$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: DSEQzRWttEUXIApn/7BRXIiWu549fBCYoMdDa9yyDCg= Subject key identifier: FD:A8:35:17:94:3E:E0:D7:41:2E:C9:95:26:F3:3A:A1:E2:F1:8A:54 Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 15C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 15BD Signing time: Fri 31 May 2024 17:27:35 +0000 Manifest this update: Fri 31 May 2024 17:27:35 +0000 Manifest next update: Fri 07 Jun 2024 17:27:35 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: zlXf9rpGtXdVaKE78AtivLd2sjkgEtMpQLC0y4hYjac=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: uXQRvvsqZIjyEM6+VI43Yc9j+t5wN6UVSeG6nj5NEDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5574 (0x15c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: May 31 17:27:35 2024 GMT Not After : Jun 7 17:27:35 2024 GMT Subject: CN=665a0887-ed2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:8c:bc:05:fa:64:0a:e3:d5:2a:07:6a:c9: f6:67:dc:86:83:bc:a2:96:94:03:f2:c8:95:0b:85: 78:55:62:b1:66:3a:b2:ac:60:c0:1b:13:c4:3c:f2: 60:8b:53:32:ee:f2:ad:12:14:8d:fe:a1:a5:54:ad: 6a:c1:29:c8:28:40:d9:ce:d9:07:0e:f2:20:42:cc: f2:2b:c9:f5:44:12:8d:63:57:93:6c:e0:5a:9b:4e: dd:97:07:07:b2:8b:ba:75:10:20:c6:3d:cf:f5:d1: 75:7d:56:42:f1:9c:b4:a8:61:7b:fa:0b:0b:0d:91: ee:27:bd:f9:4d:9a:2c:17:21:f6:a9:4c:bc:cf:8d: a2:26:4f:fa:74:1d:d6:11:0b:b6:6d:7b:a7:74:ce: 7d:c8:bd:75:72:66:de:e8:64:bb:72:44:8c:1c:a0: 2f:5a:19:c9:d2:1b:48:a1:fd:cf:4d:9c:93:26:0a: 6a:6b:db:cc:41:92:9d:52:75:00:25:58:74:4f:2f: 41:ad:2f:e8:e9:8b:d9:e3:1f:2c:82:3f:4e:de:79: 28:d4:ee:e0:3c:f7:21:e0:d2:4e:6d:e5:04:d1:b5: 9b:1f:38:b3:27:b9:b5:b5:3d:1c:c6:d9:75:67:d0: 21:ea:fe:8f:f2:4a:8b:e3:1d:f0:27:4c:aa:94:a1: 4f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A8:35:17:94:3E:E0:D7:41:2E:C9:95:26:F3:3A:A1:E2:F1:8A:54 X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:2f:ec:1c:e7:ba:e3:35:6d:01:78:5c:c9:e7:80:02:2b:7c: ee:e6:a8:95:38:ae:26:0e:a7:b6:ae:47:da:4a:1e:af:c7:3f: 22:25:81:c2:85:d3:cf:09:f2:69:c1:93:2a:c5:63:d5:34:d1: 89:2a:a1:36:e1:1b:9e:0c:c8:3d:6c:1b:78:5e:ef:7e:c4:ce: f9:ab:3a:5e:c6:c3:47:17:50:87:d6:e9:36:b5:b9:5e:31:e6: ac:52:dc:08:62:d2:c1:0b:2f:29:6d:62:13:0c:0e:67:31:65: be:50:77:eb:39:20:3e:70:e6:12:6b:17:c0:79:8e:ee:86:ea: 89:74:ca:7e:df:5c:72:27:7c:33:73:32:5c:b8:4f:95:7e:c1: e0:5c:be:ed:9c:55:a9:5a:9b:69:d4:23:21:0e:5b:7c:30:31: 5a:25:1a:4f:39:77:91:45:aa:cf:51:7f:0c:7d:1e:6c:6c:f6: 5a:6b:27:51:de:eb:37:99:05:54:0c:09:14:33:80:59:f0:20: 04:46:08:b2:00:1a:90:c1:9e:ba:4e:ad:61:4c:54:d4:b5:f2: f1:e8:1c:d6:6a:1a:a6:3c:01:4a:aa:ec:89:bc:cf:27:bb:c2: 30:40:ad:bf:82:a0:b4:41:b7:b4:bc:36:27:39:98:5b:0a:f2: b4:4a:45:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjQwNTMxMTcyNzM1WhcNMjQwNjA3MTcyNzM1WjAYMRYwFAYD VQQDEw02NjVhMDg4Ny1lZDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvX6MvAX6ZArj1SoHasn2Z9yGg7yilpQD8siVC4V4VWKxZjqyrGDAGxPEPPJg i1My7vKtEhSN/qGlVK1qwSnIKEDZztkHDvIgQszyK8n1RBKNY1eTbOBam07dlwcH sou6dRAgxj3P9dF1fVZC8Zy0qGF7+gsLDZHuJ735TZosFyH2qUy8z42iJk/6dB3W EQu2bXundM59yL11cmbe6GS7ckSMHKAvWhnJ0htIof3PTZyTJgpqa9vMQZKdUnUA JVh0Ty9BrS/o6YvZ4x8sgj9O3nko1O7gPPch4NJObeUE0bWbHzizJ7m1tT0cxtl1 Z9Ah6v6P8kqL4x3wJ0yqlKFPlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2oNReU PuDXQS7JlSbzOqHi8YpUMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkL+wc57rjNW0BeFzJ54ACK3zu5qiVOK4mDqe2rkfaSh6vxz8iJYHC hdPPCfJpwZMqxWPVNNGJKqE24RueDMg9bBt4Xu9+xM75qzpexsNHF1CH1uk2tble MeasUtwIYtLBCy8pbWITDA5nMWW+UHfrOSA+cOYSaxfAeY7uhuqJdMp+31xyJ3wz czJcuE+VfsHgXL7tnFWpWptp1CMhDlt8MDFaJRpPOXeRRarPUX8MfR5sbPZaaydR 3us3mQVUDAkUM4BZ8CAERgiyABqQwZ66Tq1hTFTUtfLx6BzWahqmPAFKquyJvM8n u8IwQK2/gqC0Qbe0vDYnOZhbCvK0SkW5 -----END CERTIFICATE-----Generated at Fri May 31 19:47:47 2024 by rpki-client on console-fra.rpki-client.org