$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: Nsq6qvI24zD6yv5M+pMQ1ymehDk09AKk/YuwxD8t03U= Subject key identifier: 24:E0:82:BA:C4:CA:3C:C5:8E:4D:84:38:B4:FE:B5:54:83:DD:48:C1 Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 1709 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 16F7 Signing time: Sat 04 May 2024 17:10:39 +0000 Manifest this update: Sat 04 May 2024 17:10:38 +0000 Manifest next update: Sat 11 May 2024 17:10:38 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: xzdnq0nnDxkFjUKL6QpxTahoRNnBOj0kT0N6NMe7a9U=) 2: 5B0DB65CEFD111EE92D9454EC4F9AE02.roa (hash: 76S4aRaU2ID0XEuOdvsRZUSO3+93Lw6OX8h1XQVhKbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5897 (0x1709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: May 4 17:10:38 2024 GMT Not After : May 11 17:10:38 2024 GMT Subject: CN=66366c0f-1526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:27:3f:76:8d:28:91:37:13:86:8e:79:18:69: e3:05:fe:e9:77:76:c5:13:10:91:10:88:98:6e:bc: 18:d0:2f:f2:2e:b0:11:ac:c8:72:89:e8:1c:81:78: 82:c5:1f:eb:09:ab:fe:94:18:84:a0:d7:0e:ec:59: 48:1d:1e:df:d9:7d:ab:5e:23:87:96:fc:1c:c6:4c: 17:73:20:e4:06:7e:92:46:bc:0d:f1:3f:76:08:54: 9d:21:da:81:3a:1d:f6:e7:25:8e:0b:82:cb:63:d5: 4a:94:33:19:db:b3:2c:1c:ef:28:e6:a1:3c:7b:c3: 8a:3f:e6:31:e5:69:4b:35:b5:8d:cd:6d:86:cd:e3: 90:ea:f7:54:78:e3:d0:a0:d0:3d:7a:d1:a1:8b:9f: 68:4e:f6:09:e1:28:b0:0f:cd:77:79:82:c7:2b:81: fe:08:f2:49:b9:ae:83:04:76:a7:63:7e:c1:f6:7e: e3:a9:54:ac:84:6d:c4:47:43:0e:33:69:63:a6:fb: 74:ed:98:91:8f:70:47:29:c2:bd:0e:13:49:86:b0: 30:de:d1:ba:17:17:bf:aa:4b:6d:14:bd:19:4a:2b: 6e:51:85:1a:74:c6:2d:0b:a6:e5:69:cf:62:13:a4: 32:06:c8:c2:62:1f:ce:7d:ae:ea:f0:20:68:40:29: a6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E0:82:BA:C4:CA:3C:C5:8E:4D:84:38:B4:FE:B5:54:83:DD:48:C1 X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:cd:f8:94:96:24:8c:71:1b:1d:ba:b1:aa:d8:6f:b3:c3:b2: 87:68:e1:6a:53:42:5b:0f:c6:b2:39:55:90:51:07:af:2f:0f: 0b:44:59:5f:f4:f9:f8:0e:dd:70:2a:59:c7:99:75:53:3a:d5: bd:cc:ea:91:1d:d8:f1:87:26:00:71:3f:6e:d0:1a:25:76:84: e7:05:a8:d8:bf:2f:b3:92:a3:95:c0:30:c0:51:65:1b:bc:4d: 00:63:d5:ff:a2:49:a0:29:f7:c0:ca:0c:65:24:ee:55:19:9c: 8d:72:89:65:44:55:ff:a5:ba:25:34:97:97:8b:1b:1c:b9:7c: 1d:eb:5a:6d:4a:18:ce:e0:2b:60:e6:e4:2e:65:ad:d7:f2:54: 3d:5b:bf:a8:39:f3:ae:d2:f2:80:1d:95:bf:f9:0a:09:a7:6f: bc:09:c2:f0:fc:ae:10:93:0e:f6:69:ce:b6:94:37:df:c3:b3: 76:50:0f:87:ca:1e:1d:f9:d7:52:ad:c9:18:4b:b6:58:82:d7: f4:06:f8:f1:3c:58:70:20:cc:67:c6:38:c3:1d:f8:dc:53:79: 0a:57:d7:3b:5a:b3:9d:87:02:2e:15:7a:fe:3f:58:7d:b0:9f: 40:3d:f4:16:c0:18:6e:23:0f:85:c7:32:98:31:24:3e:21:39: 30:fa:d1:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjQwNTA0MTcxMDM4WhcNMjQwNTExMTcxMDM4WjAYMRYwFAYD VQQDEw02NjM2NmMwZi0xNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Cc/do0okTcTho55GGnjBf7pd3bFExCREIiYbrwY0C/yLrARrMhyiegcgXiC xR/rCav+lBiEoNcO7FlIHR7f2X2rXiOHlvwcxkwXcyDkBn6SRrwN8T92CFSdIdqB Oh325yWOC4LLY9VKlDMZ27MsHO8o5qE8e8OKP+Yx5WlLNbWNzW2GzeOQ6vdUeOPQ oNA9etGhi59oTvYJ4SiwD813eYLHK4H+CPJJua6DBHanY37B9n7jqVSshG3ER0MO M2ljpvt07ZiRj3BHKcK9DhNJhrAw3tG6Fxe/qkttFL0ZSituUYUadMYtC6blac9i E6QyBsjCYh/Ofa7q8CBoQCmm3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTggrrE yjzFjk2EOLT+tVSD3UjBMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxzfiUliSMcRsdurGq2G+zw7KHaOFqU0JbD8ayOVWQUQevLw8LRFlf 9Pn4Dt1wKlnHmXVTOtW9zOqRHdjxhyYAcT9u0BoldoTnBajYvy+zkqOVwDDAUWUb vE0AY9X/okmgKffAygxlJO5VGZyNcollRFX/pbolNJeXixscuXwd61ptShjO4Ctg 5uQuZa3X8lQ9W7+oOfOu0vKAHZW/+QoJp2+8CcLw/K4Qkw72ac62lDffw7N2UA+H yh4d+ddSrckYS7ZYgtf0BvjxPFhwIMxnxjjDHfjcU3kKV9c7WrOdhwIuFXr+P1h9 sJ9APfQWwBhuIw+FxzKYMSQ+ITkw+tGA -----END CERTIFICATE-----Generated at Sat May 4 18:00:10 2024 by rpki-client on console-fra.rpki-client.org