$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: 23HcbJE/UqGLHLP/+vbc83+rO+wrbOo3Zc7lbN4SJk4= Subject key identifier: 48:1C:4F:8D:6C:52:92:0B:5A:F1:76:0A:FF:71:4B:3E:1B:C1:6E:03 Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 0524 Signing time: Sun 19 May 2024 01:00:16 +0000 Manifest this update: Sun 19 May 2024 01:00:15 +0000 Manifest next update: Sun 26 May 2024 01:00:15 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: WRMO5DbKBIiDw/N3s7X7uFicPf1xWH7IbyYHKyfvTFk=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: IbCoRwYr/4DXyvLH8bDhbZfIDkg3A10G0xmWCSRxGPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: May 19 01:00:15 2024 GMT Not After : May 26 01:00:15 2024 GMT Subject: CN=66494f1f-6bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9b:0e:c3:a2:bc:69:b9:b9:99:4e:45:ea:83: e5:89:38:84:53:8a:c6:e5:7c:53:b6:db:a2:c3:f5: ea:11:47:0f:35:cc:bf:b3:d4:0b:a1:57:b5:2b:46: b8:aa:29:b3:42:28:89:27:02:4a:c9:ab:28:a7:3e: 46:3e:25:ef:87:9c:57:c6:bc:6d:84:0e:66:ad:73: 53:a0:e7:73:ac:01:67:b3:49:51:61:95:d1:3b:1e: 0f:dc:1e:5b:50:8b:32:01:18:7d:83:1a:27:3a:f5: 9b:17:dd:51:6c:ba:fa:13:6d:1a:14:e8:21:6d:c3: 87:f6:58:fc:66:4b:ab:ad:8f:2a:79:15:36:2b:b5: d2:0c:7d:65:76:01:ff:19:c9:00:74:41:03:53:bc: be:9e:70:e5:25:14:53:d0:09:09:0c:09:b2:90:71: 67:ee:f0:2c:97:12:f0:de:0d:2f:cc:5c:18:f8:3f: c6:a7:90:20:90:53:0f:13:79:2d:e5:e3:88:dc:47: 21:e3:e1:f4:ee:ea:ce:8a:29:b2:0b:f0:57:dc:74: c3:00:91:f4:8c:ce:08:d1:04:9a:8b:0e:63:10:8c: 0a:33:ae:34:b4:1d:96:82:c6:a2:03:64:9c:e9:ed: 38:29:ae:1d:1e:67:1e:7d:ec:86:96:34:f9:ff:55: 3d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1C:4F:8D:6C:52:92:0B:5A:F1:76:0A:FF:71:4B:3E:1B:C1:6E:03 X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:6e:99:e9:0c:d2:a4:db:83:23:ab:b0:86:2c:ba:cd:c1:f5: b9:2d:3b:2d:45:26:18:76:1d:8c:ae:d2:14:f4:e4:45:fc:6d: 57:f7:01:50:93:99:2a:5a:9e:74:45:35:3a:14:68:8b:18:84: ad:fe:41:b1:ab:de:75:5f:89:77:a0:29:1c:68:86:8d:d6:6d: ac:a4:b7:3b:4b:95:c9:19:0d:bf:11:de:0f:ec:f6:22:b9:04: 37:0c:b0:17:42:a1:59:10:d6:3a:a8:2e:06:f9:15:54:fd:55: 80:30:9e:eb:2f:1e:17:88:50:28:4e:a3:51:a7:2c:b4:93:d8: 0e:5a:43:7a:30:84:69:b1:fa:c2:5d:b5:73:ae:30:f9:d2:a2: ac:0c:ec:a8:08:04:4e:f2:69:4d:1e:eb:70:ae:81:31:dc:3f: e7:77:76:fe:09:e1:a0:81:5a:c6:6f:89:02:6c:53:4a:07:80: 1e:72:a1:3f:33:cc:57:83:ed:39:0b:a3:5f:d2:3e:25:ce:55: 84:da:6f:5b:04:2e:17:14:30:62:2a:a7:9e:e9:77:88:31:d1: a4:0f:05:9f:bd:58:43:2e:c9:d4:7e:fb:8e:9e:c4:d4:bd:e0: 52:e5:8f:32:9b:d3:f1:6f:21:26:31:a3:d0:81:dd:1f:f2:f5: 8f:d3:59:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjQwNTE5MDEwMDE1WhcNMjQwNTI2MDEwMDE1WjAYMRYwFAYD VQQDEw02NjQ5NGYxZi02YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45sOw6K8abm5mU5F6oPliTiEU4rG5XxTttuiw/XqEUcPNcy/s9QLoVe1K0a4 qimzQiiJJwJKyasopz5GPiXvh5xXxrxthA5mrXNToOdzrAFns0lRYZXROx4P3B5b UIsyARh9gxonOvWbF91RbLr6E20aFOghbcOH9lj8ZkurrY8qeRU2K7XSDH1ldgH/ GckAdEEDU7y+nnDlJRRT0AkJDAmykHFn7vAslxLw3g0vzFwY+D/Gp5AgkFMPE3kt 5eOI3Ech4+H07urOiimyC/BX3HTDAJH0jM4I0QSaiw5jEIwKM640tB2WgsaiA2Sc 6e04Ka4dHmcefeyGljT5/1U9mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgcT41s UpILWvF2Cv9xSz4bwW4DMB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnbpnpDNKk24Mjq7CGLLrNwfW5LTstRSYYdh2MrtIU9ORF/G1X9wFQ k5kqWp50RTU6FGiLGISt/kGxq951X4l3oCkcaIaN1m2spLc7S5XJGQ2/Ed4P7PYi uQQ3DLAXQqFZENY6qC4G+RVU/VWAMJ7rLx4XiFAoTqNRpyy0k9gOWkN6MIRpsfrC XbVzrjD50qKsDOyoCARO8mlNHutwroEx3D/nd3b+CeGggVrGb4kCbFNKB4AecqE/ M8xXg+05C6Nf0j4lzlWE2m9bBC4XFDBiKqee6XeIMdGkDwWfvVhDLsnUfvuOnsTU veBS5Y8ym9PxbyEmMaPQgd0f8vWP01kK -----END CERTIFICATE-----Generated at Sun May 19 01:47:12 2024 by rpki-client on console-fra.rpki-client.org