$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: nXV/UDHNuEstyuGCBL2JCCiM4rkev2Ei3aGJr9SI1NU= Subject key identifier: 2B:A2:30:FD:44:96:B0:A6:E8:72:77:1B:50:58:88:9E:5A:00:14:88 Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 0373 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 0370 Signing time: Fri 31 May 2024 03:25:13 +0000 Manifest this update: Fri 31 May 2024 03:25:12 +0000 Manifest next update: Fri 07 Jun 2024 03:25:12 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: TJtLtZlxctYBxWD/6egH3kze8nf6Y1VBpy5EYPFTo+0=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: gPe2FsGLQAHhCtVhAH6HrqEEwPI9E9ufV2EbiUu1Wps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 03:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 883 (0x373) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: May 31 03:25:12 2024 GMT Not After : Jun 7 03:25:12 2024 GMT Subject: CN=66594319-89eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3a:1c:d5:13:2b:e4:04:9a:73:8d:05:e5:63: 8c:58:d2:0f:6f:20:3b:e0:36:95:e0:87:ca:4b:74: 2f:19:62:67:fc:d2:7b:00:43:f9:8b:e1:0d:82:d8: e1:87:ac:37:c9:fc:4a:d1:5a:38:3e:4e:4b:97:b2: 8c:fd:a0:54:48:bd:82:f9:fc:67:07:78:c2:eb:4c: 06:8d:2e:0f:6e:43:7a:fc:23:de:d7:75:e6:ee:2d: a9:4b:72:fc:9e:f4:1f:d5:5a:83:db:f8:89:0b:33: a1:d1:29:f1:f0:9e:70:40:ff:f5:b2:d0:ec:b1:76: dd:ec:f2:d5:f5:6f:dd:d7:bd:61:0c:0b:c4:d7:2b: 9d:39:0c:33:d8:9c:b5:56:5e:d2:fd:7e:f6:52:a9: 18:06:1f:52:17:e4:48:4e:c0:40:fe:b7:56:a9:a8: 2a:88:d2:8f:30:6d:d3:b0:c0:21:bf:ba:34:2f:d7: dc:90:a8:5e:aa:95:0f:8b:71:d6:b5:eb:4b:e6:cc: 22:cc:77:30:42:5c:c7:03:db:e9:27:d2:41:ca:85: de:6d:e0:c3:a0:22:3a:df:dc:97:9f:f6:ef:2c:b6: e8:ef:70:a0:ac:d8:72:c5:7c:02:bb:a1:5c:0f:ff: 7d:00:14:9c:a8:53:54:4c:a2:36:e7:c7:b4:a3:af: 7f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A2:30:FD:44:96:B0:A6:E8:72:77:1B:50:58:88:9E:5A:00:14:88 X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:e2:76:8d:92:12:70:fe:70:52:0e:9b:c4:b9:e0:69:11:0d: 8c:c2:41:fd:ac:b5:e1:9f:c3:9c:f4:db:36:e4:8f:f1:28:f7: 17:22:4c:a6:0f:2e:48:5e:59:32:f8:be:26:a3:16:76:4b:e1: 57:c6:7a:ef:7d:82:e6:88:3f:af:0b:bf:1a:66:b8:15:b2:a6: 39:bc:57:55:cf:53:b1:6e:03:71:be:e9:57:bf:79:97:c0:2f: ed:62:12:d1:69:3b:6a:ba:79:26:2d:98:2d:cb:b4:7a:30:8f: 9b:61:11:93:8d:5e:16:a6:fd:d5:12:75:92:78:93:2d:9f:b3: 1e:6c:80:16:0e:c0:1c:7e:42:5e:35:12:cf:c9:9c:b8:3f:24: a3:41:68:99:55:f7:8f:82:6a:90:50:9f:5d:92:92:40:b7:28: 12:b0:2a:4c:2d:b4:78:a8:01:f8:68:76:d7:38:7b:8e:2e:23: 7b:79:b6:e9:63:d2:79:72:33:ca:1f:88:42:eb:6c:ef:20:53: 14:04:0d:b1:3c:f4:4e:39:0f:84:ee:3f:00:1b:52:74:98:85: cc:d5:59:1a:c4:37:2f:3e:db:e7:b1:17:2a:92:77:60:6d:fc: 4a:4c:64:8d:85:17:bd:b2:07:24:9b:fe:20:87:2d:2b:ce:7d: 02:58:25:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjQwNTMxMDMyNTEyWhcNMjQwNjA3MDMyNTEyWjAYMRYwFAYD VQQDEw02NjU5NDMxOS04OWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzoc1RMr5ASac40F5WOMWNIPbyA74DaV4IfKS3QvGWJn/NJ7AEP5i+ENgtjh h6w3yfxK0Vo4Pk5Ll7KM/aBUSL2C+fxnB3jC60wGjS4PbkN6/CPe13Xm7i2pS3L8 nvQf1VqD2/iJCzOh0Snx8J5wQP/1stDssXbd7PLV9W/d171hDAvE1yudOQwz2Jy1 Vl7S/X72UqkYBh9SF+RITsBA/rdWqagqiNKPMG3TsMAhv7o0L9fckKheqpUPi3HW tetL5swizHcwQlzHA9vpJ9JByoXebeDDoCI639yXn/bvLLbo73CgrNhyxXwCu6Fc D/99ABScqFNUTKI258e0o69/EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuiMP1E lrCm6HJ3G1BYiJ5aABSIMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc4naNkhJw/nBSDpvEueBpEQ2MwkH9rLXhn8Oc9Ns25I/xKPcXIkym Dy5IXlky+L4moxZ2S+FXxnrvfYLmiD+vC78aZrgVsqY5vFdVz1OxbgNxvulXv3mX wC/tYhLRaTtqunkmLZgty7R6MI+bYRGTjV4Wpv3VEnWSeJMtn7MebIAWDsAcfkJe NRLPyZy4PySjQWiZVfePgmqQUJ9dkpJAtygSsCpMLbR4qAH4aHbXOHuOLiN7ebbp Y9J5cjPKH4hC62zvIFMUBA2xPPROOQ+E7j8AG1J0mIXM1VkaxDcvPtvnsRcqkndg bfxKTGSNhRe9sgckm/4ghy0rzn0CWCVh -----END CERTIFICATE-----Generated at Fri May 31 06:49:24 2024 by rpki-client on console-ams.rpki-client.org