$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: VHWNZmCors1bVEd+xAzMlkNk2xt8G6eBb2RhqRGV1Sk= Subject key identifier: 25:D4:BA:E5:FF:EE:A4:BA:1A:A4:83:30:E9:C8:95:B3:09:C7:C9:17 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1456 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 1447 Signing time: Sun 26 May 2024 17:26:09 +0000 Manifest this update: Sun 26 May 2024 17:26:09 +0000 Manifest next update: Sun 02 Jun 2024 17:26:09 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: sPKm3YF9vDKFVKlrJW+HuDk38lWd9J7bvHe2Md7ydyI=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: tzptSWrCu7leujBpAxl0r7s1OXoHlY5rMMlXgr5Raxw=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: CYK+uI2bxtOr291BnZawHgoP/6miR+B6epnu6Vsoz0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5206 (0x1456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: May 26 17:26:09 2024 GMT Not After : Jun 2 17:26:09 2024 GMT Subject: CN=665370b1-67d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7f:fa:6a:09:a1:55:27:91:6a:07:d5:9e:a2: eb:bf:91:16:14:fa:5c:2d:eb:e5:24:56:91:eb:58: fb:6a:b3:82:b0:5c:55:cf:70:ed:b4:ff:a0:cb:c6: 4f:07:b9:01:b2:b5:14:f3:ff:89:47:9d:30:98:6a: 65:a3:5c:71:67:09:93:4b:dc:93:33:1e:c4:2a:aa: 4a:27:48:dd:34:d8:b1:91:ea:df:fc:da:2c:7e:2b: 60:7e:b9:de:45:a4:76:fc:e0:35:54:db:84:c0:c5: aa:ea:e0:8a:8d:08:1a:26:2d:e0:c0:55:e8:6a:90: cd:46:b5:88:63:a5:6e:cf:76:b9:e1:60:d7:46:e2: 52:7d:21:ea:b5:17:06:be:2b:d1:5f:be:d8:21:e7: 45:db:a5:47:ca:91:ee:90:29:65:04:e2:b1:f3:0c: 3b:b8:22:f8:27:6b:51:0c:59:77:06:bc:05:cb:ce: 80:f2:c7:fa:da:6a:3b:a4:40:df:77:2b:f7:0a:8b: 10:a3:8b:f5:75:ab:e9:58:7a:df:1f:3c:53:18:b0: 93:5f:05:61:76:cf:91:a5:b3:1a:a3:1c:ed:c3:ef: 42:81:38:1a:05:72:bb:9c:a6:48:11:0b:22:bf:fa: 16:43:b3:37:df:ff:c5:59:5e:b6:8b:8c:49:ec:92: 8f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D4:BA:E5:FF:EE:A4:BA:1A:A4:83:30:E9:C8:95:B3:09:C7:C9:17 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:e4:95:e1:43:29:22:f9:17:ae:e6:a9:93:e7:21:d9:5b:85: 73:a8:a6:40:c0:56:15:49:d6:88:20:f6:5d:97:b8:53:fb:b2: 7b:ed:aa:fc:d3:e3:96:0d:d6:0e:1d:cd:31:68:07:a3:a3:50: 5e:0d:dd:9b:bd:05:af:15:c8:ef:29:b2:71:d6:7f:29:2f:ab: ed:49:1e:59:af:7f:bf:eb:ea:16:42:9c:0c:da:67:5d:16:dc: 7c:c5:c1:49:11:c5:6a:d9:ed:a1:17:e5:72:e5:bf:6a:c9:18: 76:53:a2:cf:1f:12:0d:75:6a:fd:1f:c7:00:a0:94:89:67:97: f9:42:fe:b4:c4:54:e1:76:60:05:c3:30:af:9c:75:18:fa:54: b8:97:d7:c1:16:a5:18:f2:88:2d:e9:b1:16:0c:03:56:cb:1e: 6e:56:4a:6b:90:ea:c3:3f:28:d2:ac:a8:88:cd:05:3d:54:89: 0a:2b:a9:52:af:b3:d8:c5:2f:eb:d7:64:2e:4c:50:8a:a4:e4: c1:e1:ea:b0:18:8f:58:a1:87:a0:9a:ba:ef:ea:b4:68:93:40: 06:b8:03:05:a5:0b:d9:f3:4d:4a:34:65:e7:47:77:04:ab:d8: 2d:98:f4:5d:4d:f5:c5:54:23:76:88:8c:58:e1:79:00:f6:08: b5:75:73:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjQwNTI2MTcyNjA5WhcNMjQwNjAyMTcyNjA5WjAYMRYwFAYD VQQDEw02NjUzNzBiMS02N2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3H/6agmhVSeRagfVnqLrv5EWFPpcLevlJFaR61j7arOCsFxVz3DttP+gy8ZP B7kBsrUU8/+JR50wmGplo1xxZwmTS9yTMx7EKqpKJ0jdNNixkerf/Nosfitgfrne RaR2/OA1VNuEwMWq6uCKjQgaJi3gwFXoapDNRrWIY6Vuz3a54WDXRuJSfSHqtRcG vivRX77YIedF26VHypHukCllBOKx8ww7uCL4J2tRDFl3BrwFy86A8sf62mo7pEDf dyv3CosQo4v1davpWHrfHzxTGLCTXwVhds+RpbMaoxztw+9CgTgaBXK7nKZIEQsi v/oWQ7M33//FWV62i4xJ7JKP2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXUuuX/ 7qS6GqSDMOnIlbMJx8kXMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDH5JXhQyki+Reu5qmT5yHZW4VzqKZAwFYVSdaIIPZdl7hT+7J77ar8 0+OWDdYOHc0xaAejo1BeDd2bvQWvFcjvKbJx1n8pL6vtSR5Zr3+/6+oWQpwM2mdd Ftx8xcFJEcVq2e2hF+Vy5b9qyRh2U6LPHxINdWr9H8cAoJSJZ5f5Qv60xFThdmAF wzCvnHUY+lS4l9fBFqUY8ogt6bEWDANWyx5uVkprkOrDPyjSrKiIzQU9VIkKK6lS r7PYxS/r12QuTFCKpOTB4eqwGI9YoYegmrrv6rRok0AGuAMFpQvZ801KNGXnR3cE q9gtmPRdTfXFVCN2iIxY4XkA9gi1dXPu -----END CERTIFICATE-----Generated at Sun May 26 19:11:46 2024 by rpki-client on console-ams.rpki-client.org