$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: shZ1W8CkvPLYbMe2JYZC+Y4Cr4z3OKRFB9dKr2NhPm0= Subject key identifier: 2F:B9:A9:D8:54:A9:AA:35:63:C1:E9:0A:1D:A2:5D:44:BD:53:D2:B4 Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 070D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 0700 Signing time: Tue 30 Apr 2024 23:00:05 +0000 Manifest this update: Tue 30 Apr 2024 23:00:05 +0000 Manifest next update: Tue 07 May 2024 23:00:05 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: GoDuHteO9lAa7bPf+KjvjSv9OXjD+6qdXV0/mXf4aZM=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: EEgmZei8HhhUqdqGUy+3MwlUAdmMR7L1GMUa6BLQ8n4=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: SmI9leCfFLtOvnnfK7B7KqE9luDwQr36vUW6d0ksspk=) 4: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: qXyp1dhNAf5pEULKnvRa1JrpHHV4lQwSoi6tPVocCG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Apr 30 23:00:05 2024 GMT Not After : May 7 23:00:05 2024 GMT Subject: CN=663177f5-f9c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9b:b8:e9:5d:cb:51:d9:1f:63:76:b6:fb:06: 62:32:09:6a:00:ec:df:f0:d5:a5:4f:18:d8:78:97: b7:02:6d:99:fa:41:ee:91:6e:3c:1d:f9:ec:c7:86: 97:7b:3d:74:1a:e0:7a:e3:7f:04:38:e6:5e:1e:88: 49:ef:1f:21:3e:dc:c8:c7:7e:ca:d4:3c:a5:32:9d: 99:d7:1a:f1:df:49:f3:d6:12:f7:4e:70:93:a7:6d: ca:9e:3f:07:6c:7c:1f:ed:42:0c:9d:46:1f:fa:3b: 87:a6:37:d2:9e:02:e2:24:84:d7:0f:a5:ea:d4:9d: 00:ad:b6:3f:79:3b:d0:f2:d2:36:cf:c1:18:31:0b: 9a:bd:06:21:f3:da:e7:74:8b:fa:30:32:b3:82:ae: 9e:d8:6a:03:84:92:5b:ec:98:55:b7:d7:bd:32:2e: 3e:89:64:8f:d3:bb:d8:a6:90:96:df:e3:23:25:dd: e5:13:08:08:7d:eb:1f:b1:9d:0f:46:ca:b7:48:f8: b7:35:d1:33:aa:61:a6:16:34:18:b0:42:b3:a8:56: a7:d1:15:76:e5:f2:25:75:0f:66:af:d8:9d:f6:79: ef:dd:b4:ce:ae:a2:d3:04:03:78:6b:19:2d:bb:87: ac:0c:ad:cf:b7:ec:f8:0f:d8:b4:ab:aa:2b:c4:0f: d5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B9:A9:D8:54:A9:AA:35:63:C1:E9:0A:1D:A2:5D:44:BD:53:D2:B4 X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:fa:03:a9:af:9b:d6:19:b1:7d:5b:d4:7b:01:ea:48:26:5d: a8:c6:c2:1d:5a:d9:42:d5:1b:49:e0:80:da:10:e5:fb:5c:72: 99:48:9d:91:3a:d5:a8:52:10:1e:a8:62:55:48:fa:f2:59:be: 73:b3:bc:68:4e:5e:c4:4c:18:90:9f:a1:5a:79:ba:40:af:8e: 5c:c3:6d:5c:67:b4:12:ea:de:82:d6:0a:52:b8:7a:27:34:43: 00:5a:f1:57:a8:df:97:22:52:09:d0:78:f6:fe:70:f9:ad:f5: a2:1d:b1:77:cc:9b:25:3f:8f:a0:8a:89:69:01:26:e7:b8:23: 07:9a:69:78:ad:98:8a:57:28:4c:6e:99:90:c2:94:33:dd:3e: bc:31:dc:7b:d6:73:3f:55:18:a5:69:8d:55:fe:17:5c:f8:9c: e2:9e:e0:e1:60:03:48:63:29:d8:e3:8d:d0:00:98:9f:18:d5: dd:48:27:87:7d:2d:1f:ef:ad:c9:4a:fe:25:62:5d:d3:00:37: 14:5a:42:a7:0e:18:96:bc:23:d1:cf:54:9c:5c:f9:d0:2e:63: 62:5e:ed:20:51:d3:6e:a3:d2:a7:80:e0:bd:7d:e8:c9:2f:58: da:6e:f9:c3:86:ea:57:a9:f0:80:77:7f:ef:98:c1:bc:e4:26: af:2d:f9:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjQwNDMwMjMwMDA1WhcNMjQwNTA3MjMwMDA1WjAYMRYwFAYD VQQDEw02NjMxNzdmNS1mOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5u46V3LUdkfY3a2+wZiMglqAOzf8NWlTxjYeJe3Am2Z+kHukW48Hfnsx4aX ez10GuB6438EOOZeHohJ7x8hPtzIx37K1DylMp2Z1xrx30nz1hL3TnCTp23Knj8H bHwf7UIMnUYf+juHpjfSngLiJITXD6Xq1J0ArbY/eTvQ8tI2z8EYMQuavQYh89rn dIv6MDKzgq6e2GoDhJJb7JhVt9e9Mi4+iWSP07vYppCW3+MjJd3lEwgIfesfsZ0P Rsq3SPi3NdEzqmGmFjQYsEKzqFan0RV25fIldQ9mr9id9nnv3bTOrqLTBAN4axkt u4esDK3Pt+z4D9i0q6orxA/V7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+5qdhU qao1Y8HpCh2iXUS9U9K0MB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM+gOpr5vWGbF9W9R7AepIJl2oxsIdWtlC1RtJ4IDaEOX7XHKZSJ2R OtWoUhAeqGJVSPryWb5zs7xoTl7ETBiQn6FaebpAr45cw21cZ7QS6t6C1gpSuHon NEMAWvFXqN+XIlIJ0Hj2/nD5rfWiHbF3zJslP4+giolpASbnuCMHmml4rZiKVyhM bpmQwpQz3T68Mdx71nM/VRilaY1V/hdc+JzinuDhYANIYynY443QAJifGNXdSCeH fS0f763JSv4lYl3TADcUWkKnDhiWvCPRz1ScXPnQLmNiXu0gUdNuo9KngOC9fejJ L1jabvnDhupXqfCAd3/vmMG85CavLfl8 -----END CERTIFICATE-----Generated at Tue Apr 30 23:52:29 2024 by rpki-client on console-ams.rpki-client.org