$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft File: HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft (raw, json) Hash identifier: WT2sZYyP/1bWqUUb8nTW4OwVZwRTVTYNWsUW759schk= Subject key identifier: CC:80:5F:89:67:35:50:F5:70:D3:50:70:3A:79:D4:E2:E6:A0:4F:DC Authority key identifier: 1F:12:EC:2D:43:95:F9:5A:AC:C6:0C:62:EC:DD:82:85:7E:D3:04:12 Certificate issuer: /CN=A91FDD2C/serialNumber=1F12EC2D4395F95AACC60C62ECDD82857ED30412 Certificate serial: 069F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft Manifest number: 0699 Signing time: Sat 01 Jun 2024 00:09:40 +0000 Manifest this update: Sat 01 Jun 2024 00:09:40 +0000 Manifest next update: Sat 08 Jun 2024 00:09:40 +0000 Files and hashes: 1: HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl (hash: Rz9rdNTVJxsBjdEFv3LOzhn/mt8YASFL7J1u7XQEr20=) 2: D9BD904224B611EBAE734152C4F9AE02.roa (hash: 7ojR55WJV8soxk7l7a6+JaScckV9TPfrdrFJWU8jIms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1695 (0x69f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD2C/serialNumber=1F12EC2D4395F95AACC60C62ECDD82857ED30412 Validity Not Before: Jun 1 00:09:40 2024 GMT Not After : Jun 8 00:09:40 2024 GMT Subject: CN=665a66c4-8503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:67:10:25:7c:5a:1a:43:12:dd:8f:4c:79: 0d:55:77:83:35:8c:73:a3:b3:a0:48:b8:40:33:71: 42:ab:bf:14:c5:3f:58:49:eb:2a:06:00:8d:1b:3b: 3d:73:03:9c:12:68:83:30:82:a3:e5:7e:dd:8e:d2: ec:10:19:5a:4b:fa:cc:01:12:a5:85:17:49:93:98: 0e:fe:6a:98:64:37:18:18:56:f9:c8:f0:62:e7:bb: 33:33:28:4a:f9:9d:7e:51:73:8a:4e:c0:88:e0:0d: e1:38:c5:80:96:ae:13:20:cd:64:0d:0a:dc:25:52: 80:ed:98:5e:b2:5a:b8:7f:c9:9b:c4:90:19:29:36: 7b:ab:bd:8b:ec:b3:db:aa:d8:77:91:b7:00:d5:ae: ed:e5:bb:3b:ef:ce:90:86:44:90:e1:82:bb:83:50: f0:33:80:fb:ea:18:aa:72:52:43:02:e4:d5:c7:e4: fc:7d:8f:50:0a:b7:00:68:1d:20:a7:4b:86:8a:26: 25:ef:36:c0:5d:45:d1:ab:a9:41:f9:5b:92:18:7b: a2:82:20:55:05:0d:2e:f9:d1:3a:81:ab:a5:6b:2e: 1a:98:2e:57:42:7e:6e:8d:6c:f8:e8:01:37:aa:11: bc:f9:e9:54:dc:67:dc:c0:e9:73:96:84:24:be:02: 49:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:80:5F:89:67:35:50:F5:70:D3:50:70:3A:79:D4:E2:E6:A0:4F:DC X509v3 Authority Key Identifier: keyid:1F:12:EC:2D:43:95:F9:5A:AC:C6:0C:62:EC:DD:82:85:7E:D3:04:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:fa:e2:54:39:8e:29:dd:77:ab:5e:f9:33:12:dd:2a:99:d5: a7:ff:cd:ef:6b:45:b5:39:03:27:51:62:4f:52:0d:64:46:11: 80:c8:ea:02:80:ad:8d:e4:0b:bb:c7:9d:d3:4d:c4:16:49:13: 80:1b:23:ec:b6:b7:96:d8:f6:c8:23:62:bc:dd:7c:46:99:9b: 31:ca:7b:a2:62:18:9b:ce:a3:1f:a0:e7:cc:e2:b1:d6:5c:34: f6:81:f1:6c:01:b6:0d:8a:13:e8:1c:dc:ff:ee:34:cf:44:34: 89:3c:67:c1:9c:48:f4:9a:f8:5e:bc:39:5f:84:62:b1:47:8d: cb:1a:1c:d0:ee:aa:87:c9:ee:77:c9:b6:44:fa:65:cb:23:80: 99:87:95:29:61:ea:81:de:7b:4c:71:ca:cb:25:d3:4c:ed:ed: ed:47:df:63:23:e4:b7:a9:16:27:8f:f5:12:ce:6e:fe:05:d3: 21:c6:53:a4:45:87:ed:68:f7:e1:14:bb:cb:1f:f5:f8:e1:df: 92:86:96:58:57:30:70:d4:1a:16:ce:75:86:31:06:c4:17:6b: 0f:1d:a2:b2:e9:2f:33:d8:06:3f:d1:68:39:fa:f4:c1:c6:7b: cb:dd:41:d5:55:98:c0:89:26:dc:6c:9d:a1:e0:f9:99:12:c3: c3:bc:f3:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkREMkMxMTAvBgNVBAUTKDFGMTJFQzJENDM5NUY5NUFBQ0M2MEM2MkVDREQ4Mjg1 N0VEMzA0MTIwHhcNMjQwNjAxMDAwOTQwWhcNMjQwNjA4MDAwOTQwWjAYMRYwFAYD VQQDEw02NjVhNjZjNC04NTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1JnECV8WhpDEt2PTHkNVXeDNYxzo7OgSLhAM3FCq78UxT9YSesqBgCNGzs9 cwOcEmiDMIKj5X7djtLsEBlaS/rMARKlhRdJk5gO/mqYZDcYGFb5yPBi57szMyhK +Z1+UXOKTsCI4A3hOMWAlq4TIM1kDQrcJVKA7Zheslq4f8mbxJAZKTZ7q72L7LPb qth3kbcA1a7t5bs7786QhkSQ4YK7g1DwM4D76hiqclJDAuTVx+T8fY9QCrcAaB0g p0uGiiYl7zbAXUXRq6lB+VuSGHuigiBVBQ0u+dE6gaulay4amC5XQn5ujWz46AE3 qhG8+elU3GfcwOlzloQkvgJJDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyAX4ln NVD1cNNQcDp51OLmoE/cMB8GA1UdIwQYMBaAFB8S7C1DlflarMYMYuzdgoV+0wQS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQyQy80OENFNTE2MjI0 QjUxMUVCQTI4NzhGNTBDNEY5QUUwMi9IeExzTFVPVi1WcXN4Z3hpN04yQ2hYN1RC QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h4THNMVU9WLVZxc3hneGk3TjJDaFg3VEJCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQyQy80OENFNTE2MjI0QjUxMUVCQTI4NzhGNTBDNEY5QUUwMi9IeExzTFVPVi1W cXN4Z3hpN04yQ2hYN1RCQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw+uJUOY4p3XerXvkzEt0qmdWn/83va0W1OQMnUWJPUg1kRhGAyOoC gK2N5Au7x53TTcQWSROAGyPstreW2PbII2K83XxGmZsxynuiYhibzqMfoOfM4rHW XDT2gfFsAbYNihPoHNz/7jTPRDSJPGfBnEj0mvhevDlfhGKxR43LGhzQ7qqHye53 ybZE+mXLI4CZh5UpYeqB3ntMccrLJdNM7e3tR99jI+S3qRYnj/USzm7+BdMhxlOk RYftaPfhFLvLH/X44d+ShpZYVzBw1BoWznWGMQbEF2sPHaKy6S8z2AY/0Wg5+vTB xnvL3UHVVZjAiSbcbJ2h4PmZEsPDvPPm -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:47 2024 by rpki-client on console-fra.rpki-client.org