$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: vBmFHF8kXy5ioKBC4rrd7zMJaDi0UsqmgdP2bRNVPbo= Subject key identifier: B4:3E:65:22:78:98:A2:A4:96:9E:51:72:B4:E2:64:CA:DD:80:FB:A4 Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 02D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 02C6 Signing time: Sun 05 May 2024 03:39:02 +0000 Manifest this update: Sun 05 May 2024 03:39:01 +0000 Manifest next update: Sun 12 May 2024 03:39:01 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: i5EU147DxzyFHGHf3DH8jh3atsFdygG9070XjtoTeck=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: HdSIlqkmEmGZWEcgoomAB6LsDN+Rlx7lECjDlBmF5a8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 721 (0x2d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: May 5 03:39:01 2024 GMT Not After : May 12 03:39:01 2024 GMT Subject: CN=6636ff55-ef8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:29:0b:36:70:50:94:4e:1c:e4:7c:01:0b:fc: d7:fb:80:93:09:10:e6:a7:b6:4a:b4:65:fa:38:77: fe:12:b8:2c:d7:88:86:2d:f2:43:60:46:23:42:4a: 92:c4:cc:0e:98:01:08:d0:3b:16:e9:8b:6b:d0:5d: 0a:05:e8:bd:51:17:1c:4d:05:0f:a1:92:e5:bb:a3: c8:5c:b1:79:ad:68:75:cf:84:a2:7b:db:fc:1f:8e: 14:5c:b3:cb:bf:3e:77:f0:50:04:b9:7f:41:7e:a1: 82:4e:f7:16:5d:41:75:64:16:f3:b3:31:6e:16:98: 56:c1:60:10:9d:a0:cb:51:b2:06:5d:43:8a:ed:3c: 29:38:d5:5c:18:ad:05:a5:ef:9c:de:83:0b:d8:e5: a2:9c:e0:c6:99:1d:1d:c6:ac:1c:52:0a:12:de:24: 6a:db:e4:15:2f:13:55:6d:43:3f:63:d3:ff:4b:60: 06:5b:15:79:0f:41:27:ba:2e:fc:d1:d2:42:c3:16: 99:54:19:c2:d8:f4:1a:a8:b7:48:68:e2:34:6e:a1: 65:42:22:6c:44:2b:05:6f:f1:6e:f3:13:86:e3:ce: 79:09:64:d5:e1:0b:3a:0e:4e:67:8e:b2:67:cb:ce: 10:8b:d7:4b:b3:a9:eb:1d:57:5f:1c:b8:76:c1:21: 25:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3E:65:22:78:98:A2:A4:96:9E:51:72:B4:E2:64:CA:DD:80:FB:A4 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:4b:d3:0c:28:9b:b9:c9:a4:95:84:a7:b4:ca:c0:c4:9c:3d: 91:70:8c:dd:d0:97:e7:89:96:b9:df:06:ca:e2:e2:13:a8:33: 35:e0:92:a8:8a:e2:37:9f:c5:ac:76:6e:4a:17:ed:b2:fa:0a: 26:7e:3b:6c:b6:c1:52:e1:3e:c6:09:93:bf:b8:d6:c3:bf:62: 4a:2a:16:1c:e7:1f:98:af:ce:08:be:0a:c0:50:9c:be:a6:e2: bf:98:a2:fc:a0:e1:93:5f:47:5d:44:2a:1e:73:69:18:62:c1: 8a:09:71:09:f7:25:ad:16:ea:28:a4:35:51:d6:86:9b:ee:17: a5:a9:a5:5f:64:6a:b4:cb:dd:89:85:a0:5d:97:aa:11:4a:3a: 23:6d:3d:10:d0:6c:c0:a4:1d:fd:1f:ff:2c:00:9c:29:86:f5: 80:74:05:b1:26:27:f9:76:91:e0:0a:6f:52:8b:07:24:9e:91: fa:45:2d:17:23:e1:97:f8:4e:c2:61:57:6b:7d:ab:c0:4b:78: 1c:1b:35:9f:57:5e:6f:4f:64:98:30:2f:0e:b3:bb:82:d9:29: f3:7c:7d:d0:0c:c3:eb:e6:f7:6c:10:c7:49:bd:96:64:b1:b7: 78:7c:45:58:42:0d:b9:84:2c:5c:2c:06:5d:4a:26:0a:c8:64: 8a:d6:bc:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjQwNTA1MDMzOTAxWhcNMjQwNTEyMDMzOTAxWjAYMRYwFAYD VQQDEw02NjM2ZmY1NS1lZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ykLNnBQlE4c5HwBC/zX+4CTCRDmp7ZKtGX6OHf+Ergs14iGLfJDYEYjQkqS xMwOmAEI0DsW6Ytr0F0KBei9URccTQUPoZLlu6PIXLF5rWh1z4Sie9v8H44UXLPL vz538FAEuX9BfqGCTvcWXUF1ZBbzszFuFphWwWAQnaDLUbIGXUOK7TwpONVcGK0F pe+c3oML2OWinODGmR0dxqwcUgoS3iRq2+QVLxNVbUM/Y9P/S2AGWxV5D0Enui78 0dJCwxaZVBnC2PQaqLdIaOI0bqFlQiJsRCsFb/Fu8xOG4855CWTV4Qs6Dk5njrJn y84Qi9dLs6nrHVdfHLh2wSEluQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQ+ZSJ4 mKKklp5RcrTiZMrdgPukMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAES9MMKJu5yaSVhKe0ysDEnD2RcIzd0JfniZa53wbK4uITqDM14JKo iuI3n8Wsdm5KF+2y+gomfjtstsFS4T7GCZO/uNbDv2JKKhYc5x+Yr84IvgrAUJy+ puK/mKL8oOGTX0ddRCoec2kYYsGKCXEJ9yWtFuoopDVR1oab7helqaVfZGq0y92J haBdl6oRSjojbT0Q0GzApB39H/8sAJwphvWAdAWxJif5dpHgCm9SiwcknpH6RS0X I+GX+E7CYVdrfavAS3gcGzWfV15vT2SYMC8Os7uC2SnzfH3QDMPr5vdsEMdJvZZk sbd4fEVYQg25hCxcLAZdSiYKyGSK1ryI -----END CERTIFICATE-----Generated at Sun May 5 04:34:53 2024 by rpki-client on console-fra.rpki-client.org