$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: Xs7nYduiJey06ks389NoR+iDRdcwpnroUPoj7PYaYXk= Subject key identifier: 34:1B:50:3B:18:09:23:41:9A:F7:0A:57:93:30:D4:5E:03:9B:67:AE Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: EC Signing time: Sun 05 May 2024 05:53:42 +0000 Manifest this update: Sun 05 May 2024 05:53:41 +0000 Manifest next update: Sun 12 May 2024 05:53:41 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: UMYHNOfCO7UAVwANi3Gq51S1Ey2l6e0PK6YED9A0iWE=) 2: B264EB66A30911ED99A82087C4F9AE02.roa (hash: 0JShJtXPx5anPlJ0U5m0+jdnqUtjwG3u5Wm74IlFu78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 05:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: May 5 05:53:41 2024 GMT Not After : May 12 05:53:41 2024 GMT Subject: CN=66371ee5-64cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:53:c3:13:9c:14:e5:c5:b0:4e:c8:b6:40:b7: af:12:62:d1:66:96:88:0f:56:dc:00:82:5a:23:ac: c1:bd:41:46:6f:c8:8d:08:f7:d6:63:b0:05:20:f0: 55:65:c3:c5:30:6e:2f:24:d0:b3:40:35:bf:e6:48: 45:ac:54:f9:a4:20:a3:f2:77:54:ac:f8:97:f2:a6: 52:14:41:a0:8f:e8:17:e4:4e:57:7e:d6:00:cf:c7: 98:e2:72:52:85:84:53:88:7d:cb:67:a4:f3:94:b3: 4c:27:28:5e:02:53:a6:37:be:bc:ca:3f:4d:f1:5c: df:1d:9c:f8:4c:f5:a7:68:5e:5c:a7:85:f6:99:8f: 49:e5:15:88:51:67:38:b6:fe:ae:a1:f4:80:a2:c8: 34:2c:1f:69:18:68:57:53:be:64:cf:e0:b9:e5:58: ec:89:a0:ff:7f:ab:43:40:bc:f8:59:bf:fb:11:a8: 29:fa:dc:68:a4:de:22:89:32:cb:2d:95:b0:df:26: 02:ae:07:59:6c:b1:3b:c8:bb:9c:a1:16:2c:bd:da: 15:c2:0f:79:fd:47:af:4f:8a:6b:50:5d:d3:0a:d2: 0e:1e:d8:3d:6b:12:e2:34:af:0c:c7:b1:28:40:78: f6:d6:c7:52:87:7c:b7:70:a1:63:51:11:80:68:50: b0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1B:50:3B:18:09:23:41:9A:F7:0A:57:93:30:D4:5E:03:9B:67:AE X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:29:74:c3:fe:f5:b1:f8:24:30:a6:eb:42:ad:db:98:80:41: c1:31:66:3b:9c:4d:04:e1:ee:02:22:9c:90:74:eb:2e:ef:57: 67:cf:db:f2:63:c8:bd:bc:be:de:ec:7e:81:6a:51:34:4b:fb: 1b:94:94:31:0b:6d:7e:a8:bc:b8:00:14:e2:66:df:3e:d8:67: 6e:65:61:27:ef:89:54:fe:29:6b:dc:1f:75:73:30:df:38:3b: a8:f0:e9:46:e7:b8:94:c4:04:a8:be:79:73:e7:28:40:48:7b: 08:f3:9e:70:08:81:81:ee:81:07:84:a6:c2:28:71:4f:4f:46: a9:7d:f5:b9:a8:88:bc:d8:4c:81:2e:25:a0:67:83:4c:4f:09: 63:80:24:24:fa:ea:5e:20:90:eb:75:43:07:d0:c8:41:74:da: b8:43:1f:13:42:43:90:48:a5:ce:34:26:44:4c:c7:89:f3:42: 94:f4:04:b5:ab:fa:38:78:62:94:f7:d5:5e:48:a2:d3:3c:db: 93:01:69:fd:d4:dc:cd:ff:26:c8:18:07:48:85:9b:59:0f:dc: c5:7b:26:db:7f:d9:e2:f0:9d:3f:72:54:55:4f:db:a6:ee:f7: e4:b5:c2:c7:bd:2d:95:b0:98:c3:36:ec:94:08:20:0a:0e:b1: 33:38:f5:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjQwNTA1MDU1MzQxWhcNMjQwNTEyMDU1MzQxWjAYMRYwFAYD VQQDEw02NjM3MWVlNS02NGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VPDE5wU5cWwTsi2QLevEmLRZpaID1bcAIJaI6zBvUFGb8iNCPfWY7AFIPBV ZcPFMG4vJNCzQDW/5khFrFT5pCCj8ndUrPiX8qZSFEGgj+gX5E5XftYAz8eY4nJS hYRTiH3LZ6TzlLNMJyheAlOmN768yj9N8VzfHZz4TPWnaF5cp4X2mY9J5RWIUWc4 tv6uofSAosg0LB9pGGhXU75kz+C55VjsiaD/f6tDQLz4Wb/7Eagp+txopN4iiTLL LZWw3yYCrgdZbLE7yLucoRYsvdoVwg95/UevT4prUF3TCtIOHtg9axLiNK8Mx7Eo QHj21sdSh3y3cKFjURGAaFCw4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQbUDsY CSNBmvcKV5Mw1F4Dm2euMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqKXTD/vWx+CQwputCrduYgEHBMWY7nE0E4e4CIpyQdOsu71dnz9vy Y8i9vL7e7H6BalE0S/sblJQxC21+qLy4ABTiZt8+2GduZWEn74lU/ilr3B91czDf ODuo8OlG57iUxASovnlz5yhASHsI855wCIGB7oEHhKbCKHFPT0apffW5qIi82EyB LiWgZ4NMTwljgCQk+upeIJDrdUMH0MhBdNq4Qx8TQkOQSKXONCZETMeJ80KU9AS1 q/o4eGKU99VeSKLTPNuTAWn91NzN/ybIGAdIhZtZD9zFeybbf9ni8J0/clRVT9um 7vfktcLHvS2VsJjDNuyUCCAKDrEzOPWT -----END CERTIFICATE-----Generated at Sun May 5 08:39:14 2024 by rpki-client on console-fra.rpki-client.org