$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: 9j0QYHYhBkHcG6Ai7F0Ljid0bpBXu7mcj3HmRt5IDII= Subject key identifier: A1:7B:C8:F3:18:46:B8:C9:AF:70:C5:6B:AB:CC:A0:EC:40:FA:65:C4 Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0ABB Signing time: Sat 18 May 2024 20:08:34 +0000 Manifest this update: Sat 18 May 2024 20:08:33 +0000 Manifest next update: Sat 25 May 2024 20:08:33 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: rt5FV0wQ2f1woFs8B+4YOy6C6O7LpncSXi0k4POe9zc=) 2: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: ZoZ0a7M+kraJmZ/mLJEnhPou8KIgfV84FyKgedDACQA=) 3: A38D9084E6F811EC87D3034DC4F9AE02.roa (hash: znarpXPxU3H5L3u9jVUVZ05Bh72k54vXN+/OLstvXVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: May 18 20:08:33 2024 GMT Not After : May 25 20:08:33 2024 GMT Subject: CN=66490ac1-1362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:68:5a:9a:29:f0:a5:4e:07:1d:0b:db:8d:be: 6c:d8:04:29:04:86:99:f6:ba:83:d9:33:30:b6:79: 06:b7:3b:e3:59:d3:0f:d1:fe:ec:79:cb:49:2b:82: 09:b7:3b:65:53:74:33:3a:db:47:30:74:9b:93:7b: 9b:e5:f1:63:9e:43:04:8f:8d:66:c6:04:16:fd:19: 7f:05:75:4d:ed:26:87:12:82:33:1c:9e:db:31:8e: 4f:63:45:ea:82:bd:c9:cb:a6:00:07:55:f0:31:fa: 48:87:84:67:ce:b6:97:24:82:02:c4:d1:28:9a:1a: 79:76:dc:bb:55:1e:d5:97:e3:1a:c9:5b:04:c8:01: fb:06:38:fa:b2:eb:6b:c8:1c:6d:53:e5:8e:0c:44: 5f:40:20:ca:29:52:c7:dd:7f:51:cb:44:a3:fd:9d: 30:85:60:ed:76:42:07:5d:b7:51:a3:bd:3d:22:6a: 8c:1b:0f:43:b7:4e:54:12:c1:fa:16:03:b5:f3:7e: 94:f6:a8:01:91:3b:35:68:d4:cd:8b:a3:d5:db:60: 13:98:66:d6:cc:a2:58:e4:25:0c:65:08:2d:6b:7e: 06:43:f3:58:a9:6d:cd:94:0b:25:b6:00:82:f8:bd: 22:aa:dc:32:9b:42:36:44:bd:35:c4:92:6e:74:02: 84:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:7B:C8:F3:18:46:B8:C9:AF:70:C5:6B:AB:CC:A0:EC:40:FA:65:C4 X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8a:fb:42:52:f2:81:20:97:56:6f:e9:ea:b2:a5:96:3a:bd: fe:ba:70:fb:6d:e8:80:af:11:09:e1:ac:88:77:0f:65:82:36: d8:8f:21:48:c7:b1:40:66:8d:72:17:77:3f:d6:cb:91:2e:09: 92:69:18:42:32:ca:99:15:16:12:bf:db:e6:fc:71:f5:3a:e9: 5d:3e:26:e2:2f:13:32:2f:f1:65:da:cb:4f:e7:c5:7f:a3:13: 3f:4e:a8:0e:88:e4:3f:1b:3f:ab:62:44:32:c8:e8:8b:4d:c8: 02:1e:6b:ca:50:28:88:15:be:48:fa:12:a9:9a:38:46:26:68: 76:fe:32:ee:36:6c:79:f4:34:a1:48:9a:23:52:25:99:61:f2: 9d:07:6d:3e:ea:de:82:b8:08:4a:27:a8:d5:fa:e9:4c:9c:2d: 54:88:37:d2:62:dc:69:64:3c:33:24:49:fc:27:38:6b:47:1e: 49:44:e4:a1:1e:bc:5c:4c:30:3f:e9:6c:21:b1:1c:da:2d:a6: 2d:b0:65:66:18:06:e8:4c:54:74:cf:ee:d7:ea:20:a0:65:ca: 6e:58:5e:fe:82:a2:b8:28:9f:a2:57:a2:9a:01:c9:ee:8c:06: 6a:a1:dd:3a:2d:f5:ac:94:82:28:f3:31:01:20:63:63:e6:9e: b2:1c:f0:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjQwNTE4MjAwODMzWhcNMjQwNTI1MjAwODMzWjAYMRYwFAYD VQQDEw02NjQ5MGFjMS0xMzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWhaminwpU4HHQvbjb5s2AQpBIaZ9rqD2TMwtnkGtzvjWdMP0f7sectJK4IJ tztlU3QzOttHMHSbk3ub5fFjnkMEj41mxgQW/Rl/BXVN7SaHEoIzHJ7bMY5PY0Xq gr3Jy6YAB1XwMfpIh4RnzraXJIICxNEomhp5dty7VR7Vl+MayVsEyAH7Bjj6sutr yBxtU+WODERfQCDKKVLH3X9Ry0Sj/Z0whWDtdkIHXbdRo709ImqMGw9Dt05UEsH6 FgO1836U9qgBkTs1aNTNi6PV22ATmGbWzKJY5CUMZQgta34GQ/NYqW3NlAsltgCC +L0iqtwym0I2RL01xJJudAKEmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKF7yPMY RrjJr3DFa6vMoOxA+mXEMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjivtCUvKBIJdWb+nqsqWWOr3+unD7beiArxEJ4ayIdw9lgjbYjyFI x7FAZo1yF3c/1suRLgmSaRhCMsqZFRYSv9vm/HH1OuldPibiLxMyL/Fl2stP58V/ oxM/TqgOiOQ/Gz+rYkQyyOiLTcgCHmvKUCiIFb5I+hKpmjhGJmh2/jLuNmx59DSh SJojUiWZYfKdB20+6t6CuAhKJ6jV+ulMnC1UiDfSYtxpZDwzJEn8JzhrRx5JROSh HrxcTDA/6WwhsRzaLaYtsGVmGAboTFR0z+7X6iCgZcpuWF7+gqK4KJ+iV6KaAcnu jAZqod06LfWslIIo8zEBIGNj5p6yHPDI -----END CERTIFICATE-----Generated at Sat May 18 20:48:20 2024 by rpki-client on console-fra.rpki-client.org