$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft File: 4mhztF-I0fXYg8F-TM9wokUWIUI.mft (raw, json) Hash identifier: xiaIet+h17stwwaxizcdwy2eV4FBRURuNUn/J14vIUo= Subject key identifier: F8:92:EA:41:AA:CE:AD:54:54:DC:67:6D:A3:F8:63:82:25:2D:D6:62 Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Certificate serial: 0812 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft Manifest number: 0805 Signing time: Thu 30 May 2024 22:22:08 +0000 Manifest this update: Thu 30 May 2024 22:22:07 +0000 Manifest next update: Thu 06 Jun 2024 22:22:07 +0000 Files and hashes: 1: 4mhztF-I0fXYg8F-TM9wokUWIUI.crl (hash: BAoRAAkLJPuqY3xM8LUc5aIFs1NsX4GxwRqRokGrQFI=) 2: E146B994B51F11EA9146DD58C4F9AE02.roa (hash: 9ClGkaiLZJSsxx5I62kiJUH3IYlW5OJPUglUBTKzUbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 22:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2066 (0x812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Validity Not Before: May 30 22:22:07 2024 GMT Not After : Jun 6 22:22:07 2024 GMT Subject: CN=6658fc0f-31f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e1:b6:cb:8d:f9:32:c9:dc:6e:0b:f2:bb:8a: 67:92:41:3c:e4:98:68:17:f2:af:31:80:99:0c:81: df:a7:4c:de:87:3d:51:39:d5:e7:b8:7e:33:40:10: 84:f8:87:f3:89:dc:de:09:df:9e:04:da:38:fe:7a: be:82:d9:2c:ce:5a:a0:f8:e5:b6:ac:78:13:cf:e0: 28:18:57:25:8f:7f:a7:86:cc:11:0a:43:22:3b:57: f1:3c:56:ab:f4:dd:7d:3f:17:b8:1c:b3:66:82:f1: 6a:70:f5:6c:b7:5e:57:d8:3b:f1:11:c0:29:86:b5: 15:51:b2:71:29:09:f7:17:f7:8a:0f:96:e1:94:b5: 2b:b0:aa:8e:88:6e:ed:20:ab:c8:bc:83:98:26:a1: 29:37:24:05:80:12:29:34:a3:fd:af:f8:ac:ce:e9: e1:6a:d9:9a:cb:30:93:f4:b9:57:f4:40:e6:4c:db: cf:fb:38:2d:96:ed:00:df:4b:16:04:9c:20:76:31: 92:52:20:43:42:81:53:8b:84:a2:9e:e3:de:df:58: cc:0e:54:4f:04:c0:b6:cf:26:2d:ff:6b:ba:67:28: c1:0f:8f:e0:48:71:6d:f0:dc:c0:fa:3e:43:21:d5: 00:11:d3:ae:86:c4:b1:72:00:bc:47:40:13:59:8e: 7c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:92:EA:41:AA:CE:AD:54:54:DC:67:6D:A3:F8:63:82:25:2D:D6:62 X509v3 Authority Key Identifier: keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:c6:b2:05:32:62:46:13:e3:b6:5f:f2:26:5d:cf:86:f1:50: 6e:8c:fd:8c:4f:ba:02:9f:60:03:eb:ca:9b:7a:67:6d:9e:be: 1a:38:9f:67:b4:f8:a0:69:3b:71:eb:8d:55:d5:a9:fd:8e:24: ea:1d:ec:d6:b9:65:88:1d:7e:d8:2a:b9:78:53:50:16:a9:7e: 3f:8c:ab:ad:11:74:1f:5b:1d:58:a0:22:6a:08:84:a8:69:f0: 63:a4:36:d9:5d:1f:8a:3a:42:97:9f:3e:26:f6:92:37:0b:d3: 94:79:43:e0:19:10:f7:62:fa:a8:0f:d0:c3:d0:44:0a:45:ef: 5a:5d:dd:d2:0d:6f:e6:84:a8:af:1f:59:ab:c8:bb:cc:db:69: 94:2d:b8:72:5e:f3:95:fc:1e:b3:f3:5b:c0:83:5a:66:26:7f: c8:38:6e:68:91:4f:1f:23:12:68:dd:d9:b7:2e:c9:7e:09:2d: 79:0f:ce:61:f3:08:d5:61:c6:5b:da:a6:7e:4b:20:da:ca:d8: 10:9d:16:8e:12:55:bb:4c:10:5c:24:2c:52:96:f3:a4:21:5e: 55:63:cb:05:0d:24:02:25:1c:4c:98:29:c8:46:4e:46:a1:ef: fd:20:9d:1a:71:34:07:49:96:15:19:6b:9e:17:e2:ec:e8:bc: 0f:d5:74:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3RTRDQ0Y3MEEy NDUxNjIxNDIwHhcNMjQwNTMwMjIyMjA3WhcNMjQwNjA2MjIyMjA3WjAYMRYwFAYD VQQDEw02NjU4ZmMwZi0zMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueG2y435Msncbgvyu4pnkkE85JhoF/KvMYCZDIHfp0zehz1ROdXnuH4zQBCE +IfzidzeCd+eBNo4/nq+gtkszlqg+OW2rHgTz+AoGFclj3+nhswRCkMiO1fxPFar 9N19Pxe4HLNmgvFqcPVst15X2DvxEcAphrUVUbJxKQn3F/eKD5bhlLUrsKqOiG7t IKvIvIOYJqEpNyQFgBIpNKP9r/iszunhatmayzCT9LlX9EDmTNvP+zgtlu0A30sW BJwgdjGSUiBDQoFTi4SinuPe31jMDlRPBMC2zyYt/2u6ZyjBD4/gSHFt8NzA+j5D IdUAEdOuhsSxcgC8R0ATWY58pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiS6kGq zq1UVNxnbaP4Y4IlLdZiMB8GA1UdIwQYMBaAFOJoc7RfiNH12IPBfkzPcKJFFiFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEM2Qi8yNzhBQTNFNEI1 MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBmWFlnOEYtVE05d29rVVdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRtaHp0Ri1JMGZYWWc4Ri1UTTl3b2tVV0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEM2Qi8yNzhBQTNFNEI1MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBm WFlnOEYtVE05d29rVVdJVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6xrIFMmJGE+O2X/ImXc+G8VBujP2MT7oCn2AD68qbemdtnr4aOJ9n tPigaTtx641V1an9jiTqHezWuWWIHX7YKrl4U1AWqX4/jKutEXQfWx1YoCJqCISo afBjpDbZXR+KOkKXnz4m9pI3C9OUeUPgGRD3YvqoD9DD0EQKRe9aXd3SDW/mhKiv H1mryLvM22mULbhyXvOV/B6z81vAg1pmJn/IOG5okU8fIxJo3dm3Lsl+CS15D85h 8wjVYcZb2qZ+SyDaytgQnRaOElW7TBBcJCxSlvOkIV5VY8sFDSQCJRxMmCnIRk5G oe/9IJ0acTQHSZYVGWueF+Ls6LwP1XTF -----END CERTIFICATE-----Generated at Thu May 30 23:02:17 2024 by rpki-client on console-fra.rpki-client.org