$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft File: HsQsG2nhb183xz2Bv5-rH0ukIyk.mft (raw, json) Hash identifier: TjDtuQDRdcYqHb0zAW+QalVsEX7CJjE0oiitVMW3FQo= Subject key identifier: 3F:14:84:BE:7A:13:8A:9C:94:8B:1C:A2:36:B3:AD:D1:11:DA:64:54 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 099B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft Manifest number: 094F Signing time: Sat 18 May 2024 21:17:09 +0000 Manifest this update: Sat 18 May 2024 21:17:09 +0000 Manifest next update: Sat 25 May 2024 21:17:09 +0000 Files and hashes: 1: HsQsG2nhb183xz2Bv5-rH0ukIyk.crl (hash: +PS7xu40slHlYWuwYdsdTOP9SyQRcm+vQV275H1xpFY=) 2: F2E5239EEF5D11EE84EA6C77C4F9AE02.roa (hash: m/OfYLh3E4TBtxXakhujazsZkDgh8kpPyOXqE0aKz/8=) 3: C1B8D000B5BE11EEBB039D81C4F9AE02.roa (hash: Ktd8zTmAEP8d4po1PWCfJzfzivZrqBIqgha+n7WH0OM=) 4: D42F0D06B51611EEADC7924BC4F9AE02.roa (hash: D1T9Bfamf9UqltMEygl5sAovw+mF2OoLNzo4zqrOvm4=) 5: C6D09D889F1C11EEB377E239C4F9AE02.roa (hash: SlXpbG9lWuIPXhQxUrt1JFF2ice08/4LYD7zjDVYn4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2459 (0x99b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: May 18 21:17:09 2024 GMT Not After : May 25 21:17:09 2024 GMT Subject: CN=66491ad5-5b2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:8c:be:74:30:0a:1b:7e:c7:bc:da:aa:34: 2e:27:56:bf:bf:4e:17:ac:4f:c4:7e:52:ce:a9:e5: d3:2d:c5:e4:55:96:b5:8a:a1:91:ca:bc:4f:b6:7e: 19:cb:1c:17:71:74:4d:a5:89:ef:46:80:c8:4e:b1: 86:33:b1:ea:81:18:12:4e:bf:d3:87:cc:99:da:05: fd:65:a5:36:b6:db:f5:ab:76:c0:76:2f:03:4c:cc: e5:de:24:3f:fe:89:2b:c0:cf:75:5c:ce:1a:e1:89: 3a:d3:b8:b0:4c:25:4e:06:14:26:69:39:05:b4:d6: 9e:9b:34:26:4e:a1:07:14:14:2f:7b:c3:04:72:57: a9:70:55:7c:f9:d9:64:8b:91:3e:aa:4f:d6:1f:7d: 7f:03:1d:ac:85:09:8a:b4:d3:e3:32:4b:d7:64:28: 66:04:90:b6:56:fa:5d:6f:d7:80:24:f4:58:1c:5d: e2:24:e8:35:8c:c2:67:20:4a:42:39:c1:5e:71:7e: 1a:6c:54:1c:71:f3:8d:7a:ed:ae:22:f2:33:bb:cb: 37:78:59:71:db:07:41:4f:b4:cf:cd:86:34:59:2a: 6d:32:23:7d:e7:ac:ef:9c:2a:3f:91:89:f1:ac:13: 72:30:89:ca:9c:31:45:98:e2:84:df:19:14:97:b5: 93:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:14:84:BE:7A:13:8A:9C:94:8B:1C:A2:36:B3:AD:D1:11:DA:64:54 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:39:08:77:97:92:1c:77:94:0b:81:3d:6c:28:dc:53:12:88: 60:52:72:e9:ec:17:13:17:f4:24:92:2c:ff:65:d3:cf:45:37: 13:a5:36:27:c9:f0:a3:12:6d:6e:9a:0f:9f:c7:59:22:6d:5f: 1e:d2:34:ac:62:0e:2e:87:3f:33:38:22:af:73:09:4b:7a:9b: eb:c1:3f:a8:3c:07:38:62:7f:fa:bd:f6:8d:96:2e:55:73:81: 60:01:2a:e3:1d:48:12:02:f1:1f:24:7e:ef:20:68:9b:a0:75: 04:3c:ac:77:e5:2e:c4:4e:e4:04:1c:c2:21:d3:82:35:b2:0d: 21:eb:7b:ea:ec:8a:85:9f:17:ec:27:76:43:2c:70:a2:ea:ad: 0c:47:b9:b2:b2:30:fb:63:a5:d0:eb:61:f9:26:ea:ea:ee:14: 4a:c9:0b:ce:9f:ca:50:ac:c4:16:9d:41:ec:6b:64:3b:8c:04: e6:f5:72:22:f8:90:6d:fb:fb:df:a4:7f:91:40:1d:99:da:fc: dd:83:4d:c4:e1:15:a9:47:92:6f:f5:0f:f4:32:05:33:d4:e0: 0e:77:ab:2b:ee:b1:67:c2:09:47:17:2f:71:26:9d:49:fd:a2: a4:ea:e6:a1:e7:3e:27:22:d1:65:bb:19:a1:5f:8b:ca:bf:19: 8b:03:00:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjQwNTE4MjExNzA5WhcNMjQwNTI1MjExNzA5WjAYMRYwFAYD VQQDEw02NjQ5MWFkNS01YjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiaMvnQwCht+x7zaqjQuJ1a/v04XrE/EflLOqeXTLcXkVZa1iqGRyrxPtn4Z yxwXcXRNpYnvRoDITrGGM7HqgRgSTr/Th8yZ2gX9ZaU2ttv1q3bAdi8DTMzl3iQ/ /okrwM91XM4a4Yk607iwTCVOBhQmaTkFtNaemzQmTqEHFBQve8MEclepcFV8+dlk i5E+qk/WH31/Ax2shQmKtNPjMkvXZChmBJC2Vvpdb9eAJPRYHF3iJOg1jMJnIEpC OcFecX4abFQccfONeu2uIvIzu8s3eFlx2wdBT7TPzYY0WSptMiN956zvnCo/kYnx rBNyMInKnDFFmOKE3xkUl7WTXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8UhL56 E4qclIscojazrdER2mRUMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wQkJEOUVBMjgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIx ODN4ejJCdjUtckgwdWtJeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOOQh3l5Icd5QLgT1sKNxTEohgUnLp7BcTF/Qkkiz/ZdPPRTcTpTYn yfCjEm1umg+fx1kibV8e0jSsYg4uhz8zOCKvcwlLepvrwT+oPAc4Yn/6vfaNli5V c4FgASrjHUgSAvEfJH7vIGiboHUEPKx35S7ETuQEHMIh04I1sg0h63vq7IqFnxfs J3ZDLHCi6q0MR7mysjD7Y6XQ62H5Jurq7hRKyQvOn8pQrMQWnUHsa2Q7jATm9XIi +JBt+/vfpH+RQB2Z2vzdg03E4RWpR5Jv9Q/0MgUz1OAOd6sr7rFnwglHFy9xJp1J /aKk6uah5z4nItFluxmhX4vKvxmLAwAO -----END CERTIFICATE-----Generated at Sat May 18 22:14:04 2024 by rpki-client on console-fra.rpki-client.org