$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: HnBMpzq+kHrDBc3TsuZ/hNGS7HTFa9UcxnBsOgjKP0k= Subject key identifier: 23:96:20:3B:8C:8D:A6:E0:63:9F:E5:CD:A8:E0:DE:B4:96:F8:52:7B Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0B6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0B61 Signing time: Tue 30 Apr 2024 19:55:00 +0000 Manifest this update: Tue 30 Apr 2024 19:55:00 +0000 Manifest next update: Tue 07 May 2024 19:55:00 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: 2qIKvRm6+kL5OM1ZnBKTi0k/q90GzYBUs0AgpUIax4Y=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: eYGljnryFLeKq5KJduqVaf7xJpDCtcvFC1IfiKxMpf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2922 (0xb6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Apr 30 19:55:00 2024 GMT Not After : May 7 19:55:00 2024 GMT Subject: CN=66314c94-5b7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f6:11:12:91:83:53:dd:3b:65:5a:93:9b:ad: f8:6f:80:25:f5:a8:e3:ea:cb:c6:68:f1:ea:2c:84: b1:7c:a9:6d:b2:d5:9b:11:df:7e:9d:fe:9b:85:cb: 8a:82:bb:e4:25:9a:ca:f4:7d:e8:56:b1:70:04:26: e9:f8:13:87:86:39:bc:7e:c8:2c:37:fa:23:71:5a: d8:06:4b:1a:39:4d:3f:6e:fe:a4:60:aa:5a:de:f1: f5:c2:38:1c:83:bd:6e:c4:30:3d:58:23:cb:e0:b7: 6f:0c:f6:da:96:af:ec:f9:78:a5:2d:3f:c8:9e:32: cc:85:85:1a:ce:3f:3c:9f:d6:81:ad:ff:a5:9a:0a: 80:45:2e:a9:98:2a:bf:f4:63:de:5c:22:c1:df:c8: b0:75:b0:f7:48:ba:54:30:94:51:6a:ba:08:78:6b: 71:58:da:c0:f9:60:d3:93:e8:9e:5e:1f:ab:74:30: 1d:7c:f6:1f:5d:e1:22:c0:e1:0f:f7:59:fa:d5:54: ce:9b:5f:2f:c6:7b:f1:ec:53:ec:ba:84:38:93:df: 32:dc:29:56:9f:f2:9e:fd:66:5c:11:02:b7:8f:08: 91:86:b4:ad:03:d7:8c:ef:ad:09:52:56:cd:f5:80: dd:2f:86:9a:ad:bb:e4:8f:96:55:45:7c:d4:ed:f0: 51:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:96:20:3B:8C:8D:A6:E0:63:9F:E5:CD:A8:E0:DE:B4:96:F8:52:7B X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:47:f5:c2:35:43:e5:87:c5:f9:8a:6c:1e:3f:df:86:2d:7c: 33:26:79:5b:73:03:d4:37:72:f6:89:fe:38:13:6f:6a:e3:8a: 96:91:ab:f9:da:f5:05:64:8e:b0:63:54:34:7d:31:73:64:37: 15:bf:97:da:8d:7d:92:d0:a3:b7:c2:f1:87:ca:de:ba:31:b8: d1:73:4c:9d:d6:da:1f:df:8d:b7:37:d3:62:01:e9:32:b5:85: e5:d7:47:d1:73:b8:3b:31:e1:c1:9a:8d:d7:d1:d4:cb:57:e2: 13:f8:46:61:1c:73:be:83:81:c8:3d:36:ba:f3:e3:9a:84:20: 75:30:42:cf:66:8b:17:ff:1c:af:2a:d5:63:32:3d:3c:22:0e: ba:cb:a9:95:04:ed:07:e0:61:56:34:ab:f6:27:12:5b:d0:0b: 89:02:d8:19:da:b6:52:5a:2e:fe:fe:8b:38:85:37:f3:ca:24: 52:23:23:00:92:d8:0a:de:26:2e:07:02:48:66:28:13:35:a0: 30:8c:3a:dd:ac:d3:66:bc:0c:bc:13:d0:bb:ed:56:fb:fd:c0: c0:ba:35:51:fb:e8:e9:c0:85:47:6d:ad:2b:9a:ad:90:e5:f6: 2a:cd:30:c1:b0:11:4f:4a:21:71:e7:87:af:ff:7d:04:b4:e4: ed:c1:a6:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjQwNDMwMTk1NTAwWhcNMjQwNTA3MTk1NTAwWjAYMRYwFAYD VQQDEw02NjMxNGM5NC01YjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvYREpGDU907ZVqTm634b4Al9ajj6svGaPHqLISxfKltstWbEd9+nf6bhcuK grvkJZrK9H3oVrFwBCbp+BOHhjm8fsgsN/ojcVrYBksaOU0/bv6kYKpa3vH1wjgc g71uxDA9WCPL4LdvDPbalq/s+XilLT/InjLMhYUazj88n9aBrf+lmgqARS6pmCq/ 9GPeXCLB38iwdbD3SLpUMJRRaroIeGtxWNrA+WDTk+ieXh+rdDAdfPYfXeEiwOEP 91n61VTOm18vxnvx7FPsuoQ4k98y3ClWn/Ke/WZcEQK3jwiRhrStA9eM760JUlbN 9YDdL4aarbvkj5ZVRXzU7fBRYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOWIDuM jabgY5/lzajg3rSW+FJ7MB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRR/XCNUPlh8X5imweP9+GLXwzJnlbcwPUN3L2if44E29q44qWkav5 2vUFZI6wY1Q0fTFzZDcVv5fajX2S0KO3wvGHyt66MbjRc0yd1tof3423N9NiAeky tYXl10fRc7g7MeHBmo3X0dTLV+IT+EZhHHO+g4HIPTa68+OahCB1MELPZosX/xyv KtVjMj08Ig66y6mVBO0H4GFWNKv2JxJb0AuJAtgZ2rZSWi7+/os4hTfzyiRSIyMA ktgK3iYuBwJIZigTNaAwjDrdrNNmvAy8E9C77Vb7/cDAujVR++jpwIVHba0rmq2Q 5fYqzTDBsBFPSiFx54ev/30EtOTtwaaF -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:58 2024 by rpki-client on console-ams.rpki-client.org