$ rpki-client -vvf rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft File: h-gMDkYzEKnTA4zgE88YU3SlxyI.mft (raw, json) Hash identifier: Ky5Hn5HrOjGQkMtcOO/56HdufzEO6PpPd7Rx8BWUL5Q= Subject key identifier: 7D:1F:CC:79:74:B6:E4:01:29:21:91:8C:8F:27:D9:9B:88:F2:3D:5F Authority key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 Certificate issuer: /CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Certificate serial: 050A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft Manifest number: 0505 Signing time: Wed 01 May 2024 01:31:16 +0000 Manifest this update: Wed 01 May 2024 01:31:15 +0000 Manifest next update: Wed 08 May 2024 01:31:15 +0000 Files and hashes: 1: h-gMDkYzEKnTA4zgE88YU3SlxyI.crl (hash: iF4m8CflPJpXcx43FRjgfhtFHPKza8SD+paoQN0VdE0=) 2: C850F3BA89A511EEB6692E43C4F9AE02.roa (hash: osB3o1oF2xMnyVF3DFng98w8KuMn+le3eUZCsy/doRU=) 3: C49CE482BEA411EB85828650C4F9AE02.roa (hash: hooAX2OxbnAxEYVV3GefPOYGFhwfni9EQuxarxtyOcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 01:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1290 (0x50a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Validity Not Before: May 1 01:31:15 2024 GMT Not After : May 8 01:31:15 2024 GMT Subject: CN=66319b63-d47d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b3:da:1e:52:be:16:64:0f:b3:6f:5a:a4:a0: 54:e8:7e:b4:a3:ef:84:ad:f1:d9:b9:23:11:2e:dc: 4b:0e:18:23:cb:c3:f6:4c:e0:cd:3f:87:1a:1a:75: 9b:31:3e:bd:fb:00:ea:ca:05:11:fa:f0:e6:93:15: 79:09:c6:91:ee:c5:18:0f:4a:73:db:a6:32:34:bf: 3d:13:62:82:f8:4c:90:a1:71:86:a3:a0:82:63:a2: b2:9d:05:a5:53:86:2c:70:34:1b:5d:a3:6e:26:6d: d9:eb:48:96:ab:e0:f6:35:2f:6c:6d:af:c1:01:d4: 3a:c9:4b:24:65:30:dc:1a:5c:ae:cd:f8:89:19:96: b1:db:9f:e3:2f:1b:e7:33:99:65:78:7b:aa:cc:9b: e2:2e:5f:c5:73:7b:7b:cc:4d:94:d5:06:46:4e:a3: 08:fa:f8:50:3f:66:bc:41:6c:1b:2f:26:ca:a0:ce: 5e:78:c9:7e:1f:e3:97:b8:47:ea:d9:cd:76:e7:cf: 9c:74:0d:2d:55:d0:76:a5:f4:eb:9c:5c:af:b7:c7: 14:20:4e:b9:32:ee:1b:a8:7b:94:d0:d7:b6:db:a0: ac:bc:5b:46:fa:99:19:6a:59:6a:91:01:64:f8:86: 6b:1f:48:21:85:9b:5b:e5:f5:8a:48:cc:f1:92:6c: 0f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:1F:CC:79:74:B6:E4:01:29:21:91:8C:8F:27:D9:9B:88:F2:3D:5F X509v3 Authority Key Identifier: keyid:87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2a:58:f0:e0:5a:59:6f:e4:a3:aa:57:b0:b5:fe:09:87:d0: 76:5a:75:83:bc:5c:8d:b1:92:87:68:cf:54:4a:1b:f7:a0:c0: 4f:27:d2:f4:8e:2b:8f:ee:fc:e5:b5:44:ca:6f:4f:64:b4:9b: 51:7b:4a:b7:97:c2:12:ea:6f:2a:3d:6a:42:62:8c:23:12:c4: be:63:ef:40:ac:7b:1d:13:bd:24:34:df:db:9a:ef:08:01:d9: 74:77:d2:82:15:ee:3e:f3:f3:e1:13:53:81:3b:78:07:2d:7d: 3a:7e:9d:bd:a7:fe:82:86:69:9c:29:ea:95:7a:f9:81:5c:f6: 79:d5:77:ea:5c:22:93:d1:f0:8b:d3:f6:73:8e:b7:fc:4c:16: 9a:59:bf:10:a1:52:b8:c4:09:1e:f8:b1:57:4f:47:bb:b4:eb: c1:75:76:e8:94:3c:39:59:8f:11:bf:63:5e:7f:29:1c:1a:e4: d4:17:86:c8:e7:9f:4d:4b:79:23:e4:f7:8c:7b:eb:ec:72:26: 5e:22:cf:45:b6:4f:0c:9f:47:3d:1f:f5:3f:e4:50:85:da:22: 45:2d:27:86:67:fa:0a:9e:1e:06:17:42:f8:f8:0b:7d:8c:6e: 61:4f:1f:c8:80:a7:5d:6a:ec:08:bc:84:c8:39:43:c4:2a:5b: e4:2a:5e:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyNEIxMTAvBgNVBAUTKDg3RTgwQzBFNDYzMzEwQTlEMzAzOENFMDEzQ0YxODUz NzRBNUM3MjIwHhcNMjQwNTAxMDEzMTE1WhcNMjQwNTA4MDEzMTE1WjAYMRYwFAYD VQQDEw02NjMxOWI2My1kNDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrPaHlK+FmQPs29apKBU6H60o++ErfHZuSMRLtxLDhgjy8P2TODNP4caGnWb MT69+wDqygUR+vDmkxV5CcaR7sUYD0pz26YyNL89E2KC+EyQoXGGo6CCY6KynQWl U4YscDQbXaNuJm3Z60iWq+D2NS9sba/BAdQ6yUskZTDcGlyuzfiJGZax25/jLxvn M5lleHuqzJviLl/Fc3t7zE2U1QZGTqMI+vhQP2a8QWwbLybKoM5eeMl+H+OXuEfq 2c1258+cdA0tVdB2pfTrnFyvt8cUIE65Mu4bqHuU0Ne226CsvFtG+pkZallqkQFk +IZrH0ghhZtb5fWKSMzxkmwPLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0fzHl0 tuQBKSGRjI8n2ZuI8j1fMB8GA1UdIwQYMBaAFIfoDA5GMxCp0wOM4BPPGFN0pcci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTI0Qi85MjQwNkEwNkJF QTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVLblRBNHpnRTg4WVUzU2x4 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gtZ01Ea1l6RUtuVEE0emdFODhZVTNTbHh5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTI0Qi85MjQwNkEwNkJFQTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVL blRBNHpnRTg4WVUzU2x4eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtKljw4FpZb+Sjqlewtf4Jh9B2WnWDvFyNsZKHaM9UShv3oMBPJ9L0 jiuP7vzltUTKb09ktJtRe0q3l8IS6m8qPWpCYowjEsS+Y+9ArHsdE70kNN/bmu8I Adl0d9KCFe4+8/PhE1OBO3gHLX06fp29p/6ChmmcKeqVevmBXPZ51XfqXCKT0fCL 0/Zzjrf8TBaaWb8QoVK4xAke+LFXT0e7tOvBdXbolDw5WY8Rv2NefykcGuTUF4bI 559NS3kj5PeMe+vsciZeIs9Ftk8Mn0c9H/U/5FCF2iJFLSeGZ/oKnh4GF0L4+At9 jG5hTx/IgKddauwIvITIOUPEKlvkKl61 -----END CERTIFICATE-----Generated at Wed May 1 02:46:19 2024 by rpki-client on console-ams.rpki-client.org