$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: GcO52GUoFbVLlXLikMB7rE440q34FGfwGu4pEX58pyM= Subject key identifier: D2:B3:4F:10:49:86:F0:9E:20:78:09:17:3C:A4:34:CB:D8:5C:AC:8E Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 02F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 02ED Signing time: Tue 07 May 2024 03:17:11 +0000 Manifest this update: Tue 07 May 2024 03:17:10 +0000 Manifest next update: Tue 14 May 2024 03:17:10 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: nZYBHXClshLtNdQf5JOgpSuK0LSlU8VoZFQbmPS0XN4=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: d9Y8e8kwXktCEDAI4+yfDEKSMkmM2i4tO6pb496wEAU=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: XV9cX75RXsqKNTf84cASXCPO6bvZez9c+lizXgZPdBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: May 7 03:17:10 2024 GMT Not After : May 14 03:17:10 2024 GMT Subject: CN=66399d36-44d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f6:0b:a2:30:3e:99:c7:e3:1f:51:25:3e:da: 7f:ad:79:7b:a7:2f:9d:8f:62:80:91:dd:63:d7:0e: 81:7e:20:6e:c9:f1:2c:09:c9:27:a3:46:aa:d2:07: bc:ff:9e:6a:07:30:26:84:bb:68:e3:37:24:df:a8: a5:79:e8:70:97:c8:4f:bf:f4:3d:2a:84:15:d5:5b: e2:ea:48:0c:78:a2:6d:b1:e5:ee:72:eb:38:23:21: 92:82:e1:39:99:22:a4:6d:93:45:22:42:b2:d2:d4: 6a:df:97:bb:7c:77:a7:33:82:40:12:39:0b:ab:2b: c7:c8:2b:99:1a:3d:0a:71:1b:af:d3:93:3d:09:0c: e6:f1:ff:28:67:90:7c:b8:2d:21:f9:cc:08:b3:cf: ca:5b:6b:32:97:ca:49:8d:ec:c9:e1:26:ce:8b:c7: e8:7b:a4:1a:d6:34:93:a8:a9:1f:76:79:62:45:46: 82:a8:df:92:63:42:cb:03:f7:93:8e:0b:df:bc:ef: 54:2d:d0:55:dc:13:38:cc:d4:9f:99:81:ae:37:10: 5f:7c:a9:41:4b:59:0a:ec:2a:09:29:9d:7a:26:47: 39:79:95:f2:9b:36:fc:1b:31:4a:f0:5e:02:86:86: b5:61:2c:06:a4:0e:68:ff:dc:a5:55:52:c8:4e:b3: 0a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B3:4F:10:49:86:F0:9E:20:78:09:17:3C:A4:34:CB:D8:5C:AC:8E X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:9c:5e:ce:80:dc:d1:99:9b:54:ca:f1:1f:1a:21:43:47:82: 70:f6:14:59:1b:ee:6e:2d:98:3a:05:b7:14:8a:9a:5e:a6:73: 9b:d8:a5:b1:3b:23:bd:a6:b4:71:7d:a8:cb:e1:76:d3:ee:6d: 8d:48:37:45:98:ee:30:48:b5:c7:c0:42:59:36:10:ee:4d:fb: 29:5c:f8:f2:9a:d0:56:aa:3a:90:02:9e:fc:b5:02:df:1d:a9: 54:a3:8a:7f:b3:9e:ba:87:1a:c7:77:65:1a:cb:19:7f:f3:2f: 41:92:6a:f3:57:06:1e:e8:59:bb:20:34:c3:09:93:72:26:d3: 37:44:ba:9d:2e:93:70:1d:5e:68:d8:a5:10:0f:02:6a:13:b4: 19:bb:74:42:8c:55:4f:03:09:51:c7:4d:c0:c5:8c:c6:a3:1a: 12:9b:7f:11:7d:42:09:a4:4c:a9:af:ac:02:2d:ad:6f:e1:35: 0f:18:fb:0e:90:de:c9:8a:8f:0c:85:05:7f:95:1e:be:56:a2: 68:75:32:59:48:9c:9c:cd:9c:c6:7a:e4:6b:a2:f7:1a:9a:9f: 4e:87:da:6c:fd:1b:ca:18:93:89:14:3c:63:81:92:61:96:9e: ed:23:ad:ac:86:11:5d:43:b6:ab:d2:54:86:32:a2:2e:6b:99: 1f:c1:c4:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjQwNTA3MDMxNzEwWhcNMjQwNTE0MDMxNzEwWjAYMRYwFAYD VQQDEw02NjM5OWQzNi00NGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PYLojA+mcfjH1ElPtp/rXl7py+dj2KAkd1j1w6BfiBuyfEsCckno0aq0ge8 /55qBzAmhLto4zck36ileehwl8hPv/Q9KoQV1Vvi6kgMeKJtseXucus4IyGSguE5 mSKkbZNFIkKy0tRq35e7fHenM4JAEjkLqyvHyCuZGj0KcRuv05M9CQzm8f8oZ5B8 uC0h+cwIs8/KW2syl8pJjezJ4SbOi8foe6Qa1jSTqKkfdnliRUaCqN+SY0LLA/eT jgvfvO9ULdBV3BM4zNSfmYGuNxBffKlBS1kK7CoJKZ16Jkc5eZXymzb8GzFK8F4C hoa1YSwGpA5o/9ylVVLITrMKJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKzTxBJ hvCeIHgJFzykNMvYXKyOMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBnF7OgNzRmZtUyvEfGiFDR4Jw9hRZG+5uLZg6BbcUippepnOb2KWx OyO9prRxfajL4XbT7m2NSDdFmO4wSLXHwEJZNhDuTfspXPjymtBWqjqQAp78tQLf HalUo4p/s566hxrHd2Uayxl/8y9BkmrzVwYe6Fm7IDTDCZNyJtM3RLqdLpNwHV5o 2KUQDwJqE7QZu3RCjFVPAwlRx03AxYzGoxoSm38RfUIJpEypr6wCLa1v4TUPGPsO kN7Jio8MhQV/lR6+VqJodTJZSJyczZzGeuRrovcamp9Oh9ps/RvKGJOJFDxjgZJh lp7tI62shhFdQ7ar0lSGMqIua5kfwcTk -----END CERTIFICATE-----Generated at Tue May 7 03:50:01 2024 by rpki-client on console-ams.rpki-client.org