$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft File: 8hTt1--NAG-Coif85lvF8-ZIo_o.mft (raw, json) Hash identifier: avS+e8IFYJFSF+9F0rvrRswkxZlLgizmtC/QqbueOi0= Subject key identifier: 57:83:AC:EF:F6:B7:04:3C:B7:57:34:B2:DE:62:4D:6F:F6:E9:D3:32 Authority key identifier: F2:14:ED:D7:EF:8D:00:6F:82:A2:27:FC:E6:5B:C5:F3:E6:48:A3:FA Certificate issuer: /CN=A91DBD27/serialNumber=F214EDD7EF8D006F82A227FCE65BC5F3E648A3FA Certificate serial: 032A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft Manifest number: 0327 Signing time: Sun 19 May 2024 03:02:09 +0000 Manifest this update: Sun 19 May 2024 03:02:08 +0000 Manifest next update: Sun 26 May 2024 03:02:08 +0000 Files and hashes: 1: 8hTt1--NAG-Coif85lvF8-ZIo_o.crl (hash: CGWEAqC/T2fhVkZasBEvxVoXxW+o7umlMlzfPbuUMQs=) 2: 1A15CABE7DD111ECBB4A7D84C4F9AE02.roa (hash: zz2Bw66bfqL3b1K/2KDRvrvXLAcxtClotk8fBB8gWgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.crl rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 810 (0x32a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBD27/serialNumber=F214EDD7EF8D006F82A227FCE65BC5F3E648A3FA Validity Not Before: May 19 03:02:08 2024 GMT Not After : May 26 03:02:08 2024 GMT Subject: CN=66496bb0-7644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:43:3f:a4:42:72:9a:17:05:3a:12:00:db:5a: c8:79:d2:08:76:dc:9e:6b:7f:7f:90:2b:a0:28:42: 80:8b:f9:79:87:b8:93:c6:6d:c9:a4:a6:dc:23:1c: b5:fc:eb:6c:b0:74:fe:29:a8:e2:8e:4d:50:18:67: a7:0e:2f:81:ef:42:8f:06:94:c4:fb:21:51:72:eb: 3b:52:18:61:bf:0b:a9:ad:cb:fe:68:c6:3a:28:af: f9:49:84:44:f1:19:06:57:4c:2b:8d:24:fc:15:2c: bc:61:66:8e:e7:c0:8e:ca:dd:2d:91:3c:d2:c4:52: 27:d9:1a:cf:58:8c:9d:6b:9e:77:85:1a:c8:65:e3: bb:53:95:fa:d4:63:30:19:c3:f5:55:44:14:5a:38: e8:84:bc:f0:70:63:11:90:65:ec:fe:eb:82:a5:0d: 5e:b6:c0:2a:85:64:37:3e:2c:73:2d:e2:3b:ac:dc: 25:cf:b4:55:b8:f7:96:66:01:d2:3c:95:db:92:e9: 97:e7:48:6a:6d:0c:df:b3:eb:be:ff:33:8e:a1:dd: f9:82:85:ec:2a:de:08:c1:91:2f:0b:b7:88:9d:33: b4:19:39:de:15:6e:64:b5:ac:27:90:8a:8e:95:f7: 5b:0e:1d:6c:be:0b:d7:79:95:ed:44:9e:77:7b:98: 0c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:83:AC:EF:F6:B7:04:3C:B7:57:34:B2:DE:62:4D:6F:F6:E9:D3:32 X509v3 Authority Key Identifier: keyid:F2:14:ED:D7:EF:8D:00:6F:82:A2:27:FC:E6:5B:C5:F3:E6:48:A3:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:58:02:b8:9a:e6:3b:1b:88:da:ea:6a:d0:ed:72:c6:f9:2d: 8c:d6:5f:72:22:a7:a2:94:18:d6:c7:43:14:a6:bb:a8:65:5d: 86:6a:e6:f5:df:fb:72:1e:66:d0:f8:df:ba:63:57:b1:2d:53: 2a:f6:6a:a1:e2:f6:97:dc:31:48:9c:d2:cc:80:e5:04:d3:84: eb:38:a5:07:cd:36:5a:77:75:d0:0d:e2:24:58:4c:82:49:49: cc:63:87:fe:51:4d:e7:02:dd:5d:7c:17:4a:99:df:d5:c3:b2: 36:cd:ae:00:ab:08:58:fa:cc:ef:c4:38:d1:45:a1:12:b4:3d: e0:cd:76:ef:74:3b:a7:f8:96:e6:f9:8a:9a:44:a2:9b:5f:b8: 48:ae:7c:4b:a9:98:8e:23:8a:65:87:95:64:e4:88:b7:4c:b5: d0:4f:5e:d3:5a:ce:35:1e:b8:e2:e6:43:15:86:1d:4a:13:b5: b3:2e:54:5a:7b:6a:a6:d2:75:40:48:5f:5b:fb:13:85:e1:d2: 13:3a:ae:2b:f5:3f:f0:53:78:e4:e3:5a:fe:95:44:ff:e5:a7: 4c:ef:89:d9:91:76:f6:12:93:0c:79:9c:cc:f7:36:05:fa:eb: 65:f1:9d:c6:08:c6:a1:31:71:7d:11:4b:03:12:fc:44:cb:56: 09:16:36:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJEMjcxMTAvBgNVBAUTKEYyMTRFREQ3RUY4RDAwNkY4MkEyMjdGQ0U2NUJDNUYz RTY0OEEzRkEwHhcNMjQwNTE5MDMwMjA4WhcNMjQwNTI2MDMwMjA4WjAYMRYwFAYD VQQDEw02NjQ5NmJiMC03NjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkM/pEJymhcFOhIA21rIedIIdtyea39/kCugKEKAi/l5h7iTxm3JpKbcIxy1 /OtssHT+Kajijk1QGGenDi+B70KPBpTE+yFRcus7Uhhhvwuprcv+aMY6KK/5SYRE 8RkGV0wrjST8FSy8YWaO58COyt0tkTzSxFIn2RrPWIyda553hRrIZeO7U5X61GMw GcP1VUQUWjjohLzwcGMRkGXs/uuCpQ1etsAqhWQ3PixzLeI7rNwlz7RVuPeWZgHS PJXbkumX50hqbQzfs+u+/zOOod35goXsKt4IwZEvC7eInTO0GTneFW5ktawnkIqO lfdbDh1svgvXeZXtRJ53e5gMSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeDrO/2 twQ8t1c0st5iTW/26dMyMB8GA1UdIwQYMBaAFPIU7dfvjQBvgqIn/OZbxfPmSKP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkQyNy9ERTVFNzc0RTdE Q0QxMUVDQTZCRDlEMzJDNEY5QUUwMi84aFR0MS0tTkFHLUNvaWY4NWx2RjgtWklv X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhoVHQxLS1OQUctQ29pZjg1bHZGOC1aSW9fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkQyNy9ERTVFNzc0RTdEQ0QxMUVDQTZCRDlEMzJDNEY5QUUwMi84aFR0MS0tTkFH LUNvaWY4NWx2RjgtWklvX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKWAK4muY7G4ja6mrQ7XLG+S2M1l9yIqeilBjWx0MUpruoZV2Gaub1 3/tyHmbQ+N+6Y1exLVMq9mqh4vaX3DFInNLMgOUE04TrOKUHzTZad3XQDeIkWEyC SUnMY4f+UU3nAt1dfBdKmd/Vw7I2za4AqwhY+szvxDjRRaEStD3gzXbvdDun+Jbm +YqaRKKbX7hIrnxLqZiOI4plh5Vk5Ii3TLXQT17TWs41Hrji5kMVhh1KE7WzLlRa e2qm0nVASF9b+xOF4dITOq4r9T/wU3jk41r+lUT/5adM74nZkXb2EpMMeZzM9zYF +utl8Z3GCMahMXF9EUsDEvxEy1YJFjbJ -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org