$ rpki-client -vvf rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft File: 4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft (raw, json) Hash identifier: QerXNsc0FgIZi4J6eN4SeK4UbETkJ7/mfy+JrTAdSPE= Subject key identifier: 16:CE:FC:40:74:9B:2C:CC:02:B7:51:08:57:7E:B2:BF:8C:B6:0F:E3 Authority key identifier: E1:C1:C7:2B:67:93:A9:03:BA:3D:E0:31:02:75:19:B4:30:21:75:6A Certificate issuer: /CN=A91493FC/serialNumber=E1C1C72B6793A903BA3DE031027519B43021756A Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft Manifest number: FD Signing time: Fri 31 May 2024 06:23:35 +0000 Manifest this update: Fri 31 May 2024 06:23:34 +0000 Manifest next update: Fri 07 Jun 2024 06:23:34 +0000 Files and hashes: 1: 4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl (hash: C1QpznjKCvzLXeYN8tEV1Usmqt2fgre584dCN/8pOJ4=) 2: 38702E769AF611ED8D41985BC4F9AE02.roa (hash: LG8a48g5o1pmYxvFXbXmY8lQLc9P00JNOSTLbClKTJc=) 3: D076B1A49F2911ED937CF05AC4F9AE02.roa (hash: l65hEDKPHMRhVHGhKuDX5Avsz2LGJAcFkP01tH8Nq2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 06:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91493FC/serialNumber=E1C1C72B6793A903BA3DE031027519B43021756A Validity Not Before: May 31 06:23:34 2024 GMT Not After : Jun 7 06:23:34 2024 GMT Subject: CN=66596ce7-4d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c9:3c:b3:c2:3e:7f:99:d5:ac:31:94:43:07: 8b:10:f3:7e:08:bb:4e:a0:38:d5:61:d6:39:e8:a4: e7:11:e5:90:26:1c:dd:10:70:5d:c8:3d:73:70:3a: a2:62:9a:21:8d:ea:a7:13:7e:88:c7:b6:b2:e6:fa: a4:c8:a8:12:31:93:04:6b:5f:1b:40:de:98:e5:e9: 92:19:3b:fd:d8:27:b3:05:13:5d:c3:89:cc:cf:0e: b8:72:db:1c:df:d3:73:5e:f3:55:db:78:80:1e:22: f4:44:c4:f1:65:4c:5a:c4:df:73:53:73:76:8a:9c: 8f:b8:fc:84:0d:65:44:60:04:83:a0:c6:30:82:2e: b6:a1:b4:9c:26:f8:ef:c8:8e:1e:aa:93:63:13:ee: a2:ee:5f:80:d6:2c:ca:e5:b4:87:6e:00:f6:e4:b5: 23:3b:20:58:74:c8:f4:5a:09:29:d6:58:ae:86:9e: f4:9b:45:a5:8d:f2:3e:1e:09:49:75:9e:ef:81:19: 8b:e7:a2:a9:32:8a:ee:e1:31:5c:28:28:88:b2:5a: be:1c:cc:cd:cc:9c:6d:89:ec:32:ae:85:4e:aa:f8: f8:b3:90:24:f4:17:64:52:c4:82:cc:c1:01:dd:16: 08:8e:06:7b:1f:3a:ef:66:40:dd:06:0f:55:30:23: ad:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:CE:FC:40:74:9B:2C:CC:02:B7:51:08:57:7E:B2:BF:8C:B6:0F:E3 X509v3 Authority Key Identifier: keyid:E1:C1:C7:2B:67:93:A9:03:BA:3D:E0:31:02:75:19:B4:30:21:75:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:19:d4:14:bc:c8:b4:63:03:51:37:7e:db:c1:96:c8:6e:09: d4:0d:25:2b:c7:7e:bf:74:a1:1d:66:5a:0f:b3:e8:e5:e2:f5: 5a:0a:4c:10:be:2c:db:c4:ab:bf:9a:49:1f:78:1a:94:c7:e8: 58:3d:08:aa:0e:cf:31:69:61:c2:09:f1:3f:4b:a6:d9:b5:54: c5:cb:51:25:50:a0:15:33:d3:66:b8:3f:36:6c:53:f7:0f:cd: 2c:1d:a3:76:bb:b1:63:30:b3:51:71:0c:b5:77:bf:d2:ae:5d: 69:ab:ac:dc:f0:43:18:8d:bc:5f:63:4e:89:45:df:95:de:41: 0d:dc:8a:97:61:f4:b7:d6:ff:42:94:06:24:68:7a:59:55:f7: a5:d3:59:2f:9f:1e:f5:6d:1d:3b:ee:1d:8e:31:15:cb:e8:32: 84:9b:f4:5e:d5:ee:9a:fd:bc:bc:0a:06:c1:06:a7:2d:bb:b0: 44:e7:bf:f8:59:9b:36:2b:8b:81:a2:c0:a4:72:df:c7:2d:bc: dd:9c:96:a9:94:da:5e:b2:79:15:e3:f8:c5:66:bb:cc:1d:47: 17:65:66:1d:69:d7:2c:6b:43:c0:f1:20:7d:32:8c:40:e7:67: 05:33:46:97:39:ab:13:b1:5f:7c:d6:02:99:74:e7:a6:3f:38: c2:0d:2a:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkzRkMxMTAvBgNVBAUTKEUxQzFDNzJCNjc5M0E5MDNCQTNERTAzMTAyNzUxOUI0 MzAyMTc1NkEwHhcNMjQwNTMxMDYyMzM0WhcNMjQwNjA3MDYyMzM0WjAYMRYwFAYD VQQDEw02NjU5NmNlNy00ZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ck8s8I+f5nVrDGUQweLEPN+CLtOoDjVYdY56KTnEeWQJhzdEHBdyD1zcDqi YpohjeqnE36Ix7ay5vqkyKgSMZMEa18bQN6Y5emSGTv92CezBRNdw4nMzw64ctsc 39NzXvNV23iAHiL0RMTxZUxaxN9zU3N2ipyPuPyEDWVEYASDoMYwgi62obScJvjv yI4eqpNjE+6i7l+A1izK5bSHbgD25LUjOyBYdMj0Wgkp1liuhp70m0WljfI+HglJ dZ7vgRmL56KpMoru4TFcKCiIslq+HMzNzJxtiewyroVOqvj4s5Ak9BdkUsSCzMEB 3RYIjgZ7HzrvZkDdBg9VMCOtywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbO/EB0 myzMArdRCFd+sr+Mtg/jMB8GA1UdIwQYMBaAFOHBxytnk6kDuj3gMQJ1GbQwIXVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTNGQy9BOTZGNEI3ODlB RjMxMUVEOTAxQUU0NUFDNEY5QUUwMi80Y0hISzJlVHFRTzZQZUF4QW5VWnREQWhk V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRjSEhLMmVUcVFPNlBlQXhBblVadERBaGRXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTNGQy9BOTZGNEI3ODlBRjMxMUVEOTAxQUU0NUFDNEY5QUUwMi80Y0hISzJlVHFR TzZQZUF4QW5VWnREQWhkV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPGdQUvMi0YwNRN37bwZbIbgnUDSUrx36/dKEdZloPs+jl4vVaCkwQ vizbxKu/mkkfeBqUx+hYPQiqDs8xaWHCCfE/S6bZtVTFy1ElUKAVM9NmuD82bFP3 D80sHaN2u7FjMLNRcQy1d7/Srl1pq6zc8EMYjbxfY06JRd+V3kEN3IqXYfS31v9C lAYkaHpZVfel01kvnx71bR077h2OMRXL6DKEm/Re1e6a/by8CgbBBqctu7BE57/4 WZs2K4uBosCkct/HLbzdnJaplNpesnkV4/jFZrvMHUcXZWYdadcsa0PA8SB9MoxA 52cFM0aXOasTsV981gKZdOemPzjCDSoz -----END CERTIFICATE-----Generated at Fri May 31 08:38:30 2024 by rpki-client on console-fra.rpki-client.org