$ rpki-client -vvf rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft File: 2QhMrcO-yMIAxalrcu2v1KAOrug.mft (raw, json) Hash identifier: MySjeyC6umi/8OqiO84WOfbz8UpeBubarv+5XCZztCM= Subject key identifier: 18:56:7F:10:A8:71:C8:01:73:C6:83:89:75:96:88:27:EA:D5:5E:FF Authority key identifier: D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 Certificate issuer: /CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft Manifest number: 017F Signing time: Sun 05 May 2024 04:52:01 +0000 Manifest this update: Sun 05 May 2024 04:52:01 +0000 Manifest next update: Sun 12 May 2024 04:52:01 +0000 Files and hashes: 1: 2QhMrcO-yMIAxalrcu2v1KAOrug.crl (hash: dzxABrivyTMRVVW6j1H3F2dy+glpIezGJCI0ZH0WfxQ=) 2: 00724F9621F111ED93774B6EC4F9AE02.roa (hash: kHZ83uQd4P0Aq4GdrhXsgOSk69yPjkOBgA9w2SOMuKk=) 3: 5A761D9828F811ED8E18EF15C4F9AE02.roa (hash: p1dsoxik1EuGS2f7npp7naDndT+8ChWr/QkHH7k/7Hg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Validity Not Before: May 5 04:52:01 2024 GMT Not After : May 12 04:52:01 2024 GMT Subject: CN=66371071-162c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f9:ca:6d:3e:af:26:ce:51:f5:66:ee:97:7e: 03:6f:d5:b0:28:d8:ef:d3:bb:f1:e0:2d:71:be:ec: f4:02:65:b6:07:12:f8:53:3b:72:2c:ba:38:16:1b: 35:36:a0:34:21:36:16:9a:62:b4:cc:e9:a1:42:56: 41:35:58:da:71:48:f4:04:8f:35:a5:10:80:1f:ac: 74:63:54:41:48:c9:55:b2:55:5f:01:13:f1:48:79: d2:22:d8:44:21:c8:38:c9:cb:27:f7:17:42:44:66: 06:9d:8e:fb:08:b3:fa:a5:50:d7:7d:25:f3:66:49: 90:9a:8b:b1:e3:a7:20:e9:b2:70:fb:3e:6f:d1:7d: e4:ff:f4:19:53:f7:ad:aa:72:22:bd:f2:c1:a3:bb: 7c:73:39:9f:62:ae:32:d2:e7:50:0a:26:7d:70:1f: 6b:a0:79:d7:65:11:93:27:f1:b2:d4:23:43:fc:2a: c2:5a:ac:f5:17:7a:8a:74:53:9b:e3:66:d8:44:52: 4c:80:41:a9:79:04:35:b6:29:7b:19:6d:6e:e8:cf: da:3d:ad:f4:70:29:08:f0:cd:c8:50:7f:7f:a4:db: f1:6d:77:04:a9:4b:78:08:19:7d:b2:02:a2:84:2c: cf:57:9c:57:8f:b2:fd:93:87:61:d4:82:5c:40:f3: f2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:56:7F:10:A8:71:C8:01:73:C6:83:89:75:96:88:27:EA:D5:5E:FF X509v3 Authority Key Identifier: keyid:D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:5f:40:57:a7:31:2e:e3:2e:64:5e:98:a6:8b:c9:18:24:20: f4:7b:ca:d9:44:b1:cf:40:a6:56:39:47:6a:9b:1c:d7:b4:fd: 57:b3:6b:00:e7:12:d1:06:82:1d:fd:aa:21:10:38:ac:33:89: 59:ee:ef:1c:c5:6a:bc:da:d7:1a:2b:37:5d:53:3f:06:a6:8c: a5:f9:cb:f3:15:7b:61:e3:8f:26:4a:45:3f:65:35:4e:71:77: fd:2e:87:fb:29:de:e9:80:27:7f:4d:f1:45:24:a1:e8:54:6a: 17:28:94:8f:7b:36:bb:df:4a:22:a8:8d:9e:e2:30:5b:d5:10: bf:bd:89:9d:b1:b8:45:60:08:1a:d2:51:c2:02:3a:b6:d6:d2: a4:24:e7:70:c5:05:c0:b8:e0:70:5b:73:be:74:25:e2:4b:92: 75:41:47:bb:23:4c:5c:f0:f0:69:7a:27:03:c6:36:a2:5d:23: d7:86:35:38:9e:d0:41:a6:8b:92:dc:f6:ca:dd:26:df:e2:a6: 03:5c:da:3a:6e:28:d9:cc:7b:23:02:15:ee:5a:01:e4:43:37: 5c:c8:70:f7:2c:4b:75:9f:de:c2:91:80:5e:8a:08:1d:77:69: b4:5d:85:30:01:19:8e:61:bf:9d:c6:44:a8:f6:d9:c7:46:78: 2c:8a:a7:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5RjExMTAvBgNVBAUTKEQ5MDg0Q0FEQzNCRUM4QzIwMEM1QTk2QjcyRURBRkQ0 QTAwRUFFRTgwHhcNMjQwNTA1MDQ1MjAxWhcNMjQwNTEyMDQ1MjAxWjAYMRYwFAYD VQQDEw02NjM3MTA3MS0xNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfnKbT6vJs5R9Wbul34Db9WwKNjv07vx4C1xvuz0AmW2BxL4UztyLLo4Fhs1 NqA0ITYWmmK0zOmhQlZBNVjacUj0BI81pRCAH6x0Y1RBSMlVslVfARPxSHnSIthE Icg4ycsn9xdCRGYGnY77CLP6pVDXfSXzZkmQmoux46cg6bJw+z5v0X3k//QZU/et qnIivfLBo7t8czmfYq4y0udQCiZ9cB9roHnXZRGTJ/Gy1CND/CrCWqz1F3qKdFOb 42bYRFJMgEGpeQQ1til7GW1u6M/aPa30cCkI8M3IUH9/pNvxbXcEqUt4CBl9sgKi hCzPV5xXj7L9k4dh1IJcQPPyLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhWfxCo ccgBc8aDiXWWiCfq1V7/MB8GA1UdIwQYMBaAFNkITK3DvsjCAMWpa3Ltr9SgDq7o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTlGMS82OTVGOTNGRTIx RUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlNSUF4YWxyY3UydjFLQU9y dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaE1yY08teU1JQXhhbHJjdTJ2MUtBT3J1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTlGMS82OTVGOTNGRTIxRUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlN SUF4YWxyY3UydjFLQU9ydWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEX0BXpzEu4y5kXpimi8kYJCD0e8rZRLHPQKZWOUdqmxzXtP1Xs2sA 5xLRBoId/aohEDisM4lZ7u8cxWq82tcaKzddUz8Gpoyl+cvzFXth448mSkU/ZTVO cXf9Lof7Kd7pgCd/TfFFJKHoVGoXKJSPeza730oiqI2e4jBb1RC/vYmdsbhFYAga 0lHCAjq21tKkJOdwxQXAuOBwW3O+dCXiS5J1QUe7I0xc8PBpeicDxjaiXSPXhjU4 ntBBpouS3PbK3Sbf4qYDXNo6bijZzHsjAhXuWgHkQzdcyHD3LEt1n97CkYBeiggd d2m0XYUwARmOYb+dxkSo9tnHRngsiqeo -----END CERTIFICATE-----Generated at Sun May 5 05:21:57 2024 by rpki-client on console-fra.rpki-client.org