$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: XcjBb3mR0FZd8ScMaHG87w4iviuFp1q1HFYnE5oW4h0= Subject key identifier: 8C:09:2E:DD:5B:44:12:9F:23:EB:0F:03:D5:4E:B5:3C:AB:26:D6:F2 Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 078D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 0789 Signing time: Sat 18 May 2024 22:11:27 +0000 Manifest this update: Sat 18 May 2024 22:11:26 +0000 Manifest next update: Sat 25 May 2024 22:11:26 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: DnEDNrelsZzmkv9hokKoJMvl5MRsEY0CyH4d7gd9hxs=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: OcAUVKDHbk1M3ldi7RXMrcxcBlT+QMXwwWIoA0y3skM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: May 18 22:11:26 2024 GMT Not After : May 25 22:11:26 2024 GMT Subject: CN=6649278e-5be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6f:b7:21:fd:38:a7:8e:4c:55:81:99:bb:79: dc:17:f8:0d:2f:2d:c9:57:db:12:f7:82:87:f3:9e: c1:64:a2:73:1f:cc:92:f1:4e:70:32:1d:1e:ab:9c: 1c:11:b2:c1:b6:c9:34:82:2b:78:f0:9b:5d:71:54: b4:03:df:25:47:0a:46:f7:93:b5:72:66:da:3b:5f: 74:0b:ce:38:bf:f0:2b:3b:6c:2a:09:b1:42:e9:27: d0:16:1e:98:54:4e:71:20:9f:1f:82:61:07:d5:a3: 83:d3:b1:35:7d:e8:f8:53:3a:f1:d6:9a:c8:91:13: 20:03:8a:a2:77:be:17:95:8c:2d:f3:b1:c5:6e:43: f0:0a:59:fe:ec:5f:2f:b4:a0:21:fa:5a:03:d9:8a: f0:4f:1b:4e:e3:be:01:88:f2:4a:fd:91:cf:58:98: 4a:37:08:c9:23:ab:c1:77:06:e4:87:64:6c:96:b7: 45:a2:a9:14:a3:c3:4b:5a:82:0c:36:45:a7:96:c2: 7d:f1:28:08:01:64:11:11:19:b2:74:99:74:89:3d: 29:74:ff:62:08:8a:d6:21:4b:be:07:b4:96:c1:15: 8c:9c:9a:58:04:8d:63:d4:fc:30:22:90:06:97:8f: c3:6d:70:ed:37:af:64:19:ca:65:bf:30:cf:f6:1b: 44:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:09:2E:DD:5B:44:12:9F:23:EB:0F:03:D5:4E:B5:3C:AB:26:D6:F2 X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:15:88:17:0f:db:ab:26:39:d3:fa:3d:ec:85:7d:7d:4b:be: dd:11:17:c8:4e:db:5c:ec:dd:25:0d:b8:7f:45:1f:91:7c:2e: 4c:97:8f:2c:e5:bc:e6:c5:0a:b1:2c:09:47:f2:b4:08:e6:9d: 30:76:06:55:a8:ea:12:d9:b6:f1:64:74:de:19:84:6b:26:eb: 79:73:f4:60:2e:a0:bf:91:3f:f5:9a:b8:62:8d:92:40:a9:c6: 50:85:4e:0a:81:9d:b9:b7:4b:c4:62:f5:3c:13:e0:fb:2d:84: e9:46:ed:ec:ee:0c:db:ed:62:4c:2d:97:0c:32:92:83:e7:b2: 4d:80:f0:9b:66:83:f7:70:97:b8:65:94:97:42:c5:f6:bb:6c: 09:75:54:43:9f:b1:52:5c:80:ae:8d:ef:48:e5:e4:3e:dc:ef: 5d:37:25:5a:d1:76:9c:1a:94:c6:40:f7:89:68:dd:e1:79:34: ef:01:72:0d:50:62:da:9a:4b:1a:6b:49:54:91:dc:50:7c:ef: 92:64:2a:a7:53:3e:b8:d8:ec:03:11:10:69:30:3f:bd:d2:11: 86:76:c1:f2:c6:bc:e2:cc:0f:7c:5b:a3:40:55:01:e1:58:96: ce:6f:9f:5e:b9:77:88:09:0b:a6:9e:6e:b9:44:28:8f:15:cf: 73:4f:74:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjQwNTE4MjIxMTI2WhcNMjQwNTI1MjIxMTI2WjAYMRYwFAYD VQQDEw02NjQ5Mjc4ZS01YmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2+3If04p45MVYGZu3ncF/gNLy3JV9sS94KH857BZKJzH8yS8U5wMh0eq5wc EbLBtsk0git48JtdcVS0A98lRwpG95O1cmbaO190C844v/ArO2wqCbFC6SfQFh6Y VE5xIJ8fgmEH1aOD07E1fej4Uzrx1prIkRMgA4qid74XlYwt87HFbkPwCln+7F8v tKAh+loD2YrwTxtO474BiPJK/ZHPWJhKNwjJI6vBdwbkh2RslrdFoqkUo8NLWoIM NkWnlsJ98SgIAWQRERmydJl0iT0pdP9iCIrWIUu+B7SWwRWMnJpYBI1j1PwwIpAG l4/DbXDtN69kGcplvzDP9htE+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwJLt1b RBKfI+sPA9VOtTyrJtbyMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7FYgXD9urJjnT+j3shX19S77dERfITttc7N0lDbh/RR+RfC5Ml48s 5bzmxQqxLAlH8rQI5p0wdgZVqOoS2bbxZHTeGYRrJut5c/RgLqC/kT/1mrhijZJA qcZQhU4KgZ25t0vEYvU8E+D7LYTpRu3s7gzb7WJMLZcMMpKD57JNgPCbZoP3cJe4 ZZSXQsX2u2wJdVRDn7FSXICuje9I5eQ+3O9dNyVa0XacGpTGQPeJaN3heTTvAXIN UGLamksaa0lUkdxQfO+SZCqnUz642OwDERBpMD+90hGGdsHyxrzizA98W6NAVQHh WJbOb59euXeICQumnm65RCiPFc9zT3Qu -----END CERTIFICATE-----Generated at Sun May 19 00:16:20 2024 by rpki-client on console-fra.rpki-client.org