$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: RnFpOf5jZOOxhhu/tmFoVhly3tBztRH4GfAZ+jh0dgk= Subject key identifier: 9C:BD:AF:68:5A:61:A7:BF:6B:1B:63:D2:48:84:5E:D9:56:09:09:72 Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 0135 Signing time: Sun 19 May 2024 05:07:45 +0000 Manifest this update: Sun 19 May 2024 05:07:44 +0000 Manifest next update: Sun 26 May 2024 05:07:44 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: Vrt6dhnMz9+WYfWq1Bnj/dZcClsNtrq52lhffh+lz9E=) 2: FD6087F4BBB011EEAA4D5371C4F9AE02.roa (hash: nEeHpaHqc9FDrvUQzpouSnf9S72J6Kbq7ZJJBcBvTPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: May 19 05:07:44 2024 GMT Not After : May 26 05:07:44 2024 GMT Subject: CN=66498920-da8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c4:92:ee:6d:0e:7b:ab:0f:f4:55:a1:02:78: b5:1d:7c:05:9b:37:11:1b:66:15:8d:5e:a7:ce:52: ff:cc:21:31:58:ec:3e:92:e0:24:be:52:29:f1:06: 52:01:8e:3f:5b:be:05:a9:38:31:93:21:45:76:f4: 4c:a7:7b:46:51:1b:7a:4d:7d:81:6f:f9:ee:a9:80: d6:0c:51:54:dc:86:c7:11:67:96:ed:a3:90:1a:bb: e1:4b:50:ac:29:65:da:52:e6:20:92:44:0d:ca:52: 9f:24:eb:0e:9a:4c:30:2b:67:ad:b4:78:f2:76:fd: 1e:b9:76:68:d0:a2:51:d2:de:89:0f:26:09:14:fa: c3:f3:c6:67:6f:76:fc:c0:24:d6:ae:88:2b:9f:56: 7d:af:a8:7d:35:18:ed:7d:8f:fc:95:9c:28:59:7b: fa:f0:52:db:41:43:5c:14:7c:de:fa:a6:c4:57:4d: bc:bf:20:7b:e4:08:bf:70:93:3c:a8:cd:cc:f6:19: d7:e4:73:36:20:dc:a0:7e:62:e9:37:57:15:a4:11: a8:13:f6:86:13:cf:02:93:02:3e:d3:e3:9d:a4:79: 5a:dd:6b:01:cd:ad:ff:12:a8:8d:1e:ee:e3:5b:75: 37:9e:35:a5:f7:e6:4c:3b:59:39:43:d9:44:ea:90: 16:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BD:AF:68:5A:61:A7:BF:6B:1B:63:D2:48:84:5E:D9:56:09:09:72 X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:42:4f:ee:17:06:7f:11:7e:d5:19:62:6f:9f:c2:20:42:2a: 07:cc:44:64:e8:74:d8:25:2c:f6:6f:06:92:0c:7a:5e:77:22: f8:fa:20:ca:25:fb:aa:89:d7:c0:e9:cc:e9:b7:9b:50:75:af: be:f7:9d:43:13:8c:85:a1:a9:82:65:27:2e:9e:b7:f5:61:36: 03:5e:fa:64:5d:50:a9:ed:8a:07:94:db:3c:bf:b0:00:4a:34: d6:e1:aa:55:00:52:44:d7:b1:dc:0a:3e:70:24:17:dc:15:9b: 31:16:bb:07:00:20:d7:75:3e:05:9d:83:b2:28:5a:71:ea:1a: 0a:07:c7:ae:fa:86:74:69:d1:72:c2:fb:db:54:20:97:92:3a: 34:4d:11:43:79:bb:df:ba:e1:f4:93:cd:c6:f3:65:ce:87:a6: fe:fb:3a:74:d0:25:19:4a:6b:07:9c:a9:04:f0:cf:7c:47:f1: 97:ac:b7:0a:32:94:7f:ea:20:5b:0b:4d:81:de:52:a3:12:41: 03:c9:2b:d8:76:44:b8:f5:a0:3d:68:e9:06:e3:39:6b:ff:0f: 45:53:1f:7a:08:48:f5:71:05:18:ba:67:98:2d:dc:29:43:02: 8b:d2:4e:2a:88:f1:82:d8:cb:7b:1b:e4:a5:eb:8f:f9:d2:f3: ab:61:d4:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjQwNTE5MDUwNzQ0WhcNMjQwNTI2MDUwNzQ0WjAYMRYwFAYD VQQDEw02NjQ5ODkyMC1kYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3cSS7m0Oe6sP9FWhAni1HXwFmzcRG2YVjV6nzlL/zCExWOw+kuAkvlIp8QZS AY4/W74FqTgxkyFFdvRMp3tGURt6TX2Bb/nuqYDWDFFU3IbHEWeW7aOQGrvhS1Cs KWXaUuYgkkQNylKfJOsOmkwwK2ettHjydv0euXZo0KJR0t6JDyYJFPrD88Znb3b8 wCTWrogrn1Z9r6h9NRjtfY/8lZwoWXv68FLbQUNcFHze+qbEV028vyB75Ai/cJM8 qM3M9hnX5HM2INygfmLpN1cVpBGoE/aGE88CkwI+0+OdpHla3WsBza3/EqiNHu7j W3U3njWl9+ZMO1k5Q9lE6pAWJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJy9r2ha Yae/axtj0kiEXtlWCQlyMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVQk/uFwZ/EX7VGWJvn8IgQioHzERk6HTYJSz2bwaSDHpedyL4+iDK JfuqidfA6czpt5tQda++951DE4yFoamCZScunrf1YTYDXvpkXVCp7YoHlNs8v7AA SjTW4apVAFJE17HcCj5wJBfcFZsxFrsHACDXdT4FnYOyKFpx6hoKB8eu+oZ0adFy wvvbVCCXkjo0TRFDebvfuuH0k83G82XOh6b++zp00CUZSmsHnKkE8M98R/GXrLcK MpR/6iBbC02B3lKjEkEDySvYdkS49aA9aOkG4zlr/w9FUx96CEj1cQUYumeYLdwp QwKL0k4qiPGC2Mt7G+Sl64/50vOrYdRU -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org