$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: ANXw/WC18BEOoDW0S3KLSDGHWc4DnxejuZZd8vnGiWw= Subject key identifier: 98:62:00:3C:93:33:C8:B4:A8:31:2D:37:D6:92:04:77:A8:D0:8D:47 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 02FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 02FC Signing time: Sun 19 May 2024 03:12:45 +0000 Manifest this update: Sun 19 May 2024 03:12:44 +0000 Manifest next update: Sun 26 May 2024 03:12:44 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: GVSU+l0FMcXC5ppk80Uq61LpoTEQKuzD6czNN3aTRXk=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: FnRQpRezw460SfJT2VeK+2OMLg8q10iYbDYOs9JZ0ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: May 19 03:12:44 2024 GMT Not After : May 26 03:12:44 2024 GMT Subject: CN=66496e2d-779f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:06:b2:5c:7e:c8:60:c5:35:f3:e6:12:52:ad: 6e:91:b2:03:dd:35:8b:e5:86:a1:f8:36:ea:be:ec: b4:f9:9a:d5:36:a0:b6:dc:e6:8f:18:e9:24:17:c5: fd:bc:7b:54:10:e9:eb:2a:ae:05:ec:e5:36:6b:e8: 40:d2:5e:a0:72:e1:c9:42:43:9f:8c:d3:33:7b:db: 7a:4a:79:a5:b1:d1:99:76:13:42:8d:01:d5:d9:43: 1c:58:12:77:d2:8a:3c:9f:b4:74:32:6b:72:91:80: 4f:be:0f:59:f1:23:f6:22:a4:4f:76:b3:72:6c:93: d2:02:c3:ee:d6:3a:b8:2d:8d:a0:63:56:de:75:3c: 32:49:8e:dc:b4:b9:85:05:5e:fe:76:e0:90:1f:78: 4e:58:7f:16:a6:64:85:45:89:bf:f6:32:ea:2f:fe: 40:ed:bc:b4:b1:d1:aa:cf:cf:97:12:8f:0a:4a:47: 4d:b2:95:54:61:f9:85:4e:18:51:8a:c0:37:2c:47: fc:90:9d:c0:d3:2b:7c:08:93:3e:c0:6a:55:25:e1: 7b:e8:b4:9e:69:dc:ef:de:8c:a7:42:91:61:41:fb: 52:2a:32:40:5f:9f:02:9a:e2:a4:d5:16:36:b2:81: 28:ed:99:66:cb:50:92:08:98:b0:ac:1a:40:5e:b1: 43:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:62:00:3C:93:33:C8:B4:A8:31:2D:37:D6:92:04:77:A8:D0:8D:47 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:4b:fd:fd:43:a7:f9:2b:8a:e7:8a:b2:fe:2e:91:cf:68:ec: 2b:f1:db:3d:68:bd:6a:6b:e2:11:c3:d4:39:34:9b:af:d0:78: 6e:43:d4:ee:be:b3:7b:95:4c:c4:15:e3:6c:65:68:c3:df:8b: e7:2b:04:65:fa:9a:55:42:c5:27:d3:48:b2:ed:7a:fe:bc:8c: f1:97:95:93:cb:dd:cc:15:b2:fc:a9:c6:1e:21:13:03:98:67: a2:4e:d5:94:32:ef:f9:53:8c:7d:4b:92:1e:85:77:62:08:aa: 75:56:6f:43:39:67:48:9c:97:16:df:e1:ee:59:70:26:45:c0: bd:ba:11:6d:e9:10:d2:5f:d9:5b:7d:f9:84:d5:e7:c8:82:2b: fb:f8:43:b4:da:67:69:46:8c:cd:94:a6:d4:f8:a5:19:77:88: ed:61:4b:5d:02:10:c9:ef:ae:64:2d:92:38:65:6b:e9:4c:c0: 05:82:85:05:fe:e6:ec:da:eb:84:eb:08:b4:ac:81:0f:0c:b8: 0e:71:b5:f7:c2:98:01:cc:de:c7:52:2e:79:c8:1e:f3:9d:00: 62:2b:77:bb:50:0f:15:fd:ac:c3:0d:f4:79:f1:05:0a:62:dd: d3:45:31:b0:8e:5c:af:a7:eb:0b:07:2e:30:0d:79:91:35:f8: 87:b7:48:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjQwNTE5MDMxMjQ0WhcNMjQwNTI2MDMxMjQ0WjAYMRYwFAYD VQQDEw02NjQ5NmUyZC03NzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwayXH7IYMU18+YSUq1ukbID3TWL5Yah+Dbqvuy0+ZrVNqC23OaPGOkkF8X9 vHtUEOnrKq4F7OU2a+hA0l6gcuHJQkOfjNMze9t6SnmlsdGZdhNCjQHV2UMcWBJ3 0oo8n7R0MmtykYBPvg9Z8SP2IqRPdrNybJPSAsPu1jq4LY2gY1bedTwySY7ctLmF BV7+duCQH3hOWH8WpmSFRYm/9jLqL/5A7by0sdGqz8+XEo8KSkdNspVUYfmFThhR isA3LEf8kJ3A0yt8CJM+wGpVJeF76LSeadzv3oynQpFhQftSKjJAX58CmuKk1RY2 soEo7Zlmy1CSCJiwrBpAXrFDAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhiADyT M8i0qDEtN9aSBHeo0I1HMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaS/39Q6f5K4rnirL+LpHPaOwr8ds9aL1qa+IRw9Q5NJuv0HhuQ9Tu vrN7lUzEFeNsZWjD34vnKwRl+ppVQsUn00iy7Xr+vIzxl5WTy93MFbL8qcYeIRMD mGeiTtWUMu/5U4x9S5IehXdiCKp1Vm9DOWdInJcW3+HuWXAmRcC9uhFt6RDSX9lb ffmE1efIgiv7+EO02mdpRozNlKbU+KUZd4jtYUtdAhDJ765kLZI4ZWvpTMAFgoUF /ubs2uuE6wi0rIEPDLgOcbX3wpgBzN7HUi55yB7znQBiK3e7UA8V/azDDfR58QUK Yt3TRTGwjlyvp+sLBy4wDXmRNfiHt0jC -----END CERTIFICATE-----Generated at Sun May 19 03:48:51 2024 by rpki-client on console-fra.rpki-client.org