$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft File: Mh0Kt4oavjUafbeTINn_03KgjEU.mft (raw, json) Hash identifier: HSM5Cfv6n4hV/VZO3m7cdWZgCvGy1rPckTpiFjE+XCQ= Subject key identifier: DD:88:C6:83:83:19:B5:AA:E5:82:2A:45:DA:9C:FA:F4:BC:07:53:DC Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft Manifest number: 0120 Signing time: Sun 19 May 2024 05:14:27 +0000 Manifest this update: Sun 19 May 2024 05:14:27 +0000 Manifest next update: Sun 26 May 2024 05:14:27 +0000 Files and hashes: 1: Mh0Kt4oavjUafbeTINn_03KgjEU.crl (hash: zvIB2NAnQ5qJPhvdsD2q/pIBKn4M6sFjvEepem5Fd3o=) 2: 2DE5380464F811EDB4394F14C4F9AE02.roa (hash: W9+O+eK5EABiiQSLoqNa8VUxYYA1EjLDTV7nE0Bn2So=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Validity Not Before: May 19 05:14:27 2024 GMT Not After : May 26 05:14:27 2024 GMT Subject: CN=66498ab3-4c72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d9:f3:7b:d1:6a:91:b1:71:cc:26:29:52:56: 6f:72:e7:70:b8:8f:25:ef:b8:8c:45:9b:02:c9:32: e1:75:82:f4:b0:26:e4:83:86:eb:99:03:27:52:47: 70:9e:e1:f4:19:c5:da:89:65:a6:1f:48:92:5c:67: 25:60:d7:f4:ff:8d:9e:fe:a6:16:af:5e:6f:c9:70: d0:e9:d0:32:62:d8:72:30:69:13:c6:f7:17:29:97: e0:8e:c5:e5:80:1e:96:e6:68:8b:d7:5f:86:7f:6e: 89:bb:ea:f0:8b:8f:1e:a4:23:d3:cf:c6:9a:b5:53: c9:06:57:ba:41:71:84:9a:66:d4:e2:36:8d:97:fd: d4:9b:c6:31:bb:cf:6c:2e:b2:c7:71:71:0b:a8:5d: 83:d7:8d:8a:a5:6a:0c:30:f4:8a:b5:72:f6:18:3f: 63:af:0f:bf:53:77:39:0e:c9:50:6a:d9:56:42:f8: 24:bd:67:15:4b:59:e6:43:7f:c3:e6:9d:56:8e:7c: 6b:7d:40:c0:cc:e2:70:d1:99:ae:ed:66:0a:c6:e6: e6:b5:8e:b6:06:5f:6a:88:55:4f:36:43:bc:8b:bf: 90:a3:b7:90:a1:72:63:fe:76:f5:33:a5:a6:3c:92: 0b:73:50:9c:00:1a:ef:41:9a:7c:1b:1a:90:6a:ec: 7b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:88:C6:83:83:19:B5:AA:E5:82:2A:45:DA:9C:FA:F4:BC:07:53:DC X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:57:f5:ea:7a:d7:b0:55:ff:63:17:3b:11:3f:9f:80:03:04: af:be:59:f5:a0:41:52:3b:d2:88:25:41:49:5a:17:5f:16:8c: 18:a1:01:2b:02:b5:28:c4:b9:91:c0:7f:72:ca:98:d7:d2:8e: 24:f2:7a:79:23:4e:fc:9e:de:a6:1f:d5:43:fa:de:82:24:b2: aa:95:24:cc:a3:3f:51:67:4f:60:ca:71:94:0d:71:d7:ae:7a: 8c:dd:64:9b:20:18:29:4b:e7:1d:44:6c:53:75:56:ca:97:e7: f8:3e:77:95:f1:c7:18:60:8d:33:e9:b6:0f:71:eb:95:94:48: ba:b9:4d:4f:e1:76:4e:af:d7:60:e8:23:df:37:d1:27:6c:d9: d0:92:a4:5e:77:ac:5c:7f:2b:38:4a:1b:7f:09:85:56:bb:4b: 0f:7a:90:2f:50:c8:b6:f3:8e:e1:14:98:16:3a:68:9c:d7:bd: 30:bb:42:84:91:c7:9f:1a:93:e0:ed:6a:f8:40:6f:bc:02:d7: 7d:8e:b6:84:90:68:4e:22:c7:44:d4:d6:c2:6b:e2:55:d5:ae: b3:41:df:ee:2d:1e:e3:98:3d:3d:e0:bd:7b:73:c8:67:e6:64: 14:6f:c6:c5:f0:91:3d:96:4c:39:30:d6:31:e7:6a:2d:8c:61: 11:bf:c8:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjQwNTE5MDUxNDI3WhcNMjQwNTI2MDUxNDI3WjAYMRYwFAYD VQQDEw02NjQ5OGFiMy00YzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNnze9FqkbFxzCYpUlZvcudwuI8l77iMRZsCyTLhdYL0sCbkg4brmQMnUkdw nuH0GcXaiWWmH0iSXGclYNf0/42e/qYWr15vyXDQ6dAyYthyMGkTxvcXKZfgjsXl gB6W5miL11+Gf26Ju+rwi48epCPTz8aatVPJBle6QXGEmmbU4jaNl/3Um8Yxu89s LrLHcXELqF2D142KpWoMMPSKtXL2GD9jrw+/U3c5DslQatlWQvgkvWcVS1nmQ3/D 5p1WjnxrfUDAzOJw0Zmu7WYKxubmtY62Bl9qiFVPNkO8i7+Qo7eQoXJj/nb1M6Wm PJILc1CcABrvQZp8GxqQaux7uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2IxoOD GbWq5YIqRdqc+vS8B1PcMB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEZFRi9CMDM2M0Q2MDY0RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZq VWFmYmVUSU5uXzAzS2dqRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrV/XqetewVf9jFzsRP5+AAwSvvln1oEFSO9KIJUFJWhdfFowYoQEr ArUoxLmRwH9yypjX0o4k8np5I078nt6mH9VD+t6CJLKqlSTMoz9RZ09gynGUDXHX rnqM3WSbIBgpS+cdRGxTdVbKl+f4PneV8ccYYI0z6bYPceuVlEi6uU1P4XZOr9dg 6CPfN9EnbNnQkqRed6xcfys4Sht/CYVWu0sPepAvUMi2847hFJgWOmic170wu0KE kcefGpPg7Wr4QG+8Atd9jraEkGhOIsdE1NbCa+JV1a6zQd/uLR7jmD094L17c8hn 5mQUb8bF8JE9lkw5MNYx52otjGERv8g6 -----END CERTIFICATE-----Generated at Sun May 19 05:48:49 2024 by rpki-client on console-fra.rpki-client.org