$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: jDufgDLzq7iDiuO9Po+tSbB/A18nGirT6PP8q2M12Vc= Subject key identifier: 23:D7:7F:21:34:BE:2B:74:FD:8E:EE:85:4D:33:5F:D4:B6:14:A2:F7 Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 1710 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 16FE Signing time: Sat 18 May 2024 17:05:43 +0000 Manifest this update: Sat 18 May 2024 17:05:42 +0000 Manifest next update: Sat 25 May 2024 17:05:42 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: byQjlQNKL/0KI4l9A/PV+oocK1v9Fgr6/aYlDA8oE4M=) 2: 5B0DB65CEFD111EE92D9454EC4F9AE02.roa (hash: 76S4aRaU2ID0XEuOdvsRZUSO3+93Lw6OX8h1XQVhKbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5904 (0x1710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: May 18 17:05:42 2024 GMT Not After : May 25 17:05:42 2024 GMT Subject: CN=6648dfe6-c251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:20:39:a0:4b:24:b8:28:e9:44:72:2e:e4:a1: 11:1d:e8:4f:06:02:c8:6b:59:c4:a5:be:a8:e1:05: c8:ae:da:18:aa:f6:44:4a:51:a3:2d:4e:47:8a:73: 95:f1:11:c5:2c:af:cb:f1:0c:9a:d4:5b:df:a6:0c: b3:04:6f:12:37:12:89:a7:d4:8c:ea:ef:05:15:09: 8d:6b:e3:6c:c2:ab:a5:f5:0f:68:c2:53:ac:b6:9d: e4:bd:bb:6f:85:5e:4d:fb:eb:46:8b:ec:cc:9a:db: ec:f3:10:07:0c:a6:50:ef:39:ce:f7:db:85:17:2b: 7a:28:57:29:c8:91:db:84:23:18:6e:b8:25:b3:fa: 79:cb:90:f2:38:bf:65:11:04:62:32:9e:e9:6c:59: 47:8f:03:7c:78:33:50:86:7e:5e:40:f1:ef:4b:1a: d6:00:fe:4c:29:c0:1b:99:f5:59:a9:5b:f8:01:79: ea:0c:69:61:ea:59:fc:a9:ba:43:00:04:9d:66:0f: 3f:dd:eb:7f:0e:75:b0:92:1e:06:c0:b5:6d:30:15: 46:42:ce:18:f9:ea:72:b7:ea:e1:e6:84:ad:ec:78: 27:b2:90:94:f8:00:77:3b:25:98:2b:01:9e:dd:96: 33:61:5c:e3:56:51:f8:04:8d:cb:b9:d4:1e:b8:b0: fb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D7:7F:21:34:BE:2B:74:FD:8E:EE:85:4D:33:5F:D4:B6:14:A2:F7 X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:c1:0e:9f:c2:df:43:02:0a:35:4d:23:c2:20:f3:20:26:03: b8:7e:bc:47:db:3b:5f:7c:2c:2a:32:88:0d:7f:1f:ff:8a:8e: f7:c3:2d:0f:5e:83:3d:5b:96:a0:6d:83:42:6b:b7:4f:6d:77: 30:4d:8f:11:01:2d:6d:4f:a2:3f:62:97:bc:6d:41:0c:a0:e7: b4:e2:2a:43:82:78:88:61:29:0c:aa:64:36:ad:6d:93:f1:29: 50:4f:6c:0e:8d:2e:19:4b:ff:7e:d5:23:7c:35:99:e9:52:05: fc:a1:4f:cc:24:3c:73:0e:0e:7e:45:96:7f:a7:c8:ab:f9:28: be:e6:2f:4c:06:33:3c:bc:69:a0:4a:de:83:66:fc:e9:91:0d: 25:43:34:c1:8b:40:91:09:6b:44:7d:ed:9f:d4:4c:43:57:d9: 72:5c:69:40:c5:39:52:3e:79:db:f7:40:cc:9b:be:a8:12:68: a6:d1:0d:6d:8c:05:a6:70:8f:ea:29:48:58:1e:a5:31:a9:36: 28:27:7f:70:a1:0c:56:63:3b:76:43:39:30:a5:cc:27:7c:d0: 46:63:74:58:dc:f5:a2:35:24:f0:60:33:7b:51:06:d9:3a:95: 36:14:b0:e5:85:29:d8:cf:cd:96:0e:31:cc:13:42:23:20:ca: a0:5d:aa:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjQwNTE4MTcwNTQyWhcNMjQwNTI1MTcwNTQyWjAYMRYwFAYD VQQDEw02NjQ4ZGZlNi1jMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSA5oEskuCjpRHIu5KERHehPBgLIa1nEpb6o4QXIrtoYqvZESlGjLU5HinOV 8RHFLK/L8Qya1FvfpgyzBG8SNxKJp9SM6u8FFQmNa+Nswqul9Q9owlOstp3kvbtv hV5N++tGi+zMmtvs8xAHDKZQ7znO99uFFyt6KFcpyJHbhCMYbrgls/p5y5DyOL9l EQRiMp7pbFlHjwN8eDNQhn5eQPHvSxrWAP5MKcAbmfVZqVv4AXnqDGlh6ln8qbpD AASdZg8/3et/DnWwkh4GwLVtMBVGQs4Y+epyt+rh5oSt7HgnspCU+AB3OyWYKwGe 3ZYzYVzjVlH4BI3LudQeuLD7cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPXfyE0 vit0/Y7uhU0zX9S2FKL3MB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAewQ6fwt9DAgo1TSPCIPMgJgO4frxH2ztffCwqMogNfx//io73wy0P XoM9W5agbYNCa7dPbXcwTY8RAS1tT6I/Ype8bUEMoOe04ipDgniIYSkMqmQ2rW2T 8SlQT2wOjS4ZS/9+1SN8NZnpUgX8oU/MJDxzDg5+RZZ/p8ir+Si+5i9MBjM8vGmg St6DZvzpkQ0lQzTBi0CRCWtEfe2f1ExDV9lyXGlAxTlSPnnb90DMm76oEmim0Q1t jAWmcI/qKUhYHqUxqTYoJ39woQxWYzt2QzkwpcwnfNBGY3RY3PWiNSTwYDN7UQbZ OpU2FLDlhSnYz82WDjHME0IjIMqgXaqO -----END CERTIFICATE-----Generated at Sat May 18 18:21:35 2024 by rpki-client on console-ams.rpki-client.org