$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: gbM5jXD5DtJteqddzr/FdjFU7X7D16N8P5F3uM5/xOQ= Subject key identifier: 4E:CE:69:CC:76:0D:BE:1B:2A:F0:54:83:5F:E4:91:A9:DC:69:CA:D2 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0935 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 092C Signing time: Sat 18 May 2024 21:09:54 +0000 Manifest this update: Sat 18 May 2024 21:09:54 +0000 Manifest next update: Sat 25 May 2024 21:09:54 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: 5NiyqkgXYlWdzSZ8LP3s4rNonT4hhXeJP6fjhQRdm6M=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: kNKsyq1i1C6Xbz1o1/LD4SNgAN2MFmbW7qA4JteOOlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2357 (0x935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: May 18 21:09:54 2024 GMT Not After : May 25 21:09:54 2024 GMT Subject: CN=66491922-c323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:18:71:57:25:8e:09:88:ce:74:11:e8:cf:68: 5d:be:84:98:00:c4:cb:d0:d3:87:ea:33:6e:20:1b: 67:22:99:ae:a0:dc:d8:6e:8a:00:f3:87:9f:45:a7: 7a:11:a5:0e:2d:9d:43:ba:a0:6b:a0:6a:c6:92:ab: 23:9a:3e:76:2e:cc:f9:65:c4:36:de:32:01:50:f0: 14:37:35:81:db:9f:a5:18:c1:ff:ea:bb:5f:17:b8: d1:b9:7f:7d:d2:82:63:c0:7b:52:e7:28:ee:0d:c0: 86:a4:25:04:a6:db:44:3a:d7:ef:71:04:c8:73:b4: ac:97:b8:f8:c1:91:0a:51:e3:0b:b7:ee:56:a0:93: c6:13:06:aa:6e:5c:37:6b:e0:07:ea:8d:a0:06:71: 28:a3:90:25:03:9b:a7:d1:70:70:db:62:30:60:2f: 5b:71:26:74:11:0d:54:c6:df:0f:98:5e:0f:4e:91: f6:4d:3d:10:a3:17:57:b2:dd:a4:d9:25:37:4f:30: a1:e0:4b:8c:a9:39:a9:46:7f:89:f9:f6:45:1a:b0: f8:58:06:f1:51:09:24:73:1e:b0:64:3c:5e:d9:f8: 44:46:0c:05:25:b9:86:f6:85:8f:92:ef:08:df:35: a4:e2:28:d5:b8:34:99:7a:0e:42:fb:4d:62:31:6a: 19:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CE:69:CC:76:0D:BE:1B:2A:F0:54:83:5F:E4:91:A9:DC:69:CA:D2 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:9b:ff:0b:aa:eb:e8:f5:e4:4b:f8:dd:ed:e8:f4:df:18:7d: 6a:5f:99:dc:63:94:30:6f:35:8a:d9:9a:6b:54:de:99:ee:a0: 0f:88:62:b3:af:1d:0d:2c:eb:8b:0d:62:8a:3a:73:d0:ed:db: d1:26:8d:ce:ba:af:fd:45:c2:bb:4a:13:73:4d:1b:7f:b3:b3: 06:7c:ec:c6:21:28:78:43:bb:a9:48:42:a2:8a:ab:0f:8b:f0: 5c:74:4f:29:3c:30:f5:68:89:f9:f9:27:fc:a9:ac:0a:30:e4: 4d:1c:78:fd:0b:5e:3e:e9:dd:78:2a:f7:09:05:f0:06:6d:54: d3:13:37:4b:90:9d:c1:e6:79:02:44:52:81:42:e5:dd:60:2f: 2c:5d:82:8a:01:1d:73:8c:ab:72:20:7b:31:ae:49:d3:84:82: 6b:30:69:b2:da:4f:e4:3d:fb:36:00:cb:7c:cf:52:48:f3:26: 1a:e1:78:80:ad:e1:9a:a0:1b:77:87:f5:f0:62:55:aa:73:c5: e7:b2:5f:2c:50:08:68:07:4c:35:46:a8:ff:b0:24:c0:7e:2d: a3:3f:b2:dc:ec:15:13:f3:fd:d0:38:77:11:4e:41:23:59:6f: 61:7e:0f:7e:f4:08:18:d7:88:31:52:4f:df:b0:6e:15:29:16: d9:8c:56:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjQwNTE4MjEwOTU0WhcNMjQwNTI1MjEwOTU0WjAYMRYwFAYD VQQDEw02NjQ5MTkyMi1jMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxhxVyWOCYjOdBHoz2hdvoSYAMTL0NOH6jNuIBtnIpmuoNzYbooA84efRad6 EaUOLZ1DuqBroGrGkqsjmj52Lsz5ZcQ23jIBUPAUNzWB25+lGMH/6rtfF7jRuX99 0oJjwHtS5yjuDcCGpCUEpttEOtfvcQTIc7Ssl7j4wZEKUeMLt+5WoJPGEwaqblw3 a+AH6o2gBnEoo5AlA5un0XBw22IwYC9bcSZ0EQ1Uxt8PmF4PTpH2TT0QoxdXst2k 2SU3TzCh4EuMqTmpRn+J+fZFGrD4WAbxUQkkcx6wZDxe2fhERgwFJbmG9oWPku8I 3zWk4ijVuDSZeg5C+01iMWoZQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7Oacx2 Db4bKvBUg1/kkancacrSMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYm/8Lquvo9eRL+N3t6PTfGH1qX5ncY5QwbzWK2ZprVN6Z7qAPiGKz rx0NLOuLDWKKOnPQ7dvRJo3Ouq/9RcK7ShNzTRt/s7MGfOzGISh4Q7upSEKiiqsP i/BcdE8pPDD1aIn5+Sf8qawKMORNHHj9C14+6d14KvcJBfAGbVTTEzdLkJ3B5nkC RFKBQuXdYC8sXYKKAR1zjKtyIHsxrknThIJrMGmy2k/kPfs2AMt8z1JI8yYa4XiA reGaoBt3h/XwYlWqc8Xnsl8sUAhoB0w1Rqj/sCTAfi2jP7Lc7BUT8/3QOHcRTkEj WW9hfg9+9AgY14gxUk/fsG4VKRbZjFai -----END CERTIFICATE-----Generated at Sat May 18 22:14:05 2024 by rpki-client on console-fra.rpki-client.org