$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: KnYPeALYHC1rRfJeRbfM+hA7i9HfD1cMIQTxjGm/mbE= Subject key identifier: 84:49:5E:7D:8E:4E:1F:2A:BD:85:43:6E:6E:50:D1:B2:24:FB:E6:B6 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0707 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 06FB Signing time: Sat 18 May 2024 22:49:30 +0000 Manifest this update: Sat 18 May 2024 22:49:30 +0000 Manifest next update: Sat 25 May 2024 22:49:30 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: Ez6ZRw5iGcSZj3HFzD7/KP6s+g6Z2k4ZAHvNnNnUMwI=) 2: A3C7651AD06411ED8A5ADE5EC4F9AE02.roa (hash: N93Z2cXGkLHgshLBPD76RTxJ/CnlZHXFVqSx0yLO0lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1799 (0x707) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: May 18 22:49:30 2024 GMT Not After : May 25 22:49:30 2024 GMT Subject: CN=6649307a-2332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:76:72:7f:bb:15:78:9e:bf:f6:84:2b:3e:f7: 46:2e:a5:1b:8a:be:9e:5f:6b:79:d7:41:aa:36:f7: 5f:8e:7d:d1:a9:3d:98:11:3b:e1:29:46:b0:01:13: 0c:7e:93:0f:01:ca:aa:dc:e7:57:70:71:0d:0c:4a: 65:0f:fe:90:f2:ed:91:da:34:1b:47:e1:f7:33:0d: 32:45:e0:f0:c4:e7:81:8b:b4:64:46:01:89:33:47: 4f:0f:2a:e3:9a:03:40:6f:38:bb:2b:0c:eb:84:e1: 51:37:43:1a:4f:52:1d:b9:2e:7f:5f:fd:c2:64:7b: 9f:d2:4e:fc:bc:7c:0a:98:47:86:62:2e:45:0e:a4: e3:4d:eb:33:d6:c5:5c:7e:b1:a3:20:c1:55:e4:e7: d8:6f:46:ae:c2:ed:a5:f6:5e:a8:47:46:6b:36:30: 2b:c4:cd:cc:57:4c:31:a5:e9:b8:97:63:ab:60:99: af:ff:f0:a7:5c:d1:04:a0:de:8c:ec:5e:ad:91:4f: 11:91:82:b6:13:96:86:fd:53:20:8e:bd:66:c9:21: bc:6b:7b:63:dc:90:f7:11:20:cb:af:02:6e:1a:02: 14:8c:17:72:1c:86:74:7d:a4:cc:5c:46:91:e0:d7: 8a:8b:db:be:f4:8d:06:df:f8:dd:9f:a0:75:c9:d6: e6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:49:5E:7D:8E:4E:1F:2A:BD:85:43:6E:6E:50:D1:B2:24:FB:E6:B6 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:ab:01:30:87:ec:26:e7:eb:09:71:e9:ee:fb:d4:7f:6b:4f: fe:2b:85:76:75:c3:c4:80:15:ce:50:4d:59:1f:0b:e1:0b:d0: c8:db:a2:71:42:19:9c:26:5f:d8:3b:57:1f:f1:62:38:92:63: 96:44:05:af:bd:2c:e9:a0:be:df:dd:b1:c2:fd:07:88:e8:31: a6:36:3e:ee:0b:eb:f2:c0:c8:25:9b:cb:f2:af:bd:07:8a:94: 57:49:49:ed:89:6d:2e:a2:30:6c:5a:d9:71:80:4b:7b:a0:db: 7c:03:86:2f:a1:c3:a1:a9:8d:2a:7b:29:e0:6c:66:5a:3e:8b: 0c:0f:c9:a8:63:77:9e:be:e4:31:a0:f3:e9:2c:83:9f:f7:7a: c5:2d:bd:6a:1f:5f:65:fc:6c:27:03:7f:74:f2:ab:34:5b:9d: 53:47:1e:a5:1f:56:cb:06:1f:7d:9d:13:47:4f:88:21:94:19: 3e:51:d5:9d:3a:03:8a:6c:91:00:56:ff:58:f8:e9:39:f2:41: 82:f0:c2:ef:2f:b4:7b:37:9e:b6:cf:f4:18:75:27:e1:c5:e2: 92:e5:60:7f:07:1f:7c:4d:7d:95:7b:44:81:cb:a4:ee:e3:32: 18:ba:de:9e:32:f6:f1:05:ad:7b:8d:21:da:6d:89:5c:d2:0f: 7d:4a:a7:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjQwNTE4MjI0OTMwWhcNMjQwNTI1MjI0OTMwWjAYMRYwFAYD VQQDEw02NjQ5MzA3YS0yMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHZyf7sVeJ6/9oQrPvdGLqUbir6eX2t510GqNvdfjn3RqT2YETvhKUawARMM fpMPAcqq3OdXcHENDEplD/6Q8u2R2jQbR+H3Mw0yReDwxOeBi7RkRgGJM0dPDyrj mgNAbzi7KwzrhOFRN0MaT1IduS5/X/3CZHuf0k78vHwKmEeGYi5FDqTjTesz1sVc frGjIMFV5OfYb0auwu2l9l6oR0ZrNjArxM3MV0wxpem4l2OrYJmv//CnXNEEoN6M 7F6tkU8RkYK2E5aG/VMgjr1mySG8a3tj3JD3ESDLrwJuGgIUjBdyHIZ0faTMXEaR 4NeKi9u+9I0G3/jdn6B1ydbm4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRJXn2O Th8qvYVDbm5Q0bIk++a2MB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKqwEwh+wm5+sJcenu+9R/a0/+K4V2dcPEgBXOUE1ZHwvhC9DI26Jx QhmcJl/YO1cf8WI4kmOWRAWvvSzpoL7f3bHC/QeI6DGmNj7uC+vywMglm8vyr70H ipRXSUntiW0uojBsWtlxgEt7oNt8A4YvocOhqY0qeyngbGZaPosMD8moY3eevuQx oPPpLIOf93rFLb1qH19l/GwnA3908qs0W51TRx6lH1bLBh99nRNHT4ghlBk+UdWd OgOKbJEAVv9Y+Ok58kGC8MLvL7R7N562z/QYdSfhxeKS5WB/Bx98TX2Ve0SBy6Tu 4zIYut6eMvbxBa17jSHabYlc0g99Sqcp -----END CERTIFICATE-----Generated at Sun May 19 00:16:20 2024 by rpki-client on console-fra.rpki-client.org