$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: f1XwXZSqlDKaYKGsteyt3lpDQ/MpHct7gnoSASVhOw8= Subject key identifier: E5:07:F0:88:03:2D:AD:E8:F0:ED:70:EB:CD:72:C0:E9:DE:59:78:D6 Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 027A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 0277 Signing time: Sun 19 May 2024 03:43:57 +0000 Manifest this update: Sun 19 May 2024 03:43:56 +0000 Manifest next update: Sun 26 May 2024 03:43:56 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: UHQ4Q8EBKv/a/+9O1eoUS8hjPJmhMFhXCCHGVSYJy4U=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: gipNYRzhnJVMA8RXxGedDi645XLAV/oXItIEnYNnW7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: May 19 03:43:56 2024 GMT Not After : May 26 03:43:56 2024 GMT Subject: CN=6649757c-f360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:29:37:68:7b:0d:07:ec:4c:68:b1:1a:32:7f: bb:74:99:c6:08:51:98:59:bb:fd:c0:fe:8b:52:8b: 39:20:03:fc:bd:0b:8b:35:31:0b:94:40:61:55:46: b0:36:8b:b5:1f:64:ea:b1:25:52:ed:52:87:a0:cb: 8d:77:14:af:89:dc:97:ed:23:26:28:65:51:bc:55: 87:6a:66:08:fa:7b:4f:38:c8:ef:26:42:23:4c:ca: 43:29:b7:06:d1:5f:89:6d:37:68:49:95:84:c0:63: 6b:91:90:5b:a3:bf:14:3f:ba:f7:7f:57:b2:45:20: 26:38:0a:9c:0f:3c:73:a7:09:e1:a1:6f:05:00:47: 91:2e:e8:50:34:12:4f:1b:ad:b4:0b:7a:14:96:7c: 7d:d5:5e:7b:0c:ac:0f:c0:33:a4:d0:d3:44:9b:a0: 95:15:0f:b6:59:13:77:3c:2d:0a:e5:9a:c9:67:57: 0f:4a:76:4f:b2:ba:bd:bc:f0:dc:4a:4f:87:95:ca: 46:d3:76:b1:07:0a:fe:8f:78:3b:c1:d1:75:ab:e2: 3d:c2:21:d4:9a:af:74:8f:66:3c:f8:ff:a9:a2:5f: 98:e6:48:7f:1c:5b:a5:47:84:4d:58:a4:d4:90:58: 00:54:8e:03:ab:12:3b:05:5a:c4:f6:e8:15:9a:7c: d2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:07:F0:88:03:2D:AD:E8:F0:ED:70:EB:CD:72:C0:E9:DE:59:78:D6 X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:75:2d:5b:4d:22:34:0d:01:88:61:48:d5:a0:ac:94:b4:72: 86:59:59:bb:a8:21:16:5f:79:47:84:81:c8:39:b7:9c:eb:4c: 73:8c:a6:a5:86:a5:b1:4e:f2:22:7b:f7:da:76:c7:c0:b2:8b: 09:cf:63:f6:3c:0a:06:49:c8:8f:cb:a7:8f:35:77:c3:43:e9: 84:d4:f0:93:b1:ac:7a:a4:1f:df:1a:f7:81:ba:0d:75:fc:e3: 0c:b6:90:40:af:2f:bf:02:92:29:53:97:e0:98:46:cf:55:3d: f1:f7:25:e9:1d:74:fd:91:26:94:35:a5:61:73:f0:68:72:56: b6:77:e3:e9:b1:18:97:5d:63:f8:10:31:68:fd:69:eb:8d:5a: 32:a7:87:b0:75:27:54:5a:9a:3c:c1:dc:6c:0b:e4:34:1f:83: 15:09:df:2d:1b:08:44:22:6a:dd:03:cc:1f:b6:77:80:ca:9f: 45:de:9b:0b:c8:58:3e:d9:24:96:ad:a6:09:cf:ee:76:fd:97: 41:66:fb:76:51:88:1f:70:ba:90:09:43:62:7b:03:74:56:41: 3c:83:65:8b:08:f2:59:ea:78:22:0b:4e:db:09:3d:88:21:ea: fa:8d:fc:65:ba:ce:00:13:33:bf:2b:2e:54:47:13:a3:25:19: 32:d1:22:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjQwNTE5MDM0MzU2WhcNMjQwNTI2MDM0MzU2WjAYMRYwFAYD VQQDEw02NjQ5NzU3Yy1mMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCk3aHsNB+xMaLEaMn+7dJnGCFGYWbv9wP6LUos5IAP8vQuLNTELlEBhVUaw Nou1H2TqsSVS7VKHoMuNdxSvidyX7SMmKGVRvFWHamYI+ntPOMjvJkIjTMpDKbcG 0V+JbTdoSZWEwGNrkZBbo78UP7r3f1eyRSAmOAqcDzxzpwnhoW8FAEeRLuhQNBJP G620C3oUlnx91V57DKwPwDOk0NNEm6CVFQ+2WRN3PC0K5ZrJZ1cPSnZPsrq9vPDc Sk+HlcpG03axBwr+j3g7wdF1q+I9wiHUmq90j2Y8+P+pol+Y5kh/HFulR4RNWKTU kFgAVI4DqxI7BVrE9ugVmnzSRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUH8IgD La3o8O1w681ywOneWXjWMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBadS1bTSI0DQGIYUjVoKyUtHKGWVm7qCEWX3lHhIHIObec60xzjKal hqWxTvIie/fadsfAsosJz2P2PAoGSciPy6ePNXfDQ+mE1PCTsax6pB/fGveBug11 /OMMtpBAry+/ApIpU5fgmEbPVT3x9yXpHXT9kSaUNaVhc/Bocla2d+PpsRiXXWP4 EDFo/WnrjVoyp4ewdSdUWpo8wdxsC+Q0H4MVCd8tGwhEImrdA8wftneAyp9F3psL yFg+2SSWraYJz+52/ZdBZvt2UYgfcLqQCUNiewN0VkE8g2WLCPJZ6ngiC07bCT2I Ier6jfxlus4AEzO/Ky5URxOjJRky0SKM -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org