$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: 0YJ/93XVc8HTiwtHiBry9JMRVENz6EYS+sYPpir/j68= Subject key identifier: 12:56:52:B9:94:2F:33:31:46:8D:10:5A:7B:8A:3D:F0:A1:6D:B0:47 Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 05DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 05D2 Signing time: Sun 19 May 2024 00:06:50 +0000 Manifest this update: Sun 19 May 2024 00:06:49 +0000 Manifest next update: Sun 26 May 2024 00:06:49 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: SNAIvSMmFCGR9gWYwEE4o+gjk4ezTvifZWiyQ0V5qyg=) 2: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: U8yOqqyinkGohtgaJVbN4ufpnUUgzbbWeO85VJ52bis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1502 (0x5de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: May 19 00:06:49 2024 GMT Not After : May 26 00:06:49 2024 GMT Subject: CN=66494299-361d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8f:5c:b5:04:02:7e:34:88:10:2c:23:29:34: ec:cd:41:43:11:05:f5:f6:02:82:24:7f:c6:8f:ed: a5:bb:a7:87:de:61:25:5b:66:dd:9f:d9:34:69:50: a3:fa:5b:7d:49:1b:b2:21:b3:b3:6d:d5:a9:80:f0: f9:b0:d3:8e:e4:2f:ac:3b:fc:3a:d6:8e:6a:ff:c8: 7c:7c:00:bd:1b:19:11:0c:75:09:15:65:c3:aa:2d: b4:e9:4b:f0:f7:72:71:ab:76:f7:0c:91:9c:d1:7d: 36:56:c5:7b:fb:06:c4:17:4e:bd:cb:5a:57:cf:db: a9:20:97:f1:f6:ea:17:ba:6a:03:75:15:94:36:0c: bb:12:a5:88:e1:33:de:20:ad:c0:bc:d8:0b:bf:ad: 09:af:ad:ae:01:5c:30:89:92:a7:7c:ab:6f:91:79: d7:2c:9d:f4:ce:7d:50:06:3f:85:9d:1f:8a:e0:bb: 0a:eb:a9:1f:4b:f0:ab:47:54:01:58:2e:0b:4d:d3: 05:be:b1:c1:07:b4:fa:40:f4:37:64:3e:c8:57:15: 80:3b:32:6a:2f:2c:32:d7:94:bb:8a:01:ef:c1:4d: 14:24:a3:62:94:f0:46:8d:b0:74:80:4a:7a:b4:6d: db:6c:46:53:27:3b:76:d4:e4:c1:9f:c0:cb:ca:84: 71:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:56:52:B9:94:2F:33:31:46:8D:10:5A:7B:8A:3D:F0:A1:6D:B0:47 X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:42:03:99:ca:db:bc:c2:27:bf:ca:a4:1c:46:5d:ea:ac:b6: ff:93:7d:db:41:f7:34:19:51:1c:27:b2:26:04:af:29:50:43: 27:e7:45:c7:c2:f4:7c:0d:72:86:af:e2:bc:0c:6b:30:47:40: 16:0d:12:3a:5a:22:f2:31:cc:35:c3:f9:2f:cc:9a:be:57:df: 1e:83:71:00:b8:a9:7b:e2:c2:49:36:cb:62:71:0e:12:55:2f: db:24:45:c7:fb:d6:99:f3:f0:0a:a1:0d:70:7b:5a:3d:ae:a5: 1e:a2:e9:d2:79:56:23:39:da:78:48:c3:3d:ae:3f:8c:e3:fd: a7:9c:3e:af:17:15:e8:2b:3c:80:69:a3:ac:f5:f0:97:eb:da: af:4c:65:ab:91:a4:d1:ca:65:d7:16:11:25:7b:79:1b:cb:21: c5:d7:cb:19:90:9f:ae:76:5b:31:fc:2b:12:be:f7:c1:c8:d9: 07:ef:a1:38:05:59:d4:5f:24:c1:b9:d7:f9:f3:24:38:08:14: 52:61:fc:72:25:db:86:e9:20:ac:7e:89:fb:f3:cd:bc:ae:46: 3c:84:e6:b2:5e:32:1c:fc:54:29:c6:1c:be:7c:a8:66:42:e5: 80:21:5d:fb:c8:9e:4e:32:d7:8d:53:b2:e0:55:46:8c:2c:b2: 9e:14:02:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjQwNTE5MDAwNjQ5WhcNMjQwNTI2MDAwNjQ5WjAYMRYwFAYD VQQDEw02NjQ5NDI5OS0zNjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvo9ctQQCfjSIECwjKTTszUFDEQX19gKCJH/Gj+2lu6eH3mElW2bdn9k0aVCj +lt9SRuyIbOzbdWpgPD5sNOO5C+sO/w61o5q/8h8fAC9GxkRDHUJFWXDqi206Uvw 93Jxq3b3DJGc0X02VsV7+wbEF069y1pXz9upIJfx9uoXumoDdRWUNgy7EqWI4TPe IK3AvNgLv60Jr62uAVwwiZKnfKtvkXnXLJ30zn1QBj+FnR+K4LsK66kfS/CrR1QB WC4LTdMFvrHBB7T6QPQ3ZD7IVxWAOzJqLywy15S7igHvwU0UJKNilPBGjbB0gEp6 tG3bbEZTJzt21OTBn8DLyoRx2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJWUrmU LzMxRo0QWnuKPfChbbBHMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrQgOZytu8wie/yqQcRl3qrLb/k33bQfc0GVEcJ7ImBK8pUEMn50XH wvR8DXKGr+K8DGswR0AWDRI6WiLyMcw1w/kvzJq+V98eg3EAuKl74sJJNsticQ4S VS/bJEXH+9aZ8/AKoQ1we1o9rqUeounSeVYjOdp4SMM9rj+M4/2nnD6vFxXoKzyA aaOs9fCX69qvTGWrkaTRymXXFhEle3kbyyHF18sZkJ+udlsx/CsSvvfByNkH76E4 BVnUXyTBudf58yQ4CBRSYfxyJduG6SCsfon78828rkY8hOayXjIc/FQpxhy+fKhm QuWAIV37yJ5OMteNU7LgVUaMLLKeFALV -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org