$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft File: hxSXyIUOQWJXlcT42UXHs9BBbB8.mft (raw, json) Hash identifier: NOSIYriztEzvmrdfTGcsw+Eu4983m+q323cDqP8X3+w= Subject key identifier: FB:0E:E4:5B:EE:BD:08:18:53:D9:1A:46:03:B7:F4:41:95:64:79:09 Authority key identifier: 87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F Certificate issuer: /CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Certificate serial: 055E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft Manifest number: 055A Signing time: Wed 01 May 2024 01:06:43 +0000 Manifest this update: Wed 01 May 2024 01:06:43 +0000 Manifest next update: Wed 08 May 2024 01:06:43 +0000 Files and hashes: 1: hxSXyIUOQWJXlcT42UXHs9BBbB8.crl (hash: a/eO/NloOk6/wHQa9bZLLKVL66HJimYWTuYqyb69fYs=) 2: 925B815E9ABE11EBA445A74FC4F9AE02.roa (hash: 7FTW8g2I40b669SnIHCtvwlGwsPOnVhykZhLdbdhjFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F Validity Not Before: May 1 01:06:43 2024 GMT Not After : May 8 01:06:43 2024 GMT Subject: CN=663195a3-3e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b7:03:ab:a4:39:df:9a:f5:6a:f7:a7:45:d8: 1b:52:d3:8a:4a:4d:47:60:43:96:8f:cf:d1:93:b4: 2d:00:2a:a4:cc:18:cd:88:c3:c1:dc:1f:59:e6:fc: 41:14:85:75:89:1b:ae:0f:21:ac:db:10:5e:d5:8d: 79:e4:44:2c:8c:0a:38:84:8a:42:39:a6:8c:37:85: d7:ae:6b:71:0d:3f:b5:18:b2:32:79:82:f2:72:ee: 17:9b:21:28:1b:ff:46:03:18:16:cf:98:15:83:33: 9a:25:e4:8f:af:fe:ee:5e:51:ae:13:66:dd:a8:0c: d2:71:b8:df:a4:67:4b:b0:b3:03:f6:37:28:98:1f: 96:0c:c5:8e:d4:f2:82:3a:1c:c9:0e:d4:ef:fe:bc: 48:e2:eb:1c:ec:7a:47:c8:c0:2a:1d:e2:ed:51:13: 31:bb:bc:8b:a3:91:24:0c:55:c2:00:33:87:31:0d: 7d:45:db:c1:83:9a:d9:ba:dc:0c:fc:6f:9b:a8:13: 1f:34:02:61:5e:a4:1d:2f:3a:60:c2:51:f0:71:66: 82:ed:4f:e9:88:1c:16:27:12:ef:d1:68:41:41:5c: 8d:76:3d:ab:e5:28:1a:f9:9e:d7:9d:3b:8f:78:12: 8a:6d:23:44:73:ab:80:2e:ca:a1:0a:20:26:b1:99: 61:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:0E:E4:5B:EE:BD:08:18:53:D9:1A:46:03:B7:F4:41:95:64:79:09 X509v3 Authority Key Identifier: keyid:87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:4e:24:68:56:85:4b:c3:c9:59:fc:7d:d3:dc:51:3d:77:c3: a2:4f:39:d8:47:9b:1a:71:aa:93:a7:14:40:54:62:9a:fe:0c: 37:28:6a:0d:f9:2a:ce:15:82:22:64:d4:d1:e2:c1:32:ef:31: 56:53:d1:6d:37:56:a1:eb:8b:ed:d5:0f:40:f3:34:ee:97:fe: 99:b2:22:24:0d:b0:f4:68:f1:fa:cd:83:01:a4:1c:82:c9:25: d8:0a:1d:7c:f4:8f:ba:1e:c5:3e:d4:91:67:f0:d3:d9:57:ba: cb:24:d4:0c:33:a0:37:29:65:18:36:89:bf:3e:61:a9:02:86: 7e:01:6a:59:de:cc:76:64:43:dd:09:3b:3b:6c:ca:e6:de:93: 67:d9:8e:65:55:9b:a3:69:21:b4:c0:42:6b:82:48:cb:f6:6e: 9b:53:90:4e:a9:2c:9a:d9:b7:5d:cc:73:5c:60:93:90:ce:85: 1a:94:a3:c3:5f:70:7a:33:79:2b:0c:64:00:10:d9:c2:d1:1a: eb:db:66:c3:f2:96:2d:10:68:cb:7a:4b:7c:89:dc:ba:13:c0: cd:60:36:e5:6b:73:9f:fd:20:80:de:2e:72:13:5e:e2:72:e2: 92:76:bd:c5:64:ee:10:98:0b:2e:bf:6f:c4:d0:b8:b8:8a:8b: 91:d9:c4:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4MjUxMTAvBgNVBAUTKDg3MTQ5N0M4ODUwRTQxNjI1Nzk1QzRGOEQ5NDVDN0Iz RDA0MTZDMUYwHhcNMjQwNTAxMDEwNjQzWhcNMjQwNTA4MDEwNjQzWjAYMRYwFAYD VQQDEw02NjMxOTVhMy0zZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47cDq6Q535r1avenRdgbUtOKSk1HYEOWj8/Rk7QtACqkzBjNiMPB3B9Z5vxB FIV1iRuuDyGs2xBe1Y155EQsjAo4hIpCOaaMN4XXrmtxDT+1GLIyeYLycu4XmyEo G/9GAxgWz5gVgzOaJeSPr/7uXlGuE2bdqAzScbjfpGdLsLMD9jcomB+WDMWO1PKC OhzJDtTv/rxI4usc7HpHyMAqHeLtURMxu7yLo5EkDFXCADOHMQ19RdvBg5rZutwM /G+bqBMfNAJhXqQdLzpgwlHwcWaC7U/piBwWJxLv0WhBQVyNdj2r5Sga+Z7XnTuP eBKKbSNEc6uALsqhCiAmsZlhtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsO5Fvu vQgYU9kaRgO39EGVZHkJMB8GA1UdIwQYMBaAFIcUl8iFDkFiV5XE+NlFx7PQQWwf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjgyNS8xQUE5MEZCNjlB QkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FXSlhsY1Q0MlVYSHM5QkJi QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h4U1h5SVVPUVdKWGxjVDQyVVhIczlCQmJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjgyNS8xQUE5MEZCNjlBQkMxMUVCOTAwQTE2NENDNEY5QUUwMi9oeFNYeUlVT1FX SlhsY1Q0MlVYSHM5QkJiQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6TiRoVoVLw8lZ/H3T3FE9d8OiTznYR5sacaqTpxRAVGKa/gw3KGoN +SrOFYIiZNTR4sEy7zFWU9FtN1ah64vt1Q9A8zTul/6ZsiIkDbD0aPH6zYMBpByC ySXYCh189I+6HsU+1JFn8NPZV7rLJNQMM6A3KWUYNom/PmGpAoZ+AWpZ3sx2ZEPd CTs7bMrm3pNn2Y5lVZujaSG0wEJrgkjL9m6bU5BOqSya2bddzHNcYJOQzoUalKPD X3B6M3krDGQAENnC0Rrr22bD8pYtEGjLekt8idy6E8DNYDbla3Of/SCA3i5yE17i cuKSdr3FZO4QmAsuv2/E0Li4iouR2cTP -----END CERTIFICATE-----Generated at Wed May 1 01:38:31 2024 by rpki-client on console-ams.rpki-client.org