d7:70:b6:0e:33:fa:65:22:22:4d:a0:50:4b:06: 7f:50:cd:f5:3d:ed:e3:d8:38:0f:59:62:7e:bc:46:99:ff:cf: 58:32:85:90:e9:2a:45:53:60:b5:b8:52:37:7a:06:e1:a8:3e: 19:1a:bf:b6:05:49:69:8e:33:43:60:11:ff:bf:80:fa:2f:22: d1:3b:c5:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlCQjQxMTAvBgNVBAUTKDg1Q0I0MDE5MEE3N0RDOUU2ODk0RDg1N0Y3M0JCN0E5 MEUwOTc0RTQwHhcNMjQwNTA3MDEzMzU4WhcNMjQwNTE0MDEzMzU4WjAYMRYwFAYD VQQDEw02NjM5ODUwNi1kYTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBfKsjfGd02EMK0+vxxKW4kC2vQhMbLu8mBqoDKFzrIVDKS76LpwsrgURZJH mDRZkfsY3sCcJQV9oiKg9hveNVP8TW0hnh/e0hfTDU2zRppjxZ8HmWGIUJtWotcu lcOsdWbyHiv9J96GzEIUrU+U4P1EfzyZ7sORG3aLSpO/EvYQm2kDcrxdcShoPvET H5TIzSRuJj3yMF5XVZBgKvdSJXEbBJQgXCgG/y3dibgPmcOB20FWG7pzPGauPa+s 78QVHeErIdiDeIwotgcom30g+AxawA2NFfA9kKpt9pwYxoSnznkjfuIeuudgNbDj BXmPpQdW5m74mOCVZPVCO5CLJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUgcMCU nbAGlo5d9hv8pxEIZX9mMB8GA1UdIwQYMBaAFIXLQBkKd9yeaJTYV/c7t6kOCXTk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUJCNC9CM0U3MzA5Q0U1 MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNKNW9sTmhYOXp1M3FRNEpk T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hjdEFHUXAzM0o1b2xOaFg5enUzcVE0SmRPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUJCNC9CM0U3MzA5Q0U1MkUxMUVCOUVCMUZENjlDNEY5QUUwMi9oY3RBR1FwMzNK NW9sTmhYOXp1M3FRNEpkT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAByPUppO4TxGAvKM+g3HTTTbAOmukRPInY7ltSEkFM3TzjitPdJEQA m5D0lMZfOdTYQR8EMOFiEioXrrjElw2CxQD1A0hKyvLySPh7ZD1zmHEPHmKTRDPO 0kGe7V0wDF+P8n3mpIuDai4WWmgBZEC3a7FlTgUUJ9/VSPLUKsVV/iURAIQ2qTKy 4/fAKIar71HvTC3GkPa4ONebfLQ51kp0qtnSeR7KD2c+sBQXi6IwUtMl6gI6LUIo 13C2DjP6ZSIiTaBQSwZ/UM31Pe3j2DgPWWJ+vEaZ/89YMoWQ6SpFU2C1uFI3egbh qD4ZGr+2BUlpjjNDYBH/v4D6LyLRO8Wl -----END CERTIFICATE-----Generated at Tue May 7 03:10:19 2024 by rpki-client on console-ams.rpki-client.org