$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: XL6XqKidS7Jk4hHygaumOoqVQJdG0lMR24Alft48dqc= Subject key identifier: E1:0E:B6:A9:E1:14:F2:6A:8E:C8:05:4E:11:45:F8:BE:D4:AF:5C:1D Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 02D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 02CC Signing time: Sun 19 May 2024 03:29:45 +0000 Manifest this update: Sun 19 May 2024 03:29:44 +0000 Manifest next update: Sun 26 May 2024 03:29:44 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: ehviPNB8mhuNu4lrVJnpftWmh1ElynExImc9XjzS1l4=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: HdSIlqkmEmGZWEcgoomAB6LsDN+Rlx7lECjDlBmF5a8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 727 (0x2d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: May 19 03:29:44 2024 GMT Not After : May 26 03:29:44 2024 GMT Subject: CN=66497228-2349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:07:93:3e:37:1c:7d:64:60:97:3e:c2:b8:75: a4:eb:ea:86:8e:c5:6c:7d:f4:81:de:e7:61:07:86: a4:82:2f:f9:ce:1c:b5:1e:01:f0:c1:30:47:9f:2b: 96:6a:78:c7:4f:87:fd:20:4b:11:20:c9:00:9b:ec: 83:9e:bb:63:1c:89:f4:5a:1f:6a:96:6f:fd:5d:38: c3:a8:25:ec:00:5f:aa:26:90:81:e0:3d:17:45:7f: fc:ea:82:e4:6f:33:96:14:4a:2d:8f:06:de:71:7c: 52:f7:f8:d4:cd:66:79:ae:19:3c:ef:52:db:ff:87: bf:86:24:6b:f7:65:86:80:07:fb:ec:a7:d7:8e:46: 81:8b:09:f9:ad:2d:17:c4:11:fa:16:52:9e:a4:5b: ee:99:8b:65:b4:c0:95:6c:cd:55:ad:2e:11:8c:d2: e9:44:f0:6a:3a:0b:4c:73:88:17:aa:a5:a5:04:85: 35:a9:f1:1f:fe:83:88:59:15:04:14:50:22:dc:be: 1c:6e:8c:13:b2:b0:aa:32:c2:a0:08:27:4a:e7:d4: 52:0c:73:ca:e2:b0:1c:98:b7:0a:03:59:3c:86:0e: 09:3c:ff:2e:f7:30:40:11:62:37:fc:ce:9f:09:97: 07:1c:3a:7d:2c:a8:06:92:2d:d4:1f:9f:c3:58:f9: 47:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:0E:B6:A9:E1:14:F2:6A:8E:C8:05:4E:11:45:F8:BE:D4:AF:5C:1D X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:9a:99:45:46:16:3d:ae:62:2b:69:e1:e7:11:9c:89:4d:38: c6:0f:db:97:c4:1c:d4:31:ee:a8:d6:ec:ff:de:04:02:f6:7c: 89:a5:ea:85:95:84:16:30:89:5e:79:de:db:3b:98:81:5c:14: c4:91:be:49:0f:ec:9d:49:e0:22:1f:47:42:ed:08:0b:e8:6d: b1:3b:2d:0f:59:25:40:53:95:b7:6c:cf:c6:16:a1:2e:74:3e: 49:0f:00:ce:8b:bd:45:6d:4e:e5:17:78:98:bc:be:fb:c7:40: bd:d2:66:85:8b:43:4c:65:8b:e3:e4:37:1c:1b:29:54:11:f7: c0:1a:fe:c6:66:81:e4:45:42:c3:f0:94:b1:c5:05:b7:79:47: c7:34:01:55:3b:2c:40:5e:54:e9:8c:d1:9b:81:af:c8:6c:e9: da:b5:83:64:d4:0f:00:9a:fb:8e:1b:5a:cd:59:96:76:8e:45: d0:90:5f:83:76:a2:2e:ac:d3:b7:2c:0b:33:c5:5c:36:7b:92: b1:de:d7:f8:5f:8a:5a:d8:00:a4:2e:d9:ca:0b:6b:1b:ae:01: 6f:ed:8c:8b:8b:b6:0b:41:89:58:9e:17:15:e9:49:72:95:7d: d7:18:06:fe:f1:12:b6:0a:1f:94:2e:95:45:8b:4a:72:54:84: 03:ed:f9:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjQwNTE5MDMyOTQ0WhcNMjQwNTI2MDMyOTQ0WjAYMRYwFAYD VQQDEw02NjQ5NzIyOC0yMzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAeTPjccfWRglz7CuHWk6+qGjsVsffSB3udhB4akgi/5zhy1HgHwwTBHnyuW anjHT4f9IEsRIMkAm+yDnrtjHIn0Wh9qlm/9XTjDqCXsAF+qJpCB4D0XRX/86oLk bzOWFEotjwbecXxS9/jUzWZ5rhk871Lb/4e/hiRr92WGgAf77KfXjkaBiwn5rS0X xBH6FlKepFvumYtltMCVbM1VrS4RjNLpRPBqOgtMc4gXqqWlBIU1qfEf/oOIWRUE FFAi3L4cbowTsrCqMsKgCCdK59RSDHPK4rAcmLcKA1k8hg4JPP8u9zBAEWI3/M6f CZcHHDp9LKgGki3UH5/DWPlHdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEOtqnh FPJqjsgFThFF+L7Ur1wdMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZmplFRhY9rmIraeHnEZyJTTjGD9uXxBzUMe6o1uz/3gQC9nyJpeqF lYQWMIleed7bO5iBXBTEkb5JD+ydSeAiH0dC7QgL6G2xOy0PWSVAU5W3bM/GFqEu dD5JDwDOi71FbU7lF3iYvL77x0C90maFi0NMZYvj5DccGylUEffAGv7GZoHkRULD 8JSxxQW3eUfHNAFVOyxAXlTpjNGbga/IbOnatYNk1A8AmvuOG1rNWZZ2jkXQkF+D dqIurNO3LAszxVw2e5Kx3tf4X4pa2ACkLtnKC2sbrgFv7YyLi7YLQYlYnhcV6Uly lX3XGAb+8RK2Ch+ULpVFi0pyVIQD7fk4 -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org