$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft File: vHENBWM8XhGwdEtxrruIriskRuM.mft (raw, json) Hash identifier: kTqnttc46V69R0CxZctFlycemfE1RhnYccsHrIIgfTQ= Subject key identifier: C0:89:9D:45:38:0E:AB:13:64:A1:A9:F1:24:4F:2B:4B:2B:02:CA:96 Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 127F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft Manifest number: 1279 Signing time: Sat 18 May 2024 17:38:36 +0000 Manifest this update: Sat 18 May 2024 17:38:36 +0000 Manifest next update: Sat 25 May 2024 17:38:36 +0000 Files and hashes: 1: vHENBWM8XhGwdEtxrruIriskRuM.crl (hash: bxBcW+yJssylSp7L67lrxQuXdQ/Ep3xqOfcyo54aQxQ=) 2: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (hash: 7mRhmh8fi74+etfwvojRqEzMxuKL5HPByMUbIPOY1Yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4735 (0x127f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Validity Not Before: May 18 17:38:36 2024 GMT Not After : May 25 17:38:36 2024 GMT Subject: CN=6648e79c-4c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:11:1a:4c:e2:da:1e:7d:6b:6c:de:78:8e:8d: 50:5b:ae:3a:cd:d5:e4:1a:18:54:df:ba:66:57:7c: 38:76:d3:4b:f0:e1:83:fa:bf:c4:2e:36:44:a1:5e: 1d:2e:c0:68:3d:31:02:28:2e:4d:0a:1c:a7:a7:25: e7:71:0b:0b:e6:8a:eb:14:c9:4e:92:22:cb:bf:62: 53:48:d0:a0:ea:bd:c2:a7:f7:04:38:8a:56:29:b1: 42:4c:22:aa:93:f8:e3:05:78:b4:33:a7:8b:a2:c3: 49:7e:2e:6e:8d:c5:cc:81:20:83:24:2a:8b:c7:79: 51:f1:eb:6a:6b:b1:ca:9a:e4:cd:fe:a5:e4:80:ef: db:90:7a:9d:99:77:a2:a1:0c:14:63:40:ef:a1:9e: 80:af:71:91:cc:96:00:eb:23:e0:c8:3e:e6:ee:4f: f0:d0:ab:cf:c8:44:ba:85:57:bf:52:fc:a1:61:fc: 41:b5:71:60:c3:0d:2e:4f:5f:c9:b2:60:54:b0:88: 21:dc:7a:e3:4a:83:43:62:6c:17:13:06:14:ca:ce: ec:c3:e1:cc:4d:d0:91:84:e6:a4:8c:d2:5f:e3:ec: 0d:9d:59:27:04:bc:7b:81:30:6e:ec:8f:50:b5:2b: 08:41:e7:a6:c5:73:09:ff:a9:2f:27:5a:5c:1e:05: 59:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:89:9D:45:38:0E:AB:13:64:A1:A9:F1:24:4F:2B:4B:2B:02:CA:96 X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:2e:63:d9:67:e9:46:17:65:ac:2e:f4:83:3e:73:14:a2:5a: 44:45:99:fd:0d:49:e5:db:60:25:67:c6:94:0f:45:28:8e:a8: c7:83:ce:dc:c2:72:ec:7b:de:30:9d:49:4d:3d:72:18:ba:71: e3:b1:d6:c4:21:48:ee:43:c5:ac:f3:ab:ce:ef:73:c4:e2:ac: 15:6b:f2:0f:f9:1d:c2:1d:b8:a2:5c:15:b6:a4:96:28:11:80: 60:cf:3d:68:81:56:24:90:7e:63:4e:40:95:91:31:42:8c:e1: 27:d9:ad:57:e3:74:76:7e:de:2b:58:77:e4:c4:70:d4:43:7f: 8e:f8:66:f7:dc:73:f9:62:4e:bc:ba:d1:ef:65:9a:13:42:18: 25:84:40:f0:9d:2e:06:d1:e3:b9:22:e4:48:48:59:ac:b8:4a: 3a:92:0e:1b:e6:d9:9e:a4:91:54:bf:51:69:07:82:42:1d:c2: bf:f9:5b:44:4c:cf:24:50:5f:1e:20:20:24:1f:fe:8b:86:71: d9:34:87:71:14:b8:0a:7a:5b:36:b2:30:af:0f:28:99:85:ca: d8:be:c7:d5:a0:61:ae:87:7c:c2:d5:5a:cf:4b:8d:f7:21:0c: 9a:3e:89:53:fe:e5:89:4e:61:98:43:bf:96:5c:31:9a:e5:5d: 50:1d:af:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjQwNTE4MTczODM2WhcNMjQwNTI1MTczODM2WjAYMRYwFAYD VQQDEw02NjQ4ZTc5Yy00YzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxEaTOLaHn1rbN54jo1QW646zdXkGhhU37pmV3w4dtNL8OGD+r/ELjZEoV4d LsBoPTECKC5NChynpyXncQsL5orrFMlOkiLLv2JTSNCg6r3Cp/cEOIpWKbFCTCKq k/jjBXi0M6eLosNJfi5ujcXMgSCDJCqLx3lR8etqa7HKmuTN/qXkgO/bkHqdmXei oQwUY0DvoZ6Ar3GRzJYA6yPgyD7m7k/w0KvPyES6hVe/UvyhYfxBtXFgww0uT1/J smBUsIgh3HrjSoNDYmwXEwYUys7sw+HMTdCRhOakjNJf4+wNnVknBLx7gTBu7I9Q tSsIQeemxXMJ/6kvJ1pcHgVZowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCJnUU4 DqsTZKGp8SRPK0srAsqWMB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjQwNi8zRjY3MEMwQ0E1RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFho R3dkRXR4cnJ1SXJpc2tSdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWLmPZZ+lGF2WsLvSDPnMUolpERZn9DUnl22AlZ8aUD0UojqjHg87c wnLse94wnUlNPXIYunHjsdbEIUjuQ8Ws86vO73PE4qwVa/IP+R3CHbiiXBW2pJYo EYBgzz1ogVYkkH5jTkCVkTFCjOEn2a1X43R2ft4rWHfkxHDUQ3+O+Gb33HP5Yk68 utHvZZoTQhglhEDwnS4G0eO5IuRISFmsuEo6kg4b5tmepJFUv1FpB4JCHcK/+VtE TM8kUF8eICAkH/6LhnHZNIdxFLgKels2sjCvDyiZhcrYvsfVoGGuh3zC1VrPS433 IQyaPolT/uWJTmGYQ7+WXDGa5V1QHa80 -----END CERTIFICATE-----Generated at Sat May 18 18:12:33 2024 by rpki-client on console-fra.rpki-client.org