$ rpki-client -vvf rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft File: ihprqbt2zysN7jXqTP0vX_jAieM.mft (raw, json) Hash identifier: bINacRIvMhu4zla9WLHUy+OH+8wdT8jzDRQdWur9vm8= Subject key identifier: DE:E3:5D:D2:9E:5E:6C:F1:3B:D4:1A:66:AD:72:8A:98:A9:AF:2C:23 Authority key identifier: 8A:1A:6B:A9:BB:76:CF:2B:0D:EE:35:EA:4C:FD:2F:5F:F8:C0:89:E3 Certificate issuer: /CN=A91C36EE/serialNumber=8A1A6BA9BB76CF2B0DEE35EA4CFD2F5FF8C089E3 Certificate serial: 0B21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft Manifest number: 0B1C Signing time: Sat 18 May 2024 19:49:32 +0000 Manifest this update: Sat 18 May 2024 19:49:32 +0000 Manifest next update: Sat 25 May 2024 19:49:32 +0000 Files and hashes: 1: ihprqbt2zysN7jXqTP0vX_jAieM.crl (hash: v3FBT+nc62rULkZsZUGGgwf2tObFYJZgTYNjHqUyZDg=) 2: 6FCF7FF2180411EA9AA70A57C4F9AE02.roa (hash: mKEtXAReo073pS6G/Scd6VusUJKflX5sGzsP9WFHvuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.crl rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:49:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C36EE/serialNumber=8A1A6BA9BB76CF2B0DEE35EA4CFD2F5FF8C089E3 Validity Not Before: May 18 19:49:32 2024 GMT Not After : May 25 19:49:32 2024 GMT Subject: CN=6649064c-5d6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:48:af:81:fb:c8:74:e0:72:92:b2:84:13:f3: ac:fd:17:72:e5:1a:cf:83:95:ed:aa:a2:71:60:c4: c2:c9:07:6a:a0:1e:2c:08:a8:7a:e6:62:e8:5c:ab: 5f:12:b6:92:c9:0b:95:0c:dc:f0:84:c9:ee:6b:4c: 91:c0:3a:11:9c:a2:6e:0e:fc:93:d1:a1:65:30:f5: 8c:bd:b7:91:52:21:99:ea:9f:97:07:9c:65:ff:82: e4:a6:bf:05:a8:07:24:05:fb:8a:ff:5b:91:f0:32: 7f:ee:69:7f:89:49:8d:31:5a:b6:cf:e8:99:bc:b6: e7:dc:43:4d:79:81:78:13:1f:10:b0:f6:3c:fd:4c: 75:5b:19:3d:48:84:f7:e4:20:59:8f:38:aa:b2:8f: ac:06:43:b1:08:30:21:f9:84:35:3d:d4:39:3a:00: 20:ad:77:86:fa:5b:f7:ec:78:68:0c:32:50:b0:b0: 7e:0c:35:7a:d8:50:94:2a:4f:8c:66:cb:b8:2f:da: 22:60:c0:ff:fe:e8:00:44:60:9f:e8:76:c1:2c:53: 62:30:6a:6b:07:be:65:a2:26:26:4a:37:48:57:36: fc:a0:a5:fa:2e:dd:f2:a1:46:8d:c2:cf:50:29:3c: a9:40:a2:aa:f7:44:7b:1c:10:b7:b3:d0:a0:b1:b9: 8f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E3:5D:D2:9E:5E:6C:F1:3B:D4:1A:66:AD:72:8A:98:A9:AF:2C:23 X509v3 Authority Key Identifier: keyid:8A:1A:6B:A9:BB:76:CF:2B:0D:EE:35:EA:4C:FD:2F:5F:F8:C0:89:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:4e:27:6d:44:1e:9a:f9:c0:47:90:1e:f1:c4:8f:30:6f:80: ab:30:54:6c:9d:7b:93:80:67:f2:1c:d2:98:02:72:73:7a:a7: a2:ec:a0:26:d5:56:1e:3c:5a:83:29:cc:59:45:18:ee:f1:55: f8:2e:d8:92:7c:7e:1f:ed:ce:65:54:20:f8:71:03:ef:2d:08: 2a:a3:ea:84:f7:07:c9:73:d0:00:0a:39:1e:39:4c:10:d3:7c: 71:f9:ab:69:02:ff:34:c6:cb:4f:2f:51:a3:8a:45:bc:69:fe: 68:84:78:28:0a:ab:c7:d0:cc:4c:1d:57:32:e2:2d:2f:14:d5: 90:ff:1a:06:4a:18:cc:2d:fa:9f:9c:5e:f4:ff:bc:1a:10:ee: 02:c2:2c:d2:18:ee:f9:7a:16:20:96:85:2d:d3:b7:0b:e9:3d: 64:27:32:24:47:4b:4c:e1:eb:d5:2c:34:fd:9e:44:95:44:ff: 15:7c:89:56:fa:e3:b7:e3:44:ee:dd:74:64:e5:dc:d7:e3:bc: 95:83:98:ae:86:8b:71:cb:0f:8e:e4:2c:44:30:b1:a6:91:da: c6:c6:cc:56:7a:c0:3e:f6:20:4f:79:ce:4e:27:bc:62:0e:db: ce:2e:49:ac:88:68:5e:9a:f6:d7:3b:0a:ed:5c:b4:71:f2:a7: 9b:f9:ce:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM2RUUxMTAvBgNVBAUTKDhBMUE2QkE5QkI3NkNGMkIwREVFMzVFQTRDRkQyRjVG RjhDMDg5RTMwHhcNMjQwNTE4MTk0OTMyWhcNMjQwNTI1MTk0OTMyWjAYMRYwFAYD VQQDEw02NjQ5MDY0Yy01ZDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEivgfvIdOBykrKEE/Os/Rdy5RrPg5XtqqJxYMTCyQdqoB4sCKh65mLoXKtf EraSyQuVDNzwhMnua0yRwDoRnKJuDvyT0aFlMPWMvbeRUiGZ6p+XB5xl/4Lkpr8F qAckBfuK/1uR8DJ/7ml/iUmNMVq2z+iZvLbn3ENNeYF4Ex8QsPY8/Ux1Wxk9SIT3 5CBZjziqso+sBkOxCDAh+YQ1PdQ5OgAgrXeG+lv37HhoDDJQsLB+DDV62FCUKk+M Zsu4L9oiYMD//ugARGCf6HbBLFNiMGprB75loiYmSjdIVzb8oKX6Lt3yoUaNws9Q KTypQKKq90R7HBC3s9CgsbmPIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7jXdKe XmzxO9QaZq1yipiprywjMB8GA1UdIwQYMBaAFIoaa6m7ds8rDe416kz9L1/4wInj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzZFRS9BOEMxQzg3QTE4 MDMxMUVBQkVDODJCNTZDNEY5QUUwMi9paHBycWJ0Mnp5c043alhxVFAwdlhfakFp ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2locHJxYnQyenlzTjdqWHFUUDB2WF9qQWllTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzZFRS9BOEMxQzg3QTE4MDMxMUVBQkVDODJCNTZDNEY5QUUwMi9paHBycWJ0Mnp5 c043alhxVFAwdlhfakFpZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7TidtRB6a+cBHkB7xxI8wb4CrMFRsnXuTgGfyHNKYAnJzeqei7KAm 1VYePFqDKcxZRRju8VX4LtiSfH4f7c5lVCD4cQPvLQgqo+qE9wfJc9AACjkeOUwQ 03xx+atpAv80xstPL1GjikW8af5ohHgoCqvH0MxMHVcy4i0vFNWQ/xoGShjMLfqf nF70/7waEO4CwizSGO75ehYgloUt07cL6T1kJzIkR0tM4evVLDT9nkSVRP8VfIlW +uO340Tu3XRk5dzX47yVg5iuhotxyw+O5CxEMLGmkdrGxsxWesA+9iBPec5OJ7xi DtvOLkmsiGhemvbXOwrtXLRx8qeb+c47 -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org