$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: KAy2Z0gcsuKa2MR8idoH8JBtLKEPBXIixZzeFWwbNgY= Subject key identifier: 6A:42:FD:DE:2B:5D:A3:F7:A7:DF:C2:C2:11:9F:45:A7:0B:53:08:93 Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 023A Signing time: Tue 07 May 2024 03:58:34 +0000 Manifest this update: Tue 07 May 2024 03:58:34 +0000 Manifest next update: Tue 14 May 2024 03:58:34 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: NmKT2oJpXSxckxKNQDr/paQdJDPP+1FUOqlSlm7Utuw=) 2: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: H4uvOPnOQR7kaTV0mxINyaPGqrlb9ZsfEdxZE+ZhLPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 03:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: May 7 03:58:34 2024 GMT Not After : May 14 03:58:34 2024 GMT Subject: CN=6639a6ea-e9a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:24:20:a2:36:a4:32:95:85:b3:0b:31:d3:f5: 00:e5:58:2f:79:09:74:d4:4a:dc:7c:97:98:66:55: 92:48:2b:05:3b:ad:8f:bf:b0:63:f3:96:a8:11:bd: 09:44:ce:98:65:91:26:2c:12:2e:73:d4:80:b5:7d: 96:0a:b6:55:aa:33:08:1f:f3:5f:6e:ff:05:71:82: 8f:e1:10:cc:15:35:fa:dc:50:5c:d5:dc:67:39:cc: e3:7c:eb:15:f9:e2:a0:10:b6:77:1a:64:ec:d7:2d: 24:04:e4:bc:0d:72:a8:e1:21:aa:c6:02:42:ff:0f: 1e:34:f3:ee:41:83:d9:25:7c:6f:3c:95:e1:6d:66: c4:92:ea:56:8f:d6:ed:1b:85:41:14:06:48:a2:f2: cf:ac:20:83:cc:da:91:65:0e:ec:80:d2:4d:39:0d: 1b:de:4b:cd:e6:da:97:ae:3c:cf:c7:bb:c0:46:49: bf:23:af:94:cc:c9:6e:25:25:57:37:68:0f:23:44: 03:5c:06:87:96:13:72:99:2c:17:34:39:33:df:10: ec:71:db:41:de:19:49:36:e5:16:9e:30:a5:a2:2b: 36:41:6b:9d:79:b0:1d:30:5a:4b:a2:0e:fe:df:18: 2f:c1:72:5a:69:27:29:89:3e:53:a1:92:89:97:46: d7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:42:FD:DE:2B:5D:A3:F7:A7:DF:C2:C2:11:9F:45:A7:0B:53:08:93 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:89:33:fb:de:f6:51:1a:ef:dd:76:77:e2:b2:fb:f6:60:da: 0f:0a:29:74:94:5f:d7:c2:a5:a1:eb:f1:bd:43:de:de:d5:1e: 58:67:ec:9e:d8:57:97:df:61:d5:c7:e3:66:72:47:35:b8:65: d5:40:77:fe:74:f1:28:61:ab:d2:0e:58:cc:f5:83:0e:39:80: af:58:97:7c:1d:4c:ff:fd:14:f9:f4:f6:e8:47:da:45:a2:54: 16:e4:19:c4:f1:2f:0b:5c:14:d3:2d:a8:57:74:ec:48:4a:63: 31:0a:44:a5:ae:7a:0f:1d:f6:19:b0:be:90:08:46:8c:b6:09: 0d:a6:76:38:19:e8:22:49:d4:aa:71:ba:8e:50:6b:3c:89:b9: 6d:fc:93:4a:38:d8:43:48:1f:e8:bf:db:3c:8d:ec:be:80:02: ee:33:59:4c:f4:9c:b3:63:ca:dc:83:d8:8c:fa:51:f7:32:d1: f4:a1:62:f4:59:2d:70:cd:41:1d:fe:4f:ca:08:f4:53:d9:5a: 5d:a9:84:3d:e6:a0:bd:21:a1:ca:b0:89:45:bb:d7:b0:eb:e0: 3c:db:5a:dc:bf:5c:a2:13:ff:b2:6d:2e:14:65:9e:c9:19:e9: 89:d4:cf:61:2b:81:ae:b8:13:db:18:4d:c3:bb:9a:75:4f:32: 57:6d:1e:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjQwNTA3MDM1ODM0WhcNMjQwNTE0MDM1ODM0WjAYMRYwFAYD VQQDEw02NjM5YTZlYS1lOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5SQgojakMpWFswsx0/UA5VgveQl01ErcfJeYZlWSSCsFO62Pv7Bj85aoEb0J RM6YZZEmLBIuc9SAtX2WCrZVqjMIH/Nfbv8FcYKP4RDMFTX63FBc1dxnOczjfOsV +eKgELZ3GmTs1y0kBOS8DXKo4SGqxgJC/w8eNPPuQYPZJXxvPJXhbWbEkupWj9bt G4VBFAZIovLPrCCDzNqRZQ7sgNJNOQ0b3kvN5tqXrjzPx7vARkm/I6+UzMluJSVX N2gPI0QDXAaHlhNymSwXNDkz3xDscdtB3hlJNuUWnjClois2QWudebAdMFpLog7+ 3xgvwXJaaScpiT5ToZKJl0bXQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpC/d4r XaP3p9/CwhGfRacLUwiTMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZiTP73vZRGu/ddnfisvv2YNoPCil0lF/XwqWh6/G9Q97e1R5YZ+ye 2FeX32HVx+Nmckc1uGXVQHf+dPEoYavSDljM9YMOOYCvWJd8HUz//RT59PboR9pF olQW5BnE8S8LXBTTLahXdOxISmMxCkSlrnoPHfYZsL6QCEaMtgkNpnY4GegiSdSq cbqOUGs8iblt/JNKONhDSB/ov9s8jey+gALuM1lM9JyzY8rcg9iM+lH3MtH0oWL0 WS1wzUEd/k/KCPRT2VpdqYQ95qC9IaHKsIlFu9ew6+A821rcv1yiE/+ybS4UZZ7J GemJ1M9hK4GuuBPbGE3Du5p1TzJXbR73 -----END CERTIFICATE-----Generated at Tue May 7 04:34:50 2024 by rpki-client on console-fra.rpki-client.org