$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: WDw0b1Z83bknWjmt8+Q4a5MVs42mKJb2mZB4CDlafqA= Subject key identifier: 22:A6:11:46:67:F0:D6:DA:51:2A:80:F8:A2:C7:39:AF:EB:9D:37:C6 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0430 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 042A Signing time: Fri 31 May 2024 02:36:52 +0000 Manifest this update: Fri 31 May 2024 02:36:52 +0000 Manifest next update: Fri 07 Jun 2024 02:36:52 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: ConF5OVDqGCUSV/81TlrjKqB0EfPHuKWBkW7VwGkgMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1072 (0x430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: May 31 02:36:52 2024 GMT Not After : Jun 7 02:36:52 2024 GMT Subject: CN=665937c4-1c0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ce:6f:39:47:da:0a:57:98:1d:ab:f6:e7:96: 74:c9:1a:22:d7:14:5d:4a:61:d4:82:ab:0c:78:55: b6:fc:42:f9:c8:ca:7b:68:77:0c:a9:30:fa:27:9f: 12:22:38:c6:53:c7:ee:93:90:62:a4:19:00:3b:8c: 96:08:28:29:6d:f7:c1:b1:56:fc:67:ac:86:42:1c: ad:60:1b:4c:23:58:cf:e9:ec:f0:9f:64:7a:ff:1c: b7:9a:64:ed:41:dd:0c:ac:1a:0a:78:8a:af:f3:5f: c4:33:c9:d4:88:67:ab:9a:69:d8:2d:a1:a1:32:70: b7:5e:10:ce:4a:41:da:69:b0:df:09:e2:09:7d:a1: 78:d9:47:d3:b9:c4:13:1e:11:8f:20:94:4d:e4:eb: e8:7e:da:86:3b:90:65:d5:4c:9c:b5:6f:9d:23:35: ba:38:ab:ad:cf:89:81:e8:b0:8b:68:c5:91:d0:13: 3e:88:91:d0:ba:d5:a9:95:8b:1d:6a:11:88:29:64: 79:d9:87:32:e4:77:6d:f1:b5:58:cf:f0:4f:4d:89: fa:53:14:81:61:78:ed:3b:39:84:8b:e5:33:bc:37: cf:70:19:f6:18:b6:b7:90:e5:b9:a8:64:0b:6c:9c: 4f:44:78:b9:d4:24:d3:70:88:e7:95:0d:7d:1a:5a: e1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A6:11:46:67:F0:D6:DA:51:2A:80:F8:A2:C7:39:AF:EB:9D:37:C6 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:6b:04:fb:f0:a5:89:a1:c6:e6:b5:e5:49:5b:d1:24:96:8a: a3:09:0c:66:8f:e8:bf:9e:fd:b5:17:2b:02:b9:ca:e1:39:c5: 00:4a:78:ec:35:79:ff:8b:6f:96:6b:9b:2d:13:b0:21:4e:5a: 99:c3:aa:1d:6d:69:75:cf:6a:a1:e7:82:3d:5b:9d:33:f7:13: 0e:83:a1:c1:99:05:af:71:1b:47:fa:14:b2:05:7f:64:9a:8d: 7f:e9:6f:99:95:ba:ad:d3:d5:be:64:38:ee:20:d0:86:70:1c: 83:43:86:f7:2a:cf:1e:6c:a0:32:cd:dc:af:a5:d7:1e:d5:8f: 63:21:35:b8:1a:3c:1e:b6:81:f6:d4:5e:6c:20:e7:20:3c:c0: 56:14:46:23:98:45:38:ed:09:ac:3b:a7:b3:5f:00:b5:6d:5f: 81:4c:46:51:71:bc:22:87:ce:c1:b3:e5:b3:b8:f1:15:37:17: 12:0e:f2:54:e8:fc:0a:2d:84:d5:e8:27:1c:55:13:1c:14:04: 23:c1:58:7b:e0:93:52:00:20:f2:5f:96:fb:80:7c:33:8b:49: fb:38:ed:81:8f:ec:71:44:d5:c1:a9:78:b2:69:13:41:ef:10: dc:d2:45:8c:b0:f8:db:98:2c:0e:74:5a:b5:17:6d:9d:09:c4: 97:ad:f6:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjQwNTMxMDIzNjUyWhcNMjQwNjA3MDIzNjUyWjAYMRYwFAYD VQQDEw02NjU5MzdjNC0xYzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAns5vOUfaCleYHav255Z0yRoi1xRdSmHUgqsMeFW2/EL5yMp7aHcMqTD6J58S IjjGU8fuk5BipBkAO4yWCCgpbffBsVb8Z6yGQhytYBtMI1jP6ezwn2R6/xy3mmTt Qd0MrBoKeIqv81/EM8nUiGermmnYLaGhMnC3XhDOSkHaabDfCeIJfaF42UfTucQT HhGPIJRN5OvoftqGO5Bl1UyctW+dIzW6OKutz4mB6LCLaMWR0BM+iJHQutWplYsd ahGIKWR52Ycy5Hdt8bVYz/BPTYn6UxSBYXjtOzmEi+UzvDfPcBn2GLa3kOW5qGQL bJxPRHi51CTTcIjnlQ19GlrhaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKmEUZn 8NbaUSqA+KLHOa/rnTfGMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeawT78KWJocbmteVJW9EkloqjCQxmj+i/nv21FysCucrhOcUASnjs NXn/i2+Wa5stE7AhTlqZw6odbWl1z2qh54I9W50z9xMOg6HBmQWvcRtH+hSyBX9k mo1/6W+Zlbqt09W+ZDjuINCGcByDQ4b3Ks8ebKAyzdyvpdce1Y9jITW4GjwetoH2 1F5sIOcgPMBWFEYjmEU47QmsO6ezXwC1bV+BTEZRcbwih87Bs+WzuPEVNxcSDvJU 6PwKLYTV6CccVRMcFAQjwVh74JNSACDyX5b7gHwzi0n7OO2Bj+xxRNXBqXiyaRNB 7xDc0kWMsPjbmCwOdFq1F22dCcSXrfYQ -----END CERTIFICATE-----Generated at Fri May 31 04:54:03 2024 by rpki-client on console-fra.rpki-client.org