$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: UX1GwS4kuGgMSpIVK70cBmnJSpmLMJa3lLbuXqkXZxI= Subject key identifier: 4B:59:2C:D4:70:B0:76:7D:2E:A1:62:87:81:D7:52:24:0B:2B:F6:39 Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 0122 Signing time: Fri 03 May 2024 05:16:24 +0000 Manifest this update: Fri 03 May 2024 05:16:23 +0000 Manifest next update: Fri 10 May 2024 05:16:23 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: 27LL6wBH2Bvb64TunfdO7T4e8qUwpKtPgI4LzTh6RnA=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: knqc7THQRsHZbyl0QP6DMcWGNM0bKvX1iDSiB2h5rO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: May 3 05:16:23 2024 GMT Not After : May 10 05:16:23 2024 GMT Subject: CN=66347327-966a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:02:5a:49:23:20:65:e3:7a:c2:33:b1:4a: 2a:29:ff:7c:d4:4a:3b:27:0f:0e:08:e9:71:02:7c: 52:af:24:75:a2:a5:72:0b:62:4a:42:f1:09:76:ef: 09:4e:34:16:c1:a8:ee:f2:b6:39:d6:df:75:5a:8e: 8d:8a:92:c4:0a:08:dc:75:4e:67:4e:d9:90:85:66: 35:6a:9f:33:0d:68:f9:43:fb:0d:4b:2c:0b:ee:25: b6:d2:39:3c:68:01:06:65:f8:20:44:49:ee:57:17: 7b:76:b7:d5:87:00:cb:7b:8e:12:08:26:20:58:ac: 1b:13:b0:8d:f2:6c:aa:67:e9:1c:cd:3d:f0:4e:35: ff:68:66:ca:79:ea:4a:d1:f8:78:e4:c7:fc:c4:0e: 14:63:54:5b:be:d9:ab:7b:3a:b9:2e:8b:75:0d:7b: 96:b4:ef:ce:bc:4c:b7:da:74:2e:70:76:56:7c:ee: 77:8c:68:22:d4:a8:7e:2c:5c:34:2d:2c:5c:67:20: 45:05:50:13:81:55:a8:f5:56:bf:02:41:fc:5a:1f: 90:19:c4:c5:4a:9b:35:6b:62:99:7b:0a:f1:68:02: 56:39:d8:3e:70:6c:9c:55:25:1f:f2:90:f8:36:ce: 7d:56:0e:0d:a9:20:3a:b2:03:19:52:cd:da:15:a0: 20:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:59:2C:D4:70:B0:76:7D:2E:A1:62:87:81:D7:52:24:0B:2B:F6:39 X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:4a:5e:27:be:d8:44:e6:e6:2a:8e:06:5d:92:69:99:85:e4: eb:a9:03:47:e3:a6:4a:7f:75:3d:32:6c:0f:f1:c9:db:84:89: 67:9b:6e:c4:cc:4c:70:47:6c:9a:59:c5:2b:8d:0c:77:51:7e: 1d:f9:3b:c8:a1:2a:c9:6b:b2:93:cd:9b:38:56:c6:0e:ae:b1: da:16:df:1e:4c:38:16:4a:bb:b0:ca:73:f1:0d:76:33:00:ac: 30:f3:6e:f3:3e:48:68:93:fa:ab:7e:2f:e2:8a:b7:e1:95:82: 83:28:f9:d9:2d:f3:9e:f2:b8:c7:eb:50:57:22:95:1f:89:c2: a1:fa:ef:1d:34:3e:00:86:26:af:7e:e4:08:54:0c:5c:60:da: aa:a8:74:f8:08:aa:fe:46:b1:59:e0:08:f7:b6:97:77:8e:d9: 3b:41:f9:95:89:a1:42:74:19:11:28:8a:b3:81:54:51:76:b4: e2:35:2d:33:12:5f:06:1f:2c:05:14:4d:22:60:46:05:ef:b4: a4:b1:65:b4:b7:85:d0:84:d2:55:e1:1b:b3:8b:09:c9:0a:15: 81:13:4c:22:c4:16:30:15:48:d0:49:3f:8b:f4:0f:00:a3:5b: 5e:50:67:fd:50:e7:9a:5c:af:3b:6c:a1:47:a3:89:d9:e4:7a: 01:7c:c1:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjQwNTAzMDUxNjIzWhcNMjQwNTEwMDUxNjIzWjAYMRYwFAYD VQQDEw02NjM0NzMyNy05NjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF0CWkkjIGXjesIzsUoqKf981Eo7Jw8OCOlxAnxSryR1oqVyC2JKQvEJdu8J TjQWwaju8rY51t91Wo6NipLECgjcdU5nTtmQhWY1ap8zDWj5Q/sNSywL7iW20jk8 aAEGZfggREnuVxd7drfVhwDLe44SCCYgWKwbE7CN8myqZ+kczT3wTjX/aGbKeepK 0fh45Mf8xA4UY1Rbvtmrezq5Lot1DXuWtO/OvEy32nQucHZWfO53jGgi1Kh+LFw0 LSxcZyBFBVATgVWo9Va/AkH8Wh+QGcTFSps1a2KZewrxaAJWOdg+cGycVSUf8pD4 Ns59Vg4NqSA6sgMZUs3aFaAg8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtZLNRw sHZ9LqFih4HXUiQLK/Y5MB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWSl4nvthE5uYqjgZdkmmZheTrqQNH46ZKf3U9MmwP8cnbhIlnm27E zExwR2yaWcUrjQx3UX4d+TvIoSrJa7KTzZs4VsYOrrHaFt8eTDgWSruwynPxDXYz AKww827zPkhok/qrfi/iirfhlYKDKPnZLfOe8rjH61BXIpUficKh+u8dND4Ahiav fuQIVAxcYNqqqHT4CKr+RrFZ4Aj3tpd3jtk7QfmViaFCdBkRKIqzgVRRdrTiNS0z El8GHywFFE0iYEYF77SksWW0t4XQhNJV4RuziwnJChWBE0wixBYwFUjQST+L9A8A o1teUGf9UOeaXK87bKFHo4nZ5HoBfMGT -----END CERTIFICATE-----Generated at Fri May 3 06:28:40 2024 by rpki-client on console-fra.rpki-client.org