$ rpki-client -vvf rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft File: 5HXUQnchUazw-uprObkBK9Ij05M.mft (raw, json) Hash identifier: gXg17tKv9Fb65xSUwK1Txhw4pyyFX7zvPBTLmKeRPuM= Subject key identifier: 23:DC:C2:71:14:A6:22:10:BD:D4:24:21:23:DC:EA:30:A3:B7:5F:F0 Authority key identifier: E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 Certificate issuer: /CN=A912809D/serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft Manifest number: 60 Signing time: Sun 19 May 2024 07:41:58 +0000 Manifest this update: Sun 19 May 2024 07:41:58 +0000 Manifest next update: Sun 26 May 2024 07:41:57 +0000 Files and hashes: 1: 5HXUQnchUazw-uprObkBK9Ij05M.crl (hash: +M6q0iWoeqDEzeQuxL+akJIiRJXrfi5R5o8jruKWqrc=) 2: 2BBE96C284FC11EEAA5EAA5DC4F9AE02.roa (hash: 1A/0rGLyMTQmgnyQaZkWrIknuMBOl+EJ36Nl+mEe2Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912809D/serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Validity Not Before: May 19 07:41:58 2024 GMT Not After : May 26 07:41:57 2024 GMT Subject: CN=6649ad46-98d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b6:87:20:5a:3f:ae:79:ac:42:a4:1e:d7:1d: 4d:7d:df:45:e3:91:66:d7:c0:2a:8c:f2:58:8b:3f: 8a:3a:0b:ce:de:7a:76:b0:93:a9:c8:45:80:12:00: ec:58:67:21:76:fb:3a:cf:b5:da:08:73:62:fa:17: bc:bd:12:77:dd:91:4f:43:ee:0e:9c:92:1d:33:d8: 08:55:15:bf:64:f1:8f:18:c4:7a:91:b0:fe:23:26: b5:1e:8c:17:48:22:28:55:47:28:25:24:21:0d:9d: 75:18:13:66:3a:b1:56:b0:23:de:aa:bf:fd:00:3c: c4:0e:ae:74:05:ee:83:e0:91:79:24:6c:a1:4d:e6: 47:e1:d8:d6:c6:39:8e:5e:d0:05:83:7e:61:2c:d5: e2:92:4c:42:9e:50:45:4f:e9:e4:be:8a:3a:86:14: bc:2b:3e:a8:77:50:02:12:04:41:98:50:b0:07:79: 66:61:31:82:b6:e3:42:0d:fe:2e:ba:07:a7:5b:9d: b3:1e:04:7f:cd:17:42:64:65:72:12:c9:1e:0c:3d: 8b:97:59:b5:65:86:5d:76:21:51:f1:43:62:0e:f0: 69:c1:a2:81:39:4f:be:9e:6b:c7:a1:dc:35:35:01: e5:be:48:ad:1e:e3:15:f8:7c:13:e4:f7:e6:05:28: e2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:DC:C2:71:14:A6:22:10:BD:D4:24:21:23:DC:EA:30:A3:B7:5F:F0 X509v3 Authority Key Identifier: keyid:E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:f1:38:36:74:4a:d0:04:b4:a2:c8:72:4d:d4:25:cb:8b:5d: 9b:c1:99:02:db:a3:6c:02:77:f0:aa:41:9b:cb:dd:7b:2e:90: 4c:8a:55:48:ac:31:71:d6:5b:bd:db:77:7f:6c:23:44:dc:9a: 9a:ea:d9:ef:3f:0a:2c:d6:78:60:0f:e4:fc:95:05:7a:97:68: f1:6d:5d:94:08:48:c8:1a:53:7a:e9:3c:80:3f:a9:99:1c:10: 31:79:77:d2:0f:e5:ea:37:52:da:9a:59:43:ae:65:ff:f0:3e: 7f:d0:5c:99:c6:0f:42:3f:90:fb:05:0d:b2:b0:45:85:a6:79: 05:5f:7c:ef:e5:2c:20:57:2e:1b:1d:2b:5d:90:d9:20:43:83: 8e:1c:b0:7a:e3:58:15:82:d6:a8:08:dc:22:ae:46:72:71:d8: 0f:ad:c0:2d:ac:94:4f:87:4b:0b:63:d0:fe:91:64:a7:25:b4: a3:86:10:a5:da:af:51:c7:d9:60:a9:38:54:81:d1:f3:d8:ad: d6:76:43:3e:c9:af:02:0d:f8:0a:54:f1:a6:c9:b2:a9:66:1e: 2f:78:8a:1c:1c:d4:a2:45:00:a5:96:5f:65:a2:6f:07:ae:9f: 3d:d4:3c:b5:2b:53:23:4d:1a:3c:0d:bc:e1:bc:41:34:b8:c8: 55:ce:a8:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODA5RDExMC8GA1UEBRMoRTQ3NUQ0NDI3NzIxNTFBQ0YwRkFFQTZCMzlCOTAxMkJE MjIzRDM5MzAeFw0yNDA1MTkwNzQxNThaFw0yNDA1MjYwNzQxNTdaMBgxFjAUBgNV BAMTDTY2NDlhZDQ2LTk4ZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8tocgWj+ueaxCpB7XHU1930XjkWbXwCqM8liLP4o6C87eenawk6nIRYASAOxY ZyF2+zrPtdoIc2L6F7y9EnfdkU9D7g6ckh0z2AhVFb9k8Y8YxHqRsP4jJrUejBdI IihVRyglJCENnXUYE2Y6sVawI96qv/0APMQOrnQF7oPgkXkkbKFN5kfh2NbGOY5e 0AWDfmEs1eKSTEKeUEVP6eS+ijqGFLwrPqh3UAISBEGYULAHeWZhMYK240IN/i66 B6dbnbMeBH/NF0JkZXISyR4MPYuXWbVlhl12IVHxQ2IO8GnBooE5T76ea8eh3DU1 AeW+SK0e4xX4fBPk9+YFKOLfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI9zCcRSm IhC91CQhI9zqMKO3X/AwHwYDVR0jBBgwFoAU5HXUQnchUazw+uprObkBK9Ij05Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4MDlELzAxRkFDOThBODRG OTExRUVBNzVDMkYzOUM0RjlBRTAyLzVIWFVRbmNoVWF6dy11cHJPYmtCSzlJajA1 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUhYVVFuY2hVYXp3LXVwck9ia0JLOUlqMDVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4 MDlELzAxRkFDOThBODRGOTExRUVBNzVDMkYzOUM0RjlBRTAyLzVIWFVRbmNoVWF6 dy11cHJPYmtCSzlJajA1TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJzxODZ0StAEtKLIck3UJcuLXZvBmQLbo2wCd/CqQZvL3XsukEyKVUis MXHWW73bd39sI0Tcmprq2e8/CizWeGAP5PyVBXqXaPFtXZQISMgaU3rpPIA/qZkc EDF5d9IP5eo3UtqaWUOuZf/wPn/QXJnGD0I/kPsFDbKwRYWmeQVffO/lLCBXLhsd K12Q2SBDg44csHrjWBWC1qgI3CKuRnJx2A+twC2slE+HSwtj0P6RZKcltKOGEKXa r1HH2WCpOFSB0fPYrdZ2Qz7JrwIN+ApU8abJsqlmHi94ihwc1KJFAKWWX2Wibweu nz3UPLUrUyNNGjwNvOG8QTS4yFXOqMA= -----END CERTIFICATE-----Generated at Sun May 19 08:26:42 2024 by rpki-client on console-fra.rpki-client.org