$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: RTEu4OzqO5aY4+DD7uLeejXxaQw/zZ3QXzmOXpvROjI= Subject key identifier: 09:4C:A8:ED:0A:56:E9:C3:56:3C:88:5B:81:BB:9C:10:5B:ED:8B:58 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0311 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 030B Signing time: Sun 05 May 2024 03:18:46 +0000 Manifest this update: Sun 05 May 2024 03:18:45 +0000 Manifest next update: Sun 12 May 2024 03:18:45 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: YcmIz+g++b+OtjqACkD0Uov9LjwXINNnvMhpsjz8h4c=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: 1ectacXYc5Ni/B4LKjKjy/yz6JJ0/bOlgffCGf02HwU=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: ZoKh3xhYxhnJLBqf+U3DzxssrG+AkkH4yvT0tAoB9Aw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: May 5 03:18:45 2024 GMT Not After : May 12 03:18:45 2024 GMT Subject: CN=6636fa95-733c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:12:2d:0b:7c:fb:ee:43:5d:19:77:cd:9c:ee: 12:e1:7c:b8:16:62:a9:7a:4c:f2:02:11:50:fe:4b: 05:cc:04:a6:d3:67:f4:bf:3d:61:20:4b:d0:80:9b: 8e:e1:02:ec:9a:6d:99:7c:86:de:3a:89:6b:a6:de: 89:36:fe:13:1c:65:28:a7:89:7f:12:cd:bb:a6:7d: f5:8e:64:f3:7f:a7:a8:d6:bf:41:28:a2:2f:91:4e: 01:8d:b7:4a:3c:c8:59:3d:17:a6:02:f4:4a:6a:67: c2:a5:d2:34:de:03:34:13:27:39:9d:51:d7:94:fa: ec:af:55:b7:26:de:75:20:c7:cc:23:18:72:5f:b0: b2:22:88:72:90:2f:c3:05:76:b0:72:97:8d:71:2f: 45:8c:e3:21:8c:4d:0d:5f:dd:ba:95:4f:e2:21:1a: f5:3e:c8:c4:57:76:df:2d:1d:94:36:c0:fd:e2:18: 26:4c:07:51:ae:a6:b1:dd:2b:20:7a:a1:71:13:e9: 14:44:08:c5:03:c1:94:7d:08:a6:02:9a:14:f6:4c: 96:31:9d:59:e3:1b:0c:17:36:d1:a3:dd:8c:8f:33: bc:3d:01:3c:56:95:f9:66:bf:2c:75:dc:c0:2d:e9: 9d:cf:7b:69:b4:cb:8f:92:fa:e8:81:a7:f6:20:c9: 96:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:4C:A8:ED:0A:56:E9:C3:56:3C:88:5B:81:BB:9C:10:5B:ED:8B:58 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:14:ec:81:87:f8:9a:87:93:a4:91:a5:a0:00:ec:4b:56:d5: 29:70:d7:5c:e5:12:98:83:40:ca:ba:36:91:77:e1:f6:be:41: 57:3f:50:56:44:b7:ac:0d:6a:e3:70:78:a2:09:eb:7a:ec:0f: 4f:c3:00:f6:0c:10:67:20:db:26:28:43:58:6f:68:a1:78:1c: 99:a8:96:06:c4:07:cb:50:8b:08:1c:23:ae:7e:4c:fc:1a:2b: 6c:9a:96:10:71:27:b5:36:56:fb:84:99:8a:8d:45:6e:71:73: 7a:97:67:50:92:17:68:c6:7c:e6:ec:af:f3:1b:b8:3d:be:d0: ae:cf:ad:40:8f:8d:c2:da:93:63:50:65:37:8b:08:ad:d8:76: ae:d9:a3:81:bf:2a:48:03:c1:47:ba:d3:a7:84:0f:83:e9:14: 7c:70:1b:9e:d4:13:ed:fb:fe:4d:88:b1:e6:a8:f4:81:92:e3: 5e:2f:44:b6:cb:0f:46:39:7f:f5:f0:22:55:7c:b0:77:82:89: 70:a6:cd:e6:b1:d9:20:dc:3f:d4:28:24:97:d3:78:f3:97:72: b4:ee:8f:72:49:4c:da:cb:43:ca:5b:0f:66:1d:91:18:40:64: ea:e6:02:cc:9d:6f:bf:14:9b:d5:48:ae:71:3e:25:c7:5a:cb: bf:36:dc:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjQwNTA1MDMxODQ1WhcNMjQwNTEyMDMxODQ1WjAYMRYwFAYD VQQDEw02NjM2ZmE5NS03MzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRItC3z77kNdGXfNnO4S4Xy4FmKpekzyAhFQ/ksFzASm02f0vz1hIEvQgJuO 4QLsmm2ZfIbeOolrpt6JNv4THGUop4l/Es27pn31jmTzf6eo1r9BKKIvkU4BjbdK PMhZPRemAvRKamfCpdI03gM0Eyc5nVHXlPrsr1W3Jt51IMfMIxhyX7CyIohykC/D BXawcpeNcS9FjOMhjE0NX926lU/iIRr1PsjEV3bfLR2UNsD94hgmTAdRrqax3Ssg eqFxE+kURAjFA8GUfQimApoU9kyWMZ1Z4xsMFzbRo92MjzO8PQE8VpX5Zr8sddzA Lemdz3tptMuPkvrogaf2IMmWNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlMqO0K VunDVjyIW4G7nBBb7YtYMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEFOyBh/iah5OkkaWgAOxLVtUpcNdc5RKYg0DKujaRd+H2vkFXP1BW RLesDWrjcHiiCet67A9PwwD2DBBnINsmKENYb2iheByZqJYGxAfLUIsIHCOufkz8 GitsmpYQcSe1Nlb7hJmKjUVucXN6l2dQkhdoxnzm7K/zG7g9vtCuz61Aj43C2pNj UGU3iwit2Hau2aOBvypIA8FHutOnhA+D6RR8cBue1BPt+/5NiLHmqPSBkuNeL0S2 yw9GOX/18CJVfLB3golwps3msdkg3D/UKCSX03jzl3K07o9ySUzay0PKWw9mHZEY QGTq5gLMnW+/FJvVSK5xPiXHWsu/NtwS -----END CERTIFICATE-----Generated at Sun May 5 03:47:49 2024 by rpki-client on console-fra.rpki-client.org