$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: FgsiNT0PqRr3gdLua+Gf32PhCcaBAJta35c6CQ5ABqg= Subject key identifier: 5A:60:67:1D:B1:BE:96:F2:40:F4:C4:4F:6E:79:C0:31:3F:09:76:27 Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 05C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 05B8 Signing time: Fri 17 May 2024 00:19:07 +0000 Manifest this update: Fri 17 May 2024 00:19:06 +0000 Manifest next update: Fri 24 May 2024 00:19:06 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: M1ndtEgUkW1mOv5XmEs5+gaW8I5ex3ISKQma2oP+SZw=) 2: 75B4176E7A8911EBADBE8982C4F9AE02.roa (hash: iB3Fjk+C6wiccfFbjHV2/10/LVT/E+oQHbHUDtraWAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: May 17 00:19:06 2024 GMT Not After : May 24 00:19:06 2024 GMT Subject: CN=6646a27a-e369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:49:99:8b:79:c5:71:18:61:44:04:2a:b1:f7: 6c:17:1e:7c:f3:b2:0f:55:a7:7a:28:fd:bd:9c:94: 96:cc:2f:66:c5:e9:4f:cc:97:d4:12:ca:68:c1:74: f7:34:25:a6:b1:8e:6c:a3:1c:18:04:c0:ed:51:04: 36:9d:07:dc:c5:c3:2a:af:b6:28:91:23:eb:96:e2: d9:86:72:87:0e:f5:29:7d:4d:24:61:43:a9:7f:6d: f7:88:3d:17:e8:8f:10:5f:32:b2:37:27:6b:c0:ee: f5:a4:35:a3:9c:1b:1d:5f:ca:61:83:77:7c:00:51: e8:9d:ab:34:9c:c4:4f:6b:96:1f:51:a8:de:30:e1: c7:33:e9:5d:03:25:c4:0d:cb:b1:38:53:ea:7a:31: 9b:6e:ae:8c:f9:2b:f5:54:e8:cc:18:fd:7a:8f:a6: 29:0f:11:bd:a2:21:f4:41:95:78:b0:08:b4:2d:40: a5:99:00:1f:a2:21:26:22:ae:28:f0:26:79:26:cf: 7e:cc:40:5a:7b:66:6e:32:ef:f6:9c:34:64:4b:92: 5f:bf:ac:90:44:17:b0:e9:f1:ca:c2:f9:79:28:70: 56:6e:ec:9e:c8:ba:80:ad:8e:bf:38:7b:18:45:3c: 30:f7:f8:f3:c7:5f:19:5d:c9:06:8a:66:bc:27:e3: a7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:60:67:1D:B1:BE:96:F2:40:F4:C4:4F:6E:79:C0:31:3F:09:76:27 X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:45:e2:60:c4:5d:1a:cd:1e:f5:f3:ab:41:7e:ad:f3:15:a2: 02:fd:6b:ea:8e:df:2d:ca:f1:c4:21:ad:d5:f0:31:ea:a3:34: 48:75:96:f3:66:e5:07:65:65:4f:68:17:2c:a8:76:c9:7a:b8: bf:69:5c:a6:29:25:8c:7e:55:b7:ff:ff:7c:00:f2:3e:89:f6: 2b:c9:9f:f0:bf:08:ae:6d:1e:60:e1:8c:6a:82:f0:fd:64:bb: 7a:f5:b8:41:a9:3a:a7:56:1f:f2:07:67:cf:5d:71:12:96:77: 18:8a:cf:a6:8e:cc:fb:95:75:5c:a3:48:15:fa:87:36:a2:e5: 3c:85:7c:2b:c4:a7:0e:70:d9:9c:91:0e:61:c6:f4:15:c2:36: 05:5f:dc:3f:d8:16:7a:e0:d4:7d:45:f1:cb:b6:8a:dc:50:c5: a0:29:5b:37:81:5e:6a:62:ba:05:e5:db:ad:c3:9a:d4:75:95: 10:1a:3c:34:f8:32:29:48:75:ed:55:cd:92:f0:f8:2b:08:09: 59:6d:d6:ce:6e:06:01:3a:4d:41:ff:99:9a:98:a5:7c:c9:c9: 06:f0:16:7c:fe:24:c9:c5:d3:bc:bd:84:36:2a:14:7d:54:bc: 84:62:e2:6d:28:4f:f9:7f:fa:3c:f9:0d:1b:dc:32:28:c1:db: e4:3b:22:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjQwNTE3MDAxOTA2WhcNMjQwNTI0MDAxOTA2WjAYMRYwFAYD VQQDEw02NjQ2YTI3YS1lMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkmZi3nFcRhhRAQqsfdsFx5887IPVad6KP29nJSWzC9mxelPzJfUEspowXT3 NCWmsY5soxwYBMDtUQQ2nQfcxcMqr7YokSPrluLZhnKHDvUpfU0kYUOpf233iD0X 6I8QXzKyNydrwO71pDWjnBsdX8phg3d8AFHonas0nMRPa5YfUajeMOHHM+ldAyXE DcuxOFPqejGbbq6M+Sv1VOjMGP16j6YpDxG9oiH0QZV4sAi0LUClmQAfoiEmIq4o 8CZ5Js9+zEBae2ZuMu/2nDRkS5Jfv6yQRBew6fHKwvl5KHBWbuyeyLqArY6/OHsY RTww9/jzx18ZXckGima8J+OnmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpgZx2x vpbyQPTET255wDE/CXYnMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2ReJgxF0azR7186tBfq3zFaIC/Wvqjt8tyvHEIa3V8DHqozRIdZbz ZuUHZWVPaBcsqHbJeri/aVymKSWMflW3//98API+ifYryZ/wvwiubR5g4YxqgvD9 ZLt69bhBqTqnVh/yB2fPXXESlncYis+mjsz7lXVco0gV+oc2ouU8hXwrxKcOcNmc kQ5hxvQVwjYFX9w/2BZ64NR9RfHLtorcUMWgKVs3gV5qYroF5dutw5rUdZUQGjw0 +DIpSHXtVc2S8PgrCAlZbdbObgYBOk1B/5mamKV8yckG8BZ8/iTJxdO8vYQ2KhR9 VLyEYuJtKE/5f/o8+Q0b3DIowdvkOyJx -----END CERTIFICATE-----Generated at Fri May 17 01:07:00 2024 by rpki-client on console-fra.rpki-client.org