$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: K/iqdFBlyr3rfjrBSY9XALWcMPcZF9qHLDZyvizmDvc= Subject key identifier: 18:CA:EA:48:BF:C1:97:9B:E7:A6:5C:79:7C:FD:BB:9F:B7:61:3A:1C Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 15B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 15B0 Signing time: Mon 06 May 2024 17:20:09 +0000 Manifest this update: Mon 06 May 2024 17:20:08 +0000 Manifest next update: Mon 13 May 2024 17:20:08 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: d56lX2y29TRvJamIPSa0xM4edOZ7UzeYCNYke81oB1A=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: uXQRvvsqZIjyEM6+VI43Yc9j+t5wN6UVSeG6nj5NEDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5561 (0x15b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: May 6 17:20:08 2024 GMT Not After : May 13 17:20:08 2024 GMT Subject: CN=66391149-5e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:02:ee:13:36:0d:57:63:86:02:a0:a4:fd:ad: de:1e:a2:cd:d6:1d:7a:ea:63:43:f1:a4:d8:bb:d8: 35:0c:96:0f:5b:52:c1:64:0a:df:94:49:de:c7:cd: b0:13:1b:a0:6b:21:f3:f3:f4:30:f0:4b:64:35:7d: 72:0b:1b:bb:ff:a8:5d:0f:65:53:5f:a0:1c:f8:a6: 13:43:65:f3:87:51:d8:e8:23:90:93:1f:c3:c7:6c: 65:65:c1:5f:19:83:8e:25:6d:5e:c9:6c:7b:15:8e: 39:89:ca:cc:03:a3:80:ef:37:8d:8c:91:7d:5c:e2: f9:e0:91:7c:31:2d:29:57:67:91:f2:94:94:51:f9: 89:b8:8d:b1:94:12:24:2c:e2:a3:9c:a6:74:fb:a0: 99:99:0c:11:50:73:97:13:60:d8:bd:de:fe:98:0f: ae:0a:1f:15:8f:94:53:e5:dd:cc:b5:81:86:6b:0f: 2c:d9:cc:7c:71:f7:05:d5:06:75:ab:f2:90:43:06: e9:ba:60:a2:f7:d6:db:67:c0:43:9c:8f:70:fc:ad: 17:8a:1d:2e:9f:df:36:56:3d:d7:fc:16:e2:82:01: e1:7a:84:e0:e7:3a:a0:73:5c:c4:05:7c:96:e6:44: 03:c5:ef:b9:64:ad:fd:87:26:53:60:dc:6b:cf:02: 0f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:CA:EA:48:BF:C1:97:9B:E7:A6:5C:79:7C:FD:BB:9F:B7:61:3A:1C X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:e9:7a:e7:0f:3e:75:19:07:04:47:bb:52:59:e2:27:b5:c6: e4:a9:f6:e7:57:c3:3e:dc:e9:91:48:a5:4b:e9:f1:36:3b:4a: fb:97:8b:3e:43:30:c0:2e:ad:b5:e0:9f:9e:81:21:99:62:61: a7:53:13:6b:0c:c7:4f:34:5f:97:29:33:e7:85:41:98:68:ef: b4:98:3d:aa:10:f2:8c:a5:c9:58:ca:f0:c2:3b:45:fd:93:17: 8e:13:81:96:7a:0e:7f:b0:1c:bb:8b:7b:9f:b1:b9:c8:c6:4c: b4:9e:5c:11:b7:0d:b5:04:95:1b:45:ee:02:32:61:c2:4c:c1: f7:20:70:2e:5b:90:60:b4:54:94:56:16:4a:98:93:c4:2b:fe: 92:17:49:41:a9:ee:c1:a5:bf:a0:ee:c0:82:15:85:17:2e:91: 99:73:d0:47:c8:05:c7:dc:62:9d:c4:0c:06:99:f3:bd:3c:94: 65:88:04:7b:5e:34:3a:9d:e1:75:24:27:c6:44:43:e5:1b:9f: 15:61:b3:d5:5e:d6:1b:7f:d7:1e:d9:b1:12:b1:6c:d2:88:b5: 42:f7:34:9a:46:fb:3a:83:ae:aa:9e:29:bc:d2:75:44:8c:62: f6:6c:47:07:3b:66:9e:fd:78:22:65:c7:7a:d7:69:c1:23:b5: 3b:35:62:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjQwNTA2MTcyMDA4WhcNMjQwNTEzMTcyMDA4WjAYMRYwFAYD VQQDEw02NjM5MTE0OS01ZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQLuEzYNV2OGAqCk/a3eHqLN1h166mND8aTYu9g1DJYPW1LBZArflEnex82w ExugayHz8/Qw8EtkNX1yCxu7/6hdD2VTX6Ac+KYTQ2Xzh1HY6COQkx/Dx2xlZcFf GYOOJW1eyWx7FY45icrMA6OA7zeNjJF9XOL54JF8MS0pV2eR8pSUUfmJuI2xlBIk LOKjnKZ0+6CZmQwRUHOXE2DYvd7+mA+uCh8Vj5RT5d3MtYGGaw8s2cx8cfcF1QZ1 q/KQQwbpumCi99bbZ8BDnI9w/K0Xih0un982Vj3X/BbiggHheoTg5zqgc1zEBXyW 5kQDxe+5ZK39hyZTYNxrzwIPVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjK6ki/ wZeb56ZceXz9u5+3YTocMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY6XrnDz51GQcER7tSWeIntcbkqfbnV8M+3OmRSKVL6fE2O0r7l4s+ QzDALq214J+egSGZYmGnUxNrDMdPNF+XKTPnhUGYaO+0mD2qEPKMpclYyvDCO0X9 kxeOE4GWeg5/sBy7i3ufsbnIxky0nlwRtw21BJUbRe4CMmHCTMH3IHAuW5BgtFSU VhZKmJPEK/6SF0lBqe7Bpb+g7sCCFYUXLpGZc9BHyAXH3GKdxAwGmfO9PJRliAR7 XjQ6neF1JCfGREPlG58VYbPVXtYbf9ce2bESsWzSiLVC9zSaRvs6g66qnim80nVE jGL2bEcHO2ae/XgiZcd612nBI7U7NWKZ -----END CERTIFICATE-----Generated at Mon May 6 20:19:09 2024 by rpki-client on console-fra.rpki-client.org