$ rpki-client -vvf rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft File: Har0X7TSckB6UqY7tzllNp6RIO0.mft (raw, json) Hash identifier: +fvPQ0JgUlRqljoRE5iPcBuFo5uhWOI3VKQdH41VTW4= Subject key identifier: 25:9E:8F:9D:CA:1A:E7:19:1E:E5:4B:92:53:99:AB:A6:F0:85:0B:46 Authority key identifier: 1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED Certificate issuer: /CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft Manifest number: BB Signing time: Sun 19 May 2024 06:25:56 +0000 Manifest this update: Sun 19 May 2024 06:25:55 +0000 Manifest next update: Sun 26 May 2024 06:25:55 +0000 Files and hashes: 1: Har0X7TSckB6UqY7tzllNp6RIO0.crl (hash: WsOFxAIFA8zcfl4GLd9JG4wtApbUN5HbegzOKJPHieE=) 2: 1FE69168F9CB11EDAF704E7FC4F9AE02.roa (hash: yxcXU4Wz/FsuyQLnC6TnjIUCeIr5II451UbQF3q435Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C728A/serialNumber=1DAAF45FB4D272407A52A63BB73965369E9120ED Validity Not Before: May 19 06:25:55 2024 GMT Not After : May 26 06:25:55 2024 GMT Subject: CN=66499b74-afc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:aa:e3:d2:3c:1d:62:6e:e8:cc:55:92:24:37: 77:a2:92:f1:e3:6b:fc:6b:8d:c5:57:cd:70:c3:4f: dc:38:91:44:05:5f:51:2a:b1:1b:e9:00:59:f3:4e: 6c:8f:b8:65:a4:ca:75:26:56:c2:9b:0d:21:e1:b7: dc:f4:9a:48:af:50:bd:18:18:bd:d1:39:bb:ce:aa: d7:0c:5b:fe:83:38:66:08:ec:14:3e:62:59:fa:b4: fc:73:3a:6b:ea:c2:c0:e0:21:91:18:2f:20:86:99: 8e:f9:b9:70:8a:b4:6b:45:9c:7a:56:71:72:bf:d6: 8d:5f:46:25:68:13:d1:08:e8:00:7c:ac:89:2a:e6: a6:7c:eb:14:b6:84:de:26:51:85:7d:ed:b0:3d:6d: f4:5d:6a:c7:a9:bc:18:61:d0:87:4d:4e:49:86:8e: 80:4a:80:c2:d2:d2:9b:ac:34:b9:c1:31:45:78:b3: 7e:7a:90:3d:b7:74:68:83:7e:6a:17:ff:8c:37:13: 03:86:13:04:41:0b:c5:f5:60:1b:e2:c6:62:73:39: 9a:02:36:18:9e:4f:6e:77:69:40:fa:dd:14:ac:88: bc:68:db:b6:2d:e3:d7:1a:7d:7a:a8:4e:25:75:54: 89:c4:c4:65:44:09:0c:60:43:f3:99:aa:2b:be:92: 2d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:9E:8F:9D:CA:1A:E7:19:1E:E5:4B:92:53:99:AB:A6:F0:85:0B:46 X509v3 Authority Key Identifier: keyid:1D:AA:F4:5F:B4:D2:72:40:7A:52:A6:3B:B7:39:65:36:9E:91:20:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Har0X7TSckB6UqY7tzllNp6RIO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C728A/537E46C6F9C411ED89682481C4F9AE02/Har0X7TSckB6UqY7tzllNp6RIO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:8f:b5:ec:d4:29:0f:fe:49:de:ee:c0:7b:95:86:ec:c9:dc: 98:6c:2b:8c:4e:8d:3e:e7:51:7a:ef:fc:54:92:6f:b3:80:94: 93:b4:95:f0:a9:3d:d3:d9:1b:c6:ab:3f:00:6f:8b:5e:29:f5: 4b:2b:06:c4:35:3e:ec:50:01:f7:8e:10:b6:71:d1:21:64:3d: c3:20:5b:06:9e:58:be:04:3e:f7:9c:d8:4f:69:ee:16:eb:e9: ce:2f:a4:8a:a4:a5:81:7b:74:74:a9:b8:7b:4e:62:ef:89:10: d3:ba:4f:65:b8:0d:41:9a:1d:eb:12:7c:f3:c3:2b:e8:5e:6f: a4:e1:d9:5b:15:57:59:45:45:f2:13:2a:e7:17:56:b4:12:11: db:95:e6:62:b6:09:28:cf:eb:3b:e9:9a:cc:87:95:7f:49:bd: 0e:7b:eb:4b:f7:f9:f1:a4:5f:c1:ff:85:5c:f2:84:49:47:ee: 68:ed:79:fa:ed:d6:a6:56:1f:05:dc:aa:b3:03:e4:d3:44:3d: f7:ba:8a:89:a6:cc:e6:df:2c:99:b5:c2:67:7c:12:6c:00:9c: 2b:05:cf:6b:46:59:71:8a:f0:13:48:29:dd:a1:c9:a9:18:a4: b1:5b:bf:1c:5b:70:0b:89:d8:9e:be:2d:ab:ae:94:a8:b7:e1: bc:3b:ba:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyOEExMTAvBgNVBAUTKDFEQUFGNDVGQjREMjcyNDA3QTUyQTYzQkI3Mzk2NTM2 OUU5MTIwRUQwHhcNMjQwNTE5MDYyNTU1WhcNMjQwNTI2MDYyNTU1WjAYMRYwFAYD VQQDEw02NjQ5OWI3NC1hZmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06rj0jwdYm7ozFWSJDd3opLx42v8a43FV81ww0/cOJFEBV9RKrEb6QBZ805s j7hlpMp1JlbCmw0h4bfc9JpIr1C9GBi90Tm7zqrXDFv+gzhmCOwUPmJZ+rT8czpr 6sLA4CGRGC8ghpmO+blwirRrRZx6VnFyv9aNX0YlaBPRCOgAfKyJKuamfOsUtoTe JlGFfe2wPW30XWrHqbwYYdCHTU5Jho6ASoDC0tKbrDS5wTFFeLN+epA9t3Rog35q F/+MNxMDhhMEQQvF9WAb4sZiczmaAjYYnk9ud2lA+t0UrIi8aNu2LePXGn16qE4l dVSJxMRlRAkMYEPzmaorvpIt2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWej53K GucZHuVLklOZq6bwhQtGMB8GA1UdIwQYMBaAFB2q9F+00nJAelKmO7c5ZTaekSDt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzI4QS81MzdFNDZDNkY5 QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2NrQjZVcVk3dHpsbE5wNlJJ TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhcjBYN1RTY2tCNlVxWTd0emxsTnA2UklPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzI4QS81MzdFNDZDNkY5QzQxMUVEODk2ODI0ODFDNEY5QUUwMi9IYXIwWDdUU2Nr QjZVcVk3dHpsbE5wNlJJTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnj7Xs1CkP/kne7sB7lYbsydyYbCuMTo0+51F67/xUkm+zgJSTtJXw qT3T2RvGqz8Ab4teKfVLKwbENT7sUAH3jhC2cdEhZD3DIFsGnli+BD73nNhPae4W 6+nOL6SKpKWBe3R0qbh7TmLviRDTuk9luA1Bmh3rEnzzwyvoXm+k4dlbFVdZRUXy EyrnF1a0EhHbleZitgkoz+s76ZrMh5V/Sb0Oe+tL9/nxpF/B/4Vc8oRJR+5o7Xn6 7damVh8F3KqzA+TTRD33uoqJpszm3yyZtcJnfBJsAJwrBc9rRllxivATSCndocmp GKSxW78cW3ALidievi2rrpSot+G8O7rM -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org