$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: 2SWkjrgtIk46HGxtSJQ6Epl8GBN1/sLf0azaxpTMlXw= Subject key identifier: C4:17:56:C5:C1:24:02:13:19:C0:23:D8:A5:F9:36:36:F3:32:E6:94 Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 253F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 252E Signing time: Sat 04 May 2024 16:04:09 +0000 Manifest this update: Sat 04 May 2024 16:04:08 +0000 Manifest next update: Sat 11 May 2024 16:04:08 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: Fh8XIRyGEVFOs1dfXwd4i8k+3+6BHOHidZta2fErOKQ=) 2: 341F127A553C11E78691D52BC4F9AE02.roa (hash: 8X+x3LlikAlMNq0qZjdxxF001f12N0qrp8xYT/hgJaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9535 (0x253f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: May 4 16:04:08 2024 GMT Not After : May 11 16:04:08 2024 GMT Subject: CN=66365c78-0fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a0:70:97:65:d3:f2:7f:92:08:2d:cd:62:7b: 12:b6:4e:07:3e:57:0b:37:b1:2c:5c:4e:10:43:93: be:8e:c0:8e:06:b8:60:a3:e7:2d:ec:3e:c4:2a:4a: ee:e9:98:e4:c5:d8:b3:b0:7a:b1:45:d1:57:1b:5a: 67:51:87:4b:34:66:1e:6d:a2:d5:f5:cb:b8:7e:ab: c2:ea:73:4e:22:6f:91:f4:1b:be:8f:04:16:d5:84: 8f:34:1b:39:34:63:69:02:3e:a1:51:cc:7f:0b:8c: 28:49:48:52:bb:e2:04:7f:4a:c4:5f:0d:4a:ce:1b: bc:2d:d1:99:74:0e:4a:63:e0:6d:fc:d3:83:ff:85: 66:5b:27:58:f1:73:44:c7:a0:ba:89:2e:17:ac:0f: 49:ee:34:d1:f6:a1:94:54:dc:f6:34:3f:76:71:ee: 08:77:d6:31:f2:4b:5f:26:2d:c4:bd:65:4c:40:92: 3b:02:e6:1f:f5:be:ee:1b:b1:de:73:28:b3:85:8c: 5e:6e:ce:df:a7:2a:fc:65:95:e3:a9:58:c1:34:de: bf:e7:9b:e7:23:4a:9c:d6:63:0e:ef:a1:64:39:d0: 9d:b9:bb:dd:13:7f:8a:0b:0c:2f:f1:2e:57:31:a9: 97:40:66:96:05:42:53:d6:b9:65:21:73:0c:96:16: 47:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:17:56:C5:C1:24:02:13:19:C0:23:D8:A5:F9:36:36:F3:32:E6:94 X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ac:06:21:2f:99:de:94:ff:78:43:6e:b7:0f:07:43:4b:c8: 7c:94:c8:18:60:01:7c:14:13:fe:80:91:2e:0f:70:88:ae:25: 4c:b8:8d:9c:40:81:83:47:98:2e:74:f4:2e:db:84:35:95:5c: d0:b2:64:a6:ea:5f:52:63:99:4d:ef:c1:94:b7:22:73:95:c6: fc:2c:9f:ed:5f:d4:66:47:15:cf:ed:d2:11:71:d1:37:93:f1: a8:fb:b1:61:91:f3:6e:56:32:e9:c6:7e:06:72:32:e9:0f:72: 2b:22:89:86:59:95:1a:4b:64:44:0d:d7:8b:ad:df:4d:db:d0: 74:35:3b:f6:b9:ac:ad:ae:ee:58:28:d7:bc:91:43:7c:41:62: b4:c8:e8:81:5c:b5:32:ad:ba:9c:d5:51:ed:74:fe:1d:de:f1: 3d:0b:e1:84:69:3c:e6:04:c6:8a:5c:16:b3:6d:31:9b:27:91: eb:99:fd:8b:5c:dc:ff:18:91:a6:39:48:5c:83:cc:77:1c:02: e3:8a:a5:16:13:c9:b5:bc:16:ef:79:38:a4:19:18:61:e5:2e: 3f:cc:bc:a9:9d:b9:4c:14:30:27:9b:3e:1c:40:b9:a2:c6:43: d9:35:75:02:02:9d:12:13:cf:e3:d4:db:14:bc:5b:1e:6d:e4: 0c:ad:7d:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjQwNTA0MTYwNDA4WhcNMjQwNTExMTYwNDA4WjAYMRYwFAYD VQQDEw02NjM2NWM3OC0wZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aBwl2XT8n+SCC3NYnsStk4HPlcLN7EsXE4QQ5O+jsCOBrhgo+ct7D7EKkru 6ZjkxdizsHqxRdFXG1pnUYdLNGYebaLV9cu4fqvC6nNOIm+R9Bu+jwQW1YSPNBs5 NGNpAj6hUcx/C4woSUhSu+IEf0rEXw1Kzhu8LdGZdA5KY+Bt/NOD/4VmWydY8XNE x6C6iS4XrA9J7jTR9qGUVNz2ND92ce4Id9Yx8ktfJi3EvWVMQJI7AuYf9b7uG7He cyizhYxebs7fpyr8ZZXjqVjBNN6/55vnI0qc1mMO76FkOdCdubvdE3+KCwwv8S5X MamXQGaWBUJT1rllIXMMlhZHswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQXVsXB JAITGcAj2KX5NjbzMuaUMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjrAYhL5nelP94Q263DwdDS8h8lMgYYAF8FBP+gJEuD3CIriVMuI2c QIGDR5gudPQu24Q1lVzQsmSm6l9SY5lN78GUtyJzlcb8LJ/tX9RmRxXP7dIRcdE3 k/Go+7FhkfNuVjLpxn4GcjLpD3IrIomGWZUaS2REDdeLrd9N29B0NTv2uaytru5Y KNe8kUN8QWK0yOiBXLUyrbqc1VHtdP4d3vE9C+GEaTzmBMaKXBazbTGbJ5Hrmf2L XNz/GJGmOUhcg8x3HALjiqUWE8m1vBbveTikGRhh5S4/zLypnblMFDAnmz4cQLmi xkPZNXUCAp0SE8/j1NsUvFsebeQMrX3I -----END CERTIFICATE-----Generated at Sat May 4 16:34:31 2024 by rpki-client on console-fra.rpki-client.org