$ rpki-client -vvf rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft File: RCHzqdfkHW9Ht4b90-eojeQrB7k.mft (raw, json) Hash identifier: YN2hP7bifdcFEzNEtwxnJX/Kp+By48pKEvyF5++VTD8= Subject key identifier: 13:07:BA:3B:0B:BD:4D:57:D8:57:B0:1B:FA:52:B0:67:DD:53:A9:D3 Authority key identifier: 44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 Certificate issuer: /CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft Manifest number: 01DF Signing time: Tue 07 May 2024 04:18:25 +0000 Manifest this update: Tue 07 May 2024 04:18:25 +0000 Manifest next update: Tue 14 May 2024 04:18:25 +0000 Files and hashes: 1: RCHzqdfkHW9Ht4b90-eojeQrB7k.crl (hash: Oc4hc5H/lkfhgerUCquvtV3YqaJhE04f3n/Lu/J/L6Q=) 2: 0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa (hash: /oOoNmDzRISKeM4Zf/h9IiY6CXbr+vke1N2LNTUAy8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 04:18:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Validity Not Before: May 7 04:18:25 2024 GMT Not After : May 14 04:18:25 2024 GMT Subject: CN=6639ab91-c773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:91:46:32:a1:90:b8:74:1a:f3:70:7f:62:bb: a2:6c:dd:3a:30:6f:03:7b:27:cf:c6:8f:d2:56:90: c2:30:92:8a:e2:fa:68:60:9f:8b:06:92:a4:41:26: c6:06:d9:89:46:27:77:38:b7:1d:2a:2a:d4:a4:70: 02:1c:6e:f1:42:a9:6f:45:c7:7d:be:ab:ce:9b:3f: 2a:fa:f4:58:86:94:89:22:ed:2f:d3:f2:74:a9:c2: aa:4f:d3:13:5b:93:95:14:8f:2c:d6:54:d5:e6:65: b6:3b:fe:8d:8f:db:1e:b6:04:e1:ad:06:da:12:ac: 60:5b:fa:78:38:6f:48:7e:e1:ed:7d:34:f7:20:48: d7:43:18:06:37:60:80:31:19:f4:60:13:47:d3:16: 69:28:9f:59:62:f3:65:57:a1:83:cb:25:7e:8a:6f: 67:00:b6:3b:2b:0b:86:6b:2d:09:0f:4f:ed:3c:1b: d0:76:69:a5:40:32:dd:4a:f6:a9:49:4e:f3:f1:39: 97:87:59:9e:fb:21:dc:04:da:c4:21:56:76:3e:e7: d9:7d:f5:2a:92:9e:c1:f3:9f:c2:a2:20:a6:4c:67: 52:70:f4:9c:40:80:a2:e2:b5:c8:ed:1f:bc:cc:5a: a9:c7:24:94:bc:6f:94:c9:31:4a:5e:bb:ac:2e:9e: 93:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:07:BA:3B:0B:BD:4D:57:D8:57:B0:1B:FA:52:B0:67:DD:53:A9:D3 X509v3 Authority Key Identifier: keyid:44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c6:b6:0f:9d:9f:72:e2:c0:42:da:16:42:fc:cf:06:cb:1f: eb:b4:9c:9a:4f:3d:13:7e:d6:9a:ca:a1:69:d4:de:c4:4e:28: 9c:a6:83:18:f3:76:cd:3f:81:c6:d4:59:c2:ae:e6:72:0f:d2: 75:94:e1:6e:72:1e:fa:5e:30:e8:9b:51:95:e7:82:46:3f:eb: 94:0c:99:ee:36:b4:ac:70:24:58:1d:6b:b8:d4:2f:38:f4:52: dc:b2:45:2b:81:af:18:1c:ca:9d:86:2b:83:96:a0:c2:f0:eb: a2:ac:a8:6b:f0:52:7e:87:6c:ae:ee:47:9f:eb:ca:77:a7:5d: 6e:88:e5:b6:8b:a4:75:ff:56:62:6c:01:08:94:e1:33:0f:94: 18:5b:28:a7:d8:d4:96:50:c8:e5:bb:d4:3d:42:a1:5f:3d:a1: 7e:32:e6:21:45:7b:fa:84:1d:40:5b:be:fe:19:57:b5:26:17: c3:b7:cd:a0:bf:7e:8e:e7:60:47:7d:1e:e9:bb:49:db:78:b6: 2f:01:4d:6f:5f:1d:38:58:9f:6e:1a:45:8f:f0:fc:2a:49:c9: 08:ec:35:f2:7b:8c:eb:cd:6e:51:ec:ab:4d:20:73:1a:36:01: ed:d6:e9:5b:c5:3c:51:4c:7d:ec:15:2d:de:8f:41:7e:79:57: 42:74:3b:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ0MkExMTAvBgNVBAUTKDQ0MjFGM0E5RDdFNDFENkY0N0I3ODZGREQzRTdBODhE RTQyQjA3QjkwHhcNMjQwNTA3MDQxODI1WhcNMjQwNTE0MDQxODI1WjAYMRYwFAYD VQQDEw02NjM5YWI5MS1jNzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJFGMqGQuHQa83B/YruibN06MG8DeyfPxo/SVpDCMJKK4vpoYJ+LBpKkQSbG BtmJRid3OLcdKirUpHACHG7xQqlvRcd9vqvOmz8q+vRYhpSJIu0v0/J0qcKqT9MT W5OVFI8s1lTV5mW2O/6Nj9setgThrQbaEqxgW/p4OG9IfuHtfTT3IEjXQxgGN2CA MRn0YBNH0xZpKJ9ZYvNlV6GDyyV+im9nALY7KwuGay0JD0/tPBvQdmmlQDLdSvap SU7z8TmXh1me+yHcBNrEIVZ2PufZffUqkp7B85/CoiCmTGdScPScQICi4rXI7R+8 zFqpxySUvG+UyTFKXrusLp6T2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMHujsL vU1X2FewG/pSsGfdU6nTMB8GA1UdIwQYMBaAFEQh86nX5B1vR7eG/dPnqI3kKwe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDQyQS9BQjRFNTI0NEZD MzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hXOUh0NGI5MC1lb2plUXJC N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JDSHpxZGZrSFc5SHQ0YjkwLWVvamVRckI3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDQyQS9BQjRFNTI0NEZDMzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hX OUh0NGI5MC1lb2plUXJCN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKxrYPnZ9y4sBC2hZC/M8Gyx/rtJyaTz0TftaayqFp1N7ETiicpoMY 83bNP4HG1FnCruZyD9J1lOFuch76XjDom1GV54JGP+uUDJnuNrSscCRYHWu41C84 9FLcskUrga8YHMqdhiuDlqDC8OuirKhr8FJ+h2yu7kef68p3p11uiOW2i6R1/1Zi bAEIlOEzD5QYWyin2NSWUMjlu9Q9QqFfPaF+MuYhRXv6hB1AW77+GVe1JhfDt82g v36O52BHfR7pu0nbeLYvAU1vXx04WJ9uGkWP8PwqSckI7DXye4zrzW5R7KtNIHMa NgHt1ulbxTxRTH3sFS3ej0F+eVdCdDti -----END CERTIFICATE-----Generated at Tue May 7 05:39:51 2024 by rpki-client on console-fra.rpki-client.org