$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft File: Hy55yPeszIoD-1tKOvzF9pMbN4I.mft (raw, json) Hash identifier: xbt2FrecBKvI2cAcMA6VaWU+N1SrwVB4aF0Lq9j+aqo= Subject key identifier: 41:92:D0:6B:3E:49:7D:56:C2:E0:B2:15:46:57:23:86:4E:8A:72:10 Authority key identifier: 1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82 Certificate issuer: /CN=A91BB09C/serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782 Certificate serial: 1671 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft Manifest number: 1668 Signing time: Sat 18 May 2024 17:09:17 +0000 Manifest this update: Sat 18 May 2024 17:09:17 +0000 Manifest next update: Sat 25 May 2024 17:09:17 +0000 Files and hashes: 1: Hy55yPeszIoD-1tKOvzF9pMbN4I.crl (hash: FxLydhdQPVgu/sdgLt/kSuvY5c+fOJafE3bJ5PjbVvU=) 2: 02181C4CE13511E7B0D71C83C4F9AE02.roa (hash: 0B5XjdTUQe/6kyGZQwflhiLlLmj0ih1n7mLCVY4kiuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5745 (0x1671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB09C/serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782 Validity Not Before: May 18 17:09:17 2024 GMT Not After : May 25 17:09:17 2024 GMT Subject: CN=6648e0bd-b35e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e0:bd:dc:5b:7b:93:41:de:e4:b7:ab:bc:c3: 85:fa:59:84:b3:4e:c1:1d:b6:c2:4e:7a:e8:7f:20: 96:ed:0b:b3:47:73:55:e2:cf:3c:69:59:87:76:39: e1:ef:50:bf:80:3e:9a:53:56:0a:41:e8:b9:27:07: 48:38:6c:9e:98:75:8f:9c:53:4d:af:db:f1:6b:19: b8:c5:78:4c:a0:33:fc:8d:80:29:cd:92:57:6b:53: 33:c4:63:67:5f:c3:f6:02:ad:87:0f:43:42:ad:2b: 6e:77:9a:88:ed:6b:33:68:df:82:78:41:82:4a:ae: 28:4b:ea:da:95:cb:c4:1c:57:df:d7:d6:19:b2:92: 2d:d3:20:02:c8:3f:be:db:e1:b1:bd:c2:c1:6f:ec: 1e:44:e9:26:20:42:d9:34:7e:dc:67:b6:20:0c:a8: eb:7c:8e:c5:52:1d:05:df:c4:9b:eb:ba:66:d7:12: b0:26:cc:20:28:2f:8f:28:03:47:32:39:e9:20:01: 5b:76:5e:f3:16:c5:2e:66:14:68:78:49:e4:53:54: dc:50:c1:18:d7:d9:b8:21:8d:9f:b6:f5:be:0b:ef: 63:83:98:23:10:56:4a:30:bf:b4:06:b3:5d:7a:d5: aa:ea:bb:44:8a:fd:87:3b:36:a3:ff:0d:ae:45:d8: c8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:92:D0:6B:3E:49:7D:56:C2:E0:B2:15:46:57:23:86:4E:8A:72:10 X509v3 Authority Key Identifier: keyid:1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:c0:cc:bb:63:79:2f:75:45:81:c8:b4:df:02:8a:83:aa:c4: 1c:99:30:e3:6c:8f:3a:2d:89:6f:ff:b0:ba:f1:50:d3:ac:23: 56:70:61:e9:7f:64:ea:1e:46:a6:31:41:11:4a:fb:06:9a:2d: eb:63:5d:89:6c:1f:52:17:03:c8:4d:88:87:8b:2d:25:d6:c5: 3a:8a:f6:55:54:ee:dc:81:fc:e5:91:9e:c4:05:e9:e1:50:17: bc:69:78:56:15:e5:5a:61:d1:fc:a7:3b:9a:da:51:9d:7e:8b: 7a:af:65:ae:52:10:24:ac:15:19:73:56:a1:60:b5:40:52:4d: ec:fc:6c:19:94:8a:8b:ff:03:d2:ae:66:8c:7a:c7:e4:b5:0e: 98:3d:d9:bc:0c:41:33:9c:2c:f7:79:9a:5a:f3:67:36:82:8f: 07:40:0c:ce:93:d9:99:39:de:57:8c:8e:37:56:de:ff:02:4d: 74:8d:48:89:2a:fc:6c:9f:db:c9:71:34:6d:3b:82:51:49:5a: fd:f2:af:b0:6c:cb:43:ba:67:15:b6:ca:f6:30:53:2f:7a:59: c3:ea:a7:c4:95:f6:07:fc:6a:f9:d1:7b:3c:29:a6:d9:a8:42: c7:73:ae:8c:b3:07:cc:06:78:2f:6d:c9:0e:e8:e7:36:22:37: ae:81:7c:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIwOUMxMTAvBgNVBAUTKDFGMkU3OUM4RjdBQ0NDOEEwM0ZCNUI0QTNBRkNDNUY2 OTMxQjM3ODIwHhcNMjQwNTE4MTcwOTE3WhcNMjQwNTI1MTcwOTE3WjAYMRYwFAYD VQQDEw02NjQ4ZTBiZC1iMzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneC93Ft7k0He5LervMOF+lmEs07BHbbCTnrofyCW7QuzR3NV4s88aVmHdjnh 71C/gD6aU1YKQei5JwdIOGyemHWPnFNNr9vxaxm4xXhMoDP8jYApzZJXa1MzxGNn X8P2Aq2HD0NCrStud5qI7WszaN+CeEGCSq4oS+ralcvEHFff19YZspIt0yACyD++ 2+GxvcLBb+weROkmIELZNH7cZ7YgDKjrfI7FUh0F38Sb67pm1xKwJswgKC+PKANH MjnpIAFbdl7zFsUuZhRoeEnkU1TcUMEY19m4IY2ftvW+C+9jg5gjEFZKML+0BrNd etWq6rtEiv2HOzaj/w2uRdjItwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGS0Gs+ SX1WwuCyFUZXI4ZOinIQMB8GA1UdIwQYMBaAFB8uecj3rMyKA/tbSjr8xfaTGzeC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjA5Qy8xRkNEMTVFMEUx MzQxMUU3ODI1MzEwODJDNEY5QUUwMi9IeTU1eVBlc3pJb0QtMXRLT3Z6RjlwTWJO NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h5NTV5UGVzeklvRC0xdEtPdnpGOXBNYk40SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjA5Qy8xRkNEMTVFMEUxMzQxMUU3ODI1MzEwODJDNEY5QUUwMi9IeTU1eVBlc3pJ b0QtMXRLT3Z6RjlwTWJONEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvwMy7Y3kvdUWByLTfAoqDqsQcmTDjbI86LYlv/7C68VDTrCNWcGHp f2TqHkamMUERSvsGmi3rY12JbB9SFwPITYiHiy0l1sU6ivZVVO7cgfzlkZ7EBenh UBe8aXhWFeVaYdH8pzua2lGdfot6r2WuUhAkrBUZc1ahYLVAUk3s/GwZlIqL/wPS rmaMesfktQ6YPdm8DEEznCz3eZpa82c2go8HQAzOk9mZOd5XjI43Vt7/Ak10jUiJ Kvxsn9vJcTRtO4JRSVr98q+wbMtDumcVtsr2MFMvelnD6qfElfYH/Gr50Xs8KabZ qELHc66MswfMBngvbckO6Oc2IjeugXy4 -----END CERTIFICATE-----Generated at Sat May 18 18:21:38 2024 by rpki-client on console-ams.rpki-client.org