$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft File: Fh4CKuiXURLudYnUmzFmDKkKBBA.mft (raw, json) Hash identifier: lH07bFVD8V9gTFCYE2hSmmXzDLc1MilKwQD/xW16PV4= Subject key identifier: 4B:F4:45:AE:96:8F:46:03:9A:D7:50:2E:75:77:93:05:92:02:7E:70 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0B0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft Manifest number: 0B04 Signing time: Sat 18 May 2024 19:55:09 +0000 Manifest this update: Sat 18 May 2024 19:55:09 +0000 Manifest next update: Sat 25 May 2024 19:55:09 +0000 Files and hashes: 1: Fh4CKuiXURLudYnUmzFmDKkKBBA.crl (hash: M2/zZnzV2wf8+r7VKiHaIZHyuYzDLUvmPDoCcW2w6jQ=) 2: 8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa (hash: 5O8G6LYJ0rhT94mzd+lsnn2I9NpxEhVRUg7KIJfOtS8=) 3: 8AAF803A1C8A11EABAA73A62C4F9AE02.roa (hash: 71xd5/5FhMriYHoOL/tPwY0AhjMl++Dxo9Z6XFBNqNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2830 (0xb0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: May 18 19:55:09 2024 GMT Not After : May 25 19:55:09 2024 GMT Subject: CN=6649079d-2b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b3:69:a3:ff:8a:9e:5c:5a:14:33:5b:0a:82: c5:5c:88:64:86:96:b9:3f:e2:14:97:5f:67:ce:11: 5d:e8:94:b0:a5:69:e1:b0:07:9c:3f:80:c2:c3:f2: a1:85:cb:71:08:90:80:5f:e3:6d:1c:53:4c:6d:30: a8:6c:94:b3:e4:bd:21:cc:3b:34:47:00:b2:41:a1: c3:75:cb:1d:c8:37:1c:5a:be:80:ff:22:e3:ea:3a: 24:1b:b6:7f:84:df:07:2d:bb:fe:9e:91:12:47:5b: 1a:f1:21:e1:ec:03:01:c6:e0:a9:ed:c0:be:fd:cb: 6f:60:63:81:73:e8:f5:71:0e:62:86:54:1c:08:a7: 71:df:9d:60:a5:e4:74:77:06:58:d0:73:56:27:4d: 9e:28:29:0a:b1:e7:2a:5e:c9:1f:72:6c:f6:a5:f3: ed:11:e0:2f:dd:c6:41:4b:e2:39:d1:61:43:ea:5b: 7e:ac:41:ae:4d:1f:b4:f6:a3:aa:c5:bd:4d:8a:12: d2:89:20:94:af:3b:07:c4:84:32:cc:7c:63:64:9e: 6f:45:e8:3c:11:4f:56:fe:b7:7e:d5:4d:03:dd:15: d1:88:e7:c4:ce:a8:d7:33:7b:7b:5e:f4:59:88:ae: b7:12:41:bb:85:e2:2c:03:7a:6b:1b:ff:ed:2b:74: ec:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F4:45:AE:96:8F:46:03:9A:D7:50:2E:75:77:93:05:92:02:7E:70 X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:50:d1:c2:e1:cf:50:99:8a:8e:27:34:51:00:87:31:86:2f: 7b:4b:10:10:c5:f2:58:fc:98:f2:7c:5c:d2:e3:ac:b1:8f:0b: 61:d9:6b:54:0f:93:ad:d5:22:53:4a:32:a2:b8:2a:ca:db:aa: fa:5a:b9:be:54:7e:2a:cd:58:ca:f6:ac:c4:22:9b:01:77:25: 51:a1:19:0d:07:43:ad:8c:ee:c5:bf:66:42:5b:b5:52:9b:c4: ca:ff:12:6d:05:dc:79:bb:4f:fa:c5:ad:f9:5d:ab:4e:b6:38: 93:e6:60:a8:07:71:16:b1:2a:20:b0:82:dc:21:0b:f8:43:89: ee:0f:60:d5:04:3a:93:ee:4f:d4:46:be:2d:1a:9d:04:08:28: 1d:35:bc:63:30:84:4c:6e:a6:24:53:3e:4c:7c:0c:f3:9a:5e: f5:43:f7:1e:a1:68:33:d3:8c:c2:48:20:4d:a7:4b:1a:a5:8f: f0:eb:b5:81:af:89:cc:ff:71:45:f5:d2:58:65:6f:b8:39:19: 62:73:d4:34:6a:29:d8:c9:53:46:91:bb:24:5b:49:b5:36:9d: 4c:c8:63:14:9b:9d:67:ae:ca:41:b0:16:c5:c1:f0:c2:19:4e: d2:5a:9b:bc:07:0c:35:25:3f:42:60:9b:45:b3:37:04:c0:f2: ef:0b:2c:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjQwNTE4MTk1NTA5WhcNMjQwNTI1MTk1NTA5WjAYMRYwFAYD VQQDEw02NjQ5MDc5ZC0yYjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57Npo/+KnlxaFDNbCoLFXIhkhpa5P+IUl19nzhFd6JSwpWnhsAecP4DCw/Kh hctxCJCAX+NtHFNMbTCobJSz5L0hzDs0RwCyQaHDdcsdyDccWr6A/yLj6jokG7Z/ hN8HLbv+npESR1sa8SHh7AMBxuCp7cC+/ctvYGOBc+j1cQ5ihlQcCKdx351gpeR0 dwZY0HNWJ02eKCkKsecqXskfcmz2pfPtEeAv3cZBS+I50WFD6lt+rEGuTR+09qOq xb1NihLSiSCUrzsHxIQyzHxjZJ5vReg8EU9W/rd+1U0D3RXRiOfEzqjXM3t7XvRZ iK63EkG7heIsA3prG//tK3TsfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEv0Ra6W j0YDmtdQLnV3kwWSAn5wMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY1Ri9CRjk2NkU0QTFDODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVS THVkWW5VbXpGbURLa0tCQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAUNHC4c9QmYqOJzRRAIcxhi97SxAQxfJY/JjyfFzS46yxjwth2WtU D5Ot1SJTSjKiuCrK26r6Wrm+VH4qzVjK9qzEIpsBdyVRoRkNB0OtjO7Fv2ZCW7VS m8TK/xJtBdx5u0/6xa35XatOtjiT5mCoB3EWsSogsILcIQv4Q4nuD2DVBDqT7k/U Rr4tGp0ECCgdNbxjMIRMbqYkUz5MfAzzml71Q/ceoWgz04zCSCBNp0sapY/w67WB r4nM/3FF9dJYZW+4ORlic9Q0ainYyVNGkbskW0m1Np1MyGMUm51nrspBsBbFwfDC GU7SWpu8Bww1JT9CYJtFszcEwPLvCyyk -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org