$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft File: Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft (raw, json) Hash identifier: ewJjhYyfMnwi7xycg8kFrOQ6KJNpf25/qyy3RPASgiQ= Subject key identifier: 55:D8:BE:4F:EA:3E:BB:79:28:48:54:95:46:5A:BD:84:BC:8C:C5:35 Authority key identifier: 1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A Certificate issuer: /CN=A91AFC4E/serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Certificate serial: 03B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft Manifest number: 03B4 Signing time: Sun 05 May 2024 02:37:02 +0000 Manifest this update: Sun 05 May 2024 02:37:01 +0000 Manifest next update: Sun 12 May 2024 02:37:01 +0000 Files and hashes: 1: Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl (hash: cuHhMpD/dDuAN7jPTzKe4wdCdiJ4Pf26KITtcdtyWQo=) 2: B5F911E8429411EC8882FA1EC4F9AE02.roa (hash: eiFpIrtVuamTu+rojHR+H9DwuIU7s8sph+ALrli0Nnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 951 (0x3b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFC4E/serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Validity Not Before: May 5 02:37:01 2024 GMT Not After : May 12 02:37:01 2024 GMT Subject: CN=6636f0cd-e32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:76:84:05:67:80:b4:55:fa:b6:21:ae:8f:11: d6:04:2a:95:4f:7c:c0:74:3f:c9:0c:5e:5b:a4:87: f5:8b:3a:48:3c:07:90:0e:09:66:61:d6:af:89:55: c5:9c:80:ee:33:8b:6e:d5:1b:5a:ae:d4:08:16:67: e1:65:f6:1a:16:4d:6a:8e:2e:a9:8e:9c:af:aa:7c: 7a:75:99:ad:de:60:23:47:7d:15:6b:2b:ae:e7:58: ea:03:72:ae:4a:74:69:c9:74:36:29:f3:de:df:c7: 63:75:0d:f2:69:24:66:1b:bd:a7:a7:b6:3c:34:57: 0b:3a:1e:c0:ac:00:e2:3a:e1:5d:4e:f5:09:f2:46: cc:8f:e4:2b:28:f0:d1:30:47:4d:f1:16:bb:51:11: 88:53:94:dc:b5:ef:cc:ea:83:62:43:97:57:6e:4b: 0a:6c:15:56:df:03:69:98:5b:d7:ec:bb:27:d4:cf: 92:ac:f8:7b:a7:69:4b:c1:09:1b:67:07:7a:d5:00: 30:c1:8a:33:65:3c:d5:81:a0:09:bf:a8:ba:c3:78: 83:6b:c8:04:00:ec:4d:5e:8e:1c:c7:70:8a:9b:db: f4:17:e7:7e:af:ef:c5:ab:bc:05:55:51:36:14:0f: ee:dc:f6:32:35:5e:b0:f8:95:ce:e5:41:df:7e:b6: a8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:D8:BE:4F:EA:3E:BB:79:28:48:54:95:46:5A:BD:84:BC:8C:C5:35 X509v3 Authority Key Identifier: keyid:1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:f7:f5:4d:71:fb:9f:1f:47:37:a5:07:78:7b:e2:a4:f4:35: a9:f8:b0:ce:ce:23:5d:b1:fc:9b:fe:a1:38:89:f0:a8:d7:74: 76:a7:c3:e7:a4:6f:f8:b4:6d:49:19:11:5c:13:f3:df:aa:c2: e0:5c:93:f4:ae:41:90:a0:fe:94:53:53:35:db:03:de:91:b2: 00:11:57:97:53:a2:02:25:5a:4b:a7:40:9a:de:67:29:5c:8b: 6b:b6:c4:68:44:a8:d9:11:66:ce:68:85:d5:6c:f0:b7:52:b3: 35:70:d6:bf:74:0f:ba:44:7b:54:0e:23:40:c6:2f:ea:e5:05: 9d:40:80:16:ed:71:15:f0:80:c6:a9:a1:2e:82:10:ec:3a:2d: 31:b9:cf:0a:5b:97:31:b0:83:5e:fb:75:1b:08:e4:4c:c3:f5: a6:b5:fa:ad:48:94:dc:b1:10:46:73:ef:3b:64:3e:0e:8d:a3: de:54:0b:d3:41:75:ae:ab:e6:9e:3c:63:26:30:63:e3:44:ea: 5a:f2:5d:fe:dd:fe:5e:d1:6a:b7:68:6b:c4:59:14:1d:a7:0a: b4:ae:5e:8d:12:45:89:32:71:96:70:67:73:8c:8c:17:92:2e: 40:7c:89:97:4d:cd:b5:62:3e:33:26:0b:68:52:9f:96:af:23: 33:75:da:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZDNEUxMTAvBgNVBAUTKDFFRkVEQTM0Mjg3Rjg1OEREQ0Y0RENFODQyOEMzM0I2 MUM0MUQ5OUEwHhcNMjQwNTA1MDIzNzAxWhcNMjQwNTEyMDIzNzAxWjAYMRYwFAYD VQQDEw02NjM2ZjBjZC1lMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHaEBWeAtFX6tiGujxHWBCqVT3zAdD/JDF5bpIf1izpIPAeQDglmYdaviVXF nIDuM4tu1RtartQIFmfhZfYaFk1qji6pjpyvqnx6dZmt3mAjR30Vayuu51jqA3Ku SnRpyXQ2KfPe38djdQ3yaSRmG72np7Y8NFcLOh7ArADiOuFdTvUJ8kbMj+QrKPDR MEdN8Ra7URGIU5Tcte/M6oNiQ5dXbksKbBVW3wNpmFvX7Lsn1M+SrPh7p2lLwQkb Zwd61QAwwYozZTzVgaAJv6i6w3iDa8gEAOxNXo4cx3CKm9v0F+d+r+/Fq7wFVVE2 FA/u3PYyNV6w+JXO5UHffraoVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXYvk/q Prt5KEhUlUZavYS8jMU1MB8GA1UdIwQYMBaAFB7+2jQof4WN3PTc6EKMM7YcQdma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkM0RS9GQjIyMUQ0MDQy OTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZM2M5TnpvUW93enRoeEIy Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2N2FOQ2hfaFkzYzlOem9Rb3d6dGh4QjJaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkM0RS9GQjIyMUQ0MDQyOTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZ M2M5TnpvUW93enRoeEIyWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp9/VNcfufH0c3pQd4e+Kk9DWp+LDOziNdsfyb/qE4ifCo13R2p8Pn pG/4tG1JGRFcE/PfqsLgXJP0rkGQoP6UU1M12wPekbIAEVeXU6ICJVpLp0Ca3mcp XItrtsRoRKjZEWbOaIXVbPC3UrM1cNa/dA+6RHtUDiNAxi/q5QWdQIAW7XEV8IDG qaEughDsOi0xuc8KW5cxsINe+3UbCORMw/WmtfqtSJTcsRBGc+87ZD4OjaPeVAvT QXWuq+aePGMmMGPjROpa8l3+3f5e0Wq3aGvEWRQdpwq0rl6NEkWJMnGWcGdzjIwX ki5AfImXTc21Yj4zJgtoUp+WryMzddqj -----END CERTIFICATE-----Generated at Sun May 5 03:47:47 2024 by rpki-client on console-fra.rpki-client.org