$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft File: xHENSLTk8rc1vksbXJDtuI0mmyw.mft (raw, json) Hash identifier: XEF8F9pwZSkf4aoAQpLCNsjSiTvxYAZiUzE7bnQmwm4= Subject key identifier: 7B:71:55:3F:FB:CC:20:3F:FD:BD:79:CF:92:BE:56:D9:50:6F:66:2E Authority key identifier: C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C Certificate issuer: /CN=A91BC2E3/serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft Manifest number: 0102 Signing time: Sun 19 May 2024 05:33:53 +0000 Manifest this update: Sun 19 May 2024 05:33:52 +0000 Manifest next update: Sun 26 May 2024 05:33:52 +0000 Files and hashes: 1: xHENSLTk8rc1vksbXJDtuI0mmyw.crl (hash: ss+J6ESlnA3azjKVHNvGs7auTqgY6dWMkBURFUKCEqU=) 2: 0DC2D3EC8D7A11EDBFA7C381C4F9AE02.roa (hash: 0Idm6A6nWK/fQZNYq7K+eosKvzzmF58y5ztchLiLTj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC2E3/serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Validity Not Before: May 19 05:33:52 2024 GMT Not After : May 26 05:33:52 2024 GMT Subject: CN=66498f40-c348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a3:b9:a6:55:82:13:d4:16:c9:f4:53:0c:4d: d6:96:dd:f5:d8:10:1c:78:44:a1:38:f3:31:cb:3b: 77:21:6a:79:b6:a5:7d:35:6a:60:30:e2:7f:f1:d2: ee:fe:83:f8:c9:1f:c5:91:6c:56:07:b1:6a:4b:90: 92:9d:88:b0:09:74:f8:6f:23:22:f9:4d:67:2d:61: ba:a9:58:cd:31:f2:f8:44:c8:27:b0:e2:3b:f5:9d: ca:90:17:01:b9:bd:76:98:3f:32:e8:df:8f:41:77: ac:30:b8:cf:26:ce:c0:0a:be:d8:a1:7d:d9:ab:20: 18:7d:07:c2:b0:cc:b0:1e:da:24:c8:97:1c:86:d6: ef:25:89:ee:64:4c:ff:21:8c:88:e1:7f:2b:ac:aa: 1f:95:8e:16:bf:34:0a:b6:ba:94:cb:77:9a:2c:c1: 14:14:1f:21:97:d3:14:a9:95:b8:31:93:bf:18:cd: 52:c0:bf:b8:93:3a:e6:56:15:25:b0:0d:85:df:b9: 41:f4:a0:27:08:8b:26:96:3f:7c:8f:1e:e9:96:cf: f0:54:fd:1a:8b:2f:fb:7a:bc:8a:39:c2:73:de:54: 21:e5:b2:b3:45:bf:a9:89:13:8c:0f:63:e9:e6:15: 9a:fe:e9:3b:dc:a2:4a:16:0f:6c:97:81:df:25:3e: b5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:71:55:3F:FB:CC:20:3F:FD:BD:79:CF:92:BE:56:D9:50:6F:66:2E X509v3 Authority Key Identifier: keyid:C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:dc:63:94:1f:e1:a3:42:f8:4c:ed:17:14:5a:ae:d8:87:af: 83:89:a0:88:d0:7d:d5:97:9c:59:e9:d1:23:34:e0:a9:08:32: 6a:50:af:6a:ab:09:fd:49:a7:e7:f7:97:68:e2:94:70:ea:95: 3a:68:2e:86:2c:37:92:56:35:ec:8c:83:e7:42:3d:e6:af:0f: 81:df:bd:68:e1:61:fd:48:a9:83:ec:f8:0d:33:ad:7d:8d:e1: 20:37:ee:93:d5:de:73:2d:24:ac:8d:f5:8d:7a:b1:77:24:26: 8c:82:71:14:06:a4:00:1c:0b:42:23:3c:3f:a8:52:7a:0e:54: ab:d1:50:99:ce:cb:72:43:4b:7d:e0:37:25:35:67:f4:3f:6c: 7b:c8:fd:78:a6:de:a3:9d:a7:59:11:f5:77:d8:7d:6d:15:43: 39:1a:b5:52:6e:89:db:88:90:2a:65:a1:2a:12:c9:7f:6d:a0: 8d:16:14:b2:99:a6:42:14:75:96:7c:3e:8d:3f:97:e5:a6:d6: ce:ba:25:a6:ad:86:cd:9c:ac:86:c3:b7:2a:1d:a2:c1:ba:76: 9c:6a:9e:64:1f:f0:f3:5b:20:72:c3:b5:e7:3c:51:89:f8:01: e1:c3:f7:ef:a0:4a:37:1b:f6:68:e6:c0:da:ff:92:c8:2d:4f: 8c:95:c3:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyRTMxMTAvBgNVBAUTKEM0NzEwRDQ4QjRFNEYyQjczNUJFNEIxQjVDOTBFREI4 OEQyNjlCMkMwHhcNMjQwNTE5MDUzMzUyWhcNMjQwNTI2MDUzMzUyWjAYMRYwFAYD VQQDEw02NjQ5OGY0MC1jMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6O5plWCE9QWyfRTDE3Wlt312BAceEShOPMxyzt3IWp5tqV9NWpgMOJ/8dLu /oP4yR/FkWxWB7FqS5CSnYiwCXT4byMi+U1nLWG6qVjNMfL4RMgnsOI79Z3KkBcB ub12mD8y6N+PQXesMLjPJs7ACr7YoX3ZqyAYfQfCsMywHtokyJcchtbvJYnuZEz/ IYyI4X8rrKoflY4WvzQKtrqUy3eaLMEUFB8hl9MUqZW4MZO/GM1SwL+4kzrmVhUl sA2F37lB9KAnCIsmlj98jx7pls/wVP0aiy/7eryKOcJz3lQh5bKzRb+piROMD2Pp 5hWa/uk73KJKFg9sl4HfJT61SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtxVT/7 zCA//b15z5K+VtlQb2YuMB8GA1UdIwQYMBaAFMRxDUi05PK3Nb5LG1yQ7biNJpss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzJFMy85QjRBNDg5MDg5 QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhyYzF2a3NiWEpEdHVJMG1t eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIRU5TTFRrOHJjMXZrc2JYSkR0dUkwbW15dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzJFMy85QjRBNDg5MDg5QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhy YzF2a3NiWEpEdHVJMG1teXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI3GOUH+GjQvhM7RcUWq7Yh6+DiaCI0H3Vl5xZ6dEjNOCpCDJqUK9q qwn9Safn95do4pRw6pU6aC6GLDeSVjXsjIPnQj3mrw+B371o4WH9SKmD7PgNM619 jeEgN+6T1d5zLSSsjfWNerF3JCaMgnEUBqQAHAtCIzw/qFJ6DlSr0VCZzstyQ0t9 4DclNWf0P2x7yP14pt6jnadZEfV32H1tFUM5GrVSbonbiJAqZaEqEsl/baCNFhSy maZCFHWWfD6NP5flptbOuiWmrYbNnKyGw7cqHaLBunacap5kH/DzWyByw7XnPFGJ +AHhw/fvoEo3G/Zo5sDa/5LILU+MlcP4 -----END CERTIFICATE-----Generated at Sun May 19 07:40:44 2024 by rpki-client on console-fra.rpki-client.org