$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: BtBYkBV0IY8evFvFbajYT/tsWQrTQxT6S35Uw7yvcBs= Subject key identifier: D6:2F:82:F6:39:36:42:4D:CD:12:AA:74:87:79:DD:5D:BF:B2:93:CE Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0BB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0BA7 Signing time: Fri 31 May 2024 19:50:07 +0000 Manifest this update: Fri 31 May 2024 19:50:06 +0000 Manifest next update: Fri 07 Jun 2024 19:50:06 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: bxd7iOsmOWG7zZmKhJrYyeEvTy86oOvUuiQLeBC6qEw=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: AVNjkoFWbdoZ3mYkyFU+MZFdfxVSMXxBvpkDPbahK84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2993 (0xbb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: May 31 19:50:06 2024 GMT Not After : Jun 7 19:50:06 2024 GMT Subject: CN=665a29ef-c99f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4f:b1:b7:9e:6d:63:2d:db:15:63:25:c6:43: 94:44:2b:e9:49:c4:51:47:c3:b5:1e:ac:93:c9:d0: 38:bf:07:8d:27:09:92:6e:97:07:74:93:ea:04:5b: 3e:ae:e4:28:38:50:9e:d9:54:af:18:bb:20:bd:c5: 1b:d9:84:44:27:88:a4:68:b7:21:13:97:32:8d:8e: 88:c9:46:03:46:1d:3b:20:a7:64:f5:4b:9f:a8:d2: 7f:36:32:50:59:c4:7e:6a:df:ee:d2:34:93:a7:21: 33:46:1d:12:f9:7b:50:e1:af:9b:76:78:f1:a3:d9: de:0f:7a:33:45:cf:c1:3c:bb:67:ff:8e:38:74:58: fd:d3:c0:c5:86:5e:ed:b6:12:dc:8e:c2:83:ab:9a: 8c:a6:88:66:04:7c:a3:13:44:0b:46:92:a8:12:f4: 56:97:22:16:89:c4:1d:85:6b:bc:dd:37:b5:62:6f: 0f:45:29:c8:a4:d8:38:84:a6:7a:e2:09:02:05:f9: 4d:68:99:15:7d:37:6a:2a:49:8e:9a:be:b1:9f:a0: 46:72:2e:2f:c3:2c:1d:24:3b:74:43:3d:9e:6e:a6: 51:2f:94:c0:79:8f:8d:0b:13:9d:8d:5f:a9:d2:22: 25:15:89:d5:fe:8f:18:fc:7f:10:52:6b:51:06:39: 16:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:2F:82:F6:39:36:42:4D:CD:12:AA:74:87:79:DD:5D:BF:B2:93:CE X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:7c:a8:d0:65:6e:8f:af:90:d2:7b:93:74:8f:d4:a9:7b:10: 0d:a4:62:b9:cf:97:8c:5a:7f:ca:b0:34:d2:2c:36:22:64:6f: 11:69:1e:f7:49:89:45:0a:08:56:51:14:f3:11:43:f0:fd:3e: 70:44:d7:f9:71:61:25:39:7f:98:df:6a:66:93:cb:50:ca:bf: 1a:c4:04:4f:2e:45:15:67:38:8e:75:6a:f0:49:77:0b:f8:03: 57:ae:36:30:e8:ce:c3:48:03:12:5d:e8:ef:5a:c4:0c:ba:21: 31:ec:5b:02:f0:ae:db:09:28:c7:94:c2:74:db:48:c4:8a:f0: f0:19:af:c5:38:6a:2f:57:b6:a1:86:24:e0:b6:a4:56:37:87: 56:85:d5:3a:8a:86:c2:6b:7f:9c:ac:ff:28:d6:a7:a6:8a:3b: f1:bf:43:18:c0:c1:15:9e:a1:fc:15:e5:45:30:a5:1c:ba:cb: 40:fe:24:06:e9:ab:e4:a8:32:4c:e6:36:b3:be:48:7d:d4:df: 20:86:82:31:d0:81:86:4c:19:32:ed:04:8e:57:3e:b8:98:6f: 80:2b:12:33:17:24:67:cf:cf:d1:7f:f1:58:14:7a:3d:5a:76: af:04:e0:58:3a:9b:a3:79:87:aa:8a:74:cf:c9:b1:30:8d:23: 88:39:6d:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjQwNTMxMTk1MDA2WhcNMjQwNjA3MTk1MDA2WjAYMRYwFAYD VQQDEw02NjVhMjllZi1jOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmE+xt55tYy3bFWMlxkOURCvpScRRR8O1HqyTydA4vweNJwmSbpcHdJPqBFs+ ruQoOFCe2VSvGLsgvcUb2YREJ4ikaLchE5cyjY6IyUYDRh07IKdk9UufqNJ/NjJQ WcR+at/u0jSTpyEzRh0S+XtQ4a+bdnjxo9neD3ozRc/BPLtn/444dFj908DFhl7t thLcjsKDq5qMpohmBHyjE0QLRpKoEvRWlyIWicQdhWu83Te1Ym8PRSnIpNg4hKZ6 4gkCBflNaJkVfTdqKkmOmr6xn6BGci4vwywdJDt0Qz2ebqZRL5TAeY+NCxOdjV+p 0iIlFYnV/o8Y/H8QUmtRBjkWhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYvgvY5 NkJNzRKqdId53V2/spPOMB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATfKjQZW6Pr5DSe5N0j9SpexANpGK5z5eMWn/KsDTSLDYiZG8RaR73 SYlFCghWURTzEUPw/T5wRNf5cWElOX+Y32pmk8tQyr8axARPLkUVZziOdWrwSXcL +ANXrjYw6M7DSAMSXejvWsQMuiEx7FsC8K7bCSjHlMJ020jEivDwGa/FOGovV7ah hiTgtqRWN4dWhdU6iobCa3+crP8o1qemijvxv0MYwMEVnqH8FeVFMKUcustA/iQG 6avkqDJM5jazvkh91N8ghoIx0IGGTBky7QSOVz64mG+AKxIzFyRnz8/Rf/FYFHo9 WnavBOBYOpujeYeqinTPybEwjSOIOW3r -----END CERTIFICATE-----Generated at Fri May 31 22:13:02 2024 by rpki-client on console-fra.rpki-client.org