$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: PGsVmvI/z4JctDMpeBaNgEo9Sa7J4pHlCh8VuShN7uk= Subject key identifier: D5:0D:B2:77:E0:8E:90:BD:12:78:A2:0B:C4:50:C6:D3:8B:EA:9A:4D Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 0193 Signing time: Sun 05 May 2024 04:49:02 +0000 Manifest this update: Sun 05 May 2024 04:49:02 +0000 Manifest next update: Sun 12 May 2024 04:49:02 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: mxrPpwtZP6NaL6F/fQ5DyUEVbHd/ZvrfAGA9rzlmLww=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: 9ZgcTHr/wiHrrO5IWgPJKdmWbiUzLY2mXCNS62wsgQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: May 5 04:49:02 2024 GMT Not After : May 12 04:49:02 2024 GMT Subject: CN=66370fbe-23a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:30:52:43:93:e7:96:7d:68:c8:e3:48:b0:05: 73:bb:a7:e3:76:42:36:b7:b1:b7:e6:4a:ee:87:67: 23:59:de:26:0c:23:a3:b1:05:dc:fb:9c:97:5c:2d: c6:2a:85:10:cb:28:06:7d:d3:c3:e4:23:fa:a1:26: 4b:a7:18:49:e3:de:4f:3d:98:93:d9:9a:ec:6b:38: dd:46:62:c9:95:32:25:fb:a8:5a:2d:70:76:dd:8b: 7c:cc:40:02:28:b3:89:84:1e:f0:4a:5e:db:2d:f4: 9c:87:0c:af:04:c5:25:21:29:bb:e8:1d:34:80:c9: 73:10:2c:98:8d:11:c7:e3:ec:56:15:92:93:3a:4d: 12:24:b3:17:9d:44:3f:63:2a:bc:41:1e:2b:35:1b: a8:73:75:81:53:3f:68:7b:73:0e:dc:98:b1:d3:57: 1e:b0:31:0e:eb:4c:b7:84:c5:9f:cf:b6:b7:29:02: ff:60:f3:f3:3b:ac:d6:b7:29:21:72:b1:3c:47:ad: de:8d:eb:7e:09:cf:7c:e2:d0:ed:9a:cf:b7:c0:23: d7:94:73:68:d3:f2:4c:2c:0d:d3:6c:77:fa:86:4f: 21:b8:d6:b1:3b:58:64:66:30:7c:7b:2f:71:7f:71: af:87:6f:85:93:2c:92:25:55:89:a2:af:ab:bf:4f: 4d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0D:B2:77:E0:8E:90:BD:12:78:A2:0B:C4:50:C6:D3:8B:EA:9A:4D X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:88:09:e2:a6:c9:2c:12:35:b1:f2:70:0f:4a:b5:c6:16:8b: bc:66:47:f4:26:f6:6a:4b:c8:b6:36:95:e0:a5:9c:b4:b0:45: f2:d4:97:ef:99:ab:4c:ff:80:ba:9c:b2:41:95:f5:69:e6:c8: cd:dd:99:8e:30:7f:1f:b4:39:b7:ea:19:26:c9:a6:84:08:c6: b3:4e:e3:89:92:c7:63:5c:46:62:1e:25:11:a8:a0:ba:5c:a3: 62:0f:c4:7f:fb:3d:fa:03:94:0e:e2:c2:b4:d8:13:56:ee:45: 9a:69:32:89:f5:3b:e8:ae:80:de:7e:92:19:db:62:32:a7:0a: ed:40:4a:11:af:92:74:c8:5d:e9:60:f9:c0:18:23:4f:da:33: 35:33:4b:cb:09:4e:64:4e:7c:20:bb:2e:e3:d4:52:37:8b:da: cf:1c:05:f4:ba:6d:c0:7f:d1:0d:b4:96:3c:d9:a6:f2:b8:c5: 8c:bc:c7:fa:d2:8d:78:65:49:17:51:56:b9:d5:38:75:00:97: 95:67:4a:01:44:80:5d:35:9e:66:4c:1f:b3:b6:b6:1a:07:f8: 3b:5f:f8:2e:ce:04:ea:b2:fe:00:d9:a1:28:0a:ba:3d:48:60: 62:8b:b6:9c:fd:56:ef:71:bb:50:60:66:a3:37:4b:65:02:a1: f4:6a:38:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjQwNTA1MDQ0OTAyWhcNMjQwNTEyMDQ0OTAyWjAYMRYwFAYD VQQDEw02NjM3MGZiZS0yM2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzBSQ5Pnln1oyONIsAVzu6fjdkI2t7G35kruh2cjWd4mDCOjsQXc+5yXXC3G KoUQyygGfdPD5CP6oSZLpxhJ495PPZiT2ZrsazjdRmLJlTIl+6haLXB23Yt8zEAC KLOJhB7wSl7bLfSchwyvBMUlISm76B00gMlzECyYjRHH4+xWFZKTOk0SJLMXnUQ/ Yyq8QR4rNRuoc3WBUz9oe3MO3Jix01cesDEO60y3hMWfz7a3KQL/YPPzO6zWtykh crE8R63ejet+Cc984tDtms+3wCPXlHNo0/JMLA3TbHf6hk8huNaxO1hkZjB8ey9x f3Gvh2+FkyySJVWJoq+rv09N2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUNsnfg jpC9EniiC8RQxtOL6ppNMB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkiAnipsksEjWx8nAPSrXGFou8Zkf0JvZqS8i2NpXgpZy0sEXy1Jfv matM/4C6nLJBlfVp5sjN3ZmOMH8ftDm36hkmyaaECMazTuOJksdjXEZiHiURqKC6 XKNiD8R/+z36A5QO4sK02BNW7kWaaTKJ9TvoroDefpIZ22IypwrtQEoRr5J0yF3p YPnAGCNP2jM1M0vLCU5kTnwguy7j1FI3i9rPHAX0um3Af9ENtJY82abyuMWMvMf6 0o14ZUkXUVa51Th1AJeVZ0oBRIBdNZ5mTB+ztrYaB/g7X/guzgTqsv4A2aEoCro9 SGBii7ac/VbvcbtQYGajN0tlAqH0ajhW -----END CERTIFICATE-----Generated at Sun May 5 05:30:50 2024 by rpki-client on console-ams.rpki-client.org