$ rpki-client -vvf rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft File: hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft (raw, json) Hash identifier: v1TF/PZ6zJzMavt7SVjQH2ZU6b6Fza0c/t+DP/gFRyo= Subject key identifier: 44:93:59:06:FB:EB:D8:BB:70:23:5D:B3:ED:8C:BA:FB:C4:CE:F3:CA Authority key identifier: 84:01:8C:08:3D:10:A3:9E:7F:68:5C:41:AE:16:63:70:C6:D7:7A:C4 Certificate issuer: /CN=A91505AB/serialNumber=84018C083D10A39E7F685C41AE166370C6D77AC4 Certificate serial: 195F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft Manifest number: 1958 Signing time: Sat 18 May 2024 16:50:04 +0000 Manifest this update: Sat 18 May 2024 16:50:03 +0000 Manifest next update: Sat 25 May 2024 16:50:03 +0000 Files and hashes: 1: hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl (hash: LoMveNcIgkIpUcJoCSyhCrDnBR8aWOYtI7pn9J2VUBM=) 2: 4EF483C64C2911E78BF1BD13C4F9AE02.roa (hash: lhYjkYX48EAOPGwCwfPUmR5+db5sh8Tgjli3M+dKoJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6495 (0x195f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91505AB/serialNumber=84018C083D10A39E7F685C41AE166370C6D77AC4 Validity Not Before: May 18 16:50:03 2024 GMT Not After : May 25 16:50:03 2024 GMT Subject: CN=6648dc3c-8f0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0c:ad:b8:75:89:e8:85:80:7e:9d:bd:1d:39: 5d:40:82:63:ab:76:05:69:06:fd:ad:df:03:ae:2b: 8e:bc:d4:37:3f:d0:6a:6f:fd:79:98:4f:a1:15:2a: 06:f6:05:92:2c:ec:d8:5f:3c:26:1d:80:79:b0:15: fb:30:01:ca:79:a3:af:95:8c:05:f9:8d:b4:cd:38: 8c:98:1b:9a:c8:71:95:88:25:6e:bb:e9:83:7f:37: 89:8d:87:29:6f:63:77:0f:cf:bc:ab:93:98:ca:59: f4:df:5c:09:28:a1:dd:7c:24:29:fb:8d:cc:6d:07: 5c:60:2b:f8:e5:f5:c7:9d:52:16:58:18:f2:49:6b: a7:c4:df:8d:9c:73:a8:c4:11:cf:e4:fe:57:6c:7d: 16:df:dc:19:23:77:aa:bf:f3:e6:5f:18:c4:b1:6d: 66:11:a7:3f:e3:7c:d8:bc:3f:dc:a3:67:48:f2:88: a4:76:cc:44:af:33:dd:22:08:5c:76:be:de:3f:9e: 39:36:1a:48:06:a5:8b:ae:07:46:32:4f:2a:00:49: 72:84:01:3d:a5:fa:68:05:41:08:7d:29:c0:7c:46: c3:53:af:4e:ab:00:80:a3:45:c1:6a:62:cd:15:9c: ee:3b:b7:d6:a6:83:4c:c2:8e:30:cc:be:00:7f:f6: d1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:93:59:06:FB:EB:D8:BB:70:23:5D:B3:ED:8C:BA:FB:C4:CE:F3:CA X509v3 Authority Key Identifier: keyid:84:01:8C:08:3D:10:A3:9E:7F:68:5C:41:AE:16:63:70:C6:D7:7A:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:5e:3e:1c:8c:ce:32:20:a9:13:cb:a3:ce:9a:c8:50:d0:7b: 3e:6c:da:6b:63:14:71:2c:a9:dd:c8:5d:82:df:c6:22:b7:1b: 88:c9:1f:dd:7e:d6:b6:f4:78:94:7e:40:0a:c5:dc:b9:04:03: 22:84:a0:43:c3:56:9a:7d:65:b2:91:33:f7:38:4a:0a:a0:50: 0c:05:b7:49:f1:d2:ce:12:0f:45:1e:e4:55:43:6e:88:57:e4: 54:77:d5:2b:29:bd:e3:f5:a3:85:d2:f6:0a:0a:88:a9:21:ab: d9:2d:e8:c2:18:0c:75:73:78:55:aa:af:eb:e0:75:64:a9:f5: d6:90:9a:f5:01:2b:35:ba:33:a0:d4:4a:ab:a4:82:10:62:20: 6b:f8:8c:36:72:6b:43:e1:3b:c5:1f:4e:88:43:55:39:eb:30: b3:84:18:95:f5:1e:4d:95:40:75:1b:5b:96:97:d7:41:5a:24: 93:5a:6d:48:65:10:72:00:94:ee:db:8a:90:0a:6c:32:f4:8b: 6c:c6:6a:bc:b2:9a:8d:d2:8f:78:c1:54:91:2c:78:3b:8f:8c: 1e:55:e6:f3:e4:5a:27:40:03:12:c2:f6:32:2f:d1:ed:60:5a: c7:5e:8f:23:a7:36:26:86:d0:f5:91:6b:eb:a9:6f:a8:d2:69: ac:43:40:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA1QUIxMTAvBgNVBAUTKDg0MDE4QzA4M0QxMEEzOUU3RjY4NUM0MUFFMTY2Mzcw QzZENzdBQzQwHhcNMjQwNTE4MTY1MDAzWhcNMjQwNTI1MTY1MDAzWjAYMRYwFAYD VQQDEw02NjQ4ZGMzYy04ZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQytuHWJ6IWAfp29HTldQIJjq3YFaQb9rd8DriuOvNQ3P9Bqb/15mE+hFSoG 9gWSLOzYXzwmHYB5sBX7MAHKeaOvlYwF+Y20zTiMmBuayHGViCVuu+mDfzeJjYcp b2N3D8+8q5OYyln031wJKKHdfCQp+43MbQdcYCv45fXHnVIWWBjySWunxN+NnHOo xBHP5P5XbH0W39wZI3eqv/PmXxjEsW1mEac/43zYvD/co2dI8oikdsxErzPdIghc dr7eP545NhpIBqWLrgdGMk8qAElyhAE9pfpoBUEIfSnAfEbDU69OqwCAo0XBamLN FZzuO7fWpoNMwo4wzL4Af/bRawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESTWQb7 69i7cCNds+2MuvvEzvPKMB8GA1UdIwQYMBaAFIQBjAg9EKOef2hcQa4WY3DG13rE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDVBQi8wNTI0M0FDNjRD MjgxMUU3OTY4QUQyMTFDNEY5QUUwMi9oQUdNQ0QwUW81NV9hRnhCcmhaamNNYlhl c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hBR01DRDBRbzU1X2FGeEJyaFpqY01iWGVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDVBQi8wNTI0M0FDNjRDMjgxMUU3OTY4QUQyMTFDNEY5QUUwMi9oQUdNQ0QwUW81 NV9hRnhCcmhaamNNYlhlc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcXj4cjM4yIKkTy6POmshQ0Hs+bNprYxRxLKndyF2C38YitxuIyR/d fta29HiUfkAKxdy5BAMihKBDw1aafWWykTP3OEoKoFAMBbdJ8dLOEg9FHuRVQ26I V+RUd9UrKb3j9aOF0vYKCoipIavZLejCGAx1c3hVqq/r4HVkqfXWkJr1ASs1ujOg 1EqrpIIQYiBr+Iw2cmtD4TvFH06IQ1U56zCzhBiV9R5NlUB1G1uWl9dBWiSTWm1I ZRByAJTu24qQCmwy9Itsxmq8spqN0o94wVSRLHg7j4weVebz5FonQAMSwvYyL9Ht YFrHXo8jpzYmhtD1kWvrqW+o0mmsQ0AG -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org