$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: hmK9ukOMS0IiYN98cHuk0kDtp/rMHN9P1NlU85yS5Ec= Subject key identifier: 46:A6:3F:E8:43:33:BD:E0:2A:D2:D6:F0:54:F9:47:E2:A1:3D:1B:8D Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 02A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 0297 Signing time: Sat 27 Apr 2024 03:32:43 +0000 Manifest this update: Sat 27 Apr 2024 03:32:42 +0000 Manifest next update: Sat 04 May 2024 03:32:42 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: pqpr+SggqJz6dtKAMK8qAi82eYMpw126Z1RdZMbvOhA=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: Y2n2BjZK7YcDbJf+OeJwUoZderld4t4C424W9hVCQCo=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: gSJIRhvkvsqzVWI/PIM9ZJldSrE3+tHguZhTA6U0IhA=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: E8TF17FZ+hElw8daIlNLJu6deo+xubevfbPk03QKuzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Apr 27 03:32:42 2024 GMT Not After : May 4 03:32:42 2024 GMT Subject: CN=662c71da-2af9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:9e:9d:49:66:2c:87:97:58:83:41:99:77:a4: 12:14:5c:62:2b:0b:28:39:0d:2a:e1:6c:23:1f:38: f1:c7:98:f7:07:d5:f2:ae:37:17:14:7d:d5:01:e8: 3d:6f:54:d0:13:80:f4:13:e6:1a:9c:8c:ea:8f:0b: e1:81:70:ae:f8:ff:c0:0b:c3:bc:ee:c7:f6:69:fb: e2:b6:22:e1:39:96:71:e1:23:96:03:1b:5a:b6:08: f1:e1:c5:c6:f4:c0:3c:ba:8d:cf:2e:4a:b9:1a:7c: e8:3e:0c:a3:fe:51:91:ca:36:82:90:fc:ac:d6:29: e7:59:10:4f:cd:2f:e9:9e:7a:90:58:74:27:ed:94: f1:36:23:17:4a:5a:2b:76:8f:70:8e:58:ed:82:fa: a3:22:bc:fa:91:2e:47:72:fa:61:eb:f1:4e:ae:9c: 49:36:d6:a1:89:73:14:bf:7b:dd:7a:4b:05:08:6b: f7:94:0d:43:d0:6e:c8:f5:34:0a:7d:80:c1:05:71: 59:49:50:b3:a2:9f:05:43:9c:61:18:ff:26:8b:7a: 4b:5e:2a:e1:e8:6c:4a:c1:2e:d8:2e:78:9d:87:06: 72:1b:8f:47:19:1a:2d:38:0f:50:22:d1:c5:f9:64: 0b:1f:16:7e:24:9b:a7:2b:9d:ea:f3:f7:54:89:ed: 60:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A6:3F:E8:43:33:BD:E0:2A:D2:D6:F0:54:F9:47:E2:A1:3D:1B:8D X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a2:22:eb:c0:47:fe:6a:68:79:d1:d5:83:76:13:4d:fd:5b: 91:72:28:6e:ac:5f:83:5a:5e:66:58:d1:3f:16:03:37:01:85: 2d:c8:9a:be:d4:7d:b1:27:ee:ea:73:de:89:2c:7a:a2:b5:0d: b7:ad:63:b5:a5:8b:56:33:f2:c5:d3:d0:4d:a2:7a:c2:cd:f5: 87:da:f1:9b:e5:e8:05:68:c6:5c:7c:a4:b9:91:f0:0e:8d:e1: 94:ca:af:13:9d:d9:f2:9d:71:8c:9c:51:78:f7:c2:35:14:0f: 92:d9:53:c9:15:29:14:db:7c:ba:91:74:b3:e7:58:ae:a2:0a: 9a:d9:20:8e:d4:99:3a:31:e3:18:54:b0:96:f1:28:17:f5:68: 0a:b0:53:a8:83:86:25:05:6e:3e:a5:43:e9:c9:f0:66:71:13: e1:15:58:5e:f3:ea:76:8e:8d:d4:de:24:2b:c2:6a:8c:d9:0b: ae:cd:f7:29:70:b9:aa:39:c3:41:26:71:5d:4c:57:30:81:b6: 2c:7b:74:9c:d5:30:36:3f:89:7e:d9:e0:c8:15:e9:42:90:09: b1:4b:66:72:87:60:29:7a:70:18:ce:0b:ae:b3:dc:9e:2c:6c: 98:24:d1:ae:a9:49:a8:4e:02:f8:3b:02:e2:35:b0:34:8b:b0: 17:ee:59:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjQwNDI3MDMzMjQyWhcNMjQwNTA0MDMzMjQyWjAYMRYwFAYD VQQDEw02NjJjNzFkYS0yYWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6p6dSWYsh5dYg0GZd6QSFFxiKwsoOQ0q4WwjHzjxx5j3B9XyrjcXFH3VAeg9 b1TQE4D0E+YanIzqjwvhgXCu+P/AC8O87sf2afvitiLhOZZx4SOWAxtatgjx4cXG 9MA8uo3PLkq5GnzoPgyj/lGRyjaCkPys1innWRBPzS/pnnqQWHQn7ZTxNiMXSlor do9wjljtgvqjIrz6kS5Hcvph6/FOrpxJNtahiXMUv3vdeksFCGv3lA1D0G7I9TQK fYDBBXFZSVCzop8FQ5xhGP8mi3pLXirh6GxKwS7YLnidhwZyG49HGRotOA9QItHF +WQLHxZ+JJunK53q8/dUie1glQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEamP+hD M73gKtLW8FT5R+KhPRuNMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKoiLrwEf+amh50dWDdhNN/VuRcihurF+DWl5mWNE/FgM3AYUtyJq+ 1H2xJ+7qc96JLHqitQ23rWO1pYtWM/LF09BNonrCzfWH2vGb5egFaMZcfKS5kfAO jeGUyq8TndnynXGMnFF498I1FA+S2VPJFSkU23y6kXSz51iuogqa2SCO1Jk6MeMY VLCW8SgX9WgKsFOog4YlBW4+pUPpyfBmcRPhFVhe8+p2jo3U3iQrwmqM2Quuzfcp cLmqOcNBJnFdTFcwgbYse3Sc1TA2P4l+2eDIFelCkAmxS2Zyh2ApenAYzguus9ye LGyYJNGuqUmoTgL4OwLiNbA0i7AX7lnU -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:52 2024 by rpki-client on console-ams.rpki-client.org