$ rpki-client -vvf rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft File: h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft (raw, json) Hash identifier: dBow4/gq9p0KlTmMxfNmbj3idKlsRg8AsYFIGh4Tiik= Subject key identifier: 8E:0C:DB:D2:92:3E:23:3C:70:B4:7A:10:C6:E6:92:89:7B:3F:AA:10 Authority key identifier: 87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B Certificate issuer: /CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Certificate serial: 0AD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft Manifest number: 0ACE Signing time: Thu 02 May 2024 20:11:07 +0000 Manifest this update: Thu 02 May 2024 20:11:07 +0000 Manifest next update: Thu 09 May 2024 20:11:07 +0000 Files and hashes: 1: h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl (hash: 6M6g1WAlCRB8fyvILrFzTEbDylc+XOidgANZ6guomQI=) 2: 0D22F748261A11EA83CE8D17C4F9AE02.roa (hash: QKMiKL/JeBGCPPoVnZJlvG2i/9OQBNeXlmRuNI0W64g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2771 (0xad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Validity Not Before: May 2 20:11:07 2024 GMT Not After : May 9 20:11:07 2024 GMT Subject: CN=6633f35b-30e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:14:5a:e3:b9:49:5d:a6:c6:fe:f5:6f:b3:b8: 7c:48:5d:ef:c3:c8:9a:54:b7:3b:2a:59:8b:8f:ec: 18:5e:3a:45:97:03:47:56:62:4d:c0:20:62:93:bf: 5f:6b:64:57:26:47:7b:13:33:95:31:76:66:cd:2f: 12:21:c8:88:21:dc:e1:f3:98:cb:11:3e:d7:42:ca: fa:7e:d0:72:32:e1:3b:de:57:5d:9c:59:14:06:4b: d9:c4:49:23:7a:69:c6:b0:ce:1a:d3:2b:4a:96:14: 8d:ba:15:66:91:ca:b8:e9:16:52:aa:8b:0e:11:93: ed:87:4a:16:24:75:5b:67:d7:7e:ea:e3:0a:3e:7c: 3c:57:cc:88:86:10:c7:ad:02:2d:4c:7f:84:8f:a0: 6a:39:98:5d:e4:67:db:16:09:3d:8b:2f:36:19:06: 1a:ed:93:96:73:4a:2c:6d:f3:7b:3e:33:69:21:e7: 37:88:5a:f7:6e:a2:61:ec:53:68:0b:f1:73:57:ca: 0b:b8:4b:d8:d9:aa:26:52:5e:6e:2b:71:5e:0a:0a: a0:d6:9b:d2:e7:b6:76:ef:33:9d:e5:ac:fd:6c:c9: 9c:52:48:55:32:58:17:4a:b8:f0:06:14:fa:86:f9: 1e:de:8d:cc:56:88:b5:67:41:06:ad:34:d9:85:04: 2a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:0C:DB:D2:92:3E:23:3C:70:B4:7A:10:C6:E6:92:89:7B:3F:AA:10 X509v3 Authority Key Identifier: keyid:87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:00:ec:80:82:70:a3:a5:7a:07:f7:57:3e:11:e3:42:c6:e9: 1e:44:e2:f0:a6:a9:0a:00:aa:8a:79:8f:23:ef:db:ad:a9:ab: 65:e5:a8:e8:f0:cc:a1:25:f1:3d:78:61:39:c6:e0:70:c9:0b: 74:cf:98:62:d8:3b:51:16:c1:20:7a:d4:40:91:39:4f:67:c9: b4:eb:d5:0b:20:09:ab:42:87:2d:9a:16:a4:ca:79:9a:76:f8: ff:38:c6:b7:3e:d8:24:81:d2:1d:10:4c:65:c4:cd:63:10:bd: 51:95:4a:f4:17:9e:e0:cc:77:70:ed:ba:0e:51:ca:a9:54:b2: f0:9f:4c:7e:f3:c5:82:f0:ac:f8:e4:d9:73:00:6f:f1:fc:07: 83:d3:b0:b1:60:c0:a1:7d:f4:f9:9c:ae:c9:d1:f1:7b:fe:76: ef:99:aa:64:24:57:d2:41:22:84:98:46:a7:2a:2e:14:34:50: 41:54:a0:c3:63:84:1f:b1:93:80:5a:16:1e:e9:4e:d4:8e:14: c1:2b:aa:33:b5:f8:53:5a:cb:a4:aa:07:69:87:bf:42:69:8e: 0c:e3:1f:66:9c:a4:55:57:31:a9:ab:4f:c0:1e:38:9f:b1:04: 70:ac:15:90:2e:08:d0:aa:5c:01:64:88:55:ee:ea:9d:58:fb: 57:49:82:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNUMxMTAvBgNVBAUTKDg3OEI4Njg2OTVGQzQ1QzlDNjNCNkZCQzU0Q0NCMzUw OUM0QjlGNEIwHhcNMjQwNTAyMjAxMTA3WhcNMjQwNTA5MjAxMTA3WjAYMRYwFAYD VQQDEw02NjMzZjM1Yi0zMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9xRa47lJXabG/vVvs7h8SF3vw8iaVLc7KlmLj+wYXjpFlwNHVmJNwCBik79f a2RXJkd7EzOVMXZmzS8SIciIIdzh85jLET7XQsr6ftByMuE73lddnFkUBkvZxEkj emnGsM4a0ytKlhSNuhVmkcq46RZSqosOEZPth0oWJHVbZ9d+6uMKPnw8V8yIhhDH rQItTH+Ej6BqOZhd5GfbFgk9iy82GQYa7ZOWc0osbfN7PjNpIec3iFr3bqJh7FNo C/FzV8oLuEvY2aomUl5uK3FeCgqg1pvS57Z27zOd5az9bMmcUkhVMlgXSrjwBhT6 hvke3o3MVoi1Z0EGrTTZhQQqNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4M29KS PiM8cLR6EMbmkol7P6oQMB8GA1UdIwQYMBaAFIeLhoaV/EXJxjtvvFTMs1CcS59L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM1Qy81MkZDNkI5ODI2 MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJjbkdPMi04Vk15elVKeExu MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g0dUdocFg4UmNuR08yLThWTXl6VUp4TG4wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTM1Qy81MkZDNkI5ODI2MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJj bkdPMi04Vk15elVKeExuMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3AOyAgnCjpXoH91c+EeNCxukeROLwpqkKAKqKeY8j79utqatl5ajo 8MyhJfE9eGE5xuBwyQt0z5hi2DtRFsEgetRAkTlPZ8m069ULIAmrQoctmhakynma dvj/OMa3PtgkgdIdEExlxM1jEL1RlUr0F57gzHdw7boOUcqpVLLwn0x+88WC8Kz4 5NlzAG/x/AeD07CxYMChffT5nK7J0fF7/nbvmapkJFfSQSKEmEanKi4UNFBBVKDD Y4QfsZOAWhYe6U7UjhTBK6oztfhTWsukqgdph79CaY4M4x9mnKRVVzGpq0/AHjif sQRwrBWQLgjQqlwBZIhV7uqdWPtXSYIq -----END CERTIFICATE-----Generated at Thu May 2 22:28:52 2024 by rpki-client on console-ams.rpki-client.org