$ rpki-client -vvf rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft File: he6Mb5WNbzwfFdLBq8T-m75s7tc.mft (raw, json) Hash identifier: Vt4Lc15X5JhOq/AEOiFK+aIeWOlJQL1YM4JCUizlCYQ= Subject key identifier: 1F:2A:97:C0:7A:20:25:06:2F:82:F4:25:25:E5:B0:A5:5A:22:9E:C3 Authority key identifier: 85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 Certificate issuer: /CN=A9175165/serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Certificate serial: 1068 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft Manifest number: 1061 Signing time: Sat 18 May 2024 17:57:21 +0000 Manifest this update: Sat 18 May 2024 17:57:21 +0000 Manifest next update: Sat 25 May 2024 17:57:21 +0000 Files and hashes: 1: he6Mb5WNbzwfFdLBq8T-m75s7tc.crl (hash: FajaB4pa86Jsn8tylZdPXTCTP1Q74nWd4Mq8vkJvlcU=) 2: 8B8DEE220F0911E9A8CC815EC4F9AE02.roa (hash: cp4F4jMIgfMAt85H7Jg8xGE9loHPzsrPu/dVe17GTAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4200 (0x1068) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175165/serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Validity Not Before: May 18 17:57:21 2024 GMT Not After : May 25 17:57:21 2024 GMT Subject: CN=6648ec01-00d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:52:6c:ac:19:1b:7b:f4:7f:20:9a:54:1c: 81:c3:ac:e1:25:47:ca:42:02:c7:38:f1:fe:72:c1: 36:64:b3:0b:e2:62:bd:c3:f2:05:af:79:13:af:d8: 18:82:c0:93:f8:88:c5:e6:de:ee:c4:9c:38:e9:5d: a3:64:0e:d0:61:25:41:42:4e:fa:71:ee:31:0d:14: 36:63:4c:cd:12:66:05:de:a1:2b:fe:ea:45:b8:f2: 91:2f:e4:15:57:f0:89:7b:56:6e:0f:89:7f:e4:f4: e3:06:d0:d9:4d:3c:74:aa:12:0e:1a:7a:43:3a:a8: cf:6a:1e:1c:b2:38:b8:fa:03:35:ba:50:c1:d4:99: a6:58:9b:53:15:f3:04:2c:d0:c6:ae:b0:a3:6f:83: 65:35:24:7e:23:69:38:7a:8e:02:9e:15:6d:b9:93: a2:12:04:86:7a:7c:2d:70:fa:ae:4d:c4:71:67:bb: 7e:f4:64:01:54:74:e4:f3:c0:b0:bc:37:c6:61:be: 24:6d:46:70:42:6a:26:c0:08:4b:db:ec:3b:3e:4e: eb:a5:37:14:05:4f:b6:51:a7:fb:9d:ea:2f:0e:fd: b7:0e:3d:0a:23:92:92:01:a4:74:d6:f4:27:a7:59: 93:13:cd:91:02:17:24:4b:b8:c3:db:e6:1f:4b:0f: f4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:2A:97:C0:7A:20:25:06:2F:82:F4:25:25:E5:B0:A5:5A:22:9E:C3 X509v3 Authority Key Identifier: keyid:85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:e6:1d:cc:80:42:1f:55:3b:c7:e4:55:2e:1b:a3:8d:a8:bd: 3b:74:4c:d1:e8:a9:3b:91:5a:86:49:f5:02:08:92:7a:90:f5: e5:b0:39:ea:0e:15:e6:33:48:91:a6:b8:ee:9d:3c:b7:23:b9: a0:46:ad:30:ea:78:c1:37:f8:8d:72:bd:4e:f3:86:71:48:70: 04:ea:05:45:04:3e:25:45:94:c4:0d:f0:9e:55:3c:db:4a:b2: 28:ad:59:34:f0:9c:cb:28:8d:82:6c:f6:0b:20:a5:bd:a5:f2: 6d:4f:d4:6f:b5:39:3a:95:89:d4:80:33:18:4d:fd:8a:fa:02: 72:1b:8e:64:12:21:28:3c:f5:cd:a3:a5:7a:95:3f:11:23:28: 81:9f:0d:c1:f7:69:c8:80:05:4a:65:53:ab:a8:1b:9d:0f:c8: 6c:43:d2:42:ff:78:1e:8b:f8:ef:1c:09:ef:33:7b:32:d3:77: 75:39:c9:02:f4:9b:e4:04:82:ce:ef:71:af:e1:12:99:64:7a: ae:4f:29:59:36:d1:a6:9b:bc:15:df:d9:20:d7:f9:c1:d2:7a: 46:7e:23:07:2d:23:f3:36:12:68:e3:93:f6:dc:1a:1e:44:64: ff:a0:d5:3a:72:0b:56:20:06:1d:9c:47:11:ce:de:05:d6:39: 5d:fc:2e:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNjUxMTAvBgNVBAUTKDg1RUU4QzZGOTU4RDZGM0MxRjE1RDJDMUFCQzRGRTlC QkU2Q0VFRDcwHhcNMjQwNTE4MTc1NzIxWhcNMjQwNTI1MTc1NzIxWjAYMRYwFAYD VQQDEw02NjQ4ZWMwMS0wMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwehSbKwZG3v0fyCaVByBw6zhJUfKQgLHOPH+csE2ZLML4mK9w/IFr3kTr9gY gsCT+IjF5t7uxJw46V2jZA7QYSVBQk76ce4xDRQ2Y0zNEmYF3qEr/upFuPKRL+QV V/CJe1ZuD4l/5PTjBtDZTTx0qhIOGnpDOqjPah4csji4+gM1ulDB1JmmWJtTFfME LNDGrrCjb4NlNSR+I2k4eo4CnhVtuZOiEgSGenwtcPquTcRxZ7t+9GQBVHTk88Cw vDfGYb4kbUZwQmomwAhL2+w7Pk7rpTcUBU+2Uaf7neovDv23Dj0KI5KSAaR01vQn p1mTE82RAhckS7jD2+YfSw/0uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8ql8B6 ICUGL4L0JSXlsKVaIp7DMB8GA1UdIwQYMBaAFIXujG+VjW88HxXSwavE/pu+bO7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE2NS85MEYwRkZBRTBG MDgxMUU5ODY4MEU4NUNDNEY5QUUwMi9oZTZNYjVXTmJ6d2ZGZExCcThULW03NXM3 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNk1iNVdOYnp3ZkZkTEJxOFQtbTc1czd0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTE2NS85MEYwRkZBRTBGMDgxMUU5ODY4MEU4NUNDNEY5QUUwMi9oZTZNYjVXTmJ6 d2ZGZExCcThULW03NXM3dGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS5h3MgEIfVTvH5FUuG6ONqL07dEzR6Kk7kVqGSfUCCJJ6kPXlsDnq DhXmM0iRprjunTy3I7mgRq0w6njBN/iNcr1O84ZxSHAE6gVFBD4lRZTEDfCeVTzb SrIorVk08JzLKI2CbPYLIKW9pfJtT9RvtTk6lYnUgDMYTf2K+gJyG45kEiEoPPXN o6V6lT8RIyiBnw3B92nIgAVKZVOrqBudD8hsQ9JC/3gei/jvHAnvM3sy03d1OckC 9JvkBILO73Gv4RKZZHquTylZNtGmm7wV39kg1/nB0npGfiMHLSPzNhJo45P23Boe RGT/oNU6cgtWIAYdnEcRzt4F1jld/C4h -----END CERTIFICATE-----Generated at Sat May 18 18:46:46 2024 by rpki-client on console-fra.rpki-client.org