$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: z/wOSwSikTWaMd1BBqBHnvs4Avmnb2wD0cA5H4yCpLA= Subject key identifier: BC:38:59:20:B1:B2:30:A6:77:D3:F1:A5:6A:9A:25:7F:77:08:ED:8B Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 04B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 04AF Signing time: Sun 19 May 2024 01:31:57 +0000 Manifest this update: Sun 19 May 2024 01:31:57 +0000 Manifest next update: Sun 26 May 2024 01:31:57 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: MeCHVWta2SqZ7Zh3YHtnObYHMspt8tOgfhe7Q+XMpiM=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: ezYsgIsJQh8aISDzGTb2ynExMdrgWLQpdiVgohF5Bnw=) 3: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: kLrHarsAJe0BrznIqBMgdmpnUXMXpEfMItL+hhFxFSE=) 4: 08990BC0084E11EF89D29620C4F9AE02.roa (hash: i1fkph3atVfnVEbnt9xSvvG/cUJYGzp+on9uV8ITB20=) 5: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: cYehtuypxx/DqVciqwtyme0u/Ljft0WiF3QhRefDaVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1207 (0x4b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: May 19 01:31:57 2024 GMT Not After : May 26 01:31:57 2024 GMT Subject: CN=6649568d-9d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a8:99:d2:17:59:bf:99:47:e1:86:16:d6:1b: d8:a5:d9:b8:24:73:b6:40:8a:63:5f:5c:c5:84:49: 7d:0f:92:2f:ec:80:7b:43:25:f7:07:de:bb:0c:b3: a3:17:99:83:7b:64:23:89:92:fc:b5:9f:cd:e2:49: 7b:95:87:29:81:e5:7c:a1:e4:63:57:47:8b:b4:00: 68:58:e6:7f:d1:41:74:67:04:f2:72:c9:25:3b:3a: dc:ce:41:5c:9b:8b:1f:87:56:49:39:97:3c:db:49: f3:61:e8:4d:e6:4b:09:d4:44:d7:01:62:42:65:d5: d0:13:47:8c:d2:d8:18:46:15:e0:d3:88:43:20:47: 80:f1:41:f4:d2:70:06:f3:a6:f0:b5:86:d9:f2:cb: 33:a7:23:8e:b7:e1:6d:32:d7:bb:05:d1:f5:8d:a3: 1f:3b:00:9b:2b:1e:4f:7d:1e:83:8d:3c:0d:ce:a8: e7:64:73:90:31:9f:a7:95:af:b3:02:b4:ee:16:f3: ff:e4:17:83:cb:45:5f:bf:25:49:fa:25:31:2f:06: 47:1b:00:52:9f:1b:49:f5:85:c0:d3:4b:d5:3b:6f: d5:ff:79:ad:e4:63:bb:76:62:d4:a3:f4:48:8d:e9: 75:d2:18:69:d8:34:87:c1:c0:50:ef:17:8c:71:e7: 7d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:38:59:20:B1:B2:30:A6:77:D3:F1:A5:6A:9A:25:7F:77:08:ED:8B X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:b6:84:df:3e:7c:aa:bc:8f:16:b2:b4:37:b8:97:86:21:19: 0e:2d:e5:31:a1:95:6e:a8:a4:f9:e7:84:86:ba:f6:e0:db:c3: b6:af:ac:ee:6e:16:c9:d5:2b:a9:26:ce:1a:dc:ce:e6:9b:0b: 1d:49:44:f6:6f:8c:d3:41:db:36:c6:9a:73:66:0a:7c:d4:ff: 1d:c6:a5:12:8d:fb:2b:f7:5b:45:5e:b6:65:51:27:c6:d9:7d: 15:c8:a5:98:c4:32:09:68:24:48:ab:6d:ed:e0:47:df:e9:81: 08:4e:b4:92:2a:84:76:6a:4b:5b:d5:6e:6a:9a:34:98:4f:b2: a0:43:d7:ea:8f:e7:49:ff:a4:fd:16:7a:d3:43:0b:9a:04:3f: 12:87:c9:f4:d6:91:08:77:ec:7e:98:00:5a:12:45:5e:7c:fc: 3c:ce:a5:27:f0:9f:a0:2e:2b:7c:18:15:5a:04:75:e4:d0:e3: 62:0d:f4:70:83:e0:be:08:f0:ab:25:7a:dd:da:99:78:d6:68: 11:a5:1b:9d:42:75:54:b7:40:28:8e:ba:dd:ae:60:cd:c6:23: bf:b5:d8:d5:95:26:38:ef:ab:04:c3:7f:7b:1c:cf:07:75:01: 01:18:b9:4e:e2:80:00:9e:d6:1e:6c:3b:4b:e5:a4:5e:5d:1d: e0:32:d7:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjQwNTE5MDEzMTU3WhcNMjQwNTI2MDEzMTU3WjAYMRYwFAYD VQQDEw02NjQ5NTY4ZC05ZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16iZ0hdZv5lH4YYW1hvYpdm4JHO2QIpjX1zFhEl9D5Iv7IB7QyX3B967DLOj F5mDe2QjiZL8tZ/N4kl7lYcpgeV8oeRjV0eLtABoWOZ/0UF0ZwTycsklOzrczkFc m4sfh1ZJOZc820nzYehN5ksJ1ETXAWJCZdXQE0eM0tgYRhXg04hDIEeA8UH00nAG 86bwtYbZ8sszpyOOt+FtMte7BdH1jaMfOwCbKx5PfR6DjTwNzqjnZHOQMZ+nla+z ArTuFvP/5BeDy0VfvyVJ+iUxLwZHGwBSnxtJ9YXA00vVO2/V/3mt5GO7dmLUo/RI jel10hhp2DSHwcBQ7xeMced9mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLw4WSCx sjCmd9PxpWqaJX93CO2LMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCtoTfPnyqvI8WsrQ3uJeGIRkOLeUxoZVuqKT554SGuvbg28O2r6zu bhbJ1SupJs4a3M7mmwsdSUT2b4zTQds2xppzZgp81P8dxqUSjfsr91tFXrZlUSfG 2X0VyKWYxDIJaCRIq23t4Eff6YEITrSSKoR2aktb1W5qmjSYT7KgQ9fqj+dJ/6T9 FnrTQwuaBD8Sh8n01pEId+x+mABaEkVefPw8zqUn8J+gLit8GBVaBHXk0ONiDfRw g+C+CPCrJXrd2pl41mgRpRudQnVUt0AojrrdrmDNxiO/tdjVlSY476sEw397HM8H dQEBGLlO4oAAntYebDtL5aReXR3gMte+ -----END CERTIFICATE-----Generated at Sun May 19 02:59:17 2024 by rpki-client on console-ams.rpki-client.org