$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: ob6FzG0yZCbtKfWG2xC3rYeRgZfYiQwhpTnPW1pFgOI= Subject key identifier: 74:57:F0:BF:45:D0:3C:2F:65:93:0A:22:72:9E:D7:7A:7A:8D:FA:67 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 07BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 07B8 Signing time: Mon 06 May 2024 22:10:39 +0000 Manifest this update: Mon 06 May 2024 22:10:39 +0000 Manifest next update: Mon 13 May 2024 22:10:39 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: NH10ybHK2XDRM+2wCbip39SNOPfeIDiYSOoxtJEk6Rg=) 2: 2C74B00CF70011EA8EFF4C67C4F9AE02.roa (hash: OfR146pBfvNdwkmbFc5ToWQ2OMEy3nfWQWtHKGhPQFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1981 (0x7bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: May 6 22:10:39 2024 GMT Not After : May 13 22:10:39 2024 GMT Subject: CN=6639555f-d0d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:db:a3:44:9a:aa:e7:19:58:d2:b8:3a:ec:20: ac:55:93:8c:aa:2b:db:31:ae:ae:d7:cc:8e:e3:54: 98:c0:75:cd:25:c6:a8:bf:3a:39:4c:b0:b0:26:8b: 36:d4:d5:20:fb:e3:c9:74:b3:ff:97:5e:bb:bc:d1: dd:a4:08:73:63:8d:4f:4a:fc:29:aa:5c:62:34:74: c6:b3:4e:78:cc:4e:11:89:d2:12:0f:a8:09:5f:fb: 4c:fb:ba:57:19:de:0f:ad:03:5f:be:06:3a:ea:94: c1:1c:46:c4:f7:c2:eb:c7:ee:2d:99:86:85:1d:ad: 50:5c:5f:7e:79:c9:90:2c:61:27:bd:fd:62:fe:97: 2b:2c:e9:09:26:51:3c:8d:2f:6c:b2:e7:23:5b:56: 1c:27:db:61:72:f0:d4:58:c1:27:61:2f:0a:10:9e: 2a:0e:63:8f:5b:01:7f:cb:db:0c:58:eb:34:f6:24: b3:c3:52:34:37:3a:6f:9a:76:6e:d5:1e:1e:90:f3: 6c:83:be:19:6e:44:ba:ba:7a:8b:a4:b0:e1:da:68: 5c:43:86:7a:aa:cf:bd:71:d8:5f:ca:91:87:a1:da: 39:3d:ab:6a:27:14:3b:ae:fe:9c:79:c6:b5:ab:6b: 38:ab:79:5a:ef:64:80:ab:42:f9:be:67:c1:56:09: 5a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:57:F0:BF:45:D0:3C:2F:65:93:0A:22:72:9E:D7:7A:7A:8D:FA:67 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:b0:97:21:79:8e:df:19:38:e0:9c:82:4e:c5:ed:74:35:4f: d7:4c:a1:45:48:8f:cb:be:0d:21:b8:50:cf:51:0e:e2:1a:15: ea:85:53:29:bf:5c:d5:69:28:41:93:94:ab:de:b8:b9:3d:88: 32:e3:5b:f1:66:6e:88:17:e5:15:43:a4:31:1a:96:9b:cf:c4: e9:c0:3e:44:a9:a4:cf:ac:3a:04:2b:b2:23:6b:2e:ce:60:84: fd:17:dc:ad:c4:b2:77:8f:ed:ca:a7:d7:f3:59:52:d7:c1:8d: 12:84:32:e8:7f:9e:d8:a8:e3:38:c6:bc:ba:56:11:01:72:df: aa:cd:77:d7:5c:0a:74:ad:af:da:7b:77:5e:db:61:84:7e:3e: 6f:c3:6c:02:23:d5:66:5a:b3:d1:e7:13:aa:9b:aa:58:35:c1: d1:7d:46:81:ed:17:56:e1:4e:f0:8e:67:ba:32:cb:66:0d:86: 9d:e1:ba:2f:b8:52:64:d9:54:3a:c6:64:36:42:67:71:4e:bd: 5c:94:5b:c9:c0:a8:fa:c6:47:be:b8:83:62:f6:96:b3:dc:5e: d7:fe:fd:18:b4:31:01:36:9c:ab:e9:0c:26:c9:43:48:34:88: f5:a3:09:e6:b2:a9:0b:75:fd:ed:c4:a5:ea:8e:dd:a1:a7:36: f6:15:33:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjQwNTA2MjIxMDM5WhcNMjQwNTEzMjIxMDM5WjAYMRYwFAYD VQQDEw02NjM5NTU1Zi1kMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotujRJqq5xlY0rg67CCsVZOMqivbMa6u18yO41SYwHXNJcaovzo5TLCwJos2 1NUg++PJdLP/l167vNHdpAhzY41PSvwpqlxiNHTGs054zE4RidISD6gJX/tM+7pX Gd4PrQNfvgY66pTBHEbE98Lrx+4tmYaFHa1QXF9+ecmQLGEnvf1i/pcrLOkJJlE8 jS9ssucjW1YcJ9thcvDUWMEnYS8KEJ4qDmOPWwF/y9sMWOs09iSzw1I0NzpvmnZu 1R4ekPNsg74ZbkS6unqLpLDh2mhcQ4Z6qs+9cdhfypGHodo5PatqJxQ7rv6ceca1 q2s4q3la72SAq0L5vmfBVglauwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRX8L9F 0DwvZZMKInKe13p6jfpnMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnsJcheY7fGTjgnIJOxe10NU/XTKFFSI/Lvg0huFDPUQ7iGhXqhVMp v1zVaShBk5Sr3ri5PYgy41vxZm6IF+UVQ6QxGpabz8TpwD5EqaTPrDoEK7Ijay7O YIT9F9ytxLJ3j+3Kp9fzWVLXwY0ShDLof57YqOM4xry6VhEBct+qzXfXXAp0ra/a e3de22GEfj5vw2wCI9VmWrPR5xOqm6pYNcHRfUaB7RdW4U7wjme6MstmDYad4bov uFJk2VQ6xmQ2QmdxTr1clFvJwKj6xke+uINi9paz3F7X/v0YtDEBNpyr6QwmyUNI NIj1ownmsqkLdf3txKXqjt2hpzb2FTOn -----END CERTIFICATE-----Generated at Mon May 6 23:05:51 2024 by rpki-client on console-fra.rpki-client.org