$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft File: ddHHozMD2o3GQirjUXA_KlKN874.mft (raw, json) Hash identifier: Ytc63yUH7+CSBawuB7OzE10aKzmnmmbsaRDh6IpYSCI= Subject key identifier: 26:49:4E:C5:A4:40:38:0E:65:1D:ED:CC:53:F4:25:2E:1F:25:14:0C Authority key identifier: 75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE Certificate issuer: /CN=A91C5832/serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft Manifest number: 61 Signing time: Fri 17 May 2024 07:48:58 +0000 Manifest this update: Fri 17 May 2024 07:48:58 +0000 Manifest next update: Fri 24 May 2024 07:48:58 +0000 Files and hashes: 1: ddHHozMD2o3GQirjUXA_KlKN874.crl (hash: 5w4gflLsSd2sX9Xeplc4Ml3uV0zOBJ+jWbGdq1B+6TM=) 2: 3E6CF84C883311EE8822D90BC4F9AE02.roa (hash: hi2JHBL+ZfB9Tv2AwnI2KUWKkNHxYj0MMSY/hu1pdTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5832/serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Validity Not Before: May 17 07:48:58 2024 GMT Not After : May 24 07:48:58 2024 GMT Subject: CN=66470bea-df46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d5:7a:a2:68:5f:84:45:0f:bc:7b:85:75:af: 5a:6a:2a:9a:e5:0d:6d:1d:55:24:3d:b0:2c:9e:02: cf:cc:0e:34:a0:99:a2:82:7f:c7:0a:93:bf:f7:b8: ea:3f:63:5c:5c:ed:4c:52:64:4a:52:0e:f5:8b:7a: 6d:55:bc:87:e9:87:7b:fd:95:26:a4:71:20:58:1f: b7:0e:ba:31:e1:ff:2f:de:64:71:10:fc:67:d0:8e: d8:78:d3:47:17:a7:bd:06:68:7a:90:1e:13:ea:5e: a6:84:6f:40:e4:ec:2f:e5:36:77:27:7b:64:2e:2e: 18:05:fd:f4:a5:ec:e8:47:eb:c9:0d:e5:dd:11:7a: 31:c7:e5:db:3e:ce:e8:29:21:7b:06:e3:32:bb:d8: 09:01:a1:34:3a:ed:c6:e3:6b:db:ac:93:fb:da:f6: 9f:36:86:4e:aa:c8:79:79:19:63:4f:8a:02:1a:42: 08:01:28:7f:f6:bb:32:d8:b5:98:e5:3b:58:b5:26: 68:54:cb:52:fb:7e:e9:c5:7d:23:21:48:72:52:72: eb:e7:82:6c:69:cb:e5:d0:df:01:b0:d5:e8:17:51: 55:a2:54:d2:59:22:55:ef:40:dc:2c:b5:c7:55:34: ee:c3:09:b5:16:a3:6d:39:aa:0d:fc:df:bb:8b:f8: e3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:49:4E:C5:A4:40:38:0E:65:1D:ED:CC:53:F4:25:2E:1F:25:14:0C X509v3 Authority Key Identifier: keyid:75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:25:da:30:98:03:33:31:4b:ec:74:85:d7:1c:07:70:64:bf: 80:da:ed:64:f3:6e:fa:28:b6:61:ce:1d:c9:e3:93:ff:dd:1f: d9:69:98:8b:80:cc:e1:39:62:4d:3f:51:9f:e9:f8:e6:d4:0e: 22:1f:9b:29:d6:7f:8f:0f:77:66:ae:0c:60:92:9c:54:3f:e1: 84:90:1c:25:58:8d:8d:a8:1c:05:18:a5:f4:3d:cf:d5:db:db: b5:14:1e:dc:15:69:d9:f3:1f:cd:25:e0:e7:6d:be:16:7d:11: 40:c2:b7:c6:2c:53:ea:9b:ff:55:a4:47:83:5b:2a:ca:fe:4b: e2:b8:c0:6d:71:71:62:77:bc:e8:5f:16:2e:62:ec:de:ef:b7: d6:b0:b9:f7:d1:a6:4e:7e:cc:68:54:5f:86:63:1e:7d:88:9e: 97:06:af:9b:89:5f:b2:b5:9c:32:c0:80:5f:ca:ec:25:5e:dd: ff:28:43:6b:ef:97:0d:47:d7:1b:a4:32:19:d9:48:0f:01:63: 3d:3c:7b:70:8d:30:4e:f0:d5:1c:4d:ab:ce:2a:6e:38:f5:2c: 5b:36:fe:89:b3:74:70:ba:32:58:b0:e0:95:ee:03:6d:26:0c: 34:f2:b7:bf:cc:65:dd:2b:9c:92:2c:65:53:8b:39:86:f0:09: be:d0:f9:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTgzMjExMC8GA1UEBRMoNzVEMUM3QTMzMzAzREE4REM2NDIyQUUzNTE3MDNGMkE1 MjhERjNCRTAeFw0yNDA1MTcwNzQ4NThaFw0yNDA1MjQwNzQ4NThaMBgxFjAUBgNV BAMTDTY2NDcwYmVhLWRmNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDY1XqiaF+ERQ+8e4V1r1pqKprlDW0dVSQ9sCyeAs/MDjSgmaKCf8cKk7/3uOo/ Y1xc7UxSZEpSDvWLem1VvIfph3v9lSakcSBYH7cOujHh/y/eZHEQ/GfQjth400cX p70GaHqQHhPqXqaEb0Dk7C/lNncne2QuLhgF/fSl7OhH68kN5d0RejHH5ds+zugp IXsG4zK72AkBoTQ67cbja9usk/va9p82hk6qyHl5GWNPigIaQggBKH/2uzLYtZjl O1i1JmhUy1L7funFfSMhSHJScuvngmxpy+XQ3wGw1egXUVWiVNJZIlXvQNwstcdV NO7DCbUWo205qg3837uL+OMPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJklOxaRA OA5lHe3MU/QlLh8lFAwwHwYDVR0jBBgwFoAUddHHozMD2o3GQirjUXA/KlKN874w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1ODMyLzZENjBGOUQ4ODc5 NzExRUU5RjNFRDQ0RkM0RjlBRTAyL2RkSEhvek1EMm8zR1FpcmpVWEFfS2xLTjg3 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGRISG96TUQybzNHUWlyalVYQV9LbEtOODc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 ODMyLzZENjBGOUQ4ODc5NzExRUU5RjNFRDQ0RkM0RjlBRTAyL2RkSEhvek1EMm8z R1FpcmpVWEFfS2xLTjg3NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALIl2jCYAzMxS+x0hdccB3Bkv4Da7WTzbvootmHOHcnjk//dH9lpmIuA zOE5Yk0/UZ/p+ObUDiIfmynWf48Pd2auDGCSnFQ/4YSQHCVYjY2oHAUYpfQ9z9Xb 27UUHtwVadnzH80l4OdtvhZ9EUDCt8YsU+qb/1WkR4NbKsr+S+K4wG1xcWJ3vOhf Fi5i7N7vt9awuffRpk5+zGhUX4ZjHn2InpcGr5uJX7K1nDLAgF/K7CVe3f8oQ2vv lw1H1xukMhnZSA8BYz08e3CNME7w1RxNq84qbjj1LFs2/omzdHC6Mliw4JXuA20m DDTyt7/MZd0rnJIsZVOLOYbwCb7Q+XA= -----END CERTIFICATE-----Generated at Fri May 17 10:10:52 2024 by rpki-client on console-fra.rpki-client.org