$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: 4HQ0AQxQAlnnBZwLpbhGfWtEnZ5krNIBz5CGSCEv6BY= Subject key identifier: BC:96:5E:E0:89:A7:64:A8:94:CF:1C:4B:92:8D:BD:43:82:61:88:10 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 092D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0926 Signing time: Sat 18 May 2024 21:09:44 +0000 Manifest this update: Sat 18 May 2024 21:09:44 +0000 Manifest next update: Sat 25 May 2024 21:09:44 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: W+rWKfe6DxGbsxhKMwZk8yi8CP2yGlP04HMoybYjq2U=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: d4HdQqOcQnMoKX1uLg6xWYRlkht764D7eO356NA5rck=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: Zt7cNZQ7qp0YlfXswQXB3ImkAzvBtGuEzRcCgHr2as4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2349 (0x92d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: May 18 21:09:44 2024 GMT Not After : May 25 21:09:44 2024 GMT Subject: CN=66491918-a597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:00:92:a0:2b:89:ae:d8:63:1c:0e:e3:e1:37: db:c9:50:99:f8:dc:78:27:55:7a:c9:46:a2:1e:39: b1:83:5a:ea:9a:2c:c8:d1:2e:17:60:96:9f:c1:ea: c6:9e:82:64:77:de:29:f9:b4:cb:3c:2b:e8:b1:d5: aa:62:f8:a7:aa:8d:58:c5:78:b3:09:5b:31:e5:b5: 34:62:f2:2a:68:c4:f2:45:f7:8e:74:91:93:6f:7d: 0b:b5:b4:12:b9:e2:4e:1e:2c:2d:07:f3:e1:9e:49: 97:08:7b:66:36:11:01:1c:85:0f:66:50:18:ea:09: d4:45:9c:59:ef:5f:20:e0:b5:25:10:2f:2a:63:03: e9:59:ff:81:14:09:f3:0e:6c:14:86:50:6c:8d:18: 70:d9:c5:a5:08:d3:00:3c:79:fd:61:7e:66:5c:4d: 41:c6:d3:10:e0:f7:dd:bd:90:6c:9d:83:b8:7f:fd: 32:21:1a:54:50:aa:80:93:7c:d6:60:e4:32:58:3a: 83:df:16:a8:f7:c8:b9:2f:89:a3:72:e0:15:66:37: 90:38:4d:cf:91:4a:1c:14:da:21:3c:4d:9d:27:55: 7b:b8:f5:34:c4:81:0d:03:1b:fd:2b:fc:bb:29:f2: 36:8d:af:c6:87:d2:07:76:79:cb:85:7b:f0:76:db: cf:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:96:5E:E0:89:A7:64:A8:94:CF:1C:4B:92:8D:BD:43:82:61:88:10 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:72:3f:2a:cd:af:0c:48:c6:36:9c:cc:df:03:de:d2:61:8f: 43:0d:6f:cf:78:24:63:77:f2:70:f3:f2:4e:b0:21:11:b7:f1: 77:d0:71:b2:b3:47:e7:dc:cc:b1:50:84:50:bc:c9:4c:10:30: 4f:96:19:dc:f2:9d:24:0c:24:0f:e9:26:4b:ea:66:7e:ce:29: 5f:f4:7e:66:96:6f:d6:f1:c4:fa:49:3f:89:5b:53:26:1c:8a: 80:6f:fe:0d:97:e3:2d:7e:3e:01:d9:a9:db:27:7d:a7:d3:1b: d5:82:70:2e:ad:b0:d2:ec:45:3f:ba:bd:d0:fe:4c:01:86:83: ae:c5:17:75:7c:97:85:f2:84:16:de:78:d7:0c:74:d5:7d:7a: 27:21:10:1f:24:af:8c:2e:4e:20:f4:27:38:b4:fe:0b:19:9a: 5c:f5:97:38:f5:a6:9f:fa:02:ff:e5:2f:88:f7:9c:b3:8e:bf: a0:cb:21:67:d3:60:56:91:33:e2:58:b8:c1:25:d1:be:89:80: cf:d4:f8:c4:ee:30:b8:04:f8:13:ab:aa:b0:06:26:aa:bd:6e: 66:32:94:cc:03:be:91:d6:65:97:81:83:02:52:0e:08:a7:e1: d9:5c:7d:22:77:48:f3:c7:cd:19:ad:86:7e:70:37:df:65:1c: 49:17:7c:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjQwNTE4MjEwOTQ0WhcNMjQwNTI1MjEwOTQ0WjAYMRYwFAYD VQQDEw02NjQ5MTkxOC1hNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwCSoCuJrthjHA7j4TfbyVCZ+Nx4J1V6yUaiHjmxg1rqmizI0S4XYJafwerG noJkd94p+bTLPCvosdWqYvinqo1YxXizCVsx5bU0YvIqaMTyRfeOdJGTb30LtbQS ueJOHiwtB/PhnkmXCHtmNhEBHIUPZlAY6gnURZxZ718g4LUlEC8qYwPpWf+BFAnz DmwUhlBsjRhw2cWlCNMAPHn9YX5mXE1BxtMQ4PfdvZBsnYO4f/0yIRpUUKqAk3zW YOQyWDqD3xao98i5L4mjcuAVZjeQOE3PkUocFNohPE2dJ1V7uPU0xIENAxv9K/y7 KfI2ja/Gh9IHdnnLhXvwdtvP4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyWXuCJ p2SolM8cS5KNvUOCYYgQMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzcj8qza8MSMY2nMzfA97SYY9DDW/PeCRjd/Jw8/JOsCERt/F30HGy s0fn3MyxUIRQvMlMEDBPlhnc8p0kDCQP6SZL6mZ+zilf9H5mlm/W8cT6ST+JW1Mm HIqAb/4Nl+Mtfj4B2anbJ32n0xvVgnAurbDS7EU/ur3Q/kwBhoOuxRd1fJeF8oQW 3njXDHTVfXonIRAfJK+MLk4g9Cc4tP4LGZpc9Zc49aaf+gL/5S+I95yzjr+gyyFn 02BWkTPiWLjBJdG+iYDP1PjE7jC4BPgTq6qwBiaqvW5mMpTMA76R1mWXgYMCUg4I p+HZXH0id0jzx80ZrYZ+cDffZRxJF3y/ -----END CERTIFICATE-----Generated at Sat May 18 22:14:04 2024 by rpki-client on console-fra.rpki-client.org