$ rpki-client -vvf rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.mft File: -HInxmU9abruLplIhCzrC0BJ54Y.mft (raw, json) Hash identifier: V8YQklRG4r648pa8nYGCxogKemnoGhw4ui3xQ1cdD5U= Subject key identifier: 56:78:BA:30:D2:49:F7:5E:0A:AF:B4:C8:7B:F9:92:FA:4A:60:AD:72 Authority key identifier: F8:72:27:C6:65:3D:69:BA:EE:2E:99:48:84:2C:EB:0B:40:49:E7:86 Certificate issuer: /CN=A916D23A/serialNumber=F87227C6653D69BAEE2E9948842CEB0B4049E786 Certificate serial: 0A2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-HInxmU9abruLplIhCzrC0BJ54Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.mft Manifest number: 0A1F Signing time: Thu 02 May 2024 20:42:16 +0000 Manifest this update: Thu 02 May 2024 20:42:16 +0000 Manifest next update: Thu 09 May 2024 20:42:16 +0000 Files and hashes: 1: -HInxmU9abruLplIhCzrC0BJ54Y.crl (hash: bQWtv5DyVOdA4kbruXZZudt2BbFzBf/BhePhAzP3vqs=) 2: E265728A877911EA9E28DF0BC4F9AE02.roa (hash: IXdOLb5XGDPUV+uNEtH6HzYSX48p5a2jXIDxz5vqGBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.crl rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-HInxmU9abruLplIhCzrC0BJ54Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2605 (0xa2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D23A/serialNumber=F87227C6653D69BAEE2E9948842CEB0B4049E786 Validity Not Before: May 2 20:42:16 2024 GMT Not After : May 9 20:42:16 2024 GMT Subject: CN=6633faa8-2e5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dd:56:df:8b:64:2e:81:ec:19:a3:ff:d6:7d: b5:7f:2a:25:89:74:0a:cd:dc:88:9f:db:6f:5d:16: 09:21:9d:8b:4d:ab:0c:9e:f4:67:7b:58:61:99:24: 11:c0:78:84:32:17:25:ca:42:a1:a4:5d:fa:f9:61: 3a:67:d2:ad:c8:f9:a4:6b:06:04:10:db:a7:be:4a: 03:7f:f1:19:3b:87:72:7a:54:d8:01:a2:3d:b4:a5: 82:06:8d:ed:94:f7:61:4c:3c:2b:54:ff:6b:f7:93: 0e:f2:ac:3e:5c:65:63:29:5c:31:00:61:2a:93:8a: 0f:8f:d8:85:58:5d:33:5b:49:6b:f5:33:38:a6:8b: 93:fe:8d:e1:ef:e1:55:c9:8e:d9:99:a4:69:ac:2b: 2d:8b:db:c5:6b:94:00:93:ca:33:96:0e:f8:92:65: c6:32:f0:e6:cf:2c:55:54:d8:29:25:44:f8:af:fc: f4:6d:0f:8b:53:20:27:1f:3d:96:cd:23:75:42:a0: 5e:5d:83:a1:ea:b0:4c:c4:36:01:a8:5f:3d:2d:6c: 7f:48:bb:b2:79:d6:8d:a2:e8:01:3f:c5:2e:c4:18: 88:2f:43:25:16:b3:2d:82:61:3b:1a:39:5e:62:58: 30:29:27:06:81:c2:5e:94:9f:07:db:eb:08:62:d6: d7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:78:BA:30:D2:49:F7:5E:0A:AF:B4:C8:7B:F9:92:FA:4A:60:AD:72 X509v3 Authority Key Identifier: keyid:F8:72:27:C6:65:3D:69:BA:EE:2E:99:48:84:2C:EB:0B:40:49:E7:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-HInxmU9abruLplIhCzrC0BJ54Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D23A/8E3C121E48D511EA83351771C4F9AE02/-HInxmU9abruLplIhCzrC0BJ54Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:c5:24:ef:4e:02:e3:77:8f:19:8a:c5:03:c2:ea:12:e5:3f: 76:f0:87:b7:51:1d:e6:05:26:83:ed:9e:47:f3:b6:4b:c4:b0: 74:22:51:55:cd:18:78:7d:2c:ba:86:41:e3:e4:18:1f:f9:bb: 49:2b:3f:0a:45:41:68:41:f2:be:e6:33:33:b2:75:e9:f9:b4: 0e:d7:46:89:87:6f:80:5e:e6:23:cd:5e:00:d5:93:a9:ff:6a: 06:af:28:c1:7b:9d:50:ed:ef:4b:a2:7d:c7:99:24:7c:f0:ba: 7f:98:c6:6f:9d:f1:61:b4:19:ed:30:fc:cc:44:83:7a:6a:46: 56:b6:0e:bd:07:ad:57:8c:73:ba:ab:17:aa:f0:d1:26:bc:dd: c0:fa:cd:f2:89:f5:53:c2:52:83:d2:7e:2b:c8:4b:cd:7d:81: 6a:a1:72:9f:a3:bc:4f:4c:0c:ea:b6:58:88:c0:47:ba:db:16: f5:39:04:93:01:c4:08:4b:ae:6c:ac:a2:d3:e1:9d:79:e4:46: 01:2c:92:3a:2f:d1:3c:94:39:1a:43:a0:53:2f:31:70:58:b8: dc:f5:1e:4f:f5:6d:cb:3d:73:b2:76:85:d7:3e:c6:66:b2:5a: 9c:cc:37:5c:1d:19:60:dc:f6:81:b7:da:e3:5a:d0:9a:f0:57: 53:54:0f:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyM0ExMTAvBgNVBAUTKEY4NzIyN0M2NjUzRDY5QkFFRTJFOTk0ODg0MkNFQjBC NDA0OUU3ODYwHhcNMjQwNTAyMjA0MjE2WhcNMjQwNTA5MjA0MjE2WjAYMRYwFAYD VQQDEw02NjMzZmFhOC0yZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzt1W34tkLoHsGaP/1n21fyoliXQKzdyIn9tvXRYJIZ2LTasMnvRne1hhmSQR wHiEMhclykKhpF36+WE6Z9KtyPmkawYEENunvkoDf/EZO4dyelTYAaI9tKWCBo3t lPdhTDwrVP9r95MO8qw+XGVjKVwxAGEqk4oPj9iFWF0zW0lr9TM4pouT/o3h7+FV yY7ZmaRprCsti9vFa5QAk8ozlg74kmXGMvDmzyxVVNgpJUT4r/z0bQ+LUyAnHz2W zSN1QqBeXYOh6rBMxDYBqF89LWx/SLuyedaNougBP8UuxBiIL0MlFrMtgmE7Gjle YlgwKScGgcJelJ8H2+sIYtbXUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZ4ujDS SfdeCq+0yHv5kvpKYK1yMB8GA1UdIwQYMBaAFPhyJ8ZlPWm67i6ZSIQs6wtASeeG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDIzQS84RTNDMTIxRTQ4 RDUxMUVBODMzNTE3NzFDNEY5QUUwMi8tSElueG1VOWFicnVMcGxJaEN6ckMwQko1 NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ISW54bVU5YWJydUxwbEloQ3pyQzBCSjU0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDIzQS84RTNDMTIxRTQ4RDUxMUVBODMzNTE3NzFDNEY5QUUwMi8tSElueG1VOWFi cnVMcGxJaEN6ckMwQko1NFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSxSTvTgLjd48ZisUDwuoS5T928Ie3UR3mBSaD7Z5H87ZLxLB0IlFV zRh4fSy6hkHj5Bgf+btJKz8KRUFoQfK+5jMzsnXp+bQO10aJh2+AXuYjzV4A1ZOp /2oGryjBe51Q7e9Lon3HmSR88Lp/mMZvnfFhtBntMPzMRIN6akZWtg69B61XjHO6 qxeq8NEmvN3A+s3yifVTwlKD0n4ryEvNfYFqoXKfo7xPTAzqtliIwEe62xb1OQST AcQIS65srKLT4Z155EYBLJI6L9E8lDkaQ6BTLzFwWLjc9R5P9W3LPXOydoXXPsZm slqczDdcHRlg3PaBt9rjWtCa8FdTVA/5 -----END CERTIFICATE-----Generated at Thu May 2 22:28:51 2024 by rpki-client on console-ams.rpki-client.org