$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: PoRdNsPUh6bKeNTtEY0w6IzRpXK5tm110mPXXx9yU54= Subject key identifier: BC:5F:22:F8:0D:EE:72:B6:DB:00:0F:75:B4:47:37:A9:D1:E0:2E:E9 Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1CE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1CCE Signing time: Thu 02 May 2024 16:35:38 +0000 Manifest this update: Thu 02 May 2024 16:35:37 +0000 Manifest next update: Thu 09 May 2024 16:35:37 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: p7x64RwlNFlFb3se+90gveLqDRHceD1K7211n2dDO5k=) 2: 4865DD00A13B11E687921078C4F9AE02.roa (hash: l4TIlLgUtanRqCnFA7wAF3Zw9sbQUKuQo+OfishIyNI=) 3: 1D57FF40A01311E684546521C4F9AE02.roa (hash: PuGABu2c1P/wehIlvOPuKzUknEfhWkuOZcdE34NreFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7393 (0x1ce1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: May 2 16:35:37 2024 GMT Not After : May 9 16:35:37 2024 GMT Subject: CN=6633c0da-4576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2f:0f:59:77:bf:f6:a8:bc:d1:13:02:cd:44: d2:38:e9:b0:78:3a:2b:80:da:96:65:3d:80:5c:43: 7a:d7:a2:c6:1e:53:a3:44:91:fc:47:d6:70:98:c6: 27:70:d0:6f:4f:05:88:ef:fc:a5:2f:cd:2d:4c:71: 8e:6f:b5:57:d9:e6:8a:42:55:52:68:b0:da:82:91: 5a:09:c5:06:53:6e:cf:90:80:9f:6f:ed:6d:25:f9: 6b:e1:bb:cf:41:3c:7f:52:96:ef:f1:fd:aa:b7:cd: ca:5e:8b:3c:41:10:fa:6e:42:8e:45:c7:34:28:5f: 21:e7:9e:f2:11:dc:d9:a0:79:8b:53:da:08:e0:ae: 59:f9:55:a8:fb:54:82:6f:97:9d:98:55:6d:0a:cf: 7d:06:1c:16:ea:01:ab:43:6e:d3:b7:6b:16:45:89: ad:de:4a:71:c0:fe:66:12:0c:de:29:6c:77:c2:3e: 28:18:46:3a:57:66:2a:60:cd:08:5c:2d:51:80:6d: cf:76:46:a0:75:4f:51:08:99:21:d3:3f:0b:27:06: 92:49:ef:0d:c4:7c:d5:41:2b:17:75:f3:02:42:41: d6:f4:52:44:b3:3b:62:0e:d9:c2:e4:99:60:dc:75: 02:b8:93:ba:fa:1a:b2:9e:e8:1a:e7:ac:49:00:52: d7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5F:22:F8:0D:EE:72:B6:DB:00:0F:75:B4:47:37:A9:D1:E0:2E:E9 X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:94:aa:f8:da:d1:55:fd:95:09:1e:a5:d4:32:81:06:de:8e: 56:e5:30:5a:e1:6c:c2:8f:51:01:4c:cf:35:5b:71:8d:9f:77: 16:70:b3:97:0d:d0:20:7a:20:50:99:2a:49:a2:6c:01:b3:64: f6:1a:68:ba:49:0d:1e:e7:a1:19:1f:30:56:54:02:05:8a:a6: d6:65:1d:40:32:06:bc:38:c1:6d:d1:7d:30:49:ae:53:e2:8b: 66:d3:e3:3e:49:e4:b9:43:e5:ed:f9:47:9a:2a:4e:be:6b:5f: dd:69:9b:71:5f:91:06:52:ed:4b:72:cd:00:55:14:3a:96:9f: fb:41:91:42:50:90:9a:7d:de:a9:11:73:f2:3b:60:c3:78:7c: b4:1d:fa:df:b4:28:f4:9c:c6:01:f3:8a:c1:5f:07:8f:86:e6: 24:5d:88:18:28:c6:4d:aa:b7:8d:27:c4:54:c4:30:aa:e7:e4: 7c:cf:3f:d0:68:58:73:bf:94:39:6a:6c:b1:34:ca:52:4b:49: c9:1e:f0:51:60:69:de:08:58:5d:ab:89:f7:92:37:fa:6c:01: 7f:5e:fa:b9:35:17:d7:8b:23:65:7b:f1:42:ab:21:ea:5c:a3: 57:37:c0:58:0a:96:f7:7b:8b:62:8d:ba:46:e5:91:51:99:c0: 51:db:83:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjQwNTAyMTYzNTM3WhcNMjQwNTA5MTYzNTM3WjAYMRYwFAYD VQQDEw02NjMzYzBkYS00NTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArC8PWXe/9qi80RMCzUTSOOmweDorgNqWZT2AXEN616LGHlOjRJH8R9ZwmMYn cNBvTwWI7/ylL80tTHGOb7VX2eaKQlVSaLDagpFaCcUGU27PkICfb+1tJflr4bvP QTx/Upbv8f2qt83KXos8QRD6bkKORcc0KF8h557yEdzZoHmLU9oI4K5Z+VWo+1SC b5edmFVtCs99BhwW6gGrQ27Tt2sWRYmt3kpxwP5mEgzeKWx3wj4oGEY6V2YqYM0I XC1RgG3PdkagdU9RCJkh0z8LJwaSSe8NxHzVQSsXdfMCQkHW9FJEsztiDtnC5Jlg 3HUCuJO6+hqynuga56xJAFLXpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxfIvgN 7nK22wAPdbRHN6nR4C7pMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjlKr42tFV/ZUJHqXUMoEG3o5W5TBa4WzCj1EBTM81W3GNn3cWcLOX DdAgeiBQmSpJomwBs2T2Gmi6SQ0e56EZHzBWVAIFiqbWZR1AMga8OMFt0X0wSa5T 4otm0+M+SeS5Q+Xt+UeaKk6+a1/daZtxX5EGUu1Lcs0AVRQ6lp/7QZFCUJCafd6p EXPyO2DDeHy0HfrftCj0nMYB84rBXwePhuYkXYgYKMZNqreNJ8RUxDCq5+R8zz/Q aFhzv5Q5amyxNMpSS0nJHvBRYGneCFhdq4n3kjf6bAF/Xvq5NRfXiyNle/FCqyHq XKNXN8BYCpb3e4tijbpG5ZFRmcBR24Pt -----END CERTIFICATE-----Generated at Thu May 2 17:43:07 2024 by rpki-client on console-fra.rpki-client.org