$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft File: Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft (raw, json) Hash identifier: wcBsenrWhvdIgRLhBlbQZhK655Pt5E87NE1oSjESyLs= Subject key identifier: D8:18:AB:1E:2E:56:FA:D5:0B:41:0D:E7:A2:1C:A0:D6:08:1B:95:D7 Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft Manifest number: 1A50 Signing time: Mon 06 May 2024 16:50:49 +0000 Manifest this update: Mon 06 May 2024 16:50:48 +0000 Manifest next update: Mon 13 May 2024 16:50:48 +0000 Files and hashes: 1: Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl (hash: gvqpWO1n6gsYOWfCcnvCRdybGygAbPANdN522EeR2cQ=) 2: 65486DA81F8411E79BCB6D54C4F9AE02.roa (hash: pX3hZB2u0H4CAS9sABzKZdEPpUmZBg1+59WzYQkXs6s=) 3: 634556A61F8411E79BCB6D54C4F9AE02.roa (hash: XhTsav0xpJjWdlplehBc3Nc1KWkAolJry5gRZodOyhc=) 4: AA54657A880E11ED9BE52B17C4F9AE02.roa (hash: WQw5P844ke2McgHsphlVTOCFSi5xiNEtibfYLinSXwQ=) 5: A842EEAA880E11ED9BE52B17C4F9AE02.roa (hash: 7ewrZNOz6VL8Fm9zIDpvbHy1sVwX8YMvmb18EChSv50=) 6: A93E93C2880E11ED9BE52B17C4F9AE02.roa (hash: I0EDghQGwSBHllmUxahQGtYN3eNUu0DeWPn3Gpo3r7Y=) 7: 66914122CEAB11E796AC671AC4F9AE02.roa (hash: vBN8V5Bwq0M/bzvGvLx2+C7e6WLDDWqvE5nUmzulSrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6796 (0x1a8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Validity Not Before: May 6 16:50:48 2024 GMT Not After : May 13 16:50:48 2024 GMT Subject: CN=66390a69-06fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1a:c0:25:74:7d:16:7f:df:01:84:0d:bd:1c: fd:3c:b1:6c:ff:44:40:a3:67:e3:99:2a:c0:82:93: c0:3d:03:99:6b:b2:7f:82:12:fd:d7:3e:95:68:a6: 39:a1:41:d6:eb:cd:e0:d2:b0:5e:74:38:63:0c:ca: 72:fa:17:6d:df:a5:7d:b0:c9:2a:3f:23:f4:30:59: 6b:e3:62:16:7c:ba:0c:9c:56:0a:ae:62:7a:b7:76: 9e:78:c2:11:51:4d:62:49:9b:e8:e4:69:97:87:cf: e2:eb:f5:84:13:f4:0a:c7:6e:56:00:20:5b:b0:75: 67:84:96:8e:f9:8b:8f:d6:f8:30:39:1c:ec:37:39: b3:44:6f:1f:82:27:68:f5:38:5a:d9:16:b4:c9:93: 75:b2:91:84:fe:16:a4:29:1b:2f:34:dd:a3:2d:46: 3d:03:5e:0d:3c:05:40:92:69:9a:22:5d:e7:0b:05: d1:6d:b3:f4:f6:3d:81:33:d0:5d:c2:7b:cc:b0:4b: 2f:32:17:f8:ac:6a:57:a5:3d:ea:5b:e9:8b:fc:e2: e1:6f:8c:51:b2:6a:5a:dd:9a:96:7b:13:a1:bb:c1: 9f:43:b1:1f:80:d0:fe:df:e0:8c:15:37:a6:ad:ad: 8c:29:3f:08:3f:d7:6b:ea:5a:2b:85:8b:16:20:9b: 18:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:18:AB:1E:2E:56:FA:D5:0B:41:0D:E7:A2:1C:A0:D6:08:1B:95:D7 X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:86:e5:27:56:e6:39:ea:fb:b7:76:12:9b:3a:a1:a4:86:ca: 8c:9d:c6:63:3d:8f:a5:8b:9c:f1:14:12:f4:6a:ab:7f:b9:cf: 01:66:1d:4f:85:60:c8:eb:69:bc:07:3c:e1:16:9a:58:86:db: 64:93:cc:b0:d7:c2:c4:10:f7:cb:d7:b9:3a:78:17:cc:25:00: 55:37:fd:e7:ad:7f:d9:91:89:a6:66:a8:f7:af:59:15:97:ce: 64:45:a8:ab:7e:5e:41:4f:0f:43:c1:9f:bf:c9:b4:1c:df:ef: 04:82:6d:ad:65:97:f2:50:e1:e5:a8:00:6a:71:b3:f9:4e:fb: f5:fe:17:8f:2f:77:58:db:c8:50:05:82:bf:04:28:a0:0e:ad: b8:b0:23:0f:8a:70:95:84:24:dc:9c:e0:00:60:40:44:49:db: 5a:6a:ae:8d:9a:cd:e9:6c:53:4e:26:85:82:a1:9a:32:c0:11: 3d:82:8d:64:ed:af:ad:fd:f4:d6:c0:70:7f:4d:23:1c:dd:2e: bf:c2:20:1e:65:69:40:0c:d6:2c:37:b9:19:fa:fc:9c:d1:7e: 53:b1:b7:8a:86:42:eb:8e:e5:fa:d4:bd:13:8b:0d:a5:81:7d: 33:1f:22:f4:f8:44:a1:a8:65:6a:46:c7:15:fd:c0:7c:7a:5e: d0:b4:2f:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjQwNTA2MTY1MDQ4WhcNMjQwNTEzMTY1MDQ4WjAYMRYwFAYD VQQDEw02NjM5MGE2OS0wNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRrAJXR9Fn/fAYQNvRz9PLFs/0RAo2fjmSrAgpPAPQOZa7J/ghL91z6VaKY5 oUHW683g0rBedDhjDMpy+hdt36V9sMkqPyP0MFlr42IWfLoMnFYKrmJ6t3aeeMIR UU1iSZvo5GmXh8/i6/WEE/QKx25WACBbsHVnhJaO+YuP1vgwORzsNzmzRG8fgido 9Tha2Ra0yZN1spGE/hakKRsvNN2jLUY9A14NPAVAkmmaIl3nCwXRbbP09j2BM9Bd wnvMsEsvMhf4rGpXpT3qW+mL/OLhb4xRsmpa3ZqWexOhu8GfQ7EfgND+3+CMFTem ra2MKT8IP9dr6lorhYsWIJsY9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgYqx4u VvrVC0EN56IcoNYIG5XXMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QkVEQi81RDg2N0VCQzFGODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtM elNyak5sRTRHOTRmMEh4ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOhuUnVuY56vu3dhKbOqGkhsqMncZjPY+li5zxFBL0aqt/uc8BZh1P hWDI62m8BzzhFppYhttkk8yw18LEEPfL17k6eBfMJQBVN/3nrX/ZkYmmZqj3r1kV l85kRairfl5BTw9DwZ+/ybQc3+8Egm2tZZfyUOHlqABqcbP5Tvv1/hePL3dY28hQ BYK/BCigDq24sCMPinCVhCTcnOAAYEBESdtaaq6Nms3pbFNOJoWCoZoywBE9go1k 7a+t/fTWwHB/TSMc3S6/wiAeZWlADNYsN7kZ+vyc0X5TsbeKhkLrjuX61L0Tiw2l gX0zHyL0+EShqGVqRscV/cB8el7QtC/9 -----END CERTIFICATE-----Generated at Mon May 6 17:36:16 2024 by rpki-client on console-fra.rpki-client.org