$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: pUAI0XgkLrO1lzdrY38FlkVB/WW8bsLr/YKOWwLkHi8= Subject key identifier: C0:0D:53:9D:D2:AB:D1:E3:88:BC:D3:67:BB:B6:79:32:58:64:53:3C Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 2019 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 200A Signing time: Mon 06 May 2024 16:24:13 +0000 Manifest this update: Mon 06 May 2024 16:24:12 +0000 Manifest next update: Mon 13 May 2024 16:24:12 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: osG6x5dXdSh1bmoX8dvwxpZyvfBTPNUl9ecY+3FVe+Q=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: NlJZrM3QCrHyD7fOOe9FlFVoBwgbAQOcdDITda//eQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8217 (0x2019) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: May 6 16:24:12 2024 GMT Not After : May 13 16:24:12 2024 GMT Subject: CN=6639042c-8bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:08:b2:e2:31:b0:35:1c:29:b6:e9:d5:68:72: 6a:2f:8e:9e:fa:5e:41:47:7b:38:26:0a:a3:8a:b4: 1f:14:aa:9b:14:b1:84:80:20:34:e1:2b:77:fe:44: e4:d2:b8:f4:79:97:a8:08:1a:e4:93:a2:85:fb:9d: 3e:5c:14:69:4d:c0:7b:9f:fa:47:b6:65:c3:6c:40: 52:87:11:33:1d:cb:b4:54:40:d8:ac:7e:df:fd:2f: c7:ab:f8:9f:9a:02:cf:e5:ac:b5:30:0e:71:18:0b: 59:07:8a:42:b4:c2:5f:2f:0b:d4:80:d5:58:cd:50: bb:b8:b6:3a:cd:82:97:58:da:6c:51:02:8f:02:68: 0d:eb:ba:32:58:87:a4:a9:a4:5c:fc:d6:4c:f4:4f: 26:c7:08:c7:89:f4:f8:c9:ab:74:f1:f1:aa:bf:13: 0c:fb:3c:fa:59:ad:a4:95:18:2c:c8:cc:0b:06:ec: 0a:d4:92:d3:3b:80:81:cd:1c:20:c3:e4:c2:20:a8: 19:93:14:b5:f9:d2:f8:d0:09:2a:ea:71:84:bc:ff: 79:a3:17:7c:da:76:e8:35:30:ca:4b:9a:5b:76:29: 8a:1a:98:53:7e:a0:10:76:b9:25:61:cf:8e:cd:4d: e0:13:21:9b:b2:b3:41:bd:99:48:6b:d9:64:82:3e: dc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0D:53:9D:D2:AB:D1:E3:88:BC:D3:67:BB:B6:79:32:58:64:53:3C X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:fe:93:a5:d0:0e:f3:d3:29:1f:e0:13:a3:fd:ab:ff:9f:89: 59:4e:46:5a:5c:39:30:57:fe:61:40:3e:5a:e2:89:e4:ab:ec: 64:20:8a:ce:4d:cb:ec:2e:d0:3c:33:11:61:9b:2f:87:fc:46: 52:c4:f5:f6:09:84:97:e0:96:9b:bb:a6:72:1e:24:5d:a6:79: 85:c8:6b:58:52:1c:a2:b2:ec:6b:d7:83:ef:60:de:fd:8e:09: aa:24:e7:6f:bd:eb:aa:c7:99:1d:d8:6b:86:bf:b2:19:8c:86: 0f:69:f8:ae:8a:be:0c:d0:62:55:9a:ff:f8:d4:f2:2d:07:a4: 4f:fd:ac:74:45:5c:f0:5a:2f:b5:9e:00:fe:db:e8:8c:9d:29: f3:a0:98:39:8c:d8:67:24:cc:d7:ec:c9:34:25:0c:e9:0e:48: 5a:45:e2:f9:d0:c0:de:cc:cb:18:91:64:0c:25:d0:7b:4f:70: f0:7c:9e:16:ac:8b:19:70:58:a8:8d:61:ab:72:a7:cb:44:ba: 4a:51:10:19:16:d2:36:c4:0f:61:c5:7b:b1:de:50:ed:55:79: d1:ae:2d:68:c5:00:c6:fd:ff:56:c8:5c:db:1e:74:cb:44:11: 4c:3f:e7:e0:e6:33:f0:10:73:51:23:c9:0b:0e:91:1f:70:e1: f4:dd:b8:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjQwNTA2MTYyNDEyWhcNMjQwNTEzMTYyNDEyWjAYMRYwFAYD VQQDEw02NjM5MDQyYy04YmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wiy4jGwNRwptunVaHJqL46e+l5BR3s4JgqjirQfFKqbFLGEgCA04St3/kTk 0rj0eZeoCBrkk6KF+50+XBRpTcB7n/pHtmXDbEBShxEzHcu0VEDYrH7f/S/Hq/if mgLP5ay1MA5xGAtZB4pCtMJfLwvUgNVYzVC7uLY6zYKXWNpsUQKPAmgN67oyWIek qaRc/NZM9E8mxwjHifT4yat08fGqvxMM+zz6Wa2klRgsyMwLBuwK1JLTO4CBzRwg w+TCIKgZkxS1+dL40Akq6nGEvP95oxd82nboNTDKS5pbdimKGphTfqAQdrklYc+O zU3gEyGbsrNBvZlIa9lkgj7cDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMANU53S q9HjiLzTZ7u2eTJYZFM8MB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh/pOl0A7z0ykf4BOj/av/n4lZTkZaXDkwV/5hQD5a4onkq+xkIIrO TcvsLtA8MxFhmy+H/EZSxPX2CYSX4Jabu6ZyHiRdpnmFyGtYUhyisuxr14PvYN79 jgmqJOdvveuqx5kd2GuGv7IZjIYPafiuir4M0GJVmv/41PItB6RP/ax0RVzwWi+1 ngD+2+iMnSnzoJg5jNhnJMzX7Mk0JQzpDkhaReL50MDezMsYkWQMJdB7T3DwfJ4W rIsZcFiojWGrcqfLRLpKURAZFtI2xA9hxXux3lDtVXnRri1oxQDG/f9WyFzbHnTL RBFMP+fg5jPwEHNRI8kLDpEfcOH03bjs -----END CERTIFICATE-----Generated at Mon May 6 17:43:31 2024 by rpki-client on console-ams.rpki-client.org