$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: AmSp+qL60OHphhOChRhIWzO68DMp2GjJGwji01CP5ac= Subject key identifier: 83:8B:1A:EE:0C:60:4C:A6:63:BC:B9:D9:56:80:7E:B7:FD:CC:E2:2A Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 0128 Signing time: Sun 19 May 2024 05:04:31 +0000 Manifest this update: Sun 19 May 2024 05:04:31 +0000 Manifest next update: Sun 26 May 2024 05:04:31 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: zoJ2ZUEqjpKROvrDzViazkczH58sZ9+b4yFd7I7fxMU=) 2: B8B2C3BC4E9511EDA5AF6A34C4F9AE02.roa (hash: olvFbdFyBTW7DMqyMp5YfklWI99094pYvPZ7PU+nFfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: May 19 05:04:31 2024 GMT Not After : May 26 05:04:31 2024 GMT Subject: CN=6649885f-9096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:36:3c:c9:b3:c4:16:44:9d:a4:25:87:9e:98: db:9d:80:46:63:5f:82:a0:6f:16:e9:39:7a:dc:0e: 58:3d:4a:ab:85:2c:70:75:44:3d:d1:b8:6d:3f:3a: 37:d4:af:19:2a:ca:05:bd:e4:ca:d3:07:24:3b:1e: d7:8d:76:de:d2:80:31:f9:5c:e7:8b:20:aa:fe:d1: 8c:0d:52:00:30:7d:fa:7d:df:bc:f4:fb:34:eb:f0: 0d:e1:cd:e6:55:12:ca:97:75:29:c2:7a:87:19:3a: 28:93:1e:6e:55:b7:f8:d0:6d:e3:96:38:ee:af:cf: fc:69:66:2d:14:bf:b2:32:2b:58:d0:5b:f7:21:39: fb:78:4e:32:94:08:17:57:79:93:6d:71:d1:7a:8e: 18:c7:88:0c:dc:b6:68:e3:77:9c:25:51:2e:26:bc: a2:03:61:54:96:b9:cd:32:8a:94:5d:8f:10:13:6b: de:91:5b:32:90:be:12:b3:b3:b6:06:9b:d1:13:ba: 8f:ef:60:a0:59:77:7b:d9:fc:90:86:10:94:27:7a: c4:80:25:3d:15:63:ad:f0:75:b0:30:91:ac:61:d7: a5:c9:70:52:58:2a:b9:14:cb:dd:c3:dd:65:28:54: 32:da:db:fc:a2:a6:7e:18:5b:08:46:76:b8:5f:75: da:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:8B:1A:EE:0C:60:4C:A6:63:BC:B9:D9:56:80:7E:B7:FD:CC:E2:2A X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:af:a0:61:94:31:b0:5e:77:ef:36:cc:01:73:d5:26:a8:df: 03:33:d5:dd:f0:2c:1d:84:5b:40:88:d5:78:ef:fe:7f:ad:f4: 3b:6d:44:06:35:22:7e:19:03:54:cf:94:cf:c0:f5:9b:f2:d2: bb:20:04:e6:fb:4f:2d:83:e9:29:b4:c0:2d:36:c7:eb:66:6d: 7c:cc:19:c9:32:c2:e8:31:10:99:8f:a2:90:b3:0e:34:01:b5: 4a:33:5e:b6:06:a0:e7:cb:95:4b:d1:59:c0:36:bc:c6:f1:89: 72:7f:60:bc:54:ca:83:65:d9:65:40:dc:b8:7d:49:49:b5:7e: da:f0:6a:1a:ab:95:89:b0:ef:e9:63:38:98:a7:a3:43:64:41: d1:54:21:ce:06:d8:6b:f8:5c:85:07:a8:f7:3f:71:8b:4f:c3: 34:ee:8e:a8:1d:cb:8c:e1:b7:ad:32:b3:95:2e:28:1c:14:4c: b8:e6:f5:5c:bf:9b:21:0a:bd:5a:a3:da:35:93:4c:e1:d0:34: 42:60:72:3c:d5:2d:f5:7e:a3:6c:06:6c:1a:3e:c5:40:9e:23: 5b:3d:64:02:bb:dc:60:cd:ab:76:ef:eb:8a:63:4b:ab:e0:72: c1:4c:a2:58:4b:45:2d:14:8c:6d:c3:fb:cb:ab:75:7e:e5:59: b6:b1:d5:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjQwNTE5MDUwNDMxWhcNMjQwNTI2MDUwNDMxWjAYMRYwFAYD VQQDEw02NjQ5ODg1Zi05MDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDY8ybPEFkSdpCWHnpjbnYBGY1+CoG8W6Tl63A5YPUqrhSxwdUQ90bhtPzo3 1K8ZKsoFveTK0wckOx7XjXbe0oAx+VzniyCq/tGMDVIAMH36fd+89Ps06/AN4c3m VRLKl3UpwnqHGTookx5uVbf40G3jljjur8/8aWYtFL+yMitY0Fv3ITn7eE4ylAgX V3mTbXHReo4Yx4gM3LZo43ecJVEuJryiA2FUlrnNMoqUXY8QE2vekVsykL4Ss7O2 BpvRE7qP72CgWXd72fyQhhCUJ3rEgCU9FWOt8HWwMJGsYdelyXBSWCq5FMvdw91l KFQy2tv8oqZ+GFsIRna4X3XaSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOLGu4M YEymY7y52VaAfrf9zOIqMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPr6BhlDGwXnfvNswBc9UmqN8DM9Xd8CwdhFtAiNV47/5/rfQ7bUQG NSJ+GQNUz5TPwPWb8tK7IATm+08tg+kptMAtNsfrZm18zBnJMsLoMRCZj6KQsw40 AbVKM162BqDny5VL0VnANrzG8Ylyf2C8VMqDZdllQNy4fUlJtX7a8Goaq5WJsO/p YziYp6NDZEHRVCHOBthr+FyFB6j3P3GLT8M07o6oHcuM4betMrOVLigcFEy45vVc v5shCr1ao9o1k0zh0DRCYHI81S31fqNsBmwaPsVAniNbPWQCu9xgzat27+uKY0ur 4HLBTKJYS0UtFIxtw/vLq3V+5Vm2sdXn -----END CERTIFICATE-----Generated at Sun May 19 05:48:52 2024 by rpki-client on console-fra.rpki-client.org