$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json) Hash identifier: w7YnC6C/YsDvwbJ9Y8qS5+fnN0z/ntCgHBj2x/P1Hdk= Subject key identifier: 16:22:B4:62:8A:64:21:78:AE:87:01:B0:5C:16:4D:11:A7:16:4F:E5 Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft Manifest number: 06E9 Signing time: Sat 18 May 2024 22:29:32 +0000 Manifest this update: Sat 18 May 2024 22:29:31 +0000 Manifest next update: Sat 25 May 2024 22:29:31 +0000 Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: KX2riSU6R28YkXkO/ERB2/Aztw8BntLCuxTN+womYFc=) 2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: VKY62GL5Ck/qXDFuD6a8QDseIo6kk4jLfJkbkCLEJK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Validity Not Before: May 18 22:29:31 2024 GMT Not After : May 25 22:29:31 2024 GMT Subject: CN=66492bcb-e0e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6f:ba:a0:c4:8e:e1:07:2f:27:a2:f8:55:b4: 5f:d0:1a:07:16:72:c5:59:40:6d:85:03:24:85:20: a7:d8:56:34:b5:37:8d:a0:35:da:07:b3:5b:5b:af: 23:eb:a7:2d:c7:5c:f4:4e:b9:40:fe:5f:d0:c4:76: f0:bf:24:1c:c5:fb:8e:2b:db:9a:c1:a2:ac:0e:de: 8e:bf:40:5c:54:52:6a:2c:61:db:be:72:3e:cc:7e: b8:5d:72:57:6d:d5:9b:51:79:bf:f0:c5:54:88:48: 65:74:8a:07:f7:08:a0:90:e9:c3:a3:b7:b2:0d:f7: 37:cf:63:d0:bc:04:81:29:2f:7a:7d:7d:75:6d:8c: 5f:9e:ae:75:4c:f8:b1:ac:79:61:eb:dd:4e:37:d4: a3:41:85:f3:36:fa:08:c9:01:13:f9:87:bb:04:49: d9:12:d0:8f:5c:13:9a:0d:d9:41:0c:32:ab:4b:39: fe:bc:98:27:33:c3:69:3a:2d:b0:c8:9b:60:2c:67: 8e:fd:cd:11:5f:c2:e6:df:f5:3d:c8:cd:1d:c2:3c: 55:b5:72:c8:70:03:7a:84:05:37:0b:73:88:29:a8: b3:e0:8d:90:22:c2:a0:25:fb:6c:cf:00:27:5e:f8: e8:8a:1c:e4:91:2c:ff:ae:fb:9f:80:aa:63:8e:3c: 95:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:22:B4:62:8A:64:21:78:AE:87:01:B0:5C:16:4D:11:A7:16:4F:E5 X509v3 Authority Key Identifier: keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c8:cb:9f:80:b6:88:f0:94:e8:12:71:d4:cb:97:a9:1d:59: b2:30:7f:fc:d3:91:d7:4c:2a:55:f3:b6:0f:6b:3d:5c:d1:67: 2f:5a:ca:9f:70:36:3b:67:93:91:f2:5e:fa:be:35:fc:9a:8d: b7:47:d5:03:99:6d:c7:1d:09:e9:e9:10:a9:d6:11:21:2a:dc: 96:c7:38:53:3e:89:80:8e:0c:81:e9:4a:6b:64:10:d3:fd:b6: ad:44:2d:c5:10:b2:36:3a:a3:f7:21:f0:a4:db:25:04:0c:7a: 46:82:09:7b:e0:67:1d:dc:70:dd:5f:27:54:9e:c3:03:cd:6f: 0d:7b:49:2f:72:b4:9e:97:c6:2c:0c:91:a4:f5:4c:51:aa:59: c7:2b:2e:df:17:fc:77:28:3c:d2:d0:54:78:fe:fa:4c:3b:d4: fc:c8:8b:4d:f5:22:e8:df:a8:cf:e6:e1:ab:29:14:b6:26:cf: aa:77:77:93:0a:64:b4:1b:8c:0c:17:2d:21:76:00:64:3f:d1: b3:be:95:d8:68:2b:51:34:63:2f:f3:2f:dd:d6:b1:ce:44:17: 4b:87:60:3e:a1:b4:ce:30:40:f1:b5:e0:38:84:72:1a:ea:5b: 4f:7a:72:d9:ff:72:17:31:d1:bb:04:ce:d1:20:19:eb:ea:6e: 09:c3:30:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVCMEUyMTU0NEFF NTIyMzdFOEEwHhcNMjQwNTE4MjIyOTMxWhcNMjQwNTI1MjIyOTMxWjAYMRYwFAYD VQQDEw02NjQ5MmJjYi1lMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA62+6oMSO4QcvJ6L4VbRf0BoHFnLFWUBthQMkhSCn2FY0tTeNoDXaB7NbW68j 66ctx1z0TrlA/l/QxHbwvyQcxfuOK9uawaKsDt6Ov0BcVFJqLGHbvnI+zH64XXJX bdWbUXm/8MVUiEhldIoH9wigkOnDo7eyDfc3z2PQvASBKS96fX11bYxfnq51TPix rHlh691ON9SjQYXzNvoIyQET+Ye7BEnZEtCPXBOaDdlBDDKrSzn+vJgnM8NpOi2w yJtgLGeO/c0RX8Lm3/U9yM0dwjxVtXLIcAN6hAU3C3OIKaiz4I2QIsKgJftszwAn XvjoihzkkSz/rvufgKpjjjyVewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYitGKK ZCF4rocBsFwWTRGnFk/lMB8GA1UdIwQYMBaAFNvmx/mQkEauNaIVsOIVRK5SI36K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjY5Ny83NTIxREZDMEU4 NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJxNDFvaFd3NGhWRXJsSWpm b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItYkgtWkNRUnE0MW9oV3c0aFZFcmxJamZvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJx NDFvaFd3NGhWRXJsSWpmb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/yMufgLaI8JToEnHUy5epHVmyMH/805HXTCpV87YPaz1c0WcvWsqf cDY7Z5OR8l76vjX8mo23R9UDmW3HHQnp6RCp1hEhKtyWxzhTPomAjgyB6UprZBDT /batRC3FELI2OqP3IfCk2yUEDHpGggl74Gcd3HDdXydUnsMDzW8Ne0kvcrSel8Ys DJGk9UxRqlnHKy7fF/x3KDzS0FR4/vpMO9T8yItN9SLo36jP5uGrKRS2Js+qd3eT CmS0G4wMFy0hdgBkP9GzvpXYaCtRNGMv8y/d1rHORBdLh2A+obTOMEDxteA4hHIa 6ltPenLZ/3IXMdG7BM7RIBnr6m4JwzAk -----END CERTIFICATE-----Generated at Sun May 19 00:16:13 2024 by rpki-client on console-fra.rpki-client.org