$ rpki-client -vvf rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft File: 8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft (raw, json) Hash identifier: 8gzLh/ezL/sMktw/HdM4TOWV3sNktOJqAxp95WVWre8= Subject key identifier: 2E:B2:2A:2F:DB:74:EF:95:86:79:AA:5F:EB:86:50:33:8C:BF:1A:FD Authority key identifier: F0:7F:B1:3E:F9:1E:22:11:B0:FE:BC:85:5A:DD:AF:30:1B:06:71:A4 Certificate issuer: /CN=A91D087E/serialNumber=F07FB13EF91E2211B0FEBC855ADDAF301B0671A4 Certificate serial: 0B93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft Manifest number: 0B8B Signing time: Sat 18 May 2024 19:21:10 +0000 Manifest this update: Sat 18 May 2024 19:21:09 +0000 Manifest next update: Sat 25 May 2024 19:21:09 +0000 Files and hashes: 1: 8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl (hash: 9w5KdyIeLdzI9wQE9Y/FihUFAAvlHkqJSJ+8AUtsiWQ=) 2: 8A7C342604FE11EAB778E81CC4F9AE02.roa (hash: ZOGumPt0pB9AbK2uRuPCw40qDj5EBhWflSGcy7nElfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2963 (0xb93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D087E/serialNumber=F07FB13EF91E2211B0FEBC855ADDAF301B0671A4 Validity Not Before: May 18 19:21:09 2024 GMT Not After : May 25 19:21:09 2024 GMT Subject: CN=6648ffa5-974d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:80:f1:ef:fa:0b:27:f7:e7:d5:d8:d0:b0:dc: 83:cb:06:71:0c:dc:47:96:dd:c8:94:50:55:75:9b: ed:8c:61:ed:16:d9:fe:c6:e8:48:e0:15:02:8d:41: 64:8e:f2:b7:cd:35:cd:13:b5:41:fc:f0:f0:8f:5a: 07:63:48:7b:54:07:0f:37:21:0f:fe:6b:d0:31:c6: d8:af:3e:e0:12:f1:9e:01:fb:d3:a2:f6:81:08:b5: 09:5a:a3:d0:94:83:a9:56:8f:d5:84:4a:8d:18:db: 77:fa:54:02:72:b5:0a:5c:96:b4:4e:35:e4:42:77: 40:ed:00:70:a6:e5:b4:89:48:a4:77:c1:db:2b:98: 2f:e8:04:2f:2c:7f:33:88:4b:84:a1:7a:ba:d0:15: 74:fc:52:a3:0a:0b:52:a7:d6:f9:a0:54:f3:10:04: e6:d3:f8:d7:f8:8a:e6:cf:08:ff:29:d1:6b:72:21: d0:1c:1d:84:70:c9:61:e2:41:3f:a1:0f:71:88:08: 25:0e:7c:c8:cc:ac:40:2d:2e:8b:d5:bb:32:3e:d6: b1:47:b2:79:40:37:39:52:88:16:aa:eb:d1:79:0b: dd:81:45:ae:c5:1a:a8:b0:b9:49:a8:e5:9d:c2:9c: d5:a9:20:fb:45:b9:c4:44:7f:03:b6:12:a5:51:ae: e1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B2:2A:2F:DB:74:EF:95:86:79:AA:5F:EB:86:50:33:8C:BF:1A:FD X509v3 Authority Key Identifier: keyid:F0:7F:B1:3E:F9:1E:22:11:B0:FE:BC:85:5A:DD:AF:30:1B:06:71:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:77:c0:a8:f0:55:89:27:38:02:7d:4a:03:8a:65:e5:81:89: 46:20:9c:48:49:be:7c:a0:80:3c:a1:74:d7:42:1a:ac:8f:dd: 02:1a:8a:ec:a5:0c:13:d9:ff:3e:de:e0:b8:87:60:93:e8:45: 82:92:3c:89:2b:ca:de:3a:66:b9:0c:23:7a:00:50:53:77:4d: d4:b8:1d:d2:d6:58:91:db:c1:9d:2a:3e:ff:93:bc:da:3f:03: 72:51:a3:ab:f2:c9:e5:50:ce:f2:b7:90:97:bc:6b:75:4f:77: ff:b3:40:5e:9f:2f:01:56:0d:76:d9:ae:27:4b:e0:52:87:81: 15:4c:b5:fe:47:57:de:f8:39:73:53:6f:00:e7:f9:d3:5c:7d: 1b:ea:a2:f3:e3:4b:69:d0:bc:f2:d7:21:1f:be:79:45:29:93: 2e:77:14:04:be:6d:60:7a:07:d6:b1:ff:b2:3a:22:cd:38:cf: 1f:1e:6c:26:00:60:f7:bc:c5:c4:b3:78:be:e8:9a:14:a7:bf: cc:ca:31:47:36:f3:2b:11:70:3f:8e:30:95:58:f5:9e:e5:24: 55:7a:4a:7d:d8:8b:55:ae:8c:c9:9f:e8:e7:5c:52:a6:a6:72: e4:e8:9f:dd:6b:cd:72:d8:0b:8d:88:1d:58:70:c6:da:fe:11: 55:97:b8:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA4N0UxMTAvBgNVBAUTKEYwN0ZCMTNFRjkxRTIyMTFCMEZFQkM4NTVBRERBRjMw MUIwNjcxQTQwHhcNMjQwNTE4MTkyMTA5WhcNMjQwNTI1MTkyMTA5WjAYMRYwFAYD VQQDEw02NjQ4ZmZhNS05NzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4Dx7/oLJ/fn1djQsNyDywZxDNxHlt3IlFBVdZvtjGHtFtn+xuhI4BUCjUFk jvK3zTXNE7VB/PDwj1oHY0h7VAcPNyEP/mvQMcbYrz7gEvGeAfvTovaBCLUJWqPQ lIOpVo/VhEqNGNt3+lQCcrUKXJa0TjXkQndA7QBwpuW0iUikd8HbK5gv6AQvLH8z iEuEoXq60BV0/FKjCgtSp9b5oFTzEATm0/jX+Irmzwj/KdFrciHQHB2EcMlh4kE/ oQ9xiAglDnzIzKxALS6L1bsyPtaxR7J5QDc5UogWquvReQvdgUWuxRqosLlJqOWd wpzVqSD7RbnERH8DthKlUa7hkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6yKi/b dO+VhnmqX+uGUDOMvxr9MB8GA1UdIwQYMBaAFPB/sT75HiIRsP68hVrdrzAbBnGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDg3RS9CMDE5RjFDQTA0 RkMxMUVBOENBRUQ0MTVDNEY5QUUwMi84SC14UHZrZUloR3dfcnlGV3Qydk1Cc0dj YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhILXhQdmtlSWhHd19yeUZXdDJ2TUJzR2NhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDg3RS9CMDE5RjFDQTA0RkMxMUVBOENBRUQ0MTVDNEY5QUUwMi84SC14UHZrZUlo R3dfcnlGV3Qydk1Cc0djYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjd8Co8FWJJzgCfUoDimXlgYlGIJxISb58oIA8oXTXQhqsj90CGors pQwT2f8+3uC4h2CT6EWCkjyJK8reOma5DCN6AFBTd03UuB3S1liR28GdKj7/k7za PwNyUaOr8snlUM7yt5CXvGt1T3f/s0Beny8BVg122a4nS+BSh4EVTLX+R1fe+Dlz U28A5/nTXH0b6qLz40tp0Lzy1yEfvnlFKZMudxQEvm1gegfWsf+yOiLNOM8fHmwm AGD3vMXEs3i+6JoUp7/MyjFHNvMrEXA/jjCVWPWe5SRVekp92ItVrozJn+jnXFKm pnLk6J/da81y2AuNiB1YcMba/hFVl7jK -----END CERTIFICATE-----Generated at Sat May 18 20:16:06 2024 by rpki-client on console-ams.rpki-client.org