$ rpki-client -vvf rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft File: eHZtYCpA71cBQmhKcj6KNAxv84I.mft (raw, json) Hash identifier: 79y3swZ5mzg93wm0wlzjMh6AvhVFQJ6wI0L38xQd5Xk= Subject key identifier: 49:A6:DE:D0:D3:BF:C2:22:7A:2C:BE:02:1C:D7:06:3D:E7:1B:B6:8E Authority key identifier: 78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 Certificate issuer: /CN=A912A70D/serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Certificate serial: 0380 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft Manifest number: 037D Signing time: Sun 05 May 2024 02:53:17 +0000 Manifest this update: Sun 05 May 2024 02:53:16 +0000 Manifest next update: Sun 12 May 2024 02:53:16 +0000 Files and hashes: 1: eHZtYCpA71cBQmhKcj6KNAxv84I.crl (hash: OrSlzJzQg6jr0lIViMUjfSKoFML8ASwcL2xtKVqYyYQ=) 2: 90AE61AC595711EC8761C361C4F9AE02.roa (hash: MHLkIrG8OE5UOit08v3EdsiD1KiljA4jon27VqLiskc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 896 (0x380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A70D/serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Validity Not Before: May 5 02:53:16 2024 GMT Not After : May 12 02:53:16 2024 GMT Subject: CN=6636f49d-0916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a1:62:ff:4c:2b:a1:3c:cd:a2:21:12:6c:6e: c8:8f:8e:70:08:40:0b:0d:62:7c:86:cb:ca:ac:7b: e0:b3:7b:9b:d1:6f:43:71:93:bc:c8:4b:a0:f6:f1: ea:b9:3b:28:db:88:88:16:02:c9:b6:6c:37:92:d0: 9c:67:06:b2:2d:5e:94:8d:8d:85:48:7f:ba:8b:e7: a5:bb:6c:aa:40:12:af:5f:2a:b6:d6:7d:87:0c:ec: c9:83:b7:51:b6:98:be:18:6c:69:37:d6:9e:17:08: ae:f4:3d:a1:d4:86:3f:6e:64:55:8c:50:0a:c6:e0: 37:0d:a4:8b:33:be:70:17:03:57:24:16:b7:5f:7c: 4a:e7:d8:24:8c:51:89:3a:be:a4:b9:e7:ec:d8:0c: 48:96:2b:93:f9:97:95:90:9c:1a:d3:8d:ee:86:d3: 52:57:a9:d0:55:09:2e:b8:de:24:03:04:ba:ef:a2: a9:68:f8:29:82:da:a5:a8:c0:e0:85:1b:88:3f:3c: d5:c9:e5:ca:43:5a:58:3c:6c:01:22:fa:cd:cb:7f: fa:87:64:5b:56:85:5f:53:5e:44:ef:11:5f:e0:4d: 41:46:ca:ea:06:05:1f:43:be:bc:f8:41:78:66:34: d2:2f:5f:b6:71:c5:e5:6c:93:32:bf:27:20:ad:b6: 83:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A6:DE:D0:D3:BF:C2:22:7A:2C:BE:02:1C:D7:06:3D:E7:1B:B6:8E X509v3 Authority Key Identifier: keyid:78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:09:a6:5e:18:84:53:a7:3b:3d:ea:54:f8:c3:6d:17:be:54: 5f:b1:1c:31:1a:e4:9d:59:60:16:6d:02:81:9a:37:72:dc:0a: 63:d1:1a:09:dc:74:e7:bc:ad:1e:52:65:b1:ed:4b:5b:e5:6a: eb:74:1c:26:2f:92:ce:45:67:56:2b:ff:63:fb:20:c3:55:a1: 6f:a1:cc:64:fe:7e:c4:a0:5e:0e:f1:16:94:78:cf:ca:b0:fa: 92:b9:de:39:c5:db:09:93:e0:60:fb:ad:2e:7e:27:d0:2e:63: 8e:02:74:9a:6d:a4:89:17:40:de:a6:ff:19:f8:65:27:27:b0: 4a:9d:2c:db:33:82:9c:85:dc:e3:15:3b:4e:00:b9:97:b1:71: 87:e1:73:07:a3:9f:c0:16:6f:f8:16:3a:22:b1:82:e6:4a:61: e1:af:63:e4:5f:4c:25:c3:82:b9:49:0f:fc:bb:3b:f9:94:74: cf:e7:64:4b:18:3c:b4:df:fb:06:66:6a:b6:bf:4a:f1:90:be: 70:4c:51:1e:a1:ab:dd:c8:1d:12:bd:04:d2:c6:f0:27:f5:6b: 01:6c:9a:64:11:f6:e5:d3:67:c1:37:a5:db:16:bf:7b:f7:0d: eb:54:7e:1b:35:a9:c1:c9:b7:70:2c:84:5f:57:3b:ed:95:57: cd:83:8d:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE3MEQxMTAvBgNVBAUTKDc4NzY2RDYwMkE0MEVGNTcwMTQyNjg0QTcyM0U4QTM0 MEM2RkYzODIwHhcNMjQwNTA1MDI1MzE2WhcNMjQwNTEyMDI1MzE2WjAYMRYwFAYD VQQDEw02NjM2ZjQ5ZC0wOTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlqFi/0wroTzNoiESbG7Ij45wCEALDWJ8hsvKrHvgs3ub0W9DcZO8yEug9vHq uTso24iIFgLJtmw3ktCcZwayLV6UjY2FSH+6i+elu2yqQBKvXyq21n2HDOzJg7dR tpi+GGxpN9aeFwiu9D2h1IY/bmRVjFAKxuA3DaSLM75wFwNXJBa3X3xK59gkjFGJ Or6kuefs2AxIliuT+ZeVkJwa043uhtNSV6nQVQkuuN4kAwS676KpaPgpgtqlqMDg hRuIPzzVyeXKQ1pYPGwBIvrNy3/6h2RbVoVfU15E7xFf4E1BRsrqBgUfQ768+EF4 ZjTSL1+2ccXlbJMyvycgrbaD+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmm3tDT v8Iieiy+AhzXBj3nG7aOMB8GA1UdIwQYMBaAFHh2bWAqQO9XAUJoSnI+ijQMb/OC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTcwRC8xMTE0QzlCQTU5 NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcxY0JRbWhLY2o2S05BeHY4 NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIWnRZQ3BBNzFjQlFtaEtjajZLTkF4djg0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTcwRC8xMTE0QzlCQTU5NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcx Y0JRbWhLY2o2S05BeHY4NEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdCaZeGIRTpzs96lT4w20XvlRfsRwxGuSdWWAWbQKBmjdy3Apj0RoJ 3HTnvK0eUmWx7Utb5WrrdBwmL5LORWdWK/9j+yDDVaFvocxk/n7EoF4O8RaUeM/K sPqSud45xdsJk+Bg+60ufifQLmOOAnSabaSJF0Depv8Z+GUnJ7BKnSzbM4Kchdzj FTtOALmXsXGH4XMHo5/AFm/4FjoisYLmSmHhr2PkX0wlw4K5SQ/8uzv5lHTP52RL GDy03/sGZmq2v0rxkL5wTFEeoavdyB0SvQTSxvAn9WsBbJpkEfbl02fBN6XbFr97 9w3rVH4bNanBybdwLIRfVzvtlVfNg40y -----END CERTIFICATE-----Generated at Sun May 5 03:47:41 2024 by rpki-client on console-fra.rpki-client.org