$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: 0i601bdFQy30b1Apuka7TgqpX4LWIs6e2gJkfLBVokY= Subject key identifier: 7C:39:9F:C0:C5:EA:AF:AE:14:D5:E4:39:50:3E:6F:3F:B3:26:DA:9B Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0B6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0B63 Signing time: Thu 02 May 2024 19:40:00 +0000 Manifest this update: Thu 02 May 2024 19:39:59 +0000 Manifest next update: Thu 09 May 2024 19:39:59 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: oBRDpVQKp6pS2djBDekMXFRsI7MamLIPLu3DPtlx594=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: XeiiuxFkH6SuATXXDEdao70V+G6KNK3pgpHICGc+Hvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2925 (0xb6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: May 2 19:39:59 2024 GMT Not After : May 9 19:39:59 2024 GMT Subject: CN=6633ec10-6f9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:da:26:91:8e:d0:b2:ea:54:80:75:62:63:c2: f0:1f:e2:89:73:50:01:91:87:a2:23:aa:d9:4c:c5: 23:1a:cc:82:85:e4:08:b7:d5:4e:66:fe:90:df:75: f1:82:87:c8:f4:cc:c5:c1:bc:e6:b2:e8:19:dd:78: 84:e0:f6:ab:03:7c:9a:39:2c:46:7e:00:5b:16:a5: a4:f5:ba:31:03:10:63:18:28:79:b1:4d:81:18:4f: 07:24:d5:76:c7:b1:cf:77:d4:fe:26:3e:b3:4e:9a: 3c:e5:b3:e4:3a:00:e0:f8:dd:ec:e3:64:4c:c5:92: 18:2b:1f:31:9a:9c:de:15:5d:b7:b4:2e:10:25:25: f3:0f:b4:8b:79:88:f5:97:b8:0e:bd:56:2c:0e:57: db:56:53:54:03:3f:b1:02:07:fa:42:aa:97:cd:d7: 79:a9:a4:46:f9:9a:f7:06:b3:2a:9e:6e:66:a6:94: ca:fb:86:02:2e:c0:de:ac:3e:43:3e:67:fc:a2:a6: f1:83:07:d8:4a:bd:cb:03:43:67:c3:d5:a6:40:23: 72:c1:b3:cd:9c:86:27:c0:29:2e:57:d9:bb:80:ef: 3e:b7:fd:79:e5:d0:da:e8:2d:25:4a:26:98:9b:ef: 57:2b:be:64:f2:28:6c:24:e1:d3:4b:2d:f8:45:2f: b0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:39:9F:C0:C5:EA:AF:AE:14:D5:E4:39:50:3E:6F:3F:B3:26:DA:9B X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:79:ff:a3:91:23:33:5f:42:7a:25:e4:da:d9:7c:56:af:33: ed:cc:d6:48:f2:b2:19:58:0b:40:4f:7c:c8:30:6e:d1:5c:f3: ea:a8:b5:fe:78:7f:1d:62:0d:50:74:f6:0c:1d:04:18:cd:36: 73:e5:7f:13:37:f6:e2:4f:a3:04:bc:b1:5f:cd:eb:b7:5f:9d: b2:69:f7:7f:38:71:ce:06:e5:02:f2:8f:e5:bc:fd:6f:b2:7b: 34:d9:2a:7b:a3:18:3b:93:dc:43:25:2e:a6:7e:e7:1b:62:04: 49:be:05:a4:f4:be:06:c3:1c:35:97:3c:17:e2:a5:33:9a:b0: 7d:d0:48:bb:05:41:49:d1:b2:01:4b:86:a9:e0:b9:c6:1c:3f: a9:d5:ed:98:e0:85:c4:17:f7:c1:31:04:5a:7b:37:63:3a:e4: 63:cc:5a:5c:12:5e:28:b9:65:b2:84:42:0d:88:67:d3:9e:0a: 8f:db:b6:fe:b9:bc:14:16:77:1f:96:ee:33:15:32:0f:ba:ad: 1c:ea:75:6e:71:bd:27:a7:95:b2:e8:b1:57:6f:da:ab:ef:a5: 73:63:c8:fd:1a:cc:86:28:e1:b1:c1:90:50:64:1f:2d:0f:1f: f0:9d:4e:18:56:fc:2c:0b:53:0f:cc:9d:dc:7d:1b:ef:49:76: 54:40:81:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjQwNTAyMTkzOTU5WhcNMjQwNTA5MTkzOTU5WjAYMRYwFAYD VQQDEw02NjMzZWMxMC02ZjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtomkY7QsupUgHViY8LwH+KJc1ABkYeiI6rZTMUjGsyCheQIt9VOZv6Q33Xx gofI9MzFwbzmsugZ3XiE4ParA3yaOSxGfgBbFqWk9boxAxBjGCh5sU2BGE8HJNV2 x7HPd9T+Jj6zTpo85bPkOgDg+N3s42RMxZIYKx8xmpzeFV23tC4QJSXzD7SLeYj1 l7gOvVYsDlfbVlNUAz+xAgf6QqqXzdd5qaRG+Zr3BrMqnm5mppTK+4YCLsDerD5D Pmf8oqbxgwfYSr3LA0Nnw9WmQCNywbPNnIYnwCkuV9m7gO8+t/155dDa6C0lSiaY m+9XK75k8ihsJOHTSy34RS+weQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHw5n8DF 6q+uFNXkOVA+bz+zJtqbMB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsef+jkSMzX0J6JeTa2XxWrzPtzNZI8rIZWAtAT3zIMG7RXPPqqLX+ eH8dYg1QdPYMHQQYzTZz5X8TN/biT6MEvLFfzeu3X52yafd/OHHOBuUC8o/lvP1v sns02Sp7oxg7k9xDJS6mfucbYgRJvgWk9L4Gwxw1lzwX4qUzmrB90Ei7BUFJ0bIB S4ap4LnGHD+p1e2Y4IXEF/fBMQRaezdjOuRjzFpcEl4ouWWyhEINiGfTngqP27b+ ubwUFncflu4zFTIPuq0c6nVucb0np5Wy6LFXb9qr76VzY8j9GsyGKOGxwZBQZB8t Dx/wnU4YVvwsC1MPzJ3cfRvvSXZUQIEw -----END CERTIFICATE-----Generated at Thu May 2 20:50:27 2024 by rpki-client on console-fra.rpki-client.org