$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: sDAbzvPirTZAs7Av1/HCd7LwRFbjq1QKOld+sgg33oA= Subject key identifier: 92:F7:78:C6:64:CE:0D:67:7A:E1:26:B8:90:87:53:3F:9F:44:A6:2E Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: F9 Signing time: Sat 01 Jun 2024 06:58:56 +0000 Manifest this update: Sat 01 Jun 2024 06:58:55 +0000 Manifest next update: Sat 08 Jun 2024 06:58:55 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: 9rfEFNfMa3/NlDCqQBgSMVxEJZrzQs9yYQYXXfhL5L4=) 2: B264EB66A30911ED99A82087C4F9AE02.roa (hash: 0JShJtXPx5anPlJ0U5m0+jdnqUtjwG3u5Wm74IlFu78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Jun 1 06:58:55 2024 GMT Not After : Jun 8 06:58:55 2024 GMT Subject: CN=665ac6b0-e346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:90:68:ce:95:14:29:ed:58:12:9d:f8:89:25: 0a:a4:ac:2d:5c:0b:8d:e4:e8:d1:2d:48:c0:15:74: b9:8b:ce:1b:de:9f:25:c3:a6:bd:9e:3f:ab:e8:c0: 31:39:c8:43:99:0e:12:c4:d5:54:79:b0:e5:6a:81: c7:41:bc:b2:b5:0e:1b:71:2d:b6:da:3f:0d:df:d1: 7d:d2:fd:55:d2:f7:8d:c2:df:d6:a3:20:96:0d:9f: b8:eb:08:e0:86:d7:07:4d:21:bc:bd:23:61:1a:95: 3c:1a:4b:85:58:de:b8:11:85:7e:1d:cf:43:ec:d5: 91:07:99:de:ac:4b:fd:2e:8b:80:84:14:e8:1d:a5: c7:d9:b9:79:42:bb:4b:3d:6c:1d:3a:17:ac:45:e0: b5:c7:e3:0d:b6:63:1f:7b:1c:02:ec:10:56:26:c2: 8d:e0:85:b0:39:00:30:53:80:e1:94:1d:4c:f4:68: 86:b3:27:d8:05:3a:9e:71:12:da:ee:4e:2b:be:53: 21:1f:cf:15:b4:8e:d9:a0:bd:80:14:bd:7b:42:7a: 4a:26:a6:cf:04:11:8b:81:d7:43:ff:03:df:77:74: 78:9f:29:7b:4e:5e:ac:eb:f8:47:f3:ae:a5:b5:1e: 05:fd:eb:18:05:79:19:4a:e2:97:b1:1e:bf:28:81: a4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F7:78:C6:64:CE:0D:67:7A:E1:26:B8:90:87:53:3F:9F:44:A6:2E X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:9c:5c:3f:90:6d:44:3e:1c:b7:c4:e2:7f:f6:e8:0c:81:28: 7b:e6:a6:29:23:7d:4a:cd:23:24:ab:09:60:8c:d5:b4:57:6a: 3a:11:17:8e:8a:af:5b:5c:72:df:e2:8f:7e:ac:a3:a6:08:c2: bd:84:28:b9:fa:14:f3:fe:f9:a9:8d:d5:1d:2a:21:9d:ba:c9: 7a:55:9c:68:80:1a:75:9b:32:9e:f1:0e:89:6d:c4:85:f1:a8: d9:7b:8f:ee:8e:d7:fd:65:af:3f:d5:f6:c8:36:d4:dc:ac:30: f9:bb:bf:a7:4e:41:0a:a1:03:59:fa:30:9e:22:3e:70:13:7f: bb:9d:62:76:61:4a:d2:ca:2d:80:4e:80:a4:1f:f5:20:37:5b: 9b:1a:be:aa:ac:48:20:4b:f8:8a:59:73:85:df:4f:dc:d9:74: 7a:5f:9f:90:eb:f7:c7:bb:72:33:27:24:b3:62:35:04:65:3b: dd:d2:87:0a:7f:50:c9:bc:8c:6c:17:04:58:e9:1b:52:47:60: 35:66:73:48:33:94:fb:d9:d1:b5:32:cb:fc:61:f9:d7:29:c6: 97:55:1f:47:6e:45:99:5d:da:6e:63:95:e0:1a:dc:af:60:5e: 44:f3:26:2e:eb:bd:de:c4:c5:95:b0:18:60:e8:27:aa:83:2e: 8f:61:53:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjQwNjAxMDY1ODU1WhcNMjQwNjA4MDY1ODU1WjAYMRYwFAYD VQQDEw02NjVhYzZiMC1lMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJBozpUUKe1YEp34iSUKpKwtXAuN5OjRLUjAFXS5i84b3p8lw6a9nj+r6MAx OchDmQ4SxNVUebDlaoHHQbyytQ4bcS222j8N39F90v1V0veNwt/WoyCWDZ+46wjg htcHTSG8vSNhGpU8GkuFWN64EYV+Hc9D7NWRB5nerEv9LouAhBToHaXH2bl5QrtL PWwdOhesReC1x+MNtmMfexwC7BBWJsKN4IWwOQAwU4DhlB1M9GiGsyfYBTqecRLa 7k4rvlMhH88VtI7ZoL2AFL17QnpKJqbPBBGLgddD/wPfd3R4nyl7Tl6s6/hH866l tR4F/esYBXkZSuKXsR6/KIGk/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJL3eMZk zg1neuEmuJCHUz+fRKYuMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASnFw/kG1EPhy3xOJ/9ugMgSh75qYpI31KzSMkqwlgjNW0V2o6EReO iq9bXHLf4o9+rKOmCMK9hCi5+hTz/vmpjdUdKiGdusl6VZxogBp1mzKe8Q6JbcSF 8ajZe4/ujtf9Za8/1fbINtTcrDD5u7+nTkEKoQNZ+jCeIj5wE3+7nWJ2YUrSyi2A ToCkH/UgN1ubGr6qrEggS/iKWXOF30/c2XR6X5+Q6/fHu3IzJySzYjUEZTvd0ocK f1DJvIxsFwRY6RtSR2A1ZnNIM5T72dG1Msv8YfnXKcaXVR9HbkWZXdpuY5XgGtyv YF5E8yYu673exMWVsBhg6Ceqgy6PYVMe -----END CERTIFICATE-----Generated at Sat Jun 1 08:16:04 2024 by rpki-client on console-ams.rpki-client.org