$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: Uu2EMiJZKWj/Mi0O/NNW4uVqCSmShCMh1f6NkCrorX4= Subject key identifier: 97:E2:CF:87:C1:3D:16:BB:4B:52:56:C5:C9:FD:FF:8A:9D:93:92:EB Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0928 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 0921 Signing time: Mon 06 May 2024 21:16:54 +0000 Manifest this update: Mon 06 May 2024 21:16:53 +0000 Manifest next update: Mon 13 May 2024 21:16:53 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: 4uqKgZHqdQa/RYKabVtR7bpGKbK0K2WRu1a1XX56mYU=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: d4HdQqOcQnMoKX1uLg6xWYRlkht764D7eO356NA5rck=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: Zt7cNZQ7qp0YlfXswQXB3ImkAzvBtGuEzRcCgHr2as4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2344 (0x928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: May 6 21:16:53 2024 GMT Not After : May 13 21:16:53 2024 GMT Subject: CN=663948c5-7239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:aa:68:84:ae:63:46:01:cf:16:9b:99:d9:9a: 7d:1e:b7:49:29:6f:17:51:f8:20:34:60:85:39:63: c9:6e:29:19:17:b9:0d:be:7f:1a:e7:65:76:e4:1f: 18:af:d8:83:7f:38:14:a6:35:b4:a9:9e:8b:3b:4e: ca:ff:07:c1:c2:31:f8:35:39:1d:a4:3f:64:a8:71: 00:ff:dc:2a:0a:1f:17:1c:58:e9:38:51:52:27:fe: 48:06:a6:00:a3:2c:39:f4:af:f9:52:7f:03:39:ca: ea:85:0f:6e:5d:ef:f8:95:66:03:37:c3:6d:89:09: 09:bf:fc:4d:28:07:c1:79:d6:73:a4:c7:b6:fc:de: d6:3d:51:d6:cc:be:d0:ae:48:3c:09:7e:cf:7c:e7: d3:61:44:4f:17:c2:33:0b:07:99:36:3d:8e:1d:86: 38:3f:c2:99:dc:16:d7:69:36:11:b6:ae:22:72:e0: 7a:53:a0:64:d1:8a:76:ec:34:d0:ed:16:7f:9e:44: e2:87:c3:b7:2b:45:e1:40:35:16:bb:32:ad:4e:c8: 88:69:de:50:07:f4:4f:7c:91:a7:a6:74:ac:2f:8a: 3b:5d:e2:d5:ce:41:b4:7f:3d:4b:e2:88:5d:ec:c3: 49:95:f1:cd:2c:01:fc:f9:1e:55:04:be:29:93:a4: 5f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E2:CF:87:C1:3D:16:BB:4B:52:56:C5:C9:FD:FF:8A:9D:93:92:EB X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:38:5a:07:f4:52:75:7e:e6:cf:c9:95:56:2f:b0:10:c6:55: 6c:f4:d7:58:3e:80:f7:9a:bd:61:e2:a6:e7:ab:e7:47:bf:8c: 72:fa:6a:29:6d:35:13:0c:5c:e4:f7:44:fb:ae:d8:70:64:a9: 4c:ee:c6:87:bc:97:cc:f8:21:6d:a7:87:2a:a7:2b:c6:5a:8f: 74:c7:a5:d2:2b:de:1c:8a:f4:71:78:9a:08:40:d2:4e:5c:a0: a1:a0:24:7e:33:8a:f0:d8:58:ed:40:35:e2:74:c4:f6:76:27: 25:d0:e1:ff:be:3e:54:db:d8:0a:d1:44:1f:c7:f3:d2:1e:f7: d3:5e:8a:fb:67:b2:97:ea:1a:5a:b4:43:78:06:91:dc:2b:73: e8:d7:cb:94:89:ac:1b:f7:e2:7c:79:50:0f:9f:b0:1a:79:ad: c7:0c:18:4d:0a:71:3b:d1:52:70:9c:a5:4f:44:76:cd:86:36: 1e:80:c3:b8:0d:47:32:a6:c9:86:8c:9d:11:92:74:c3:42:88: d6:7d:94:bc:3b:85:a5:e7:ef:e8:2d:fb:f2:89:a5:ba:93:04: d0:eb:ad:45:20:97:95:a2:cd:fa:3e:35:85:ba:17:ba:cd:59: 64:d1:66:b4:20:b9:c3:f6:15:5a:e2:1f:08:33:19:36:af:dd: 20:13:e7:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjQwNTA2MjExNjUzWhcNMjQwNTEzMjExNjUzWjAYMRYwFAYD VQQDEw02NjM5NDhjNS03MjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqpohK5jRgHPFpuZ2Zp9HrdJKW8XUfggNGCFOWPJbikZF7kNvn8a52V25B8Y r9iDfzgUpjW0qZ6LO07K/wfBwjH4NTkdpD9kqHEA/9wqCh8XHFjpOFFSJ/5IBqYA oyw59K/5Un8DOcrqhQ9uXe/4lWYDN8NtiQkJv/xNKAfBedZzpMe2/N7WPVHWzL7Q rkg8CX7PfOfTYURPF8IzCweZNj2OHYY4P8KZ3BbXaTYRtq4icuB6U6Bk0Yp27DTQ 7RZ/nkTih8O3K0XhQDUWuzKtTsiIad5QB/RPfJGnpnSsL4o7XeLVzkG0fz1L4ohd 7MNJlfHNLAH8+R5VBL4pk6RfHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfiz4fB PRa7S1JWxcn9/4qdk5LrMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApOFoH9FJ1fubPyZVWL7AQxlVs9NdYPoD3mr1h4qbnq+dHv4xy+mop bTUTDFzk90T7rthwZKlM7saHvJfM+CFtp4cqpyvGWo90x6XSK94civRxeJoIQNJO XKChoCR+M4rw2FjtQDXidMT2dicl0OH/vj5U29gK0UQfx/PSHvfTXor7Z7KX6hpa tEN4BpHcK3Po18uUiawb9+J8eVAPn7Aaea3HDBhNCnE70VJwnKVPRHbNhjYegMO4 DUcypsmGjJ0RknTDQojWfZS8O4Wl5+/oLfvyiaW6kwTQ661FIJeVos36PjWFuhe6 zVlk0Wa0ILnD9hVa4h8IMxk2r90gE+ey -----END CERTIFICATE-----Generated at Mon May 6 23:05:47 2024 by rpki-client on console-fra.rpki-client.org