$ rpki-client -vvf rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft File: HJuixf6owDTaVR_a3GKlOnoC5ds.mft (raw, json) Hash identifier: a17AWg+XOK3xLKbAwhzoVbwGtuY53FsB5EbS6uDEc1A= Subject key identifier: 1D:A1:2E:9F:55:1A:60:30:44:20:87:19:24:33:93:F5:72:D1:39:5D Authority key identifier: 1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB Certificate issuer: /CN=A9193D86/serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Certificate serial: 089C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft Manifest number: 0886 Signing time: Mon 06 May 2024 21:41:49 +0000 Manifest this update: Mon 06 May 2024 21:41:48 +0000 Manifest next update: Mon 13 May 2024 21:41:48 +0000 Files and hashes: 1: HJuixf6owDTaVR_a3GKlOnoC5ds.crl (hash: rFKPtuoItVpWQlH0Uzu4xZOhPCH94JGwOK8pqnCe5Z4=) 2: 52FC6006A19911EA96035C38C4F9AE02.roa (hash: 8JarBK7cFNi3wxrqzAeRvovwaE0DF52SW6hGG5D25Fs=) 3: 7B136C42CC8511EC8D238672C4F9AE02.roa (hash: J+f3dwCvOOivEAhetYwrLWxmRiXuxOHKORGHMiGKpII=) 4: 79C02FB0CC8511EC8D238672C4F9AE02.roa (hash: IHxTj/kjFe5HZyXQNbFyqaD671GRT2bu6BXQhZ6tI0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2204 (0x89c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193D86/serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Validity Not Before: May 6 21:41:48 2024 GMT Not After : May 13 21:41:48 2024 GMT Subject: CN=66394e9c-2fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:71:88:fc:0e:52:5e:6f:15:b5:7e:d0:b3:68: 11:85:18:4f:70:72:37:0a:d1:4a:a0:94:ba:31:ad: b6:3c:72:48:63:fc:dc:9c:04:7b:47:c4:7f:4f:93: 3e:f6:49:ac:1e:24:86:12:b8:6c:88:18:17:1e:2a: ca:56:4b:44:76:aa:2d:e0:f7:63:e1:0b:76:86:7d: 36:d8:c0:98:6d:1c:27:51:cc:df:94:89:d4:aa:2d: d8:66:5c:57:5d:48:d4:a4:ea:0c:8c:51:00:4a:7b: 49:68:60:8a:f7:05:d0:a9:55:b7:63:6a:4a:1b:c4: f8:46:56:1d:6f:56:d6:b6:a4:d0:63:39:f5:07:d1: 34:6d:50:22:03:81:76:a2:40:59:a4:ec:ef:41:ac: f5:dd:90:1b:5e:14:54:1e:45:ac:e5:c2:af:c1:8a: 50:fa:33:b5:cf:00:d3:99:a8:a3:8b:fe:85:1a:5c: b8:b4:47:23:1a:0e:c7:65:26:86:ce:5b:05:1b:81: 1d:f6:76:75:c6:7f:ce:96:b3:d5:ef:87:60:d6:13: 58:19:e5:80:43:09:8c:38:df:56:99:77:19:91:75: e8:ad:7d:81:81:ab:75:e4:3b:ce:0c:cd:9e:ce:7a: 8d:23:c8:e4:0b:b6:77:95:6f:72:7d:0c:b6:2c:7e: e9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A1:2E:9F:55:1A:60:30:44:20:87:19:24:33:93:F5:72:D1:39:5D X509v3 Authority Key Identifier: keyid:1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d1:6c:66:48:5b:1a:ca:39:af:43:bb:25:2d:9c:fb:51:57: 22:9c:be:ff:27:d7:b4:98:d2:3d:de:02:3c:60:69:e9:ab:cf: 1e:52:00:3c:95:14:cc:4d:d9:5e:9e:1a:a4:05:1d:94:46:6d: f0:03:64:80:02:5f:d5:e2:2c:8b:db:4d:64:28:5b:c9:b1:28: fd:bf:88:56:e9:7c:d6:c4:ee:67:c0:4c:a9:32:b5:48:78:05: 56:44:35:25:32:d7:e4:b2:30:6b:24:04:9e:1e:89:00:eb:7a: d0:71:bb:af:99:77:91:6b:b8:87:1b:10:8b:b5:79:ce:8f:71: 9d:21:45:11:91:90:20:fe:10:1f:76:fc:f7:91:6d:54:b6:9d: 85:dd:5f:44:dc:73:6f:bf:d1:2f:9e:26:01:a9:1a:3b:74:b1: 11:2e:cf:f6:12:da:20:e4:f8:eb:e0:37:e2:88:d1:66:f1:bb: 4e:69:5d:75:9c:da:f4:57:e6:96:3a:54:8b:90:0c:c0:8b:da: 23:9e:c2:ab:a5:83:6b:95:dc:c7:5f:55:74:d2:15:d2:ab:14: 76:68:cf:db:fa:a9:ff:d2:1b:06:f0:aa:6a:c2:d7:dc:91:91: 17:2f:be:a1:75:7d:2e:31:4d:39:7e:d4:e1:5d:54:d5:bd:8e: 86:12:21:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNEODYxMTAvBgNVBAUTKDFDOUJBMkM1RkVBOEMwMzREQTU1MUZEQURDNjJBNTNB N0EwMkU1REIwHhcNMjQwNTA2MjE0MTQ4WhcNMjQwNTEzMjE0MTQ4WjAYMRYwFAYD VQQDEw02NjM5NGU5Yy0yZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXGI/A5SXm8VtX7Qs2gRhRhPcHI3CtFKoJS6Ma22PHJIY/zcnAR7R8R/T5M+ 9kmsHiSGErhsiBgXHirKVktEdqot4Pdj4Qt2hn022MCYbRwnUczflInUqi3YZlxX XUjUpOoMjFEASntJaGCK9wXQqVW3Y2pKG8T4RlYdb1bWtqTQYzn1B9E0bVAiA4F2 okBZpOzvQaz13ZAbXhRUHkWs5cKvwYpQ+jO1zwDTmaiji/6FGly4tEcjGg7HZSaG zlsFG4Ed9nZ1xn/OlrPV74dg1hNYGeWAQwmMON9WmXcZkXXorX2Bgat15DvODM2e znqNI8jkC7Z3lW9yfQy2LH7powIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2hLp9V GmAwRCCHGSQzk/Vy0TldMB8GA1UdIwQYMBaAFBybosX+qMA02lUf2txipTp6AuXb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0Q4Ni9DNjdEMTc2RTlB NUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dEVGFWUl9hM0dLbE9ub0M1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hKdWl4ZjZvd0RUYVZSX2EzR0tsT25vQzVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0Q4Ni9DNjdEMTc2RTlBNUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dE VGFWUl9hM0dLbE9ub0M1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj0WxmSFsayjmvQ7slLZz7UVcinL7/J9e0mNI93gI8YGnpq88eUgA8 lRTMTdlenhqkBR2URm3wA2SAAl/V4iyL201kKFvJsSj9v4hW6XzWxO5nwEypMrVI eAVWRDUlMtfksjBrJASeHokA63rQcbuvmXeRa7iHGxCLtXnOj3GdIUURkZAg/hAf dvz3kW1Utp2F3V9E3HNvv9EvniYBqRo7dLERLs/2Etog5Pjr4DfiiNFm8btOaV11 nNr0V+aWOlSLkAzAi9ojnsKrpYNrldzHX1V00hXSqxR2aM/b+qn/0hsG8Kpqwtfc kZEXL76hdX0uMU05ftThXVTVvY6GEiE5 -----END CERTIFICATE-----Generated at Mon May 6 22:40:59 2024 by rpki-client on console-ams.rpki-client.org