$ rpki-client -vvf rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft File: htoZAOYVDL2c2BWsZ9xTpebTwCc.mft (raw, json) Hash identifier: QGob4I1ib3D2/f09duCXcAM2iFMXx/S5KbwWTcKyzNo= Subject key identifier: 21:43:AB:1D:72:6F:EB:9A:3B:DD:CE:42:88:B8:55:D1:9A:45:B3:BD Authority key identifier: 86:DA:19:00:E6:15:0C:BD:9C:D8:15:AC:67:DC:53:A5:E6:D3:C0:27 Certificate issuer: /CN=A911933B/serialNumber=86DA1900E6150CBD9CD815AC67DC53A5E6D3C027 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft Manifest number: 5A Signing time: Fri 17 May 2024 07:55:44 +0000 Manifest this update: Fri 17 May 2024 07:55:43 +0000 Manifest next update: Fri 24 May 2024 07:55:43 +0000 Files and hashes: 1: htoZAOYVDL2c2BWsZ9xTpebTwCc.crl (hash: ZwO3QrNc5IL2ZTA9uyHDOKmKtf8qPBMwiocZ4g0pLbY=) 2: 1B000B60A70A11EE9D90E754C4F9AE02.roa (hash: DAdzrCTjSXLAdQ/ahzO4J1jSOYJKGFTd/4G8C3uhYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.crl rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911933B/serialNumber=86DA1900E6150CBD9CD815AC67DC53A5E6D3C027 Validity Not Before: May 17 07:55:43 2024 GMT Not After : May 24 07:55:43 2024 GMT Subject: CN=66470d80-aa69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:77:e3:03:88:27:79:7c:2d:4e:6c:c3:95:5c: 8d:20:14:86:db:1c:71:85:32:1c:70:ae:ff:cd:d6: 2c:7d:f0:fe:70:1d:60:b4:3d:57:fe:fb:ab:e6:f1: 8c:91:ed:d3:6f:5c:5d:3e:b2:d3:38:b8:7e:78:77: 60:c0:5f:2e:1b:08:99:26:38:be:41:fb:a3:13:d6: af:e0:0c:9d:fe:5e:5b:b7:ed:63:03:8e:3a:a2:34: 0b:f9:ca:0f:8e:94:04:d1:af:a8:7b:b2:6e:bc:29: e0:b2:7e:d8:83:96:63:17:3b:98:98:e3:d2:2d:3a: 15:7e:58:77:2f:49:30:93:20:d0:7c:ef:e7:e3:0f: db:c0:33:55:44:6d:eb:58:78:38:d2:22:a2:fd:23: a4:98:c1:38:de:dd:44:a0:1f:43:95:fd:7f:4c:79: 05:c1:f1:c5:0e:a8:04:38:23:42:b7:a9:82:99:53: 4a:f9:fc:93:28:67:6b:2d:1c:c3:f5:93:a8:3b:d1: 50:61:9d:b5:33:3c:38:fe:f6:f9:f1:c4:88:97:cf: 98:cc:6c:ac:5b:aa:30:ba:ab:0d:43:b8:fb:49:04: cc:42:e1:cb:05:94:48:1e:6e:87:b0:66:da:bc:cf: fe:e6:ee:bc:46:4b:14:12:cb:18:cf:4a:82:cf:f8: 60:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:43:AB:1D:72:6F:EB:9A:3B:DD:CE:42:88:B8:55:D1:9A:45:B3:BD X509v3 Authority Key Identifier: keyid:86:DA:19:00:E6:15:0C:BD:9C:D8:15:AC:67:DC:53:A5:E6:D3:C0:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:7a:1a:dc:ab:13:cd:a8:04:04:cb:dc:5e:3a:4c:e9:be:c9: fa:10:a4:76:15:e4:93:32:6b:d6:c8:c1:9b:17:df:64:87:e7: f7:5a:9f:f7:51:d8:5b:5e:43:33:e6:52:7b:fd:fe:f4:93:1d: 85:46:34:18:10:28:d4:95:23:2c:b7:8b:60:d3:4b:92:5e:08: b7:c6:ce:cd:df:de:dc:30:16:dc:15:fa:20:1b:4b:9c:9c:1f: e4:4c:ec:00:5f:97:bd:76:e9:88:df:b5:a5:ae:0a:5c:25:4a: 86:59:62:32:a2:ca:f4:7b:d7:05:8b:32:88:5b:43:bd:cb:eb: 5a:84:f6:0b:34:58:e7:41:4f:58:39:76:51:92:8f:fd:a3:c6: 60:91:8a:7d:73:59:ef:1c:98:9b:b7:07:55:df:22:6c:e8:b1: f9:a6:67:d2:f0:37:f7:51:da:f2:6b:f3:55:c5:33:90:4b:6b: 7b:8d:b8:6a:30:66:9e:68:3d:85:2d:75:eb:c6:79:71:28:be: 76:64:7b:a0:71:34:c9:58:e6:61:09:a6:17:32:80:a2:f8:e4: 7d:00:fb:65:ab:fa:fa:79:93:46:7f:bc:fd:bd:a5:c9:fa:98: 04:55:cc:0c:68:0f:da:90:53:bb:bb:f8:cf:12:fb:7a:34:bb: 20:0a:ec:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTMzQjExMC8GA1UEBRMoODZEQTE5MDBFNjE1MENCRDlDRDgxNUFDNjdEQzUzQTVF NkQzQzAyNzAeFw0yNDA1MTcwNzU1NDNaFw0yNDA1MjQwNzU1NDNaMBgxFjAUBgNV BAMTDTY2NDcwZDgwLWFhNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDud+MDiCd5fC1ObMOVXI0gFIbbHHGFMhxwrv/N1ix98P5wHWC0PVf++6vm8YyR 7dNvXF0+stM4uH54d2DAXy4bCJkmOL5B+6MT1q/gDJ3+Xlu37WMDjjqiNAv5yg+O lATRr6h7sm68KeCyftiDlmMXO5iY49ItOhV+WHcvSTCTINB87+fjD9vAM1VEbetY eDjSIqL9I6SYwTje3USgH0OV/X9MeQXB8cUOqAQ4I0K3qYKZU0r5/JMoZ2stHMP1 k6g70VBhnbUzPDj+9vnxxIiXz5jMbKxbqjC6qw1DuPtJBMxC4csFlEgeboewZtq8 z/7m7rxGSxQSyxjPSoLP+GAHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIUOrHXJv 65o73c5CiLhV0ZpFs70wHwYDVR0jBBgwFoAUhtoZAOYVDL2c2BWsZ9xTpebTwCcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5MzNCL0U5OEExMTNFOTI2 NDExRUU5OTQ3REE1QkM0RjlBRTAyL2h0b1pBT1lWREwyYzJCV3NaOXhUcGViVHdD Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHRvWkFPWVZETDJjMkJXc1o5eFRwZWJUd0NjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5 MzNCL0U5OEExMTNFOTI2NDExRUU5OTQ3REE1QkM0RjlBRTAyL2h0b1pBT1lWREwy YzJCV3NaOXhUcGViVHdDYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZ6GtyrE82oBATL3F46TOm+yfoQpHYV5JMya9bIwZsX32SH5/dan/dR 2FteQzPmUnv9/vSTHYVGNBgQKNSVIyy3i2DTS5JeCLfGzs3f3twwFtwV+iAbS5yc H+RM7ABfl7126YjftaWuClwlSoZZYjKiyvR71wWLMohbQ73L61qE9gs0WOdBT1g5 dlGSj/2jxmCRin1zWe8cmJu3B1XfImzosfmmZ9LwN/dR2vJr81XFM5BLa3uNuGow Zp5oPYUtdevGeXEovnZke6BxNMlY5mEJphcygKL45H0A+2Wr+vp5k0Z/vP29pcn6 mARVzAxoD9qQU7u7+M8S+3o0uyAK7Ic= -----END CERTIFICATE-----Generated at Fri May 17 08:52:44 2024 by rpki-client on console-ams.rpki-client.org