$ rpki-client -vvf rpki.apnic.net/member_repository/A91948F2/E5F2C7DACD0A11ECAE0A0C2EC4F9AE02/hnTXe0A3MAGG04EEg47spLgYMsI.mft File: hnTXe0A3MAGG04EEg47spLgYMsI.mft (raw, json) Hash identifier: JGW9WoOZu47B8TM76AfhIlrrw6tMk9ShUbbqa0hMqOY= Subject key identifier: F0:47:C3:18:34:DA:95:89:A1:CE:33:D7:7C:A3:B6:37:1E:ED:21:DC Authority key identifier: 86:74:D7:7B:40:37:30:01:86:D3:81:04:83:8E:EC:A4:B8:18:32:C2 Certificate issuer: /CN=A91948F2/serialNumber=8674D77B4037300186D38104838EECA4B81832C2 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnTXe0A3MAGG04EEg47spLgYMsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91948F2/E5F2C7DACD0A11ECAE0A0C2EC4F9AE02/hnTXe0A3MAGG04EEg47spLgYMsI.mft Manifest number: 0253 Signing time: Fri 03 May 2024 03:59:16 +0000 Manifest this update: Fri 03 May 2024 03:59:15 +0000 Manifest next update: Fri 10 May 2024 03:59:15 +0000 Files and hashes: 1: hnTXe0A3MAGG04EEg47spLgYMsI.crl (hash: Yy+bMzRphpxMOc07K+SHzc4+AUoQFoNPLGo5lbfJ/f0=) 2: E5708A82CD0E11EC8038C333C4F9AE02.roa (hash: bvhljrW7JyoPbpspTQPlbRcWJePp44bixxuUIkf1ppo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91948F2/E5F2C7DACD0A11ECAE0A0C2EC4F9AE02/hnTXe0A3MAGG04EEg47spLgYMsI.crl rsync://rpki.apnic.net/member_repository/A91948F2/E5F2C7DACD0A11ECAE0A0C2EC4F9AE02/hnTXe0A3MAGG04EEg47spLgYMsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnTXe0A3MAGG04EEg47spLgYMsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91948F2/serialNumber=8674D77B4037300186D38104838EECA4B81832C2 Validity Not Before: May 3 03:59:15 2024 GMT Not After : May 10 03:59:15 2024 GMT Subject: CN=66346114-377c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:33:68:61:9c:7d:f5:a5:34:4e:97:7e:59:6b: d2:98:6c:a6:f2:79:3a:93:a9:4e:83:25:2d:8c:94: c9:17:bb:86:79:4b:ac:ba:14:b9:94:d2:1c:eb:5e: f8:b3:f2:bf:59:3d:a9:07:97:c4:c2:17:c2:98:db: b9:c6:78:fc:fd:c3:c3:57:5e:e1:9e:4d:3a:0d:96: 2c:e5:4c:57:14:c5:c7:a1:af:bd:75:f5:08:c9:d6: 32:ca:38:d3:32:51:65:5c:4c:3d:de:07:1d:f3:fc: c7:0e:dd:50:a2:20:70:04:30:2e:ee:9f:bd:52:25: 57:7d:e2:4e:bb:d4:58:dc:fb:e8:47:16:43:c6:dc: dd:18:59:ea:b7:1a:19:4a:08:bd:8a:77:d8:f8:78: b7:64:ca:1c:31:8f:87:51:17:6d:54:96:2e:8d:bb: ce:df:63:09:3b:d1:09:b1:9e:02:c8:b0:11:cd:af: 3c:7a:3b:0b:b7:0a:c3:ea:68:87:19:cb:5c:b9:f8: 80:23:2c:c6:44:6c:e2:fd:00:aa:87:c9:4c:99:f5: 7b:82:09:af:89:38:2f:ef:39:16:dd:03:ce:93:00: 32:e4:96:b0:3b:c4:72:f5:af:f8:a3:6e:9e:8b:16: 38:93:1a:93:14:d6:2c:ae:72:83:8f:49:ce:09:4c: d3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:47:C3:18:34:DA:95:89:A1:CE:33:D7:7C:A3:B6:37:1E:ED:21:DC X509v3 Authority Key Identifier: keyid:86:74:D7:7B:40:37:30:01:86:D3:81:04:83:8E:EC:A4:B8:18:32:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91948F2/E5F2C7DACD0A11ECAE0A0C2EC4F9AE02/hnTXe0A3MAGG04EEg47spLgYMsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnTXe0A3MAGG04EEg47spLgYMsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91948F2/E5F2C7DACD0A11ECAE0A0C2EC4F9AE02/hnTXe0A3MAGG04EEg47spLgYMsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:07:12:7a:92:fc:f3:6e:ea:68:5a:87:98:57:78:7c:f8:f5: 0d:42:98:78:53:bb:ac:d4:87:b1:fb:ba:ed:dc:51:c1:57:b9: e7:ab:80:b7:7e:6e:f5:9d:37:bd:91:a1:72:43:3c:56:3a:96: 39:e3:ce:5a:40:97:29:68:91:0d:7b:09:8f:a3:0b:33:db:1b: 7d:f8:d5:82:f1:46:4d:6e:d3:11:de:05:2a:d5:4e:7e:5f:95: 0d:0c:af:33:0f:58:09:f0:86:f7:2e:bb:35:00:b5:ab:e7:61: 76:5b:db:00:72:45:16:cb:37:3d:ef:93:d9:0a:86:7e:82:60: b9:d1:45:72:ea:b2:68:20:aa:c2:5c:dc:bf:33:5f:15:6a:0a: d4:cc:bb:02:c8:a1:1f:99:0f:b1:59:95:4c:0a:67:e8:ba:25: 6d:8c:e4:7d:c9:23:c3:00:75:1e:07:95:a3:a9:9b:6a:c4:75: 17:6d:0f:79:8b:65:ee:cb:bd:48:5f:11:60:ce:b5:06:cf:30: 04:10:1b:16:22:ad:92:3a:af:6e:f9:8c:1a:71:ce:78:4d:be: 6b:b4:3c:a9:d1:94:71:eb:c8:c0:e8:ad:0a:6d:ec:7e:eb:6a: 57:53:f0:5a:1e:51:e7:19:2d:10:4c:e8:7a:a1:7d:6e:10:8e: a9:5e:aa:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ4RjIxMTAvBgNVBAUTKDg2NzRENzdCNDAzNzMwMDE4NkQzODEwNDgzOEVFQ0E0 QjgxODMyQzIwHhcNMjQwNTAzMDM1OTE1WhcNMjQwNTEwMDM1OTE1WjAYMRYwFAYD VQQDEw02NjM0NjExNC0zNzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzNoYZx99aU0Tpd+WWvSmGym8nk6k6lOgyUtjJTJF7uGeUusuhS5lNIc6174 s/K/WT2pB5fEwhfCmNu5xnj8/cPDV17hnk06DZYs5UxXFMXHoa+9dfUIydYyyjjT MlFlXEw93gcd8/zHDt1QoiBwBDAu7p+9UiVXfeJOu9RY3PvoRxZDxtzdGFnqtxoZ Sgi9infY+Hi3ZMocMY+HURdtVJYujbvO32MJO9EJsZ4CyLARza88ejsLtwrD6miH GctcufiAIyzGRGzi/QCqh8lMmfV7ggmviTgv7zkW3QPOkwAy5JawO8Ry9a/4o26e ixY4kxqTFNYsrnKDj0nOCUzTWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBHwxg0 2pWJoc4z13yjtjce7SHcMB8GA1UdIwQYMBaAFIZ013tANzABhtOBBIOO7KS4GDLC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDhGMi9FNUYyQzdEQUNE MEExMUVDQUUwQTBDMkVDNEY5QUUwMi9oblRYZTBBM01BR0cwNEVFZzQ3c3BMZ1lN c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huVFhlMEEzTUFHRzA0RUVnNDdzcExnWU1zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDhGMi9FNUYyQzdEQUNEMEExMUVDQUUwQTBDMkVDNEY5QUUwMi9oblRYZTBBM01B R0cwNEVFZzQ3c3BMZ1lNc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOBxJ6kvzzbupoWoeYV3h8+PUNQph4U7us1Iex+7rt3FHBV7nnq4C3 fm71nTe9kaFyQzxWOpY5485aQJcpaJENewmPowsz2xt9+NWC8UZNbtMR3gUq1U5+ X5UNDK8zD1gJ8Ib3Lrs1ALWr52F2W9sAckUWyzc975PZCoZ+gmC50UVy6rJoIKrC XNy/M18VagrUzLsCyKEfmQ+xWZVMCmfouiVtjOR9ySPDAHUeB5WjqZtqxHUXbQ95 i2Xuy71IXxFgzrUGzzAEEBsWIq2SOq9u+Ywacc54Tb5rtDyp0ZRx68jA6K0Kbex+ 62pXU/BaHlHnGS0QTOh6oX1uEI6pXqrQ -----END CERTIFICATE-----Generated at Fri May 3 04:36:52 2024 by rpki-client on console-ams.rpki-client.org