$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json) Hash identifier: klIDFKRO9tiJ297O9N4nAPaWndzIzN08HvPJA842GNA= Subject key identifier: 2C:F9:B0:AB:14:C1:EF:59:13:79:64:0F:84:72:D6:18:B3:7E:F7:6D Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 07AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft Manifest number: 1231 Signing time: Sat 18 May 2024 20:12:40 +0000 Manifest this update: Sat 18 May 2024 20:12:39 +0000 Manifest next update: Sat 25 May 2024 20:12:39 +0000 Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: O+Fdu6zzJrAYU0P/cxLmReAK1n46zAN1QgdUwH1sJbg=) 2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: IW7LXVcbi9wiFPMILg6JU1RNMCUNAiTI3E8d9d0dT/g=) 3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: DLeS0zPVo1GXq+y9erAJGv8PPnf+LNimN04EFu+X8DQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1962 (0x7aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: May 18 20:12:39 2024 GMT Not After : May 25 20:12:39 2024 GMT Subject: CN=66490bb7-d0d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:23:fa:40:7f:9c:91:cf:0d:93:11:30:41:80: c0:80:5d:4f:1a:30:6f:b3:4b:ea:be:7e:f4:5f:c2: bd:b2:ce:ef:0e:74:14:d8:e0:24:d4:d6:49:e7:6e: aa:6b:f4:1d:0a:89:aa:2a:dc:68:10:cc:64:38:51: e0:e7:f7:6f:95:7f:3b:7f:dc:3c:7b:33:c1:6c:e7: 41:34:1b:f6:42:f6:c5:21:91:34:96:fb:41:46:7d: a8:38:f0:6f:74:35:a2:c0:4b:52:e5:72:aa:a7:32: db:d0:a8:df:e4:42:22:cc:e6:14:58:11:ee:96:8e: cd:a4:03:ea:62:58:10:e6:f7:6a:99:1b:f3:2f:ef: af:7a:a8:bc:7b:7c:d1:0d:45:57:c3:58:94:39:79: 4c:51:de:32:35:e3:37:c1:f1:94:21:57:8f:a5:52: 76:d7:cd:46:2f:6c:31:5c:c1:fe:90:2c:6b:94:e2: e0:a4:29:6a:78:53:bc:57:e5:5a:54:e6:62:16:16: 82:8b:63:31:f7:71:92:42:04:26:89:b9:f2:75:39: d3:49:a1:07:2c:af:d5:b5:1c:df:a6:11:89:c3:3c: 71:1c:b6:be:6a:7e:34:1b:3f:49:31:0f:cd:c6:02: 73:19:da:17:d1:e9:7c:e5:7e:33:8e:b3:ef:49:da: cc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F9:B0:AB:14:C1:EF:59:13:79:64:0F:84:72:D6:18:B3:7E:F7:6D X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:89:81:55:3a:75:ed:c4:47:0f:2d:e4:46:99:98:96:5e:18: e2:74:7b:c6:5d:e4:b9:49:ae:6e:c2:1e:61:47:87:17:a6:28: 95:7f:ec:fe:16:f1:18:4e:5a:c7:72:8b:30:a9:3f:d8:b9:25: f8:49:bd:9d:59:16:7a:bc:9e:50:49:0e:67:0a:a6:d1:d0:46: a9:23:00:ed:09:19:df:70:a6:ad:f8:62:1e:15:91:57:05:c9: a9:0e:8c:56:dc:7c:46:20:c4:37:c8:85:ce:ee:d6:01:61:be: 12:8e:4d:0d:43:34:a5:0d:ee:5f:b5:b3:34:e4:0e:d4:db:07: d7:0b:42:38:46:de:77:17:64:ef:c5:99:36:a4:3e:20:94:10: cb:2c:8a:14:5a:05:77:d9:8c:e8:bb:8f:d0:ad:d1:66:24:00: 71:09:f2:0a:6d:c7:77:86:a7:12:c7:69:e4:cd:ab:28:f7:be: db:48:ea:9d:ab:77:d1:f9:ef:32:09:cf:d5:3f:29:76:bb:23: d7:9b:3c:83:6b:17:b1:7d:ee:73:2f:87:30:a1:fd:55:70:29: 0f:e5:ca:74:09:10:30:58:c6:82:8e:96:a4:81:0a:14:77:fd: 5c:b3:e4:2d:e2:fe:96:72:af:dd:44:33:08:43:b3:f0:0b:9d: 52:27:2e:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjQwNTE4MjAxMjM5WhcNMjQwNTI1MjAxMjM5WjAYMRYwFAYD VQQDEw02NjQ5MGJiNy1kMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSP6QH+ckc8NkxEwQYDAgF1PGjBvs0vqvn70X8K9ss7vDnQU2OAk1NZJ526q a/QdComqKtxoEMxkOFHg5/dvlX87f9w8ezPBbOdBNBv2QvbFIZE0lvtBRn2oOPBv dDWiwEtS5XKqpzLb0Kjf5EIizOYUWBHulo7NpAPqYlgQ5vdqmRvzL++veqi8e3zR DUVXw1iUOXlMUd4yNeM3wfGUIVePpVJ2181GL2wxXMH+kCxrlOLgpClqeFO8V+Va VOZiFhaCi2Mx93GSQgQmibnydTnTSaEHLK/VtRzfphGJwzxxHLa+an40Gz9JMQ/N xgJzGdoX0el85X4zjrPvSdrMUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCz5sKsU we9ZE3lkD4Ry1hizfvdtMB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9iYFVOnXtxEcPLeRGmZiWXhjidHvGXeS5Sa5uwh5hR4cXpiiVf+z+ FvEYTlrHcoswqT/YuSX4Sb2dWRZ6vJ5QSQ5nCqbR0EapIwDtCRnfcKat+GIeFZFX BcmpDoxW3HxGIMQ3yIXO7tYBYb4Sjk0NQzSlDe5ftbM05A7U2wfXC0I4Rt53F2Tv xZk2pD4glBDLLIoUWgV32Yzou4/QrdFmJABxCfIKbcd3hqcSx2nkzaso977bSOqd q3fR+e8yCc/VPyl2uyPXmzyDaxexfe5zL4cwof1VcCkP5cp0CRAwWMaCjpakgQoU d/1cs+Qt4v6Wcq/dRDMIQ7PwC51SJy5f -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org