$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: P1674XqlLB/IYGlypVFTj/gX3InTwRBgK3NEXLrw4gk= Subject key identifier: 29:62:EA:E2:42:D2:D5:38:B6:F4:87:75:01:15:E4:44:57:75:23:81 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 092E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 0925 Signing time: Thu 02 May 2024 21:17:58 +0000 Manifest this update: Thu 02 May 2024 21:17:57 +0000 Manifest next update: Thu 09 May 2024 21:17:57 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: cu2KKPtbAqhBqJaD/eJkgwWnWvyIiDmRPxp0aXOpXmE=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: kNKsyq1i1C6Xbz1o1/LD4SNgAN2MFmbW7qA4JteOOlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2350 (0x92e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: May 2 21:17:57 2024 GMT Not After : May 9 21:17:57 2024 GMT Subject: CN=66340306-dd24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e4:7d:de:ab:45:d5:0b:5c:31:b9:b0:c6:9f: 98:b6:2c:fd:f0:5a:72:ad:17:6a:ff:3d:29:a6:54: fb:1f:55:11:5e:59:cf:9a:cf:da:00:36:f9:39:de: 82:cc:aa:cd:3c:98:d9:e7:6d:c7:5a:6a:ef:d8:2c: 19:20:78:4f:fd:be:fb:aa:60:93:0b:f1:5a:cf:0c: 45:f5:e2:52:a7:06:d2:79:0c:df:2a:48:9b:45:3e: 55:df:5c:fc:08:60:f0:f2:c4:e3:09:1d:b9:d1:14: f0:ce:b8:16:b3:c6:79:e1:0f:bd:90:d3:0d:77:45: 51:72:bc:5d:87:af:ce:01:3b:98:b2:84:c9:a6:d1: e5:18:ba:24:b2:79:f8:0c:02:22:3e:19:a0:ff:4c: 22:ef:77:73:b3:53:a5:a0:e3:cb:13:a7:ad:c5:2b: 71:91:cc:8b:9e:6a:6e:35:03:76:61:ab:dd:8c:55: e0:2b:e6:fb:9a:b8:0b:d4:b2:23:1e:2d:0c:cb:aa: 9b:75:52:cb:db:52:ea:50:8e:8c:84:6f:f9:4d:d6: 54:31:ae:6e:05:dd:1d:c6:3c:7f:5d:61:a9:14:c7: 77:f8:79:0d:9b:36:61:70:b0:d7:ee:67:1e:46:cb: 2e:65:74:b5:92:c7:10:a1:53:0e:d7:41:cf:87:a4: 5c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:62:EA:E2:42:D2:D5:38:B6:F4:87:75:01:15:E4:44:57:75:23:81 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:b5:32:29:f7:0f:de:3c:7c:07:a3:c8:5b:4c:f4:b8:2f:91: be:92:13:20:4f:e6:6f:44:a1:7e:86:aa:9f:5c:f1:77:17:4c: 90:de:90:a3:33:44:68:4f:dd:3d:c5:11:df:21:cb:56:01:5f: 99:1b:5a:89:ca:0b:0e:d5:3e:13:f1:be:2c:51:9a:97:78:15: 99:f8:c5:ea:9f:21:06:2a:c4:d1:3f:8b:86:f0:aa:03:97:52: ee:08:ce:d7:23:9d:7d:37:3d:f8:16:21:50:4c:1d:e4:5d:ef: aa:c2:1e:f4:44:c6:26:6f:17:f7:79:c5:ec:82:65:44:97:80: 91:2b:a3:c2:2e:09:88:f2:3c:90:51:82:fc:54:7c:8d:13:85: 8e:a7:36:fa:6f:87:e5:d7:bb:08:f2:a5:cb:78:19:c7:c9:43: 5c:f2:cc:8e:30:32:41:0a:d1:80:dd:d8:18:e5:a9:95:46:17: c1:1d:12:b0:85:cc:6e:90:23:d9:94:d4:0e:78:5f:a5:a0:02: 9c:1e:34:c1:9b:c2:ff:ca:42:87:64:23:3b:26:a7:2b:f9:a1: a7:23:79:6b:3e:7c:8e:04:18:c5:fb:b8:18:73:81:46:03:fc: 7b:84:c9:0f:3b:3c:91:af:11:e8:7d:4f:9b:4d:42:ba:e0:9e: d8:57:78:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjQwNTAyMjExNzU3WhcNMjQwNTA5MjExNzU3WjAYMRYwFAYD VQQDEw02NjM0MDMwNi1kZDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOR93qtF1QtcMbmwxp+Ytiz98FpyrRdq/z0pplT7H1URXlnPms/aADb5Od6C zKrNPJjZ523HWmrv2CwZIHhP/b77qmCTC/FazwxF9eJSpwbSeQzfKkibRT5V31z8 CGDw8sTjCR250RTwzrgWs8Z54Q+9kNMNd0VRcrxdh6/OATuYsoTJptHlGLoksnn4 DAIiPhmg/0wi73dzs1OloOPLE6etxStxkcyLnmpuNQN2YavdjFXgK+b7mrgL1LIj Hi0My6qbdVLL21LqUI6MhG/5TdZUMa5uBd0dxjx/XWGpFMd3+HkNmzZhcLDX7mce RssuZXS1kscQoVMO10HPh6RczQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCli6uJC 0tU4tvSHdQEV5ERXdSOBMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+tTIp9w/ePHwHo8hbTPS4L5G+khMgT+ZvRKF+hqqfXPF3F0yQ3pCj M0RoT909xRHfIctWAV+ZG1qJygsO1T4T8b4sUZqXeBWZ+MXqnyEGKsTRP4uG8KoD l1LuCM7XI519Nz34FiFQTB3kXe+qwh70RMYmbxf3ecXsgmVEl4CRK6PCLgmI8jyQ UYL8VHyNE4WOpzb6b4fl17sI8qXLeBnHyUNc8syOMDJBCtGA3dgY5amVRhfBHRKw hcxukCPZlNQOeF+loAKcHjTBm8L/ykKHZCM7Jqcr+aGnI3lrPnyOBBjF+7gYc4FG A/x7hMkPOzyRrxHofU+bTUK64J7YV3iB -----END CERTIFICATE-----Generated at Thu May 2 22:28:59 2024 by rpki-client on console-ams.rpki-client.org