$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: Qfr1VdAiTBUJ9vnA1kF+syruhVRy1ImwdULPUw2C7mU= Subject key identifier: 59:D0:A1:C4:4D:49:F5:7E:FE:E5:2B:C7:F6:FC:5B:B7:12:5A:0C:CB Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 060B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 0607 Signing time: Fri 03 May 2024 00:02:08 +0000 Manifest this update: Fri 03 May 2024 00:02:07 +0000 Manifest next update: Fri 10 May 2024 00:02:07 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: slRmL9VWj2q9pw5+e+mtwgkE+KvpuwsUFITV/lowDKE=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: D45gCx25p55ZdSrenESWExC8wZeu5xeOajPz7tvTQDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: May 3 00:02:07 2024 GMT Not After : May 10 00:02:07 2024 GMT Subject: CN=66342980-706b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:79:66:36:fd:81:6b:8d:88:c4:95:92:c2:e2: 88:21:01:6d:eb:8c:f5:e2:c3:4e:1e:ff:b1:c3:0d: 6b:84:c6:81:e9:02:a0:41:f4:d8:67:1b:a5:0f:e9: d7:44:6e:da:09:4f:72:08:7e:ad:dd:43:e4:b4:4d: dc:a3:36:43:1c:c0:8e:56:21:57:e2:c9:ee:7e:ae: e8:08:2c:a2:2c:13:ea:7c:58:4d:85:c4:73:27:e9: 28:6f:fa:e3:61:a5:6b:93:6c:f5:e7:8e:81:c7:d0: c2:30:d3:4d:39:ce:5f:41:ec:2d:24:3d:e5:71:fd: 50:ef:a7:ab:98:d0:f9:31:e9:4d:f4:78:09:0b:de: 46:32:52:cb:7c:40:21:0f:9b:68:68:ce:fa:b5:6d: c6:b3:48:9f:64:60:cb:42:28:4d:ff:32:63:fb:07: 0a:b5:d1:e2:c1:e4:9e:e2:a0:be:04:5c:bc:09:52: 3a:13:ca:57:18:0f:cb:70:cc:72:b1:13:da:f6:c1: 0f:56:1e:94:53:3c:58:09:aa:75:0a:40:f4:80:b4: 18:71:db:d5:21:a0:63:f9:a9:da:37:07:0f:1b:9b: d1:61:4a:35:ab:86:aa:6b:ad:7e:e5:bd:fd:20:2d: b6:6c:a6:d3:20:85:31:fa:d5:29:a1:aa:a6:ad:30: 1c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D0:A1:C4:4D:49:F5:7E:FE:E5:2B:C7:F6:FC:5B:B7:12:5A:0C:CB X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:c3:89:f5:41:6f:7b:2c:ff:46:83:cd:ae:be:23:44:a4:a2: c8:bb:5d:1c:40:0e:6d:e4:29:79:1c:6c:73:d8:74:c6:67:05: 3a:3d:95:1e:5f:df:70:d0:87:7b:b1:c2:3a:08:30:8f:fc:15: 38:9d:49:4b:53:2a:4f:70:51:fb:71:f1:f5:1c:51:cc:ab:cf: 93:20:e7:7d:4b:e9:47:24:b1:e3:6a:ed:9f:cf:89:14:50:a1: 8c:06:d0:c4:c1:f7:7f:4a:3f:fc:27:00:13:67:7a:7e:97:f8: 4f:66:ca:c3:af:50:38:86:a5:16:16:75:cc:09:66:6f:ca:bc: 35:c6:d2:75:e5:a7:38:0c:10:ac:71:29:a7:dc:b8:8e:9d:b4: 4a:6b:5b:65:aa:ef:1d:8a:36:2b:b2:58:eb:08:dc:a4:90:cf: db:d5:90:1e:ed:06:b3:3d:81:09:f3:6e:a6:3b:1d:54:5c:52: 96:d2:fc:02:e8:18:d9:1e:89:17:15:48:df:2a:5b:27:83:cb: 42:f4:80:b3:a9:a1:78:78:ea:07:81:00:be:21:af:d8:a0:11: 24:22:41:f2:37:fa:51:d5:4c:ce:07:fe:b6:8f:00:fd:ab:63: 30:63:7d:b4:ed:2b:c3:57:03:d5:63:fa:ca:0e:66:c9:09:e7: 2f:eb:29:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjQwNTAzMDAwMjA3WhcNMjQwNTEwMDAwMjA3WjAYMRYwFAYD VQQDEw02NjM0Mjk4MC03MDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XlmNv2Ba42IxJWSwuKIIQFt64z14sNOHv+xww1rhMaB6QKgQfTYZxulD+nX RG7aCU9yCH6t3UPktE3cozZDHMCOViFX4snufq7oCCyiLBPqfFhNhcRzJ+kob/rj YaVrk2z1546Bx9DCMNNNOc5fQewtJD3lcf1Q76ermND5MelN9HgJC95GMlLLfEAh D5toaM76tW3Gs0ifZGDLQihN/zJj+wcKtdHiweSe4qC+BFy8CVI6E8pXGA/LcMxy sRPa9sEPVh6UUzxYCap1CkD0gLQYcdvVIaBj+anaNwcPG5vRYUo1q4aqa61+5b39 IC22bKbTIIUx+tUpoaqmrTAcEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnQocRN SfV+/uUrx/b8W7cSWgzLMB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZw4n1QW97LP9Gg82uviNEpKLIu10cQA5t5Cl5HGxz2HTGZwU6PZUe X99w0Id7scI6CDCP/BU4nUlLUypPcFH7cfH1HFHMq8+TIOd9S+lHJLHjau2fz4kU UKGMBtDEwfd/Sj/8JwATZ3p+l/hPZsrDr1A4hqUWFnXMCWZvyrw1xtJ15ac4DBCs cSmn3LiOnbRKa1tlqu8dijYrsljrCNykkM/b1ZAe7QazPYEJ826mOx1UXFKW0vwC 6BjZHokXFUjfKlsng8tC9ICzqaF4eOoHgQC+Ia/YoBEkIkHyN/pR1UzOB/62jwD9 q2MwY3207SvDVwPVY/rKDmbJCecv6ymx -----END CERTIFICATE-----Generated at Fri May 3 00:28:40 2024 by rpki-client on console-fra.rpki-client.org