$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft File: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft (raw, json) Hash identifier: NpX2VykokwCunNrO0wW6zU06Tcvi7BrcDRgd6A1oolQ= Subject key identifier: E6:AD:AE:28:50:6C:69:34:08:FE:17:50:DE:96:CB:96:F7:2A:37:8F Authority key identifier: 85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 Certificate issuer: /CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft Manifest number: 0202 Signing time: Mon 27 May 2024 04:17:28 +0000 Manifest this update: Mon 27 May 2024 04:17:27 +0000 Manifest next update: Mon 03 Jun 2024 04:17:27 +0000 Files and hashes: 1: hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl (hash: KYBp/fC/0sR0LE8IaKtDb6NioDhbLRK7+FK2n7IXh+k=) 2: 5B6AD2DCF1C811ECBBC34549C4F9AE02.roa (hash: QAxTmUc4ywf6JpQ5X6AmgUVj+K+9kxislSOsZQqIr3E=) 3: 5AD85A56F1C811ECBBC34549C4F9AE02.roa (hash: YLG14t47Ek4xVZJtbmOObURmhi0zIeJ0pyaih23TzXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF5C0/serialNumber=8579377261CA279F1C2FF2EBC44297437DD6E694 Validity Not Before: May 27 04:17:27 2024 GMT Not After : Jun 3 04:17:27 2024 GMT Subject: CN=66540958-5d91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ee:a0:a3:24:c2:0c:57:af:23:c0:ae:60:45: 09:40:61:d2:90:b6:83:d2:7b:54:89:0a:6d:4a:de: bd:fb:50:c9:fa:74:bc:a3:f1:0d:4b:a7:12:85:fa: f6:bc:7c:29:6f:26:b9:f7:5d:cc:fc:82:b6:ce:51: 1c:6b:29:67:55:aa:29:51:db:fa:8e:e6:41:79:ec: 04:f6:58:4a:05:4b:87:91:c6:55:8d:ed:d6:69:6d: be:d4:53:16:ac:0e:9e:cc:23:cf:48:24:b0:11:00: 46:83:45:e1:9a:d7:41:d0:94:1f:e4:ca:43:30:59: af:36:a1:c2:ae:09:6b:8b:0d:30:cb:8f:c5:53:d0: f8:36:b6:ee:6e:09:37:e8:1b:1a:f5:ac:f1:db:99: 44:eb:7e:a6:ef:fa:27:97:f9:74:d4:e5:d1:8a:33: fc:e8:ee:de:89:60:54:fe:a8:ab:b7:72:74:e6:98: ba:69:eb:61:7c:6e:9e:65:66:29:d7:59:f1:5d:5f: d1:20:8e:d8:46:f6:e3:cd:2e:ab:94:82:52:48:4d: 51:3e:ce:ac:68:3c:b3:83:01:e0:45:2b:b3:de:6e: 74:11:71:fd:ea:d0:12:bc:29:41:46:53:ce:66:3a: 35:a6:dc:3e:46:e7:eb:58:c2:6f:fc:f0:5d:3c:ed: b6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AD:AE:28:50:6C:69:34:08:FE:17:50:DE:96:CB:96:F7:2A:37:8F X509v3 Authority Key Identifier: keyid:85:79:37:72:61:CA:27:9F:1C:2F:F2:EB:C4:42:97:43:7D:D6:E6:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF5C0/BCBD4FB6F1C211ECA163FD42C4F9AE02/hXk3cmHKJ58cL_LrxEKXQ33W5pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:66:29:1e:94:a9:3c:56:c7:5f:50:ce:b2:45:bd:bb:60:1e: df:89:94:b4:7b:f8:ab:84:38:10:4f:6d:2e:2f:ee:50:5e:09: 10:14:11:b2:07:04:fc:23:5b:f2:d9:63:d1:22:d1:6c:a9:1a: 18:ae:98:f7:9a:1d:33:6b:94:9d:98:7b:9e:60:2c:00:b4:d2: e1:8b:6f:91:c3:45:2f:1a:41:09:87:08:cb:eb:57:db:2e:0c: 7c:50:d9:dd:09:70:29:c7:e1:4c:12:a3:a6:6f:56:30:ee:1b: 7f:fc:2b:ba:c6:ea:a5:64:b1:4b:92:2c:91:18:b6:34:bc:31: 0f:d0:60:9e:58:a1:73:b5:ff:e8:fe:fd:50:6c:2e:14:30:cd: ef:29:25:e9:25:be:83:0c:72:7a:15:b2:0e:da:6a:a5:40:37: d9:bf:de:b2:20:36:10:10:9b:86:b3:77:7a:37:5a:d9:4b:02: 7b:2d:cc:a8:29:b7:af:6d:04:0f:52:a6:2b:c8:31:cf:43:eb: f9:5a:d3:dd:dc:90:93:14:38:22:f5:9d:61:da:a1:cd:78:22: 6b:6c:df:20:0b:c6:d4:0c:47:61:f2:f1:55:d6:30:b8:ba:02: 3c:89:f2:f7:7b:64:6b:52:cc:92:48:ae:7b:8e:78:7e:9a:20: 11:d1:e8:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY1QzAxMTAvBgNVBAUTKDg1NzkzNzcyNjFDQTI3OUYxQzJGRjJFQkM0NDI5NzQz N0RENkU2OTQwHhcNMjQwNTI3MDQxNzI3WhcNMjQwNjAzMDQxNzI3WjAYMRYwFAYD VQQDEw02NjU0MDk1OC01ZDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO6goyTCDFevI8CuYEUJQGHSkLaD0ntUiQptSt69+1DJ+nS8o/ENS6cShfr2 vHwpbya5913M/IK2zlEcaylnVaopUdv6juZBeewE9lhKBUuHkcZVje3WaW2+1FMW rA6ezCPPSCSwEQBGg0XhmtdB0JQf5MpDMFmvNqHCrglriw0wy4/FU9D4Nrbubgk3 6Bsa9azx25lE636m7/onl/l01OXRijP86O7eiWBU/qirt3J05pi6aethfG6eZWYp 11nxXV/RII7YRvbjzS6rlIJSSE1RPs6saDyzgwHgRSuz3m50EXH96tASvClBRlPO Zjo1ptw+RufrWMJv/PBdPO22fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOatrihQ bGk0CP4XUN6Wy5b3KjePMB8GA1UdIwQYMBaAFIV5N3JhyiefHC/y68RCl0N91uaU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjVDMC9CQ0JENEZCNkYx QzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1OGNMX0xyeEVLWFEzM1c1 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYazNjbUhLSjU4Y0xfTHJ4RUtYUTMzVzVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjVDMC9CQ0JENEZCNkYxQzIxMUVDQTE2M0ZENDJDNEY5QUUwMi9oWGszY21IS0o1 OGNMX0xyeEVLWFEzM1c1cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIZikelKk8VsdfUM6yRb27YB7fiZS0e/irhDgQT20uL+5QXgkQFBGy BwT8I1vy2WPRItFsqRoYrpj3mh0za5SdmHueYCwAtNLhi2+Rw0UvGkEJhwjL61fb Lgx8UNndCXApx+FMEqOmb1Yw7ht//Cu6xuqlZLFLkiyRGLY0vDEP0GCeWKFztf/o /v1QbC4UMM3vKSXpJb6DDHJ6FbIO2mqlQDfZv96yIDYQEJuGs3d6N1rZSwJ7Lcyo KbevbQQPUqYryDHPQ+v5WtPd3JCTFDgi9Z1h2qHNeCJrbN8gC8bUDEdh8vFV1jC4 ugI8ifL3e2RrUsySSK57jnh+miAR0ehF -----END CERTIFICATE-----Generated at Mon May 27 04:53:43 2024 by rpki-client on console-fra.rpki-client.org