$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: U41Z+gba7soDZ74XCIRT8vQp0nWHtTwMaNBRfZKewwg= Subject key identifier: 39:DC:8B:5A:CE:D2:15:77:93:60:FD:5B:2C:9E:A1:82:0A:76:08:2F Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 077D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 0777 Signing time: Wed 24 Apr 2024 22:16:22 +0000 Manifest this update: Wed 24 Apr 2024 22:16:22 +0000 Manifest next update: Wed 01 May 2024 22:16:22 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: v4BL8lfB3dFrwBziaKjJp2IPUeSawjn31tG/zsSoseQ=) 2: B6EB6C5ED46611ECA1A27035C4F9AE02.roa (hash: gyJwOD8ZNr6rJJ7upe43x9E14GfXs9WDFKLRuVQq9g8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: Apr 24 22:16:22 2024 GMT Not After : May 1 22:16:22 2024 GMT Subject: CN=662984b6-6ffe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:9c:a9:00:aa:4a:3e:17:75:39:f9:f6:be: f1:9f:be:39:cd:c0:de:9b:11:43:b8:89:4f:f6:56: 71:d2:06:99:ff:51:8e:bd:bd:06:41:d7:b8:a0:ef: d2:b6:0d:08:0e:15:b6:3d:e7:1d:bc:4d:4d:64:9c: e7:e7:2f:cd:47:86:77:db:52:36:08:a4:5d:1a:6f: 46:47:9b:98:59:d0:c3:7d:a1:86:83:6a:20:25:c7: 8a:ae:7a:01:d9:e6:20:82:eb:99:79:d6:c2:78:ee: 13:85:9d:18:5f:be:aa:89:cb:a3:c1:c9:d0:a7:29: ab:12:0a:0b:90:2a:64:1a:3a:f1:53:0a:04:dd:a4: fe:4f:63:b1:c2:b9:f0:24:10:5f:ac:76:4d:55:58: a9:fc:c4:1b:dc:c6:7b:e6:ff:d7:ac:70:c2:95:75: 46:d4:65:3c:95:9c:c9:73:a2:1e:05:1b:30:a8:e1: 13:58:f3:79:20:0f:75:fe:d9:76:b4:52:11:99:de: 4e:32:e9:27:78:9b:0c:a5:bf:db:0c:4e:cd:3c:25: e4:b5:39:4f:14:66:a9:d0:49:06:45:24:b3:2d:27: c7:af:d5:0e:7b:8c:68:ed:27:b8:78:7f:10:fb:ef: d5:1e:86:cb:4e:ee:39:c7:ac:da:14:81:cf:da:8d: bd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:DC:8B:5A:CE:D2:15:77:93:60:FD:5B:2C:9E:A1:82:0A:76:08:2F X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:6d:d2:a9:5c:4d:98:79:9f:4b:00:a4:06:e2:c3:c1:66:86: a3:2a:0c:5b:27:3d:53:b8:8b:b2:00:20:53:ab:d0:74:3c:70: 01:bb:1e:38:d4:0c:52:5d:fc:e1:07:6f:e6:66:9c:49:50:08: ef:5f:3f:b2:72:4c:7d:65:e2:cb:aa:e2:7b:30:91:95:90:3d: 66:21:a4:f2:4a:56:3f:62:0c:8a:84:48:bc:08:62:ea:99:96: 66:ce:55:8c:32:08:92:1c:4f:68:f7:9a:25:42:da:59:53:70: a2:72:22:cf:08:f6:1e:ca:9d:b1:57:93:fc:e8:60:4a:fb:93: 49:ed:a2:83:6c:90:87:30:06:82:ce:a2:97:dd:6b:12:b6:7d: c7:a2:20:ea:a2:83:56:f6:e9:85:1d:28:64:85:e9:74:d8:e8: 00:74:0a:5b:12:90:0c:7b:50:84:fd:86:ec:04:8d:31:55:0c: 89:d1:76:9f:49:04:a3:ed:a4:04:15:25:45:43:c5:20:c5:d7: a4:9f:98:87:85:40:3b:a1:11:e2:b8:ad:07:4e:04:b0:22:7e: 73:92:ca:c9:45:c2:41:88:fb:a1:fc:15:e8:a8:88:d6:fb:cd: 11:9b:45:1d:f3:fc:09:2e:66:d8:19:b7:a9:91:4f:c3:47:87: 8c:7b:ad:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjQwNDI0MjIxNjIyWhcNMjQwNTAxMjIxNjIyWjAYMRYwFAYD VQQDEw02NjI5ODRiNi02ZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxL6cqQCqSj4XdTn59r7xn745zcDemxFDuIlP9lZx0gaZ/1GOvb0GQde4oO/S tg0IDhW2PecdvE1NZJzn5y/NR4Z321I2CKRdGm9GR5uYWdDDfaGGg2ogJceKrnoB 2eYgguuZedbCeO4ThZ0YX76qicujwcnQpymrEgoLkCpkGjrxUwoE3aT+T2Oxwrnw JBBfrHZNVVip/MQb3MZ75v/XrHDClXVG1GU8lZzJc6IeBRswqOETWPN5IA91/tl2 tFIRmd5OMukneJsMpb/bDE7NPCXktTlPFGap0EkGRSSzLSfHr9UOe4xo7Se4eH8Q ++/VHobLTu45x6zaFIHP2o29DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnci1rO 0hV3k2D9WyyeoYIKdggvMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBibdKpXE2YeZ9LAKQG4sPBZoajKgxbJz1TuIuyACBTq9B0PHABux44 1AxSXfzhB2/mZpxJUAjvXz+yckx9ZeLLquJ7MJGVkD1mIaTySlY/YgyKhEi8CGLq mZZmzlWMMgiSHE9o95olQtpZU3CiciLPCPYeyp2xV5P86GBK+5NJ7aKDbJCHMAaC zqKX3WsStn3HoiDqooNW9umFHShkhel02OgAdApbEpAMe1CE/YbsBI0xVQyJ0Xaf SQSj7aQEFSVFQ8Ugxdekn5iHhUA7oRHiuK0HTgSwIn5zksrJRcJBiPuh/BXoqIjW +80Rm0Ud8/wJLmbYGbepkU/DR4eMe62F -----END CERTIFICATE-----Generated at Thu Apr 25 00:31:22 2024 by rpki-client on console-fra.rpki-client.org