$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: rhTAvrrsWFCobUPoFDeVvff8L49NJxNe2Dzk24va8pU= Subject key identifier: 32:34:80:09:0D:9A:39:40:CC:4D:97:10:C3:2D:FC:89:91:FC:C1:BC Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 041C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0416 Signing time: Fri 19 Apr 2024 02:00:49 +0000 Manifest this update: Fri 19 Apr 2024 02:00:48 +0000 Manifest next update: Fri 26 Apr 2024 02:00:48 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: K9wciguSh7e1BGRdQ456F77zrfZleE9i3WyNfBr9waI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 02:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1052 (0x41c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Apr 19 02:00:48 2024 GMT Not After : Apr 26 02:00:48 2024 GMT Subject: CN=6621d051-298b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9c:0f:db:8b:a7:30:73:61:bd:1a:c5:bb:5a: 11:17:04:eb:7b:3a:76:4b:3b:ca:08:be:a2:8f:c7: 7b:55:d5:0f:a2:61:81:ee:8c:0b:c5:19:ba:9e:ef: f8:41:f9:52:89:46:ff:ff:f5:38:ec:f8:02:41:77: 87:16:ad:35:1a:dc:8a:d3:e5:44:bf:bb:91:f2:72: 94:6e:83:68:c9:37:f0:91:e4:b4:0d:55:9a:04:b8: eb:8e:57:d3:96:ea:e1:ab:84:8f:f9:49:70:a1:37: 49:49:17:64:83:07:70:e6:04:83:8e:78:ee:64:eb: 2e:4c:90:aa:f3:c2:fa:d9:84:f1:cc:cc:73:a7:94: 11:9a:5e:76:1f:20:2d:6a:cf:62:39:77:dc:4d:a9: cd:51:56:5e:52:57:42:2a:f4:27:04:a5:8f:b6:8c: 4d:3a:cc:7c:91:5d:85:e2:0a:cc:cb:df:72:56:45: eb:84:73:33:b5:bb:b3:2b:5a:84:64:ba:d0:15:8a: 0b:3a:62:ee:17:6a:2b:54:77:3b:93:f1:a8:9c:cf: ba:1e:b9:1e:cd:77:80:5a:29:a0:b9:af:df:12:66: 81:40:71:d3:86:41:6f:16:91:f0:10:61:78:16:4f: 26:fe:31:fb:ea:d6:85:57:6b:a8:1f:84:03:0d:fc: 13:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:34:80:09:0D:9A:39:40:CC:4D:97:10:C3:2D:FC:89:91:FC:C1:BC X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c6:11:49:44:4b:9d:dd:55:4f:13:c6:82:be:57:91:4a:b1: 58:38:38:ff:68:e9:28:66:bc:ce:cc:11:6d:1f:dd:25:2d:00: b0:76:3f:37:c3:b2:56:b3:50:42:fc:c1:15:b5:19:c9:b3:7b: 50:69:1b:61:c6:6a:ec:2a:a4:c3:3d:4a:9a:3f:c0:fe:5e:92: 07:b9:92:82:f7:61:aa:8b:00:6b:92:1c:c1:30:ad:e3:4d:35: 84:88:cb:bd:dc:84:60:f1:62:e0:97:d0:a0:1f:72:0a:3a:35: eb:f2:69:1d:84:1c:e4:57:92:a4:52:7b:52:2b:ca:b7:19:5a: 91:da:2e:b9:c3:c1:5c:78:2d:00:ce:d5:16:43:26:f4:81:a2: 25:51:32:89:f4:5a:5f:4a:82:05:8f:14:17:53:d7:58:9c:ff: bc:d5:f6:a1:33:08:d5:a7:7d:ba:ab:43:79:62:5e:80:a4:8c: 54:99:4a:58:0a:94:2f:6c:58:d6:d6:ac:96:ce:d9:dd:35:fc: 6d:8a:b8:97:d4:6a:6f:54:0c:0f:db:7f:3b:0d:96:42:60:65: 87:53:1a:c5:95:7b:d5:7b:85:04:10:cf:40:e3:9d:97:97:37: 42:29:6d:fc:71:f9:44:e6:da:4f:0e:0d:26:f8:76:15:18:ea: d8:ad:2a:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjQwNDE5MDIwMDQ4WhcNMjQwNDI2MDIwMDQ4WjAYMRYwFAYD VQQDEw02NjIxZDA1MS0yOThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5wP24unMHNhvRrFu1oRFwTrezp2SzvKCL6ij8d7VdUPomGB7owLxRm6nu/4 QflSiUb///U47PgCQXeHFq01GtyK0+VEv7uR8nKUboNoyTfwkeS0DVWaBLjrjlfT lurhq4SP+UlwoTdJSRdkgwdw5gSDjnjuZOsuTJCq88L62YTxzMxzp5QRml52HyAt as9iOXfcTanNUVZeUldCKvQnBKWPtoxNOsx8kV2F4grMy99yVkXrhHMztbuzK1qE ZLrQFYoLOmLuF2orVHc7k/GonM+6HrkezXeAWimgua/fEmaBQHHThkFvFpHwEGF4 Fk8m/jH76taFV2uoH4QDDfwTSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDI0gAkN mjlAzE2XEMMt/ImR/MG8MB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3xhFJREud3VVPE8aCvleRSrFYODj/aOkoZrzOzBFtH90lLQCwdj83 w7JWs1BC/MEVtRnJs3tQaRthxmrsKqTDPUqaP8D+XpIHuZKC92GqiwBrkhzBMK3j TTWEiMu93IRg8WLgl9CgH3IKOjXr8mkdhBzkV5KkUntSK8q3GVqR2i65w8FceC0A ztUWQyb0gaIlUTKJ9FpfSoIFjxQXU9dYnP+81fahMwjVp326q0N5Yl6ApIxUmUpY CpQvbFjW1qyWztndNfxtiriX1GpvVAwP2387DZZCYGWHUxrFlXvVe4UEEM9A452X lzdCKW38cflE5tpPDg0m+HYVGOrYrSqJ -----END CERTIFICATE-----Generated at Fri Apr 19 02:42:35 2024 by rpki-client on console-fra.rpki-client.org