$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: VJMxu5R6h2yXNlOwFeEZUyLMNZEGn3ZpMo4nf80qI/E= Subject key identifier: 95:31:75:DC:09:B4:DF:B0:92:EA:36:E5:69:93:8C:C8:BC:44:F6:95 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1BEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1BB5 Signing time: Tue 30 Apr 2024 16:43:15 +0000 Manifest this update: Tue 30 Apr 2024 16:43:14 +0000 Manifest next update: Tue 07 May 2024 16:43:14 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: iEB24aIc+iL/2WTg3GhaTbV5GC343qMjbR/jRiFTbdc=) 2: 2981CBA8ED3011EEA9995C14C4F9AE02.roa (hash: uAAv9WJvOyfUOGVdORHVI1GEjUqWBHCTatqkltZeC0c=) 3: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: zu3sqebA98zj19JqYqTfO+wywvBD1HWpcoApYbXApVI=) 4: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: DtvxKj0Hyg1ZkY+rgK4KM0aAb9imIsk6lhgI64euGAk=) 5: E23BB7D0ED3011EEB06B3716C4F9AE02.roa (hash: EmwHuguXgTeY94E1MXb0NA1pFQTAwNRO8iH8oEY/30A=) 6: 9C4FABA09B8911EC826E9357C4F9AE02.roa (hash: hcj/Y6A+vhV7V9soBmH6xqhaMtWT/kmP2G633b6vvho=) 7: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: samdfIQKsVOCnCnPqc0Y/TwRroQITJu22UUG+KG6lis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7151 (0x1bef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Apr 30 16:43:14 2024 GMT Not After : May 7 16:43:14 2024 GMT Subject: CN=66311fa2-d935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:90:62:73:2b:a0:2f:dc:68:33:38:41:37:67: 07:9b:05:51:2d:80:01:89:ff:ec:f8:2e:d9:95:24: 3d:3f:77:dd:2c:e1:d3:90:b8:2c:12:ef:8b:36:21: c0:d7:c1:05:01:0e:13:7d:bc:64:5a:4c:83:5e:e8: 86:8f:91:6b:24:2a:17:1d:61:76:41:3b:35:58:15: 03:de:a8:50:b8:ea:e6:a5:dc:9e:4a:0d:7c:98:cb: 91:f2:b0:b1:d8:ea:36:41:5b:28:33:4f:e4:43:3a: 53:ac:6e:01:8a:1b:a7:14:d5:83:24:82:c1:14:de: 23:0a:82:b6:72:cd:12:a3:68:e4:55:f4:06:e8:11: 13:75:f1:6b:be:1f:88:a0:91:f3:5a:51:93:0c:87: 18:a5:e4:7c:cb:12:4a:10:2c:45:81:ed:c3:4b:5c: cb:3b:e7:85:e8:f0:00:d7:ff:cf:68:47:1d:55:85: 22:46:c4:b6:a3:f4:58:0d:ef:27:58:58:fc:18:f2: c2:79:2e:22:e5:b6:38:c2:96:fa:92:5f:80:22:25: 3e:3b:ce:6b:80:d8:df:0f:96:0f:48:03:1f:5d:b9: 35:ed:08:ab:e5:ae:6f:74:68:c2:7a:b6:97:db:28: c3:62:7f:bb:f3:18:31:0a:58:4a:3a:64:07:9e:9a: 58:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:31:75:DC:09:B4:DF:B0:92:EA:36:E5:69:93:8C:C8:BC:44:F6:95 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:d0:42:38:65:f6:bd:b2:af:2c:88:f5:27:17:b7:10:7c:9e: 5e:17:ea:15:79:c9:08:29:17:b3:eb:91:25:c9:50:f2:f2:1f: 6b:a2:49:ba:5f:e5:19:73:51:9d:a0:e6:ac:13:ef:52:f9:77: 91:d3:06:bd:d4:23:3e:1c:04:e7:3f:0a:76:63:b8:12:6a:be: a9:d4:22:4c:0a:6d:b8:63:2e:f8:39:b8:52:70:c8:5e:5a:56: 59:40:99:82:8f:9d:6f:48:87:22:ea:92:af:d6:c7:3c:db:c3: 63:82:4e:9c:b4:d8:fc:e0:94:07:3b:8b:9c:ec:5d:5d:6b:5b: 97:13:1d:8b:59:e7:96:75:46:a3:62:76:9f:1b:7b:0d:6a:2f: 67:b3:19:d2:91:cb:b0:35:47:58:1e:08:fa:8e:ce:e0:2d:dc: e6:a8:92:d8:6c:b4:96:b6:1f:0e:16:bd:40:02:30:5c:a1:e5: 3d:60:3d:7f:62:a7:bc:0d:4f:90:82:d4:11:89:67:4c:25:06: ff:d3:15:4c:5b:b8:71:03:22:7b:0e:36:0d:42:38:48:5c:85: 9e:4d:59:ba:a1:cd:b4:a3:fb:66:21:88:b4:72:a4:a3:14:09: 07:d0:e2:35:31:06:96:ca:dd:8c:57:a1:2f:2d:0e:6d:4d:69: 42:da:9e:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjQwNDMwMTY0MzE0WhcNMjQwNTA3MTY0MzE0WjAYMRYwFAYD VQQDEw02NjMxMWZhMi1kOTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5BicyugL9xoMzhBN2cHmwVRLYABif/s+C7ZlSQ9P3fdLOHTkLgsEu+LNiHA 18EFAQ4TfbxkWkyDXuiGj5FrJCoXHWF2QTs1WBUD3qhQuOrmpdyeSg18mMuR8rCx 2Oo2QVsoM0/kQzpTrG4BihunFNWDJILBFN4jCoK2cs0So2jkVfQG6BETdfFrvh+I oJHzWlGTDIcYpeR8yxJKECxFge3DS1zLO+eF6PAA1//PaEcdVYUiRsS2o/RYDe8n WFj8GPLCeS4i5bY4wpb6kl+AIiU+O85rgNjfD5YPSAMfXbk17Qir5a5vdGjCeraX 2yjDYn+78xgxClhKOmQHnppYCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUxddwJ tN+wkuo25WmTjMi8RPaVMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp0EI4Zfa9sq8siPUnF7cQfJ5eF+oVeckIKRez65ElyVDy8h9rokm6 X+UZc1GdoOasE+9S+XeR0wa91CM+HATnPwp2Y7gSar6p1CJMCm24Yy74ObhScMhe WlZZQJmCj51vSIci6pKv1sc828Njgk6ctNj84JQHO4uc7F1da1uXEx2LWeeWdUaj YnafG3sNai9nsxnSkcuwNUdYHgj6js7gLdzmqJLYbLSWth8OFr1AAjBcoeU9YD1/ Yqe8DU+QgtQRiWdMJQb/0xVMW7hxAyJ7DjYNQjhIXIWeTVm6oc20o/tmIYi0cqSj FAkH0OI1MQaWyt2MV6EvLQ5tTWlC2p4n -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:03 2024 by rpki-client on console-fra.rpki-client.org