$ rpki-client -vvf rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft File: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft (raw, json) Hash identifier: 2XU1//8dRjsBMzDN1WBKVAkWz2vjKkMUoqPlYU7DTns= Subject key identifier: 1F:D8:3D:B1:23:5E:C8:4E:D1:C1:2A:7F:01:32:11:43:01:E0:DA:20 Authority key identifier: 87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 Certificate issuer: /CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft Manifest number: 64 Signing time: Sun 19 May 2024 07:38:36 +0000 Manifest this update: Sun 19 May 2024 07:38:36 +0000 Manifest next update: Sun 26 May 2024 07:38:36 +0000 Files and hashes: 1: h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl (hash: x2NuX/dTGxbhe+SyPNn8yG5Rfhd7fsnE1eU9zyEBYZo=) 2: 27178D9E7FBC11EEAF80B825C4F9AE02.roa (hash: tVR4eS6BAk11ESI+gtbO8xp2r33dkwzxIV+WLCTc1kU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B02F/serialNumber=87F31B201BDD187581540C5B8B864438C29990B9 Validity Not Before: May 19 07:38:36 2024 GMT Not After : May 26 07:38:36 2024 GMT Subject: CN=6649ac7c-c544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:df:17:f9:ec:a5:f6:d5:97:4f:93:ca:57:e0: ab:79:59:70:a3:06:20:d6:c5:94:fe:b7:bb:40:8b: 69:46:7b:2b:de:93:25:f0:75:f5:32:32:97:d6:6b: 9e:04:b3:d2:f3:8d:c6:5a:56:f2:4c:23:42:51:a0: d6:93:d5:47:fa:b5:35:84:72:8e:b1:c4:9a:8d:bb: 5c:96:a5:5d:c4:c2:f2:81:93:d5:9e:09:ea:01:f3: c7:4c:93:36:47:80:58:4b:7e:46:49:7b:b1:f9:fa: 1d:b6:7a:a6:30:1a:1b:a1:96:56:99:e8:db:ee:38: ea:3f:ba:34:8b:0d:e5:77:0e:a0:a9:0c:01:ed:a7: 2b:7e:bb:e1:02:77:c3:21:5b:61:a4:45:8d:5a:cf: 41:b8:83:c7:48:1a:6e:35:6f:ee:45:ff:62:9d:bd: 2f:50:01:69:11:5f:db:18:c3:56:91:19:77:a5:29: 33:bd:e9:68:89:aa:91:68:8f:75:ef:3b:93:85:bc: cd:88:67:8e:46:9b:5c:ef:80:04:02:c3:60:27:92: ac:73:04:55:15:56:bb:65:93:5c:20:5e:f7:33:14: 64:ef:cf:53:73:ee:04:42:3a:09:eb:dc:51:9a:d1: 6a:26:89:e4:d1:a6:91:de:3f:8e:53:29:8b:32:ee: d0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:D8:3D:B1:23:5E:C8:4E:D1:C1:2A:7F:01:32:11:43:01:E0:DA:20 X509v3 Authority Key Identifier: keyid:87:F3:1B:20:1B:DD:18:75:81:54:0C:5B:8B:86:44:38:C2:99:90:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B02F/D7C33AB87FBB11EEA6983925C4F9AE02/h_MbIBvdGHWBVAxbi4ZEOMKZkLk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:dd:b5:38:e8:bf:89:a2:6b:b8:d4:f4:0a:f9:2d:71:ca:dd: b0:03:cd:67:35:2a:26:8a:6c:e8:dd:f8:73:a5:0b:60:fc:3d: ee:13:74:76:9a:ae:9d:46:4a:12:69:3a:f3:ea:ef:94:46:f8: 80:ab:96:bb:96:6e:3b:aa:77:86:ed:b3:f8:f1:64:b1:df:f9: 4f:0d:65:c0:8e:68:18:a7:16:d1:68:d8:61:e2:bf:c8:e5:20: a3:3f:6c:23:41:5a:65:5a:21:c4:d8:44:82:7c:dd:4b:ba:4b: e2:76:47:fc:0a:47:5d:98:10:10:8c:1c:cc:81:00:a6:8d:86: a5:29:eb:4e:49:81:a2:cd:36:eb:03:a4:41:9d:4d:1f:c4:b1: ee:5f:a6:bc:a5:aa:7b:0e:bf:93:32:83:26:37:13:ad:26:0b: bc:c8:c6:96:26:07:94:60:eb:62:6e:6f:0d:c1:2d:0b:72:19: a6:57:7a:54:2c:1e:db:f6:40:48:9c:b6:d1:ca:aa:43:05:48: 6f:40:4c:23:96:71:08:7a:84:f2:09:cf:2c:13:5e:6f:b7:47: 3a:75:86:26:24:66:26:b0:52:aa:0a:e0:89:a9:69:3a:15:be: a3:fe:b8:cf:fb:8e:ee:59:eb:8f:19:2e:aa:1b:8d:ca:85:1f: 53:0b:06:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjAyRjExMC8GA1UEBRMoODdGMzFCMjAxQkREMTg3NTgxNTQwQzVCOEI4NjQ0MzhD Mjk5OTBCOTAeFw0yNDA1MTkwNzM4MzZaFw0yNDA1MjYwNzM4MzZaMBgxFjAUBgNV BAMTDTY2NDlhYzdjLWM1NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD3xf57KX21ZdPk8pX4Kt5WXCjBiDWxZT+t7tAi2lGeyvekyXwdfUyMpfWa54E s9LzjcZaVvJMI0JRoNaT1Uf6tTWEco6xxJqNu1yWpV3EwvKBk9WeCeoB88dMkzZH gFhLfkZJe7H5+h22eqYwGhuhllaZ6NvuOOo/ujSLDeV3DqCpDAHtpyt+u+ECd8Mh W2GkRY1az0G4g8dIGm41b+5F/2KdvS9QAWkRX9sYw1aRGXelKTO96WiJqpFoj3Xv O5OFvM2IZ45Gm1zvgAQCw2AnkqxzBFUVVrtlk1wgXvczFGTvz1Nz7gRCOgnr3FGa 0WomieTRppHeP45TKYsy7tDJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH9g9sSNe yE7RwSp/ATIRQwHg2iAwHwYDVR0jBBgwFoAUh/MbIBvdGHWBVAxbi4ZEOMKZkLkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCMDJGL0Q3QzMzQUI4N0ZC QjExRUVBNjk4MzkyNUM0RjlBRTAyL2hfTWJJQnZkR0hXQlZBeGJpNFpFT01LWmtM ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaF9NYklCdmRHSFdCVkF4Ymk0WkVPTUtaa0xrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC MDJGL0Q3QzMzQUI4N0ZCQjExRUVBNjk4MzkyNUM0RjlBRTAyL2hfTWJJQnZkR0hX QlZBeGJpNFpFT01LWmtMay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADvdtTjov4mia7jU9Ar5LXHK3bADzWc1KiaKbOjd+HOlC2D8Pe4TdHaa rp1GShJpOvPq75RG+ICrlruWbjuqd4bts/jxZLHf+U8NZcCOaBinFtFo2GHiv8jl IKM/bCNBWmVaIcTYRIJ83Uu6S+J2R/wKR12YEBCMHMyBAKaNhqUp605JgaLNNusD pEGdTR/Ese5fprylqnsOv5MygyY3E60mC7zIxpYmB5Rg62Jubw3BLQtyGaZXelQs Htv2QEicttHKqkMFSG9ATCOWcQh6hPIJzywTXm+3Rzp1hiYkZiawUqoK4ImpaToV vqP+uM/7ju5Z648ZLqobjcqFH1MLBmE= -----END CERTIFICATE-----Generated at Sun May 19 08:26:43 2024 by rpki-client on console-fra.rpki-client.org