$ rpki-client -vvf rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft File: -IHZTXommvaISDplHTc5GOeGUB4.mft (raw, json) Hash identifier: Jz6tk7GU0TXLVymiXCRu/vM83DgjTedTxrw/03slt3A= Subject key identifier: F8:98:25:50:64:72:39:F1:8B:B1:19:7E:E2:B9:D8:E0:C9:B7:CD:6E Authority key identifier: F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E Certificate issuer: /CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft Manifest number: 96 Signing time: Wed 15 May 2024 06:58:50 +0000 Manifest this update: Wed 15 May 2024 06:58:50 +0000 Manifest next update: Wed 22 May 2024 06:58:50 +0000 Files and hashes: 1: -IHZTXommvaISDplHTc5GOeGUB4.crl (hash: GPXN3E7U0wh0CT7LF/fgHfyBMNoMN/V3MouziN0Uuy4=) 2: 8A50B69C2F2B11EE8CD3F880C4F9AE02.roa (hash: Xs8cgHPdJyxxQI6x8gc5uCKDifh3VxcHOIIt5+VCjy8=) 3: 89E0172A2F2B11EE8CD3F880C4F9AE02.roa (hash: 1qNz2tre6AtjjcbuRD8SKusvEs9JOlepYayXb4isNFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Validity Not Before: May 15 06:58:50 2024 GMT Not After : May 22 06:58:50 2024 GMT Subject: CN=66445d2a-e73c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3f:31:07:6c:c8:4a:72:80:eb:72:ca:7d:86: ff:5f:d1:d7:83:27:0f:68:d4:c5:4f:03:ac:78:cf: d8:ef:bf:0b:b9:8f:ee:a4:17:e5:aa:e9:ea:96:5a: a6:4d:b5:b0:15:a1:19:d3:47:76:c8:86:c8:f6:1f: ff:96:9d:ca:39:5f:90:0c:5b:48:6c:01:50:29:aa: df:61:33:0c:71:96:30:37:4b:90:23:24:1b:55:b6: 0b:91:8f:f9:31:86:40:e4:85:37:fe:e2:ae:43:b6: 55:40:0b:f8:7c:05:93:a7:91:95:84:7d:11:74:11: bb:ee:51:f3:dc:80:29:0a:a4:09:44:41:57:92:ad: 83:b6:21:5b:e0:6e:ee:82:02:6a:ac:63:be:50:61: 06:fd:2e:f9:2f:29:3f:48:61:9c:2d:23:9c:10:a4: ae:fe:99:7b:6c:8b:39:31:4d:e8:c4:2a:72:76:17: 61:d6:89:01:e3:cc:3a:32:18:b3:f2:d7:b5:1d:4c: f4:8f:56:b9:77:8b:cf:cf:76:ad:43:33:6e:fc:40: bb:88:48:d6:68:7a:b1:6c:48:3a:18:79:db:0b:75: 68:6f:b1:1c:82:e7:4a:fa:b8:1c:85:ed:06:eb:e8: 18:76:7a:a2:90:ee:c3:4f:b4:71:c9:69:99:28:12: 25:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:98:25:50:64:72:39:F1:8B:B1:19:7E:E2:B9:D8:E0:C9:B7:CD:6E X509v3 Authority Key Identifier: keyid:F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:9f:ab:45:35:81:24:38:d5:42:71:f7:76:bd:3e:26:fb:cd: c8:fa:c2:8f:d1:f3:ac:5b:1f:4d:78:1a:96:bc:a7:a5:98:57: 3c:50:79:15:19:f5:91:06:4c:3d:93:89:25:39:ed:1e:5c:4c: 77:57:4a:68:4c:b6:c0:8b:48:44:4d:6d:ba:14:04:c6:eb:76: f7:8f:56:d1:5d:d1:b0:97:a3:cb:47:50:37:5c:ed:dc:69:39: 4a:ed:74:ae:c2:19:5b:e3:dc:ba:f6:92:21:15:50:f4:d9:bf: a5:f7:a5:89:c6:a7:29:5f:9d:43:7c:4e:1e:f8:c4:2a:fb:bd: 7f:c1:07:77:9a:78:db:81:d1:8d:96:b8:96:4e:5d:8b:e7:5e: 44:dd:9c:93:8c:08:7c:f1:93:40:67:fb:0b:18:19:1d:8b:0f: 2d:eb:a9:b6:25:f6:91:d8:d4:b3:72:e9:d8:91:3a:6b:df:3a: 1c:ee:89:ac:f4:1c:89:96:6e:f3:55:14:44:bf:30:f1:62:6a: 71:68:31:fc:64:ee:bc:c1:b0:b0:1a:97:15:04:8b:e9:84:ea: 2f:8a:41:b1:3e:1d:fe:11:7d:19:ad:6e:26:de:c1:b8:3e:ec: 1d:8a:09:f8:67:4f:87:6c:56:9d:d6:38:90:51:e0:8c:74:e5: 0a:3c:0c:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI2NDQxMTAvBgNVBAUTKEY4ODFEOTREN0EyNjlBRjY4ODQ4M0E2NTFEMzczOTE4 RTc4NjUwMUUwHhcNMjQwNTE1MDY1ODUwWhcNMjQwNTIyMDY1ODUwWjAYMRYwFAYD VQQDEw02NjQ0NWQyYS1lNzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArT8xB2zISnKA63LKfYb/X9HXgycPaNTFTwOseM/Y778LuY/upBflqunqllqm TbWwFaEZ00d2yIbI9h//lp3KOV+QDFtIbAFQKarfYTMMcZYwN0uQIyQbVbYLkY/5 MYZA5IU3/uKuQ7ZVQAv4fAWTp5GVhH0RdBG77lHz3IApCqQJREFXkq2DtiFb4G7u ggJqrGO+UGEG/S75Lyk/SGGcLSOcEKSu/pl7bIs5MU3oxCpydhdh1okB48w6Mhiz 8te1HUz0j1a5d4vPz3atQzNu/EC7iEjWaHqxbEg6GHnbC3Vob7EcgudK+rgche0G 6+gYdnqikO7DT7RxyWmZKBIlwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiYJVBk cjnxi7EZfuK52ODJt81uMB8GA1UdIwQYMBaAFPiB2U16Jpr2iEg6ZR03ORjnhlAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjY0NC9CRjEzMUQzNDJE MDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12YUlTRHBsSFRjNUdPZUdV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JSFpUWG9tbXZhSVNEcGxIVGM1R09lR1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjY0NC9CRjEzMUQzNDJEMDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12 YUlTRHBsSFRjNUdPZUdVQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFn6tFNYEkONVCcfd2vT4m+83I+sKP0fOsWx9NeBqWvKelmFc8UHkV GfWRBkw9k4klOe0eXEx3V0poTLbAi0hETW26FATG63b3j1bRXdGwl6PLR1A3XO3c aTlK7XSuwhlb49y69pIhFVD02b+l96WJxqcpX51DfE4e+MQq+71/wQd3mnjbgdGN lriWTl2L515E3ZyTjAh88ZNAZ/sLGBkdiw8t66m2JfaR2NSzcunYkTpr3zoc7oms 9ByJlm7zVRREvzDxYmpxaDH8ZO68wbCwGpcVBIvphOovikGxPh3+EX0ZrW4m3sG4 Puwdign4Z0+HbFad1jiQUeCMdOUKPAwg -----END CERTIFICATE-----Generated at Wed May 15 09:04:13 2024 by rpki-client on console-ams.rpki-client.org