$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: 2VfS8IC3joAJ36zGrQiEf6ras4bdrs7YVmcM0N6ojsI= Subject key identifier: 20:DD:00:94:7A:32:F6:AE:06:D3:FD:BF:36:49:29:D8:9C:00:B9:8F Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1BF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1BBE Signing time: Sat 18 May 2024 16:37:26 +0000 Manifest this update: Sat 18 May 2024 16:37:26 +0000 Manifest next update: Sat 25 May 2024 16:37:26 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: OXQyNosBOykBjNGKm1liXlwyXFdCDFQKq7myn9UA5mM=) 2: 2981CBA8ED3011EEA9995C14C4F9AE02.roa (hash: uAAv9WJvOyfUOGVdORHVI1GEjUqWBHCTatqkltZeC0c=) 3: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: zu3sqebA98zj19JqYqTfO+wywvBD1HWpcoApYbXApVI=) 4: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: DtvxKj0Hyg1ZkY+rgK4KM0aAb9imIsk6lhgI64euGAk=) 5: E23BB7D0ED3011EEB06B3716C4F9AE02.roa (hash: EmwHuguXgTeY94E1MXb0NA1pFQTAwNRO8iH8oEY/30A=) 6: 9C4FABA09B8911EC826E9357C4F9AE02.roa (hash: hcj/Y6A+vhV7V9soBmH6xqhaMtWT/kmP2G633b6vvho=) 7: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: samdfIQKsVOCnCnPqc0Y/TwRroQITJu22UUG+KG6lis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7160 (0x1bf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: May 18 16:37:26 2024 GMT Not After : May 25 16:37:26 2024 GMT Subject: CN=6648d946-8061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4f:5d:bf:e9:7e:cf:c4:5e:82:17:51:e3:a3: 96:b3:da:51:f1:11:ca:2f:cf:4c:fa:40:ad:c2:13: 94:91:1b:59:2f:4e:dc:71:ff:5c:82:2b:17:ed:04: ae:e6:8a:bb:e7:ab:dc:2a:09:23:c5:b7:7c:e4:54: 88:ad:0e:e2:96:c6:e9:c6:4f:bd:57:5e:7f:c9:a7: 80:4e:c7:5c:c4:01:51:1a:f0:cb:f9:d6:b0:2c:79: 42:d5:99:9b:fa:d0:b5:89:bf:cb:97:b2:28:a4:5e: 1b:ff:27:14:e3:48:5c:63:43:68:50:a1:01:8c:3b: 3a:22:fd:f6:7f:15:71:8d:6d:c3:3b:f8:5e:f5:2a: 4a:b4:dd:a4:15:74:de:3b:74:67:53:55:bd:41:68: b3:0c:e8:fc:b2:04:c4:8c:dd:2f:8c:76:a4:9c:d9: 6d:90:59:01:bc:a8:cc:f6:4c:95:55:34:d7:75:79: 8d:57:2e:9b:26:54:88:29:39:4b:67:af:ff:0e:1d: ac:b4:a7:33:71:1e:b0:9b:a5:8d:c2:d6:2d:62:c5: 06:67:a0:18:03:ac:e1:ca:bb:5f:99:e5:67:81:cf: 98:43:10:7c:a7:39:1c:08:27:fe:37:ab:3d:6d:98: a9:14:55:c9:a9:7a:06:4d:b8:90:18:4c:62:71:98: ae:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DD:00:94:7A:32:F6:AE:06:D3:FD:BF:36:49:29:D8:9C:00:B9:8F X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:29:db:d5:81:dd:c1:5e:49:9c:5e:00:d8:36:15:7c:e0:d0: 8c:a8:d3:1a:83:a7:0b:52:83:b0:f2:52:58:b7:4b:c8:0d:21: b9:d4:bd:26:d0:a2:64:df:f5:1b:b5:46:bd:23:08:f3:a9:e9: 8f:9b:44:91:63:d1:db:f5:87:d2:dc:35:1d:db:e6:4c:03:06: eb:f4:7d:2f:17:99:cc:cd:49:29:a7:46:ee:0a:a0:0b:1e:1a: 93:02:8a:0c:56:ae:89:1f:9f:af:8a:6d:e2:87:52:e5:eb:80: 03:eb:6f:75:31:50:0c:99:c8:fb:88:32:fe:b3:c5:47:cb:5f: 3a:24:8c:7d:d8:03:2f:14:63:43:61:64:6c:c0:c6:4a:fd:d7: 18:03:e8:cb:12:b9:78:0b:55:4e:ee:09:29:16:f0:56:71:10: f7:7c:59:78:33:a2:90:ba:02:23:ad:d8:11:37:25:7e:2f:c9: 93:32:64:0a:6c:90:11:21:24:f5:a1:7b:59:3c:59:35:01:4c: 80:23:c1:ba:dc:d6:83:fa:c8:5a:ef:ef:d9:14:1a:01:27:9b: 04:7f:f3:20:ec:25:8b:1e:91:d8:17:6c:7a:0a:2e:7f:db:83: c3:69:1d:ac:5a:06:30:52:69:a2:9c:e9:96:15:fa:c0:b3:a3: 54:3f:45:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjQwNTE4MTYzNzI2WhcNMjQwNTI1MTYzNzI2WjAYMRYwFAYD VQQDEw02NjQ4ZDk0Ni04MDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE9dv+l+z8ReghdR46OWs9pR8RHKL89M+kCtwhOUkRtZL07ccf9cgisX7QSu 5oq756vcKgkjxbd85FSIrQ7ilsbpxk+9V15/yaeATsdcxAFRGvDL+dawLHlC1Zmb +tC1ib/Ll7IopF4b/ycU40hcY0NoUKEBjDs6Iv32fxVxjW3DO/he9SpKtN2kFXTe O3RnU1W9QWizDOj8sgTEjN0vjHaknNltkFkBvKjM9kyVVTTXdXmNVy6bJlSIKTlL Z6//Dh2stKczcR6wm6WNwtYtYsUGZ6AYA6zhyrtfmeVngc+YQxB8pzkcCCf+N6s9 bZipFFXJqXoGTbiQGExicZiuYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDdAJR6 MvauBtP9vzZJKdicALmPMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLKdvVgd3BXkmcXgDYNhV84NCMqNMag6cLUoOw8lJYt0vIDSG51L0m 0KJk3/UbtUa9IwjzqemPm0SRY9Hb9YfS3DUd2+ZMAwbr9H0vF5nMzUkpp0buCqAL HhqTAooMVq6JH5+vim3ih1Ll64AD6291MVAMmcj7iDL+s8VHy186JIx92AMvFGND YWRswMZK/dcYA+jLErl4C1VO7gkpFvBWcRD3fFl4M6KQugIjrdgRNyV+L8mTMmQK bJARIST1oXtZPFk1AUyAI8G63NaD+sha7+/ZFBoBJ5sEf/Mg7CWLHpHYF2x6Ci5/ 24PDaR2sWgYwUmminOmWFfrAs6NUP0V6 -----END CERTIFICATE-----Generated at Sat May 18 17:37:33 2024 by rpki-client on console-fra.rpki-client.org