$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: AlPY7bdGAiXcBAn6uptC49qwyei91x2hn5IASJgeY8Y= Subject key identifier: 38:76:AB:5C:A7:AF:12:EA:B7:8C:0A:5C:C1:66:3F:50:B7:0B:BB:5F Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 05A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 05A0 Signing time: Fri 03 May 2024 00:29:51 +0000 Manifest this update: Fri 03 May 2024 00:29:50 +0000 Manifest next update: Fri 10 May 2024 00:29:50 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: 3mNysiIOr6N5FDJerjG+zzO5KncJGyaBmFnrO2LSFTo=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: 2rbZP0hLoV0DMhY7TZ7xhr2TPtwlogIw6Hm7ii9B2vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1444 (0x5a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: May 3 00:29:50 2024 GMT Not After : May 10 00:29:50 2024 GMT Subject: CN=66342fff-1f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d2:f9:df:46:f7:1f:4e:99:4b:6f:27:2e:b5: ff:be:b6:27:5f:2d:73:4d:cf:6a:d5:06:e3:12:e1: 91:5b:ed:bf:b1:bd:bd:91:32:31:ea:c2:f1:46:d5: aa:24:71:fd:2c:91:e3:98:df:f1:3b:65:4a:4c:60: 3d:db:25:d8:37:8d:4a:e0:8a:da:69:b7:8e:8b:50: a1:40:11:cf:c5:46:a6:5d:c4:3f:64:b0:e9:81:41: 7f:e5:00:1e:89:ad:ee:67:4b:a6:4d:2d:a3:03:fa: f9:7c:3b:22:0f:0f:80:04:e7:4b:fa:8a:37:7a:a2: fd:99:3b:55:02:a2:58:7c:a5:f8:0b:19:0d:f9:87: 87:8f:ef:a9:dd:5a:bf:55:2c:ca:2b:a7:f1:f5:e4: 3a:c4:61:60:91:d9:5f:b8:a5:c4:d0:77:4b:7d:f6: 00:10:e5:9c:43:42:7c:f8:45:89:66:f6:81:d5:44: be:30:b3:d7:1b:e4:b1:e0:9d:68:bd:ae:b5:72:71: 81:17:ce:cd:98:f8:c5:4a:2b:95:3e:61:f6:a1:ef: 38:93:5f:a6:d3:75:a4:07:18:59:ea:7f:17:a3:96: f3:e9:22:5e:c2:ca:92:09:21:ce:98:e1:c7:e7:53: 68:43:ad:da:36:e0:72:e0:67:ca:e8:8c:80:b7:1d: 50:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:76:AB:5C:A7:AF:12:EA:B7:8C:0A:5C:C1:66:3F:50:B7:0B:BB:5F X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:1c:7a:cd:e0:f5:ae:79:c5:3b:ad:9f:ad:e7:83:36:15:9e: 0e:80:9d:43:68:de:c1:30:45:79:fe:0a:3e:3a:dd:1f:95:3d: c4:31:6c:bb:70:2b:ca:76:2f:b7:d6:7d:29:dc:a6:39:10:a3: cd:6c:65:23:34:7a:e0:62:22:cc:d1:92:f5:52:f6:7f:ba:51: d0:ab:c0:ce:d8:2b:ca:8f:e2:77:db:a1:fe:ca:9d:dd:be:93: 92:ad:a4:27:da:34:65:f4:76:59:a4:ec:77:30:b7:cb:4b:e9: 88:22:72:03:97:81:d1:3b:bc:ce:16:cf:d1:af:03:a8:47:d1: b9:5c:b5:f4:0a:14:1b:8f:ad:24:e8:d9:de:4f:c3:aa:3f:78: 7b:f1:4b:3f:2a:66:be:a6:38:ab:b0:46:ab:0f:8b:6b:c4:b6: b6:1c:b3:4c:e8:ff:a6:89:94:ee:bc:71:10:65:50:bd:a5:c2: 48:45:88:e0:31:04:04:01:44:0c:3b:4e:ef:71:c5:42:b7:94: 8d:61:6d:2e:f3:0b:62:9b:a4:59:a4:6f:e2:c5:7d:90:22:b7: b4:df:f5:ed:bc:e7:b9:40:4c:70:bb:6c:62:a0:f3:d2:08:41: 2d:ca:45:f2:1b:12:6c:50:f3:88:65:14:9f:69:25:fd:b7:5e: ef:d0:b2:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjQwNTAzMDAyOTUwWhcNMjQwNTEwMDAyOTUwWjAYMRYwFAYD VQQDEw02NjM0MmZmZi0xZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdL530b3H06ZS28nLrX/vrYnXy1zTc9q1QbjEuGRW+2/sb29kTIx6sLxRtWq JHH9LJHjmN/xO2VKTGA92yXYN41K4IraabeOi1ChQBHPxUamXcQ/ZLDpgUF/5QAe ia3uZ0umTS2jA/r5fDsiDw+ABOdL+oo3eqL9mTtVAqJYfKX4CxkN+YeHj++p3Vq/ VSzKK6fx9eQ6xGFgkdlfuKXE0HdLffYAEOWcQ0J8+EWJZvaB1US+MLPXG+Sx4J1o va61cnGBF87NmPjFSiuVPmH2oe84k1+m03WkBxhZ6n8Xo5bz6SJewsqSCSHOmOHH 51NoQ63aNuBy4GfK6IyAtx1QTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDh2q1yn rxLqt4wKXMFmP1C3C7tfMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBHHrN4PWuecU7rZ+t54M2FZ4OgJ1DaN7BMEV5/go+Ot0flT3EMWy7 cCvKdi+31n0p3KY5EKPNbGUjNHrgYiLM0ZL1UvZ/ulHQq8DO2CvKj+J326H+yp3d vpOSraQn2jRl9HZZpOx3MLfLS+mIInIDl4HRO7zOFs/RrwOoR9G5XLX0ChQbj60k 6NneT8OqP3h78Us/Kma+pjirsEarD4trxLa2HLNM6P+miZTuvHEQZVC9pcJIRYjg MQQEAUQMO07vccVCt5SNYW0u8wtim6RZpG/ixX2QIre03/XtvOe5QExwu2xioPPS CEEtykXyGxJsUPOIZRSfaSX9t17v0LIa -----END CERTIFICATE-----Generated at Fri May 3 03:10:46 2024 by rpki-client on console-ams.rpki-client.org