$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: LyrQT37sE0ASSzrklbEFOg6nExUTSFl5CVNik57Ju3E= Subject key identifier: FB:94:BF:9D:3C:4A:7E:B5:5F:97:AA:DE:1A:72:1E:EF:A4:B1:E8:8E Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: E0 Signing time: Sun 19 May 2024 05:58:36 +0000 Manifest this update: Sun 19 May 2024 05:58:36 +0000 Manifest next update: Sun 26 May 2024 05:58:36 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: Fx6JbW6LTlXQHd43JYqq4YO0Pfb3hhbHQIE07ICmywc=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: ref6zHJyO6Cb4soVAk7m/BReA9OEgBC4EsrwecqSoCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: May 19 05:58:36 2024 GMT Not After : May 26 05:58:36 2024 GMT Subject: CN=6649950c-104f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:84:19:cf:f0:2f:84:62:66:93:96:ec:92:45: 0f:42:9f:07:bd:d4:98:f0:7e:8d:49:35:96:49:9b: e1:e3:c1:6f:5e:1b:9f:78:59:20:90:89:d4:72:51: ac:b9:f6:60:90:9b:bf:c8:f4:66:4e:28:40:d9:69: 86:38:34:82:a4:ae:a9:7e:ea:58:1f:91:ef:05:24: 1b:77:08:13:89:b7:46:81:3c:aa:4b:19:03:7c:5b: 5a:cc:c2:02:b4:b4:51:0f:55:15:85:17:e4:36:f2: c2:fa:43:59:cf:fc:aa:d5:99:5a:cd:73:d6:7a:4e: 31:5d:c7:9b:11:37:3e:f1:e1:99:a3:89:52:c5:5e: 32:63:0c:19:0c:d0:0a:ed:ed:6c:fe:9c:13:59:91: ea:46:b3:7c:fc:69:fc:55:b1:c3:51:d9:3f:28:3c: 9d:6a:5f:90:32:d8:c2:b9:30:ae:a1:7d:c9:8a:cc: f6:b0:04:60:83:c2:c3:97:03:04:93:88:dd:0b:9b: 30:19:01:56:18:2c:f8:2a:d3:f9:d1:b4:e3:8f:e3: 28:7b:5a:2a:b8:03:11:3e:0d:8d:f4:65:b8:49:f2: 69:fd:19:18:e3:d8:26:2c:ee:80:b6:d2:5c:48:2d: 7b:66:0e:d3:2f:f9:de:1f:7f:17:12:a3:ef:5f:52: ee:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:94:BF:9D:3C:4A:7E:B5:5F:97:AA:DE:1A:72:1E:EF:A4:B1:E8:8E X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:05:b2:f7:da:fe:29:36:96:cc:ec:2f:34:dd:b1:72:c3:37: 99:ae:5c:d8:54:03:4f:16:52:7f:6f:d4:29:04:81:35:be:93: fd:bf:6d:5d:ee:02:0d:45:6b:8a:0c:5f:7a:fc:95:f6:d1:b8: 7b:d2:ca:2b:09:aa:bd:45:97:f0:92:ec:5b:a7:38:c5:96:5b: 65:bc:38:37:7b:31:dc:8b:1d:d5:e4:8d:2b:ac:f0:91:29:a9: 73:2a:2e:55:7b:16:9d:d0:ef:94:db:a4:53:2e:2a:fb:69:76: 8f:26:00:91:40:93:29:b4:ce:67:30:21:5a:b6:13:55:3b:b3: 5e:fa:dd:84:69:db:1a:0f:6e:0c:d4:fc:38:1a:7a:bb:56:ee: 0a:89:91:07:b0:55:c7:45:13:fb:ee:10:8b:b6:08:ea:ea:08: f2:0b:4d:74:1c:76:0c:5e:82:10:29:82:f1:cc:83:18:2e:fd: 1e:6f:63:ef:a3:51:c4:10:00:27:35:b0:3a:44:ff:41:41:22: 56:27:e6:94:63:e7:d5:c7:5d:ff:8b:31:83:d0:03:86:09:ec: 4c:d3:1a:bd:6e:2c:07:a0:ca:a7:7f:04:33:3d:47:cd:43:25: 06:a3:91:bd:7d:95:ef:f6:fa:7f:f2:07:0b:50:22:a1:b7:4e: 62:04:dc:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjQwNTE5MDU1ODM2WhcNMjQwNTI2MDU1ODM2WjAYMRYwFAYD VQQDEw02NjQ5OTUwYy0xMDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24QZz/AvhGJmk5bskkUPQp8HvdSY8H6NSTWWSZvh48FvXhufeFkgkInUclGs ufZgkJu/yPRmTihA2WmGODSCpK6pfupYH5HvBSQbdwgTibdGgTyqSxkDfFtazMIC tLRRD1UVhRfkNvLC+kNZz/yq1ZlazXPWek4xXcebETc+8eGZo4lSxV4yYwwZDNAK 7e1s/pwTWZHqRrN8/Gn8VbHDUdk/KDydal+QMtjCuTCuoX3Jisz2sARgg8LDlwME k4jdC5swGQFWGCz4KtP50bTjj+Moe1oquAMRPg2N9GW4SfJp/RkY49gmLO6AttJc SC17Zg7TL/neH38XEqPvX1LuLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuUv508 Sn61X5eq3hpyHu+kseiOMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBBbL32v4pNpbM7C803bFywzeZrlzYVANPFlJ/b9QpBIE1vpP9v21d 7gINRWuKDF96/JX20bh70sorCaq9RZfwkuxbpzjFlltlvDg3ezHcix3V5I0rrPCR KalzKi5Vexad0O+U26RTLir7aXaPJgCRQJMptM5nMCFathNVO7Ne+t2EadsaD24M 1Pw4Gnq7Vu4KiZEHsFXHRRP77hCLtgjq6gjyC010HHYMXoIQKYLxzIMYLv0eb2Pv o1HEEAAnNbA6RP9BQSJWJ+aUY+fVx13/izGD0AOGCexM0xq9biwHoMqnfwQzPUfN QyUGo5G9fZXv9vp/8gcLUCKht05iBNz+ -----END CERTIFICATE-----Generated at Sun May 19 08:25:11 2024 by rpki-client on console-ams.rpki-client.org