$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: eYPsdKzwYPS48VYDYW9a0Yc54UoG49Xc8dD4eyncPvU= Subject key identifier: 76:7C:9D:B6:3E:26:36:22:07:EE:E3:8A:1D:B9:D5:BE:3F:EE:78:4C Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: B8 Signing time: Wed 01 May 2024 06:47:46 +0000 Manifest this update: Wed 01 May 2024 06:47:45 +0000 Manifest next update: Wed 08 May 2024 06:47:45 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: f1/x/rW6r5c0iA5XsZpJ3MjjI/Mt6xZQyp+tVWDLIj8=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: PlDX7f6npPBBb8zs0MYAaQuFOPsPasxz/dDhct2tCFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: May 1 06:47:45 2024 GMT Not After : May 8 06:47:45 2024 GMT Subject: CN=6631e591-5be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:15:6d:7c:e0:26:5e:84:3f:d4:19:c7:05:3d: dd:11:2a:ff:1e:c4:4b:58:fc:b5:d9:97:76:da:b6: f8:f1:da:7c:3e:8a:0e:3a:d4:51:82:8a:3a:ef:43: 62:f5:ba:e5:d6:69:07:97:06:6b:e7:be:62:92:a9: db:5d:a2:c0:68:a4:81:7e:d2:88:cb:1b:bb:5a:28: 7c:f0:8c:b5:56:d7:b2:68:6a:1e:b5:a4:dd:29:80: ed:74:9b:16:c7:a5:86:9f:84:be:02:3e:33:27:0f: 20:11:b4:b4:b7:64:a3:86:4f:16:fa:b0:2b:0c:55: 32:34:97:f0:e5:47:8f:7a:11:18:6a:91:dd:cb:e6: 55:7f:8f:56:12:03:0c:22:fd:b7:22:13:c2:61:41: 1c:75:40:a0:b9:ac:6a:1f:cc:2c:f0:c7:b1:ad:39: 68:f2:e6:9e:c6:b2:1f:a5:10:e6:7b:e6:05:1b:e4: d5:39:a8:cf:dd:4b:c2:4c:00:0f:b7:89:f6:89:33: 3f:b9:f8:64:83:a6:61:3e:ad:20:9c:3a:b4:e7:0a: d8:cf:52:69:6e:ec:25:04:77:a9:6a:90:cb:e8:90: fb:4c:3a:ea:1a:2a:c9:e7:93:cc:dd:d2:b8:91:73: 80:67:f0:1e:7f:38:42:4a:54:b8:82:db:bf:a0:81: d5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7C:9D:B6:3E:26:36:22:07:EE:E3:8A:1D:B9:D5:BE:3F:EE:78:4C X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:a7:f9:d1:b2:6c:60:ea:b7:ce:db:28:78:d1:2f:fb:54:61: 32:c9:17:be:56:7c:17:60:c5:f8:e0:d9:8f:f2:91:b2:33:59: de:1d:68:eb:e9:4e:20:53:c9:4b:d7:c2:5f:65:95:9f:f7:b4: 45:60:e2:cc:7a:0b:3f:38:30:cc:18:49:4e:39:fa:20:5c:7a: 61:cc:a9:6d:11:74:b1:5b:44:82:5b:51:ac:53:10:95:54:b3: 05:a1:b0:ea:b6:ff:a1:57:e4:d9:4d:7d:8a:af:cd:07:c4:b2: 99:c6:03:a8:bd:ec:bb:c3:4f:ca:7a:0a:4d:b5:38:8a:45:16: ba:75:bb:3b:21:54:a2:04:2d:1e:d1:ce:db:dc:33:a0:5f:59: ec:db:eb:ce:aa:b5:9a:39:00:11:4c:03:01:aa:49:83:30:95: af:11:c6:9d:70:d3:5a:3f:5c:ca:27:75:f0:33:4d:fe:93:c3: eb:dd:df:65:fd:ac:28:15:f0:b3:ad:2d:06:81:d6:fb:f7:71: c4:4a:9e:c9:5d:0c:56:8f:18:37:c3:e7:3f:5d:40:51:a6:a4: 72:fe:57:11:9f:38:51:41:a2:77:a4:0c:8e:f6:a0:dc:49:c2: db:ef:a7:7a:79:21:16:68:54:9e:84:05:9b:bc:d4:e6:0e:b6: 85:29:7e:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjQwNTAxMDY0NzQ1WhcNMjQwNTA4MDY0NzQ1WjAYMRYwFAYD VQQDEw02NjMxZTU5MS01YmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBVtfOAmXoQ/1BnHBT3dESr/HsRLWPy12Zd22rb48dp8PooOOtRRgoo670Ni 9brl1mkHlwZr575ikqnbXaLAaKSBftKIyxu7Wih88Iy1VteyaGoetaTdKYDtdJsW x6WGn4S+Aj4zJw8gEbS0t2Sjhk8W+rArDFUyNJfw5UePehEYapHdy+ZVf49WEgMM Iv23IhPCYUEcdUCguaxqH8ws8MexrTlo8uaexrIfpRDme+YFG+TVOajP3UvCTAAP t4n2iTM/ufhkg6ZhPq0gnDq05wrYz1JpbuwlBHepapDL6JD7TDrqGirJ55PM3dK4 kXOAZ/AefzhCSlS4gtu/oIHVFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZ8nbY+ JjYiB+7jih251b4/7nhMMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJp/nRsmxg6rfO2yh40S/7VGEyyRe+VnwXYMX44NmP8pGyM1neHWjr 6U4gU8lL18JfZZWf97RFYOLMegs/ODDMGElOOfogXHphzKltEXSxW0SCW1GsUxCV VLMFobDqtv+hV+TZTX2Kr80HxLKZxgOovey7w0/KegpNtTiKRRa6dbs7IVSiBC0e 0c7b3DOgX1ns2+vOqrWaOQARTAMBqkmDMJWvEcadcNNaP1zKJ3XwM03+k8Pr3d9l /awoFfCzrS0Ggdb793HESp7JXQxWjxg3w+c/XUBRpqRy/lcRnzhRQaJ3pAyO9qDc ScLb76d6eSEWaFSehAWbvNTmDraFKX7Y -----END CERTIFICATE-----Generated at Wed May 1 07:23:55 2024 by rpki-client on console-ams.rpki-client.org