$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft File: hsI8F7xNIO4W8JLTWiz2VU_scRk.mft (raw, json) Hash identifier: dU89Dep563JwMjqbMhpVy3XGTXLd9JuV904MpiDkm7I= Subject key identifier: E0:96:17:06:40:7E:F0:EC:E8:AA:E1:AA:06:99:13:2F:70:DD:24:E0 Authority key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 Certificate issuer: /CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Certificate serial: 082A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft Manifest number: 0823 Signing time: Thu 02 May 2024 21:56:01 +0000 Manifest this update: Thu 02 May 2024 21:56:01 +0000 Manifest next update: Thu 09 May 2024 21:56:01 +0000 Files and hashes: 1: hsI8F7xNIO4W8JLTWiz2VU_scRk.crl (hash: 26wBbwZnbteR2MTAndkA7/szGV+sk2tn6LfMOX1MVtI=) 2: E6FD5EBCBA3A11EBA9482F5AC4F9AE02.roa (hash: 1sQjt0XM1fA1SrssUF+X7DLEJkzxBGy6FbiwDIugHrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2090 (0x82a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119 Validity Not Before: May 2 21:56:01 2024 GMT Not After : May 9 21:56:01 2024 GMT Subject: CN=66340bf1-20c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:03:84:d7:43:6d:79:fd:87:64:d4:6a:36:93: 36:73:b7:52:f9:19:5e:42:da:da:bb:42:f4:07:9c: e7:65:7b:90:32:16:00:c2:78:5a:7f:97:5e:7e:2d: 78:a6:f1:e3:02:27:40:3a:fc:f1:75:ed:32:21:2c: d6:bf:ad:c8:94:a3:99:ac:01:6a:0a:f2:19:c5:be: 0f:43:71:94:55:6a:c8:d2:96:32:7d:37:d0:fe:36: 08:ee:0d:54:51:57:72:42:d7:87:6d:2d:cd:63:01: f1:5a:95:d1:14:af:d2:01:ea:83:3e:d1:15:3a:d9: 48:ba:2a:46:0c:92:1c:9c:7f:2a:f0:a5:0c:e2:f0: 33:be:9e:a9:25:c4:e8:44:f2:9e:f5:05:85:e6:21: c2:63:06:97:1a:8d:eb:42:32:8c:54:1f:d0:70:bb: 04:8f:7c:b9:c0:2f:e7:72:6e:55:94:62:35:dd:13: 9e:e2:b4:64:ca:1e:c4:7c:0b:e6:87:7d:7a:51:6d: c9:5a:28:f9:27:13:c8:91:43:4b:da:aa:27:30:c9: 8b:c5:9e:03:4c:98:ef:43:5f:d4:24:d5:29:30:05: 7e:d8:b1:88:23:26:0e:2c:9e:b4:9f:fa:cd:df:68: 7d:d2:1a:3a:1f:62:f4:bb:1f:f1:6f:88:a5:74:56: 43:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:96:17:06:40:7E:F0:EC:E8:AA:E1:AA:06:99:13:2F:70:DD:24:E0 X509v3 Authority Key Identifier: keyid:86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ce:9c:d7:61:62:de:4b:6a:55:9c:9a:00:b7:25:ca:01:a0: 37:f1:6f:f4:dd:16:6a:ee:9d:71:42:3e:1c:92:f6:59:bd:82: 72:94:05:4d:24:50:de:77:71:58:58:53:c7:38:59:14:73:9f: db:ec:25:6f:cc:76:cc:ac:f9:5f:ee:d2:a2:ff:9d:24:81:da: 7a:fa:3b:a3:80:5d:60:bc:8a:c2:57:89:5d:cc:69:e7:58:df: bf:52:dc:de:d0:91:e3:35:15:31:c9:cd:60:f5:e5:41:e5:99: 18:c1:91:4a:48:e9:37:e5:8d:e6:98:68:f2:40:98:c0:05:2e: 2d:b3:90:8a:ee:f5:8a:19:1d:c7:d6:5f:05:5e:ef:b4:80:ff: c3:b8:81:e7:f9:78:7a:4d:14:50:f4:13:dc:a1:bc:51:0a:c6: 03:9a:c9:98:46:26:d0:f8:8f:be:6b:25:13:3d:73:8d:55:c5: d6:dd:84:a8:be:69:e4:a2:26:7b:82:0a:6e:ca:6c:ea:df:72: 83:82:75:5e:b7:6d:38:d6:ec:ca:cb:50:93:13:8d:70:fd:58: 25:be:84:e0:f9:e6:80:5f:d3:de:6b:b6:2b:0d:64:d5:96:d5: 40:1e:b1:06:66:7a:0d:0a:70:32:8a:81:ca:0c:70:c9:ad:d6: 6d:1d:80:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFENzcxMTAvBgNVBAUTKDg2QzIzQzE3QkM0RDIwRUUxNkYwOTJEMzVBMkNGNjU1 NEZFQzcxMTkwHhcNMjQwNTAyMjE1NjAxWhcNMjQwNTA5MjE1NjAxWjAYMRYwFAYD VQQDEw02NjM0MGJmMS0yMGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQOE10Ntef2HZNRqNpM2c7dS+RleQtrau0L0B5znZXuQMhYAwnhaf5defi14 pvHjAidAOvzxde0yISzWv63IlKOZrAFqCvIZxb4PQ3GUVWrI0pYyfTfQ/jYI7g1U UVdyQteHbS3NYwHxWpXRFK/SAeqDPtEVOtlIuipGDJIcnH8q8KUM4vAzvp6pJcTo RPKe9QWF5iHCYwaXGo3rQjKMVB/QcLsEj3y5wC/ncm5VlGI13ROe4rRkyh7EfAvm h316UW3JWij5JxPIkUNL2qonMMmLxZ4DTJjvQ1/UJNUpMAV+2LGIIyYOLJ60n/rN 32h90ho6H2L0ux/xb4ildFZD9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCWFwZA fvDs6KrhqgaZEy9w3STgMB8GA1UdIwQYMBaAFIbCPBe8TSDuFvCS01os9lVP7HEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ3Ny80QjY0MjdFMkFC RjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklPNFc4SkxUV2l6MlZVX3Nj UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzSThGN3hOSU80VzhKTFRXaXoyVlVfc2NSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ3Ny80QjY0MjdFMkFCRjkxMUVBODhBQUUzMkNDNEY5QUUwMi9oc0k4Rjd4TklP NFc4SkxUV2l6MlZVX3NjUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhzpzXYWLeS2pVnJoAtyXKAaA38W/03RZq7p1xQj4ckvZZvYJylAVN JFDed3FYWFPHOFkUc5/b7CVvzHbMrPlf7tKi/50kgdp6+jujgF1gvIrCV4ldzGnn WN+/Utze0JHjNRUxyc1g9eVB5ZkYwZFKSOk35Y3mmGjyQJjABS4ts5CK7vWKGR3H 1l8FXu+0gP/DuIHn+Xh6TRRQ9BPcobxRCsYDmsmYRibQ+I++ayUTPXONVcXW3YSo vmnkoiZ7ggpuymzq33KDgnVet2041uzKy1CTE41w/VglvoTg+eaAX9Pea7YrDWTV ltVAHrEGZnoNCnAyioHKDHDJrdZtHYDj -----END CERTIFICATE-----Generated at Thu May 2 22:28:58 2024 by rpki-client on console-ams.rpki-client.org