$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: +l5HHXWOo9ayxtrxz0kw/0AsnXKhqgz4Z/bR+OpXbNQ= Subject key identifier: 38:2E:2E:09:FA:FE:07:FB:6D:61:9D:1E:D9:7C:D6:B7:5F:B2:DB:C3 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 011C Signing time: Fri 31 May 2024 06:02:09 +0000 Manifest this update: Fri 31 May 2024 06:02:08 +0000 Manifest next update: Fri 07 Jun 2024 06:02:08 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: Ud1xHHG/MbzpGYTgBoUE9Dl4q+9xeLgxTy04Ycode9Y=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: AAsU3r5wEkF6f9iXxm6/6FcRALPM6e8iuLNdCiCtbqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: May 31 06:02:08 2024 GMT Not After : Jun 7 06:02:08 2024 GMT Subject: CN=665967e0-5a78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9a:d3:0c:ff:61:9a:54:46:67:69:5f:35:09: b7:16:67:00:49:58:89:e1:b9:00:44:8e:5f:fb:56: ca:95:a0:cd:69:fc:da:8c:71:43:50:82:c6:1f:ef: 0b:6a:29:8d:d4:a7:d8:e6:71:e5:cd:24:ad:3d:47: 98:fd:e8:c5:ca:0d:a7:ee:f2:9a:a0:c4:d4:b0:4f: 55:de:b4:26:1d:ca:56:80:bb:fc:7f:a3:7a:5e:ef: 97:c3:2b:79:3d:56:31:27:b1:f9:c7:b3:c9:ae:4f: a9:ae:1f:9e:b2:f5:e5:e5:61:d6:c2:21:53:06:5b: 5b:14:97:1e:ef:14:d7:b1:de:5b:cc:10:92:20:88: 69:a4:29:57:3c:21:5f:15:b1:be:a8:ce:24:70:2e: 3f:7c:31:37:d3:45:36:4b:66:85:61:e6:21:f2:ff: 72:63:97:d8:b2:2d:2c:02:4f:46:39:d0:b4:16:42: d6:a7:c8:f4:7e:c4:28:c8:e1:50:a1:6b:e7:cd:0c: 49:85:92:cd:ed:e6:1c:7f:eb:ad:89:44:4a:e8:27: 74:40:e5:0b:8c:89:67:7a:1f:1f:36:00:64:d6:2d: d2:61:90:52:d6:e1:f5:a3:1b:f0:96:2a:08:17:2e: 5e:26:cf:d7:f3:f3:17:e0:c4:43:95:3f:a6:56:54: 0f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2E:2E:09:FA:FE:07:FB:6D:61:9D:1E:D9:7C:D6:B7:5F:B2:DB:C3 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a1:fc:fa:1c:02:26:f3:9b:29:61:52:c0:ed:e6:4f:9e:5d: d8:7c:96:29:f0:b6:66:36:fd:df:26:c6:6a:97:df:92:84:8e: 52:92:8e:1b:1b:ac:3e:62:22:65:84:5d:e1:b5:97:89:e9:af: 73:87:d7:bb:dc:f5:db:e3:28:bc:cf:94:36:dd:58:6b:bc:e4: 06:7f:5d:47:da:89:bf:d3:08:24:e2:59:a3:5b:98:56:c3:4e: 45:c2:6f:06:b1:8a:27:31:d0:91:7b:5c:8c:57:47:89:44:f5: b9:98:fb:7f:0c:68:48:0a:d3:96:d9:58:e1:2b:0c:d7:4d:93: 4a:21:bd:c1:5e:ea:47:61:1d:9a:9c:8b:69:22:03:5e:68:43: 00:10:e9:48:66:e9:98:85:10:96:db:b4:36:22:a5:29:c7:d4: c0:4f:32:27:aa:98:81:e4:b4:83:b2:68:4e:1e:6d:f3:79:87: 7a:ff:36:56:3d:0d:9a:3f:db:ea:47:fa:e3:3f:cf:3d:5b:21: eb:46:a9:06:68:f0:70:fc:c6:5d:9b:e0:ae:61:5e:7b:8e:d0: 93:7c:2a:af:4a:4b:45:e1:3d:93:33:f5:b9:48:c7:3a:fe:3c: f2:10:3e:8a:55:9a:ee:a3:2b:82:b8:b4:e4:c4:36:2f:62:d0: 7d:28:4c:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjQwNTMxMDYwMjA4WhcNMjQwNjA3MDYwMjA4WjAYMRYwFAYD VQQDEw02NjU5NjdlMC01YTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvprTDP9hmlRGZ2lfNQm3FmcASViJ4bkARI5f+1bKlaDNafzajHFDUILGH+8L aimN1KfY5nHlzSStPUeY/ejFyg2n7vKaoMTUsE9V3rQmHcpWgLv8f6N6Xu+Xwyt5 PVYxJ7H5x7PJrk+prh+esvXl5WHWwiFTBltbFJce7xTXsd5bzBCSIIhppClXPCFf FbG+qM4kcC4/fDE300U2S2aFYeYh8v9yY5fYsi0sAk9GOdC0FkLWp8j0fsQoyOFQ oWvnzQxJhZLN7eYcf+utiURK6Cd0QOULjIlneh8fNgBk1i3SYZBS1uH1oxvwlioI Fy5eJs/X8/MX4MRDlT+mVlQPoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDguLgn6 /gf7bWGdHtl81rdfstvDMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoofz6HAIm85spYVLA7eZPnl3YfJYp8LZmNv3fJsZql9+ShI5Sko4b G6w+YiJlhF3htZeJ6a9zh9e73PXb4yi8z5Q23VhrvOQGf11H2om/0wgk4lmjW5hW w05Fwm8GsYonMdCRe1yMV0eJRPW5mPt/DGhICtOW2VjhKwzXTZNKIb3BXupHYR2a nItpIgNeaEMAEOlIZumYhRCW27Q2IqUpx9TATzInqpiB5LSDsmhOHm3zeYd6/zZW PQ2aP9vqR/rjP889WyHrRqkGaPBw/MZdm+CuYV57jtCTfCqvSktF4T2TM/W5SMc6 /jzyED6KVZruoyuCuLTkxDYvYtB9KEz9 -----END CERTIFICATE-----Generated at Fri May 31 06:33:57 2024 by rpki-client on console-fra.rpki-client.org