$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: q7zR7Ek9oR7HudfS5SG9vSRyGm4I4g727ZHZ3OJCpWo= Subject key identifier: B5:F9:52:07:FC:5D:FA:B8:2F:65:81:81:47:E3:34:37:93:BA:95:95 Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 0129 Signing time: Sun 19 May 2024 05:08:15 +0000 Manifest this update: Sun 19 May 2024 05:08:14 +0000 Manifest next update: Sun 26 May 2024 05:08:14 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: 2AZJHZ2+RIAIe/v7yc5SPclE8liJBOObb1iCTUNTwlw=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: knqc7THQRsHZbyl0QP6DMcWGNM0bKvX1iDSiB2h5rO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: May 19 05:08:14 2024 GMT Not After : May 26 05:08:14 2024 GMT Subject: CN=6649893e-ccab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b7:21:4c:0b:e8:26:62:a4:43:76:47:fe:1a: 6d:9d:6a:ca:e6:9f:b9:e2:5f:79:3d:59:5c:3e:1d: 1d:70:e3:a9:fd:d7:ab:5c:2b:e8:6b:dc:80:96:d1: 0a:35:45:0c:18:2d:dc:df:a3:9f:02:eb:8b:5a:ba: 73:33:66:79:da:25:1d:52:59:10:b5:4d:e8:a5:03: e4:f5:a0:af:db:cf:31:96:a4:ad:3d:df:ee:13:9b: 24:1f:03:4c:3f:64:7e:1e:96:de:3c:a1:27:5b:1d: 28:58:83:f4:e7:b9:51:61:a9:e2:0e:60:86:1c:2b: 6b:0e:b0:12:2b:52:59:5f:c4:29:e1:ca:7a:a0:32: c9:9a:b6:77:53:12:ef:65:cb:ff:4a:3c:6b:3d:40: 3c:86:89:29:53:41:71:da:08:02:c5:b0:e2:a6:43: 8f:83:d0:3f:a4:52:8e:8e:1b:42:12:cb:c9:e2:e9: 48:4e:b9:14:8c:3a:00:e7:ed:5d:53:ef:83:54:b8: 4e:29:41:30:ee:de:d7:44:f9:fe:51:62:52:b1:41: cb:93:62:3b:56:49:b2:46:1e:66:cf:66:b7:d7:6d: f8:39:4e:83:4f:89:36:0d:d8:a2:88:ca:40:95:a0: 8f:4b:17:52:98:2a:72:65:71:03:ca:19:f8:f0:30: 88:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F9:52:07:FC:5D:FA:B8:2F:65:81:81:47:E3:34:37:93:BA:95:95 X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:38:87:11:dd:14:40:b5:93:20:d8:0e:13:77:01:b3:5b:e4: d6:a9:f5:71:d4:8d:c5:8d:eb:0f:6e:4f:66:78:8d:e9:b9:88: 58:8a:32:02:40:21:8d:2c:1e:85:f0:57:bd:ab:39:0c:a1:02: b5:82:44:00:b0:d5:11:0f:1f:d9:af:fa:77:77:3c:bf:18:16: 38:07:f1:9f:07:f3:2b:b8:6f:ff:ed:fb:fa:67:d3:ad:8d:f3: de:e7:cb:eb:26:2e:bb:42:4f:14:38:2b:ba:61:63:44:81:06: 95:68:0f:99:72:ff:6c:86:fe:0e:6e:a4:b5:14:1a:c9:6f:42: a8:fc:ec:10:77:ad:2a:f5:7f:e0:03:bf:c3:28:e4:70:ae:93: fd:87:15:15:76:5f:c5:64:a1:50:7b:4e:7a:51:c9:b4:d9:7b: b0:c5:91:7e:80:0a:2e:6f:a6:0f:53:df:4d:75:e9:c9:f6:5d: a5:12:f9:72:ae:d6:5e:83:e9:f7:a5:d1:1e:fc:b7:df:8d:4d: 6f:89:b2:62:b8:56:9d:7e:a9:4a:d0:ea:fd:b6:23:82:e6:e8: bf:1b:d9:3f:24:03:bf:54:8e:ab:c4:cc:87:71:7d:a2:90:b5: 9b:90:75:bb:c5:f6:dd:a0:96:b1:2e:fd:71:b9:8d:0b:ab:1d: b6:ae:d0:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjQwNTE5MDUwODE0WhcNMjQwNTI2MDUwODE0WjAYMRYwFAYD VQQDEw02NjQ5ODkzZS1jY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLchTAvoJmKkQ3ZH/hptnWrK5p+54l95PVlcPh0dcOOp/derXCvoa9yAltEK NUUMGC3c36OfAuuLWrpzM2Z52iUdUlkQtU3opQPk9aCv288xlqStPd/uE5skHwNM P2R+HpbePKEnWx0oWIP057lRYaniDmCGHCtrDrASK1JZX8Qp4cp6oDLJmrZ3UxLv Zcv/SjxrPUA8hokpU0Fx2ggCxbDipkOPg9A/pFKOjhtCEsvJ4ulITrkUjDoA5+1d U++DVLhOKUEw7t7XRPn+UWJSsUHLk2I7VkmyRh5mz2a31234OU6DT4k2DdiiiMpA laCPSxdSmCpyZXEDyhn48DCI8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLX5Ugf8 Xfq4L2WBgUfjNDeTupWVMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJOIcR3RRAtZMg2A4TdwGzW+TWqfVx1I3FjesPbk9meI3puYhYijIC QCGNLB6F8Fe9qzkMoQK1gkQAsNURDx/Zr/p3dzy/GBY4B/GfB/MruG//7fv6Z9Ot jfPe58vrJi67Qk8UOCu6YWNEgQaVaA+Zcv9shv4ObqS1FBrJb0Ko/OwQd60q9X/g A7/DKORwrpP9hxUVdl/FZKFQe056Ucm02XuwxZF+gAoub6YPU99NdenJ9l2lEvly rtZeg+n3pdEe/LffjU1vibJiuFadfqlK0Or9tiOC5ui/G9k/JAO/VI6rxMyHcX2i kLWbkHW7xfbdoJaxLv1xuY0Lqx22rtC7 -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org