$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft File: Mh0Kt4oavjUafbeTINn_03KgjEU.mft (raw, json) Hash identifier: dbA4HAJ1/dtIEXIf+PSp6CURXwtfbsIM14jEH1QUGX8= Subject key identifier: 79:A6:06:A6:6D:46:F2:70:6D:43:FA:D7:C2:A9:80:EF:D2:90:62:63 Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft Manifest number: 0127 Signing time: Sat 01 Jun 2024 06:27:31 +0000 Manifest this update: Sat 01 Jun 2024 06:27:30 +0000 Manifest next update: Sat 08 Jun 2024 06:27:30 +0000 Files and hashes: 1: Mh0Kt4oavjUafbeTINn_03KgjEU.crl (hash: CVIfu335C5qZ4axLlGDovQ5l8+HipGO+T74t+qC8/EE=) 2: 2DE5380464F811EDB4394F14C4F9AE02.roa (hash: W9+O+eK5EABiiQSLoqNa8VUxYYA1EjLDTV7nE0Bn2So=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Validity Not Before: Jun 1 06:27:30 2024 GMT Not After : Jun 8 06:27:30 2024 GMT Subject: CN=665abf53-5ae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a1:ff:74:b2:d2:ba:14:48:3d:d8:1c:41:c6: f9:26:65:79:b7:11:16:a9:8b:f0:3f:c8:3b:9f:fb: f0:a1:b2:6f:e6:f5:6b:d3:ce:2f:85:0a:fc:8a:c0: be:3c:cb:0d:70:a9:64:a0:67:e3:a0:62:41:51:8f: 23:c9:0e:19:29:fe:02:9c:63:a8:e0:44:60:dd:c0: 9a:a2:db:de:2f:df:06:61:ae:28:62:4a:18:c1:f5: 87:7f:c9:31:36:da:cc:d5:81:d2:9f:c8:19:c9:32: fd:7c:13:1c:1e:6a:d2:54:af:e0:11:8d:be:6d:96: af:d0:cd:ba:d0:27:78:8d:c5:78:51:39:9c:52:d9: 91:5c:46:40:69:39:53:30:24:7b:52:78:1b:d8:07: ff:d1:d3:d5:21:a6:0c:23:f0:93:6f:66:2c:71:9f: 29:ff:21:af:7b:13:59:a7:64:6a:6a:f2:37:ac:6d: 34:5c:e6:72:82:3a:c1:4a:14:be:bb:87:b0:ba:00: ba:57:5e:4e:57:21:c6:3b:47:c3:f2:af:c1:54:a2: 8c:3f:f2:1c:4c:43:9b:5e:38:24:a4:52:ac:23:c7: 13:b3:89:06:18:1f:e9:f1:79:71:36:d7:b8:cc:ed: 61:d8:da:57:bc:7b:08:ae:92:de:6e:cd:0a:b0:2f: 2f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A6:06:A6:6D:46:F2:70:6D:43:FA:D7:C2:A9:80:EF:D2:90:62:63 X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:5e:fd:a8:2d:47:b7:2b:cc:3d:71:0e:72:74:34:8b:ee:c1: e7:5a:47:75:9b:eb:ab:ed:c5:39:aa:f6:6d:4c:72:c4:be:01: 46:ea:fb:2c:7b:32:39:67:ea:ac:94:71:c4:07:e3:4e:b2:d6: fe:49:d0:f6:53:eb:98:55:87:2a:e6:d9:07:3e:da:6a:c9:9e: fa:ad:45:80:a5:78:48:65:cb:a2:b7:d6:76:f3:af:c2:d3:18: 02:1c:87:2c:4e:c1:56:c2:dc:01:40:56:e7:53:af:1b:0c:13: d5:61:10:82:93:e4:98:30:cf:73:5a:21:34:ef:a3:f1:35:58: 6f:08:81:1c:49:8a:7a:17:76:d3:7f:89:c6:96:38:25:6c:c0: 5f:05:69:12:66:5a:33:b6:ea:76:25:3a:ea:f6:b2:d6:1e:3a: 15:63:7f:a4:41:d1:89:34:46:2e:69:07:56:13:a0:4c:53:1e: 23:02:d2:21:2c:e8:c5:11:ed:5a:71:8d:19:6d:dc:9d:74:e7: f0:ff:33:9c:72:c4:ae:1c:90:59:30:36:4d:75:24:dd:88:b9: fe:da:25:cd:2b:9f:5a:fa:d9:ba:24:66:4e:fb:51:9b:71:e3: 11:dc:f0:1d:39:76:ef:2a:56:a8:ec:12:55:b1:a5:ae:ca:80: b6:8f:04:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjQwNjAxMDYyNzMwWhcNMjQwNjA4MDYyNzMwWjAYMRYwFAYD VQQDEw02NjVhYmY1My01YWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlaH/dLLSuhRIPdgcQcb5JmV5txEWqYvwP8g7n/vwobJv5vVr084vhQr8isC+ PMsNcKlkoGfjoGJBUY8jyQ4ZKf4CnGOo4ERg3cCaotveL98GYa4oYkoYwfWHf8kx NtrM1YHSn8gZyTL9fBMcHmrSVK/gEY2+bZav0M260Cd4jcV4UTmcUtmRXEZAaTlT MCR7Ungb2Af/0dPVIaYMI/CTb2YscZ8p/yGvexNZp2RqavI3rG00XOZygjrBShS+ u4ewugC6V15OVyHGO0fD8q/BVKKMP/IcTEObXjgkpFKsI8cTs4kGGB/p8XlxNte4 zO1h2NpXvHsIrpLebs0KsC8v1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmmBqZt RvJwbUP618KpgO/SkGJjMB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEZFRi9CMDM2M0Q2MDY0RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZq VWFmYmVUSU5uXzAzS2dqRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnXv2oLUe3K8w9cQ5ydDSL7sHnWkd1m+ur7cU5qvZtTHLEvgFG6vss ezI5Z+qslHHEB+NOstb+SdD2U+uYVYcq5tkHPtpqyZ76rUWApXhIZcuit9Z286/C 0xgCHIcsTsFWwtwBQFbnU68bDBPVYRCCk+SYMM9zWiE076PxNVhvCIEcSYp6F3bT f4nGljglbMBfBWkSZloztup2JTrq9rLWHjoVY3+kQdGJNEYuaQdWE6BMUx4jAtIh LOjFEe1acY0ZbdyddOfw/zOccsSuHJBZMDZNdSTdiLn+2iXNK59a+tm6JGZO+1Gb ceMR3PAdOXbvKlao7BJVsaWuyoC2jwTa -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:18 2024 by rpki-client on console-fra.rpki-client.org