$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: fjT3kjYSh+g36a8tlYoONM4tPAKN3miUka84lTYPwYc= Subject key identifier: 96:E7:90:52:00:2A:DB:13:11:CE:36:28:F2:B5:5F:C3:F9:9C:F3:C3 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0B00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0AF8 Signing time: Thu 02 May 2024 20:03:40 +0000 Manifest this update: Thu 02 May 2024 20:03:39 +0000 Manifest next update: Thu 09 May 2024 20:03:39 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: iZ3ddZ2qE1MQ4pKqbSUItkZSqsJq3Fu73f1YSQWmp7c=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: 0WIkVZHvHbfmhmhB6oHd8+/9+OomrnZmxz2SYuZCV+g=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: ggnPzvv3qd1Nj2UZ19i5QZeSlHSatF+uNOmRUyudW3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2816 (0xb00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: May 2 20:03:39 2024 GMT Not After : May 9 20:03:39 2024 GMT Subject: CN=6633f19b-b58d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6b:62:6a:83:42:2d:fb:30:31:f5:77:35:ca: 19:69:b5:eb:ca:3c:3a:98:c1:97:a9:29:9d:ce:f1: ed:6c:f7:ba:a7:32:6f:99:cd:11:9e:3b:28:dd:3a: 50:a1:8f:40:44:ab:6b:cd:ac:51:25:57:d7:f6:75: 07:ea:f0:5e:4e:ca:5a:21:f1:52:06:44:28:ab:73: d4:ea:a5:be:f3:e3:04:73:da:9b:53:46:fb:93:68: 91:d9:ed:a1:92:ec:c0:72:c2:c0:ea:e5:b1:62:5b: 39:eb:23:43:7f:1e:ba:18:3b:a7:4d:fd:98:27:1c: cf:5c:84:0f:dd:c0:f1:fa:57:da:38:84:1e:83:de: 05:38:43:74:84:85:c7:1b:af:b0:29:e5:0b:65:42: 0a:c9:30:ef:9b:c1:31:4f:80:bf:6e:a8:a3:b6:73: bc:8c:22:51:9a:10:c9:24:ca:fa:e9:f0:f5:57:30: 50:dc:51:89:86:d8:a9:0a:15:58:1c:e3:25:d6:30: f0:72:5f:f5:e3:4b:3b:46:fe:29:a8:3b:48:bc:ca: 1e:8f:cd:dd:9a:41:65:00:0d:59:b0:39:bd:f7:fe: c4:21:72:3e:21:5b:41:19:47:03:d4:1b:92:8c:3f: 29:97:8d:70:1f:8d:bc:43:9c:54:53:d5:9f:38:b1: a7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E7:90:52:00:2A:DB:13:11:CE:36:28:F2:B5:5F:C3:F9:9C:F3:C3 X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:2c:8b:61:8a:0f:0b:5c:ec:07:ee:c1:41:65:2e:2e:e7:55: ab:d7:dd:12:61:6e:1a:48:da:8e:f7:4c:6a:03:6f:0a:d1:a4: d4:67:67:93:4b:73:74:e9:fe:29:95:1b:26:a8:9a:36:f5:6e: b5:5c:c1:e5:61:c1:90:5e:52:c8:4f:68:b3:46:32:2c:55:5e: 66:0f:35:2a:d4:53:12:74:8e:18:4b:ac:3b:76:ea:4f:cf:5b: 94:66:60:61:32:47:16:be:4e:1e:79:0c:3c:67:1d:90:4b:60: fe:af:42:1b:8f:b2:ae:c1:59:64:ac:43:12:22:8f:f3:25:b0: 21:c3:46:60:cd:b1:81:7f:8f:d0:2a:93:e1:ca:11:2e:16:a0: 98:94:be:3e:a9:a6:df:da:de:40:fe:9b:eb:a2:dd:03:2c:ae: ad:67:1d:ad:a5:79:35:51:1a:57:97:64:4e:46:0b:7c:3c:c0: 3b:35:82:55:f8:63:8d:a6:83:7f:f6:32:fa:e5:df:ba:a1:7c: 22:e3:2c:8d:19:08:bc:cd:84:f3:f0:b5:04:8d:3b:a1:4a:ce: 1e:b9:55:50:9b:f6:04:2e:94:17:8f:d7:f3:52:38:d6:31:97: 39:7e:b9:c4:71:63:1f:0d:55:f8:f4:7f:fa:34:81:5a:fe:f7: d2:41:5d:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjQwNTAyMjAwMzM5WhcNMjQwNTA5MjAwMzM5WjAYMRYwFAYD VQQDEw02NjMzZjE5Yi1iNThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmtiaoNCLfswMfV3NcoZabXryjw6mMGXqSmdzvHtbPe6pzJvmc0Rnjso3TpQ oY9ARKtrzaxRJVfX9nUH6vBeTspaIfFSBkQoq3PU6qW+8+MEc9qbU0b7k2iR2e2h kuzAcsLA6uWxYls56yNDfx66GDunTf2YJxzPXIQP3cDx+lfaOIQeg94FOEN0hIXH G6+wKeULZUIKyTDvm8ExT4C/bqijtnO8jCJRmhDJJMr66fD1VzBQ3FGJhtipChVY HOMl1jDwcl/140s7Rv4pqDtIvMoej83dmkFlAA1ZsDm99/7EIXI+IVtBGUcD1BuS jD8pl41wH428Q5xUU9WfOLGnzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbnkFIA KtsTEc42KPK1X8P5nPPDMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJLIthig8LXOwH7sFBZS4u51Wr190SYW4aSNqO90xqA28K0aTUZ2eT S3N06f4plRsmqJo29W61XMHlYcGQXlLIT2izRjIsVV5mDzUq1FMSdI4YS6w7dupP z1uUZmBhMkcWvk4eeQw8Zx2QS2D+r0Ibj7KuwVlkrEMSIo/zJbAhw0ZgzbGBf4/Q KpPhyhEuFqCYlL4+qabf2t5A/pvrot0DLK6tZx2tpXk1URpXl2RORgt8PMA7NYJV +GONpoN/9jL65d+6oXwi4yyNGQi8zYTz8LUEjTuhSs4euVVQm/YELpQXj9fzUjjW MZc5frnEcWMfDVX49H/6NIFa/vfSQV2e -----END CERTIFICATE-----Generated at Thu May 2 22:28:59 2024 by rpki-client on console-ams.rpki-client.org