$ rpki-client -vvf rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft File: cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft (raw, json) Hash identifier: BMN86L46MYmaji0gPC+D8bScDtIV10yWxrcNnpd7Vz8= Subject key identifier: F8:4A:D9:18:32:B5:B0:2A:00:07:DF:C0:7E:BF:97:D0:3D:25:C2:61 Authority key identifier: 70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C Certificate issuer: /CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft Manifest number: B6 Signing time: Wed 01 May 2024 06:51:27 +0000 Manifest this update: Wed 01 May 2024 06:51:26 +0000 Manifest next update: Wed 08 May 2024 06:51:26 +0000 Files and hashes: 1: cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl (hash: pfD0ArHIrfMzX6dDkhR8zfLL0/rN/QyASrU5gCxHST8=) 2: 1966C856FB9E11ED8309FC1DC4F9AE02.roa (hash: 0ApTySfWss7BCgDJo5NI3CLB1Q6H4KVApSNhXj+3R8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Validity Not Before: May 1 06:51:26 2024 GMT Not After : May 8 06:51:26 2024 GMT Subject: CN=6631e66f-a3ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b5:ba:3c:d5:47:82:d6:ac:b3:32:90:cc:d1: 1c:97:28:fe:a1:9b:d7:c7:91:cd:a0:be:8e:35:75: 79:f7:35:e3:f7:23:6e:4a:95:49:cf:da:24:94:52: ce:3e:6d:c7:17:26:85:a4:30:02:db:19:fb:37:62: 50:5c:82:f0:ac:b2:de:3d:76:3b:22:9c:e3:1a:62: f2:f5:e7:4e:f8:18:ee:c0:fc:87:0f:68:f4:0a:b5: 74:54:32:e6:a3:f6:1a:ea:fb:7d:f5:be:74:89:2c: 7d:5e:e8:b3:e1:4f:47:fb:f2:05:e1:75:9d:22:dd: c3:b0:e0:2a:64:b6:6d:c0:af:b8:75:45:9e:ed:b1: da:5a:0b:35:03:02:0c:45:9a:a7:e1:13:d8:d2:d4: 40:b5:2c:0a:63:96:4a:c3:cd:4c:ba:af:2e:ed:b2: 25:89:f5:6d:7c:e1:c2:d2:8e:5f:1d:b1:81:50:e4: 26:c1:36:9b:77:9b:23:b7:93:49:42:e8:87:0a:6a: da:05:fe:61:bd:ab:93:6f:13:41:33:01:d5:6d:63: 92:74:2c:2b:9f:63:1f:bc:b8:e4:d7:1a:eb:ec:d1: 55:b1:a1:d2:39:54:d7:cf:3f:23:6d:09:7a:a8:eb: 51:4d:ba:69:26:84:fc:59:f8:0e:7c:24:fb:f1:29: 54:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4A:D9:18:32:B5:B0:2A:00:07:DF:C0:7E:BF:97:D0:3D:25:C2:61 X509v3 Authority Key Identifier: keyid:70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:ce:4f:88:42:f0:a7:a5:90:d9:21:0d:73:e0:c5:23:3c:d3: 1b:aa:cf:e4:45:81:17:9d:84:22:f4:95:c5:d2:1a:fe:0e:8f: 40:24:8e:89:80:73:06:67:b5:37:84:90:0f:fa:86:cb:b5:0d: 5e:66:4f:d9:00:29:5f:85:07:c5:6c:14:7b:11:27:6f:d1:db: 9b:a9:aa:56:bd:32:0a:f9:4d:63:71:36:38:c1:a3:d2:a6:99: 84:9b:14:84:09:31:14:65:81:93:6b:71:e4:f9:16:1e:dc:e7: d1:54:b8:1e:c7:88:4f:5d:e5:f7:9f:f4:f3:ea:3f:53:c9:4c: 4d:10:db:53:b9:3b:a2:e1:83:c0:ef:2c:88:c3:3f:06:54:42: 8f:a5:6e:2b:9e:f6:80:11:89:cc:11:50:1a:d8:3d:51:23:66: 44:ce:dd:68:8a:da:71:78:19:12:c4:0f:50:e3:0c:d7:30:2c: f0:3e:40:a4:fb:4a:e6:1e:99:66:b0:50:05:55:e3:c0:e9:57: 8d:af:cb:85:1f:f6:53:14:9f:b1:70:89:28:62:bf:16:5a:f5: d4:e8:df:9e:8e:f8:c4:77:b8:80:1d:5e:3f:97:f5:20:0a:50: 24:3a:00:9a:ab:05:31:8c:cd:f3:c3:10:b1:a4:54:e9:f3:42: d6:74:26:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1NDAxMTAvBgNVBAUTKDcwMkZBMUFFOTY4MkIyQjIyRUNERDlBNTMwMTJGMEU2 RjFCQTFCOUMwHhcNMjQwNTAxMDY1MTI2WhcNMjQwNTA4MDY1MTI2WjAYMRYwFAYD VQQDEw02NjMxZTY2Zi1hM2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rW6PNVHgtasszKQzNEclyj+oZvXx5HNoL6ONXV59zXj9yNuSpVJz9oklFLO Pm3HFyaFpDAC2xn7N2JQXILwrLLePXY7IpzjGmLy9edO+BjuwPyHD2j0CrV0VDLm o/Ya6vt99b50iSx9Xuiz4U9H+/IF4XWdIt3DsOAqZLZtwK+4dUWe7bHaWgs1AwIM RZqn4RPY0tRAtSwKY5ZKw81Muq8u7bIlifVtfOHC0o5fHbGBUOQmwTabd5sjt5NJ QuiHCmraBf5hvauTbxNBMwHVbWOSdCwrn2MfvLjk1xrr7NFVsaHSOVTXzz8jbQl6 qOtRTbppJoT8WfgOfCT78SlUoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhK2Rgy tbAqAAffwH6/l9A9JcJhMB8GA1UdIwQYMBaAFHAvoa6WgrKyLs3ZpTAS8Obxuhuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjU0MC9EOTdBOTVCQ0Y4 ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3NySXV6ZG1sTUJMdzV2RzZH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDLWhycGFDc3JJdXpkbWxNQkx3NXZHNkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjU0MC9EOTdBOTVCQ0Y4ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3Ny SXV6ZG1sTUJMdzV2RzZHNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQzk+IQvCnpZDZIQ1z4MUjPNMbqs/kRYEXnYQi9JXF0hr+Do9AJI6J gHMGZ7U3hJAP+obLtQ1eZk/ZAClfhQfFbBR7ESdv0dubqapWvTIK+U1jcTY4waPS ppmEmxSECTEUZYGTa3Hk+RYe3OfRVLgex4hPXeX3n/Tz6j9TyUxNENtTuTui4YPA 7yyIwz8GVEKPpW4rnvaAEYnMEVAa2D1RI2ZEzt1oitpxeBkSxA9Q4wzXMCzwPkCk +0rmHplmsFAFVePA6VeNr8uFH/ZTFJ+xcIkoYr8WWvXU6N+ejvjEd7iAHV4/l/Ug ClAkOgCaqwUxjM3zwxCxpFTp80LWdCYA -----END CERTIFICATE-----Generated at Wed May 1 07:23:55 2024 by rpki-client on console-ams.rpki-client.org