$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: JBhqQhtzqI3TlRAM8q/so3x3SxV+t/l2rPgcYPN4MUw= Subject key identifier: 9E:A9:F6:21:B3:84:25:2E:0D:07:4F:13:54:3D:BA:88:68:74:F3:78 Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 05AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 05A7 Signing time: Sun 19 May 2024 00:19:57 +0000 Manifest this update: Sun 19 May 2024 00:19:56 +0000 Manifest next update: Sun 26 May 2024 00:19:56 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: z0Dh5/lmymMK9oZTzAxUfvPydA8+hmJRanWU8Bfg00E=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: 2rbZP0hLoV0DMhY7TZ7xhr2TPtwlogIw6Hm7ii9B2vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1451 (0x5ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: May 19 00:19:56 2024 GMT Not After : May 26 00:19:56 2024 GMT Subject: CN=664945ad-81ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a2:a1:13:3d:4d:28:9a:dc:9c:ca:22:2b:bc: aa:ec:58:d4:4a:f0:7f:8b:2d:66:9f:ae:64:ec:bc: ab:62:fb:5d:39:0f:73:a6:5d:3d:f7:53:d6:9c:77: 93:bd:e0:d3:fe:c0:5d:49:33:ab:8a:63:0a:09:7a: 2a:6e:91:0c:6b:6f:ea:cb:4d:80:e1:18:c7:81:aa: cf:18:2c:0a:38:b1:99:4f:1e:07:ce:b6:6a:a9:61: 2f:f8:54:d7:2d:d7:c4:91:bf:9d:35:7f:0b:4c:8b: f3:42:46:86:10:65:d1:74:35:73:09:f4:61:c6:7a: 58:b1:d8:3f:4e:53:af:ce:4d:26:3c:b8:de:c0:5e: 47:5b:ee:dc:ef:b3:59:87:71:06:5d:ed:19:65:58: e2:a7:f6:d8:17:ff:f6:d3:db:3c:dc:76:6a:54:c4: f9:47:98:e3:d3:1b:58:91:25:6d:48:80:f4:d0:1a: 04:0f:e0:b0:78:d3:7f:7e:a7:87:12:54:40:a9:17: 9e:44:d5:11:fc:6c:dc:32:57:03:c5:9c:b6:f3:a9: 17:ef:e3:b9:ef:84:67:3f:b2:0b:92:74:43:d2:63: a6:09:da:32:45:25:7b:d2:ad:01:30:ff:90:d2:de: 84:f5:6d:10:ed:84:27:b3:80:bf:cd:8e:28:c7:3d: 09:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A9:F6:21:B3:84:25:2E:0D:07:4F:13:54:3D:BA:88:68:74:F3:78 X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:90:5b:14:40:7c:b2:c9:16:c6:8e:88:19:cb:ea:a1:81:a7: 19:7e:26:a9:62:a1:12:dc:a5:b1:79:9e:11:d8:41:c7:d3:f4: 6c:5a:bd:c7:4c:b5:c1:01:f8:00:35:05:70:59:d2:5d:1d:01: be:48:6c:4a:b1:2b:12:92:5e:e5:1b:f3:8d:7a:04:64:1f:87: c1:56:5c:c6:56:ba:ca:60:d6:08:a5:3a:fd:c1:b9:73:0c:a4: 18:75:16:15:16:7c:b9:31:21:a3:80:73:d3:f5:fa:c1:0b:61: a2:aa:28:94:8d:d3:00:df:22:7f:d5:cf:9f:e5:4b:d9:7b:f8: 3a:36:55:87:4e:39:84:01:20:53:f6:6f:8d:93:6f:e7:ea:cf: 12:33:7e:ef:b8:6c:4e:e4:2e:eb:27:0e:d8:9f:09:47:b3:d2: 4a:79:2a:e1:f1:ad:dc:ab:87:e9:78:4b:c8:52:0b:67:70:4d: 40:00:51:26:b6:c3:8a:80:18:6f:c1:b2:c3:11:74:74:2f:4e: 7a:aa:b5:5d:ef:9b:1e:a0:c4:5c:09:d0:b3:ca:92:98:b8:33: 8a:98:ba:38:f0:3d:df:72:2d:0f:92:88:de:86:87:1f:17:4f: 13:13:aa:00:57:1f:c2:54:ad:57:b3:01:7a:b7:89:07:e0:87: 40:d6:6c:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjQwNTE5MDAxOTU2WhcNMjQwNTI2MDAxOTU2WjAYMRYwFAYD VQQDEw02NjQ5NDVhZC04MWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKKhEz1NKJrcnMoiK7yq7FjUSvB/iy1mn65k7LyrYvtdOQ9zpl0991PWnHeT veDT/sBdSTOrimMKCXoqbpEMa2/qy02A4RjHgarPGCwKOLGZTx4HzrZqqWEv+FTX LdfEkb+dNX8LTIvzQkaGEGXRdDVzCfRhxnpYsdg/TlOvzk0mPLjewF5HW+7c77NZ h3EGXe0ZZVjip/bYF//209s83HZqVMT5R5jj0xtYkSVtSID00BoED+CweNN/fqeH ElRAqReeRNUR/GzcMlcDxZy286kX7+O574RnP7ILknRD0mOmCdoyRSV70q0BMP+Q 0t6E9W0Q7YQns4C/zY4oxz0JiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6p9iGz hCUuDQdPE1Q9uohodPN4MB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAkFsUQHyyyRbGjogZy+qhgacZfiapYqES3KWxeZ4R2EHH0/RsWr3H TLXBAfgANQVwWdJdHQG+SGxKsSsSkl7lG/ONegRkH4fBVlzGVrrKYNYIpTr9wblz DKQYdRYVFny5MSGjgHPT9frBC2GiqiiUjdMA3yJ/1c+f5UvZe/g6NlWHTjmEASBT 9m+Nk2/n6s8SM37vuGxO5C7rJw7YnwlHs9JKeSrh8a3cq4fpeEvIUgtncE1AAFEm tsOKgBhvwbLDEXR0L056qrVd75seoMRcCdCzypKYuDOKmLo48D3fci0Pkojehocf F08TE6oAVx/CVK1XswF6t4kH4IdA1mxE -----END CERTIFICATE-----Generated at Sun May 19 01:47:08 2024 by rpki-client on console-ams.rpki-client.org