$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: 9/gsZLk3PaTUQMR1w+EyAdVLBYYPfNd8wMtNKruJeMc= Subject key identifier: 7B:AC:DA:C1:8C:7D:EE:09:E9:BC:97:84:3E:5A:30:60:93:A5:72:28 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 201F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 2010 Signing time: Sat 18 May 2024 16:19:21 +0000 Manifest this update: Sat 18 May 2024 16:19:20 +0000 Manifest next update: Sat 25 May 2024 16:19:20 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: De1+mAEJtNdVj9lEGlHTf3MvFscJiuvS5BF8clELSNU=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: NlJZrM3QCrHyD7fOOe9FlFVoBwgbAQOcdDITda//eQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8223 (0x201f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: May 18 16:19:20 2024 GMT Not After : May 25 16:19:20 2024 GMT Subject: CN=6648d509-25f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:5a:85:41:11:5a:14:3d:39:ee:1e:32:35:ee: 28:35:c5:ae:de:54:d3:07:d6:86:ce:12:c3:76:50: 2b:0e:f0:4d:45:54:c3:c4:9a:11:e7:e0:a8:e0:8c: f4:a4:82:9f:fa:08:2d:cd:36:37:64:a5:b4:06:cf: 23:36:37:77:5d:3a:91:7f:d5:27:25:a7:71:1b:1b: c8:d3:e3:54:de:e7:60:7b:77:fd:dc:da:50:d4:a2: fc:c9:f0:59:db:c6:be:26:17:bf:2d:62:4d:b0:8c: 1f:a1:40:c5:1a:94:d1:1c:35:4a:c7:cc:da:b8:c6: 50:d4:6f:67:a3:29:a2:f1:d0:b0:81:ca:0b:01:8a: 72:50:bd:b7:be:26:2e:16:51:da:67:aa:b9:94:f1: 0c:19:6d:1c:cf:c4:dd:33:a8:63:16:35:89:89:72: ed:ae:71:6f:ae:75:66:25:b2:91:0e:14:cd:ac:65: 95:d0:3c:68:d1:2f:a3:15:59:4b:36:1d:0c:dc:0f: d0:e8:90:ab:cc:b1:40:ef:e7:41:5f:99:e3:7d:06: 12:5c:db:05:ba:e0:5d:3f:38:3e:ac:b4:ad:70:0c: db:d1:41:a1:7e:df:b0:55:4a:15:5c:db:15:33:63: a7:97:09:1f:da:85:53:3a:d7:72:a6:48:72:50:79: e5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AC:DA:C1:8C:7D:EE:09:E9:BC:97:84:3E:5A:30:60:93:A5:72:28 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:78:c5:ae:06:cd:a5:e1:6c:fd:b5:76:73:82:6e:b8:4b:b0: 68:72:7d:8a:b9:c9:a8:77:fa:cf:b7:78:c3:59:aa:1a:83:5c: c9:83:fb:ed:56:cf:03:4d:4e:59:5e:62:38:c6:70:5e:72:91: ce:9b:0f:91:1c:4d:5f:2f:11:9d:5a:af:76:dd:18:07:61:38: aa:fd:a2:61:8d:2f:cf:49:33:dc:97:f6:e1:f4:68:ce:29:be: 70:5d:68:d0:db:b4:e7:d6:a1:78:b1:35:ce:6e:69:ca:15:78: af:d3:11:73:1b:e3:38:c2:35:10:de:cd:c5:19:85:e1:fd:fe: 69:92:27:16:02:17:02:42:3d:44:7d:e4:b4:9e:b0:0b:04:d1: c5:d7:b3:9e:c7:e3:46:64:75:00:45:40:24:9b:2b:a5:40:46: b7:2c:73:d3:a9:b0:63:bd:a5:1a:aa:ff:93:3c:d2:e6:ee:96: e2:24:03:5c:5d:34:dc:b3:af:4e:0d:aa:12:5f:50:1f:47:81: 4b:b2:d8:6a:cf:3a:31:ac:7a:ae:3c:00:2a:15:51:fe:6c:ab: 8e:06:ba:e0:28:1d:4c:0e:7b:26:75:d4:c8:c9:b7:04:ef:50: 8b:d4:e0:52:c8:b2:fe:a5:db:54:62:f2:7d:44:c1:b5:f9:3d: 90:6b:df:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjQwNTE4MTYxOTIwWhcNMjQwNTI1MTYxOTIwWjAYMRYwFAYD VQQDEw02NjQ4ZDUwOS0yNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/lqFQRFaFD057h4yNe4oNcWu3lTTB9aGzhLDdlArDvBNRVTDxJoR5+Co4Iz0 pIKf+ggtzTY3ZKW0Bs8jNjd3XTqRf9UnJadxGxvI0+NU3udge3f93NpQ1KL8yfBZ 28a+Jhe/LWJNsIwfoUDFGpTRHDVKx8zauMZQ1G9noymi8dCwgcoLAYpyUL23viYu FlHaZ6q5lPEMGW0cz8TdM6hjFjWJiXLtrnFvrnVmJbKRDhTNrGWV0Dxo0S+jFVlL Nh0M3A/Q6JCrzLFA7+dBX5njfQYSXNsFuuBdPzg+rLStcAzb0UGhft+wVUoVXNsV M2Onlwkf2oVTOtdypkhyUHnlnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHus2sGM fe4J6byXhD5aMGCTpXIoMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZeMWuBs2l4Wz9tXZzgm64S7Bocn2Kucmod/rPt3jDWaoag1zJg/vt Vs8DTU5ZXmI4xnBecpHOmw+RHE1fLxGdWq923RgHYTiq/aJhjS/PSTPcl/bh9GjO Kb5wXWjQ27Tn1qF4sTXObmnKFXiv0xFzG+M4wjUQ3s3FGYXh/f5pkicWAhcCQj1E feS0nrALBNHF17Oex+NGZHUARUAkmyulQEa3LHPTqbBjvaUaqv+TPNLm7pbiJANc XTTcs69ODaoSX1AfR4FLsthqzzoxrHquPAAqFVH+bKuOBrrgKB1MDnsmddTIybcE 71CL1OBSyLL+pdtUYvJ9RMG1+T2Qa993 -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org