$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: JL2ARqsmyWwxdXAimmh3DgqaI+N/58+qIWNVUgpj+5g= Subject key identifier: 5F:DD:A6:D4:DE:4A:CF:27:DF:B1:07:AA:BE:0E:BF:9D:58:CF:57:B7 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0707 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 06FD Signing time: Mon 06 May 2024 22:45:57 +0000 Manifest this update: Mon 06 May 2024 22:45:57 +0000 Manifest next update: Mon 13 May 2024 22:45:57 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: uXkWT+DN5bS9xo4NdoplV7yvAQxy2/uv/+UAG5ZLuN4=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: kYI3WNDSztfRXZUlgxH0YUCRVyT+2DmftetsgBmSN8Y=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: eQp+KNojP7FrZXXNy8xSk8f/R+qu8SqcLiMXunoIGOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1799 (0x707) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: May 6 22:45:57 2024 GMT Not After : May 13 22:45:57 2024 GMT Subject: CN=66395da5-d5bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b4:fb:fe:17:3d:5a:b1:77:5c:35:8a:15:bb: 5b:f4:3c:57:ff:0c:90:14:9e:43:4e:c1:7d:c0:69: d4:22:d6:25:fc:72:f3:73:9c:b7:15:56:f1:db:40: 3f:02:f1:46:4f:0a:44:f7:aa:1f:2c:20:1a:49:79: b1:12:8c:fa:c8:6e:99:2b:5f:cc:3c:6c:bf:85:c9: 82:ba:ee:b8:65:fa:3c:d6:43:ae:d6:8f:94:2e:88: 93:00:45:b6:9c:e5:4b:e9:e9:6c:6b:4d:58:54:2b: 0e:b8:ab:e2:2a:25:fb:61:8f:4c:92:03:d2:1c:2e: 52:c1:10:27:37:75:74:37:b1:a9:6f:c1:30:f9:12: 7f:e0:37:bf:68:8d:7a:3d:b9:c7:a0:83:c8:5e:08: 89:a4:65:cf:1d:43:93:c6:cb:aa:39:7f:ed:3d:6e: 96:34:fe:37:5d:1a:3a:97:fb:97:cc:20:bd:0f:95: ad:46:e7:20:0e:bf:b3:83:96:05:48:f6:83:f9:a6: 62:c6:f7:df:7d:3b:8b:b1:3e:c0:cf:3f:e7:75:f0: 75:37:5a:be:1f:4a:a9:06:b8:22:9d:1d:31:91:fa: 8f:e3:58:b5:5d:a5:84:84:ef:3c:b5:77:7c:83:4a: 44:ca:cc:ff:68:bf:9e:13:84:8c:14:27:43:bc:9e: 96:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:DD:A6:D4:DE:4A:CF:27:DF:B1:07:AA:BE:0E:BF:9D:58:CF:57:B7 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:43:a8:ad:3e:b5:94:e9:f7:85:15:24:03:69:b3:4b:a0:a1: 35:0f:07:f4:66:04:f2:96:cf:31:1b:9c:90:49:54:48:4d:41: 46:5f:9e:65:f8:61:7e:e0:a0:75:9a:2b:9b:9b:53:e7:31:2f: 98:e6:46:00:57:50:42:07:91:73:b5:66:bb:e8:f7:ad:0d:e5: d8:ff:f1:41:1a:01:e9:e3:bf:34:00:40:7c:73:83:68:3a:33: 3f:4d:6a:b8:a2:31:dc:e0:78:d0:82:07:26:9e:b8:6d:0a:ee: c7:0c:7c:78:4a:3e:74:f8:03:72:73:2a:6b:97:1b:e3:06:99: a0:e0:ea:df:20:96:55:e7:7e:4c:05:d0:fa:46:45:e3:78:75: bf:56:44:40:ee:10:c9:74:3b:b1:81:9f:65:e3:18:86:7d:2f: b0:07:65:ab:42:cf:8d:fc:15:59:63:fb:19:65:3f:28:da:06: 8b:64:44:20:58:62:27:ce:87:c0:e0:30:36:c4:6c:a0:15:15: bb:e4:fb:ab:b7:0d:d2:f7:a4:cf:67:67:df:0a:39:29:6c:69: a1:7a:e0:af:8f:a7:aa:df:fb:ad:18:56:93:1b:81:8b:2f:d7: 6e:6f:5a:13:d7:e0:72:33:37:eb:ab:1d:66:4c:6b:67:98:51: df:55:82:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjQwNTA2MjI0NTU3WhcNMjQwNTEzMjI0NTU3WjAYMRYwFAYD VQQDEw02NjM5NWRhNS1kNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbT7/hc9WrF3XDWKFbtb9DxX/wyQFJ5DTsF9wGnUItYl/HLzc5y3FVbx20A/ AvFGTwpE96ofLCAaSXmxEoz6yG6ZK1/MPGy/hcmCuu64Zfo81kOu1o+ULoiTAEW2 nOVL6elsa01YVCsOuKviKiX7YY9MkgPSHC5SwRAnN3V0N7Gpb8Ew+RJ/4De/aI16 PbnHoIPIXgiJpGXPHUOTxsuqOX/tPW6WNP43XRo6l/uXzCC9D5WtRucgDr+zg5YF SPaD+aZixvfffTuLsT7Azz/ndfB1N1q+H0qpBrginR0xkfqP41i1XaWEhO88tXd8 g0pEysz/aL+eE4SMFCdDvJ6WvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/dptTe Ss8n37EHqr4Ov51Yz1e3MB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJQ6itPrWU6feFFSQDabNLoKE1Dwf0ZgTyls8xG5yQSVRITUFGX55l +GF+4KB1miubm1PnMS+Y5kYAV1BCB5FztWa76PetDeXY//FBGgHp4780AEB8c4No OjM/TWq4ojHc4HjQggcmnrhtCu7HDHx4Sj50+ANycyprlxvjBpmg4OrfIJZV535M BdD6RkXjeHW/VkRA7hDJdDuxgZ9l4xiGfS+wB2WrQs+N/BVZY/sZZT8o2gaLZEQg WGInzofA4DA2xGygFRW75Purtw3S96TPZ2ffCjkpbGmheuCvj6eq3/utGFaTG4GL L9dub1oT1+ByMzfrqx1mTGtnmFHfVYJE -----END CERTIFICATE-----Generated at Tue May 7 00:53:20 2024 by rpki-client on console-ams.rpki-client.org