$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: 3nQ+cKl34kDFLdjXk6XBps/Kc/67xOqP8fMSc/3KmCQ= Subject key identifier: 41:1F:B8:73:1B:E8:4A:80:35:36:63:EA:46:02:3B:83:83:BD:4D:60 Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 03EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 03E9 Signing time: Sun 19 May 2024 02:16:15 +0000 Manifest this update: Sun 19 May 2024 02:16:14 +0000 Manifest next update: Sun 26 May 2024 02:16:14 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: 1My9Hb89t4LoX3Ktc888zWSEOVIeA6kNUuJnlWnRdfs=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: xfUK5OfXiNVfHgx3J+oYb60uuaCJ8bEW/4422S6AxPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1004 (0x3ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: May 19 02:16:14 2024 GMT Not After : May 26 02:16:14 2024 GMT Subject: CN=664960ee-d86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a2:42:16:95:18:35:2e:45:c7:15:75:2f:a2: 74:39:58:a9:61:88:ca:e4:ec:b3:4f:a6:01:c5:a5: 5b:2f:2d:fc:13:de:2a:66:db:1a:c9:50:95:04:00: b1:ad:85:c5:66:3f:2e:69:ab:a1:ee:78:2c:fb:f7: e8:64:56:73:85:79:c0:c5:4f:68:16:ef:19:d4:f8: af:c7:cc:96:0b:6c:08:75:64:6f:55:0a:13:00:8e: 4e:65:bd:a8:3b:0e:8e:ce:9f:42:f5:54:b6:b1:68: cf:b0:ad:b4:e1:07:b2:d3:a7:c3:d1:f4:c8:17:78: c2:1c:c7:f3:1f:55:7e:b5:d4:2f:b1:7f:1a:6f:73: 58:07:9e:a6:bf:82:56:09:7d:5f:4b:d3:d3:12:2d: b8:03:a2:f2:bc:a4:dd:7b:e4:0f:10:96:1a:03:27: dc:92:6c:bd:91:d4:5f:96:a7:fd:21:6b:e5:09:01: 06:43:53:9c:be:8f:91:b8:18:de:81:bd:6e:75:0f: ab:78:08:13:a1:05:2e:af:aa:97:88:17:4f:89:02: 6b:e7:b1:ea:3e:c3:ba:f4:2b:b6:c2:6b:8c:8d:03: 6f:9a:93:1a:92:5e:85:0f:53:10:36:28:61:ba:19: 4d:0d:d5:35:6b:f8:82:0f:ce:14:95:84:51:76:6d: e1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:1F:B8:73:1B:E8:4A:80:35:36:63:EA:46:02:3B:83:83:BD:4D:60 X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:f6:7c:3b:5f:6f:d3:0c:4f:2b:0b:0b:5d:6e:f8:be:61:da: 29:cb:19:aa:ec:c4:d4:9d:3d:81:eb:5e:39:5a:e7:ac:35:56: 90:d0:e0:70:4e:64:f0:d2:46:f7:c4:d8:3c:a6:1b:6e:f9:29: d1:eb:cb:12:3c:ea:15:91:eb:a7:b9:0c:e6:2f:a5:aa:ee:37: 60:2b:29:34:a9:9c:11:1c:74:52:23:23:27:68:fe:8b:7e:65: 99:1e:81:aa:4e:4e:56:99:27:ce:4a:f6:4f:72:a7:ba:46:8e: 3f:10:c2:58:e5:aa:7c:f8:dd:1d:71:c0:22:ed:fd:0b:20:ad: 0f:78:e8:19:24:fa:6b:6c:53:4f:c6:1d:aa:40:fb:80:86:3a: 19:fd:32:a3:dc:ff:79:ee:a2:ab:e4:53:d3:45:8b:4b:e3:db: 31:0b:f0:a7:6b:7e:e6:c6:21:33:d9:69:88:25:4d:81:80:39: be:b3:cc:94:8b:26:5c:c2:4c:3f:e7:68:03:af:8c:bf:64:00: 2f:bc:d5:76:d9:bd:28:cf:c0:8e:3e:98:71:c9:69:9b:a9:36: 20:27:34:49:22:e1:4b:a4:3a:4f:58:32:b0:d2:23:da:1e:47: 42:ed:b3:f1:75:81:5d:af:d7:66:bc:9d:53:40:e6:ae:26:4b: bb:77:21:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjQwNTE5MDIxNjE0WhcNMjQwNTI2MDIxNjE0WjAYMRYwFAYD VQQDEw02NjQ5NjBlZS1kODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaJCFpUYNS5FxxV1L6J0OVipYYjK5OyzT6YBxaVbLy38E94qZtsayVCVBACx rYXFZj8uaauh7ngs+/foZFZzhXnAxU9oFu8Z1Pivx8yWC2wIdWRvVQoTAI5OZb2o Ow6Ozp9C9VS2sWjPsK204Qey06fD0fTIF3jCHMfzH1V+tdQvsX8ab3NYB56mv4JW CX1fS9PTEi24A6LyvKTde+QPEJYaAyfckmy9kdRflqf9IWvlCQEGQ1Ocvo+RuBje gb1udQ+reAgToQUur6qXiBdPiQJr57HqPsO69Cu2wmuMjQNvmpMakl6FD1MQNihh uhlNDdU1a/iCD84UlYRRdm3hTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEfuHMb 6EqANTZj6kYCO4ODvU1gMB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg9nw7X2/TDE8rCwtdbvi+Ydopyxmq7MTUnT2B6145WuesNVaQ0OBw TmTw0kb3xNg8phtu+SnR68sSPOoVkeunuQzmL6Wq7jdgKyk0qZwRHHRSIyMnaP6L fmWZHoGqTk5WmSfOSvZPcqe6Ro4/EMJY5ap8+N0dccAi7f0LIK0PeOgZJPprbFNP xh2qQPuAhjoZ/TKj3P957qKr5FPTRYtL49sxC/Cna37mxiEz2WmIJU2BgDm+s8yU iyZcwkw/52gDr4y/ZAAvvNV22b0oz8COPphxyWmbqTYgJzRJIuFLpDpPWDKw0iPa HkdC7bPxdYFdr9dmvJ1TQOauJku7dyET -----END CERTIFICATE-----Generated at Sun May 19 03:14:50 2024 by rpki-client on console-fra.rpki-client.org