$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft File: H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft (raw, json) Hash identifier: pfscICbp4sVKtxFYw4t9HpaZUp3ktybxZFuKDZtJ3h0= Subject key identifier: 8C:2C:B4:78:67:87:7A:A1:C2:98:11:79:4D:B4:6C:A2:6D:C0:67:23 Authority key identifier: 1F:63:3F:72:D1:C6:78:16:C2:06:4A:56:E5:38:3C:D9:54:DD:C0:E5 Certificate issuer: /CN=A91764E1/serialNumber=1F633F72D1C67816C2064A56E5383CD954DDC0E5 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2M_ctHGeBbCBkpW5Tg82VTdwOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft Manifest number: 34 Signing time: Sun 19 May 2024 08:19:34 +0000 Manifest this update: Sun 19 May 2024 08:19:34 +0000 Manifest next update: Sun 26 May 2024 08:19:34 +0000 Files and hashes: 1: H2M_ctHGeBbCBkpW5Tg82VTdwOU.crl (hash: Iyu3XK3CSurMIRDTHwTGW3Wm6Mq2D2txXk4+xhKX4dk=) 2: 30A1B4D0C67E11EEB4008058C4F9AE02.roa (hash: Y33xkPd/NcEVAXjbSrIl1ngKcwYgoXKhM/ZonEg3diE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.crl rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2M_ctHGeBbCBkpW5Tg82VTdwOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1/serialNumber=1F633F72D1C67816C2064A56E5383CD954DDC0E5 Validity Not Before: May 19 08:19:34 2024 GMT Not After : May 26 08:19:34 2024 GMT Subject: CN=6649b616-3d47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:6a:90:c6:ec:e3:b4:32:bd:29:e8:8d:db: 08:20:72:32:1f:fd:17:a9:6d:e2:63:ba:ef:f8:1a: 81:1a:5a:de:99:9e:ec:e5:79:5d:75:09:53:9d:61: 74:5e:91:04:a7:13:88:19:c3:3b:7b:a1:59:79:5d: 7c:90:f2:0d:ca:36:10:c3:3f:cd:c9:e3:b8:b0:77: 20:2c:ae:50:f1:54:0a:40:f5:35:a9:d4:f3:e1:b5: 64:8d:52:15:35:6b:da:82:02:45:a2:b5:60:06:a7: 97:99:1a:b3:c6:bb:ff:b1:8a:50:e2:f2:bc:41:bb: ee:e3:b3:25:6f:2b:eb:96:ed:bc:ed:2c:22:1b:52: c4:35:38:eb:4d:04:50:71:fb:c8:47:4b:5d:1c:5b: 8e:33:e1:ec:ff:6a:fc:2a:01:e7:18:4e:79:8e:48: 79:ba:7e:12:98:40:52:1c:4a:58:9d:cf:0a:0d:30: b0:bd:fc:5a:16:5c:ec:20:9f:70:f5:5b:5f:bc:be: 02:56:52:6d:c3:b9:89:44:1c:32:19:f8:f9:85:db: e2:5f:2e:45:46:fb:e9:c0:cb:70:56:36:1e:ac:ce: e2:85:f4:7c:3f:7b:a2:c4:44:71:b0:03:9c:5e:33: 0a:58:6a:f5:c8:e9:6b:84:5f:91:80:63:37:fc:4b: 9b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:2C:B4:78:67:87:7A:A1:C2:98:11:79:4D:B4:6C:A2:6D:C0:67:23 X509v3 Authority Key Identifier: keyid:1F:63:3F:72:D1:C6:78:16:C2:06:4A:56:E5:38:3C:D9:54:DD:C0:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2M_ctHGeBbCBkpW5Tg82VTdwOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:d2:8a:4c:02:62:78:7f:61:eb:33:78:92:ee:f1:1a:f9:67: b1:29:fb:1b:49:96:2b:a9:60:21:13:50:82:8e:48:e1:65:30: 2a:03:48:d7:b7:ad:b9:25:32:b7:22:3d:59:80:5d:53:6b:7b: f8:cc:af:61:00:55:14:b0:ae:f6:07:51:43:ea:ba:66:da:79: 13:ba:8a:10:f5:70:06:28:c1:e6:d4:d1:b1:5d:ff:af:c0:e6: 19:28:da:6e:37:22:45:e0:72:a0:b3:58:15:9b:bc:24:fe:7f: 1a:64:a8:5c:da:6b:a9:2b:b1:ad:20:87:88:40:a5:60:df:ea: 95:e6:40:3e:ef:51:9d:f5:9d:02:29:5c:bd:4e:7b:20:22:54: 50:d2:b9:75:59:22:bb:57:f6:ee:56:0e:42:be:a2:29:99:84: 3d:2a:13:70:5a:f3:d0:1b:c1:94:a7:8f:60:5e:10:5a:3f:33: 8f:35:0b:0c:87:69:68:8e:de:83:39:82:86:e9:82:a2:7e:3e: 0d:52:14:91:3f:19:2f:d1:bb:66:92:2d:a1:05:1a:e2:69:85: 4e:12:1e:2a:be:ab:1b:f4:22:bc:ee:67:ce:00:6e:90:ad:bf: ec:c6:a8:58:16:02:72:4d:d3:a5:57:2c:59:d5:34:c1:ac:15: d5:0c:3b:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjRFMTExMC8GA1UEBRMoMUY2MzNGNzJEMUM2NzgxNkMyMDY0QTU2RTUzODNDRDk1 NEREQzBFNTAeFw0yNDA1MTkwODE5MzRaFw0yNDA1MjYwODE5MzRaMBgxFjAUBgNV BAMTDTY2NDliNjE2LTNkNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC65GqQxuzjtDK9KeiN2wggcjIf/RepbeJjuu/4GoEaWt6ZnuzleV11CVOdYXRe kQSnE4gZwzt7oVl5XXyQ8g3KNhDDP83J47iwdyAsrlDxVApA9TWp1PPhtWSNUhU1 a9qCAkWitWAGp5eZGrPGu/+xilDi8rxBu+7jsyVvK+uW7bztLCIbUsQ1OOtNBFBx +8hHS10cW44z4ez/avwqAecYTnmOSHm6fhKYQFIcSlidzwoNMLC9/FoWXOwgn3D1 W1+8vgJWUm3DuYlEHDIZ+PmF2+JfLkVG++nAy3BWNh6szuKF9Hw/e6LERHGwA5xe MwpYavXI6WuEX5GAYzf8S5tbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjCy0eGeH eqHCmBF5TbRsom3AZyMwHwYDVR0jBBgwFoAUH2M/ctHGeBbCBkpW5Tg82VTdwOUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2NEUxLzZCNTg0RDI0QzY3 RDExRUU4NzAyN0IzQUM0RjlBRTAyL0gyTV9jdEhHZUJiQ0JrcFc1VGc4MlZUZHdP VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSDJNX2N0SEdlQmJDQmtwVzVUZzgyVlRkd09VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 NEUxLzZCNTg0RDI0QzY3RDExRUU4NzAyN0IzQUM0RjlBRTAyL0gyTV9jdEhHZUJi Q0JrcFc1VGc4MlZUZHdPVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEbSikwCYnh/YeszeJLu8Rr5Z7Ep+xtJliupYCETUIKOSOFlMCoDSNe3 rbklMrciPVmAXVNre/jMr2EAVRSwrvYHUUPqumbaeRO6ihD1cAYowebU0bFd/6/A 5hko2m43IkXgcqCzWBWbvCT+fxpkqFzaa6krsa0gh4hApWDf6pXmQD7vUZ31nQIp XL1OeyAiVFDSuXVZIrtX9u5WDkK+oimZhD0qE3Ba89AbwZSnj2BeEFo/M481CwyH aWiO3oM5gobpgqJ+Pg1SFJE/GS/Ru2aSLaEFGuJphU4SHiq+qxv0IrzuZ84AbpCt v+zGqFgWAnJN06VXLFnVNMGsFdUMO+k= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org