$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: zNNzs9lzTcSFxg6vClWD5spHH3fh7mXve9CF1CWOe5g= Subject key identifier: 5E:B2:7F:25:FE:67:EB:42:5A:48:D7:93:04:10:57:18:A7:6C:9A:C2 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 02FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 02F7 Signing time: Tue 07 May 2024 03:12:02 +0000 Manifest this update: Tue 07 May 2024 03:12:01 +0000 Manifest next update: Tue 14 May 2024 03:12:01 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: Wy9zSs2ldx254Y9HQPutmzdAoLvleZWzbgSgmsc/fHw=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: FnRQpRezw460SfJT2VeK+2OMLg8q10iYbDYOs9JZ0ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 762 (0x2fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: May 7 03:12:01 2024 GMT Not After : May 14 03:12:01 2024 GMT Subject: CN=66399c02-b5eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:aa:e6:64:0e:81:01:96:60:43:ec:77:f2:49: 7e:11:36:fd:38:29:04:8c:7a:a0:51:59:06:22:2d: e8:3f:d4:bb:31:9c:f8:3e:36:57:fe:7c:d4:a7:b7: be:60:6a:c9:98:c0:0e:cb:b0:0b:de:7e:a8:3b:32: f0:3f:ee:9f:ab:ac:51:db:32:4b:89:0c:b3:82:c2: 4f:4d:a6:11:8f:19:a6:26:c3:5a:e5:41:3e:29:53: 6c:dd:bf:aa:53:c5:52:36:40:40:f8:37:20:c6:5b: 21:09:4d:21:5f:af:38:cc:bd:8c:76:4b:95:40:05: 04:be:69:f6:73:1e:84:75:14:5a:04:c6:46:cb:24: 11:58:7a:22:7f:08:cf:ea:a4:7a:c5:1f:21:af:1e: 8e:07:81:d0:c1:f8:4f:ef:2b:19:6a:46:31:d0:9d: f8:cd:be:10:c2:48:9c:0a:bb:5b:5a:8f:ad:fe:46: 63:c4:ac:89:69:c3:1c:f9:a3:05:18:4f:f6:ec:16: ab:01:67:66:f0:29:03:a9:3f:c7:a5:56:d8:f4:0e: 78:79:49:08:ec:3b:bf:ec:a3:7c:ee:db:c9:62:d2: 14:5a:6b:6f:97:42:65:a9:cb:e9:df:ea:cc:79:c5: 53:57:dc:7d:8e:b1:de:a8:45:3c:cf:47:37:0d:34: ed:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B2:7F:25:FE:67:EB:42:5A:48:D7:93:04:10:57:18:A7:6C:9A:C2 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:70:55:6b:ed:75:5b:07:0d:37:e8:e2:89:d8:9e:74:f9:e0: 78:27:a0:6f:72:30:c6:84:ac:96:84:5b:fb:c0:76:f1:2a:f5: 3a:43:e2:45:04:e8:9a:22:b9:4b:1d:61:0b:65:95:11:0f:e3: 54:1d:97:67:c2:a1:ad:f3:40:83:75:71:68:a8:de:76:32:11: 8c:cb:27:b1:82:89:9a:4f:b3:89:36:dc:72:57:f7:ef:32:21: c8:4a:2c:56:75:cb:83:d6:35:4e:0d:6e:00:23:19:45:54:3f: c4:6b:d0:20:6a:e4:d9:d9:f7:cd:4f:52:30:f2:13:83:9d:40: dd:4e:41:43:aa:d6:4c:fd:98:02:c5:9a:c7:51:4b:75:a9:c9: 0d:0d:f8:fc:41:a1:35:24:5f:1c:ac:af:6e:7e:e7:f6:c8:69: 8c:9b:e0:09:ad:4f:25:22:ae:43:1b:69:2d:d0:45:25:61:ee: b6:01:d1:21:01:f2:64:31:44:4c:d5:31:4b:2b:31:f4:82:f1: 09:ca:68:93:65:ff:e5:70:e3:d5:75:3c:c2:73:00:c0:57:10: a6:f4:52:4d:08:20:34:b7:83:2a:97:f8:8b:8e:48:22:d9:26: 58:b1:e7:29:3f:b5:4e:e0:e3:c2:62:da:b9:67:10:41:0d:69: ec:ca:e6:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjQwNTA3MDMxMjAxWhcNMjQwNTE0MDMxMjAxWjAYMRYwFAYD VQQDEw02NjM5OWMwMi1iNWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06rmZA6BAZZgQ+x38kl+ETb9OCkEjHqgUVkGIi3oP9S7MZz4PjZX/nzUp7e+ YGrJmMAOy7AL3n6oOzLwP+6fq6xR2zJLiQyzgsJPTaYRjxmmJsNa5UE+KVNs3b+q U8VSNkBA+DcgxlshCU0hX684zL2MdkuVQAUEvmn2cx6EdRRaBMZGyyQRWHoifwjP 6qR6xR8hrx6OB4HQwfhP7ysZakYx0J34zb4QwkicCrtbWo+t/kZjxKyJacMc+aMF GE/27BarAWdm8CkDqT/HpVbY9A54eUkI7Du/7KN87tvJYtIUWmtvl0Jlqcvp3+rM ecVTV9x9jrHeqEU8z0c3DTTtLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6yfyX+ Z+tCWkjXkwQQVxinbJrCMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWcFVr7XVbBw036OKJ2J50+eB4J6BvcjDGhKyWhFv7wHbxKvU6Q+JF BOiaIrlLHWELZZURD+NUHZdnwqGt80CDdXFoqN52MhGMyyexgomaT7OJNtxyV/fv MiHISixWdcuD1jVODW4AIxlFVD/Ea9AgauTZ2ffNT1Iw8hODnUDdTkFDqtZM/ZgC xZrHUUt1qckNDfj8QaE1JF8crK9ufuf2yGmMm+AJrU8lIq5DG2kt0EUlYe62AdEh AfJkMURM1TFLKzH0gvEJymiTZf/lcOPVdTzCcwDAVxCm9FJNCCA0t4Mql/iLjkgi 2SZYsecpP7VO4OPCYtq5ZxBBDWnsyubj -----END CERTIFICATE-----Generated at Tue May 7 03:53:37 2024 by rpki-client on console-fra.rpki-client.org