$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: WqJiwoWRyStq04sxv5nbv13B8yKYvdqime2L2H11zEQ= Subject key identifier: 4F:5E:32:02:69:B1:8D:63:6B:EA:DC:19:0B:B6:EB:A9:7A:81:26:88 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 06FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 06F2 Signing time: Sun 28 Apr 2024 22:49:58 +0000 Manifest this update: Sun 28 Apr 2024 22:49:57 +0000 Manifest next update: Sun 05 May 2024 22:49:57 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: 94FlRC7l37Z98qh8yn/MGPODIEdxL+tV7X1orXkNOAw=) 2: A3C7651AD06411ED8A5ADE5EC4F9AE02.roa (hash: N93Z2cXGkLHgshLBPD76RTxJ/CnlZHXFVqSx0yLO0lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 21:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1790 (0x6fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Apr 28 22:49:57 2024 GMT Not After : May 5 22:49:57 2024 GMT Subject: CN=662ed295-d3a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ad:30:9a:fd:65:6c:0e:e6:f3:20:9f:9c:0c: 29:40:d0:bc:45:b6:fd:59:06:88:f2:51:f5:ba:67: 6d:14:d8:02:31:20:66:31:58:53:e0:40:43:bb:ca: 4c:b5:7c:44:e7:1d:d6:07:3c:50:3a:0d:eb:40:34: 81:ba:a5:8e:91:e8:e0:c2:6e:e3:f3:0c:31:be:5a: 8a:42:8c:8b:a7:c1:65:1c:86:d5:0e:ee:0a:04:d9: 2a:8b:29:68:03:bf:a3:8c:a8:46:89:b8:ab:41:18: 4e:a1:0f:14:01:ea:5b:4c:84:f4:15:32:d6:9c:ac: 0b:76:03:26:7b:57:49:9d:88:00:ec:bd:7c:9f:ca: 2b:d0:5f:8a:3b:d6:a0:15:40:45:bb:59:9f:4e:82: 86:82:44:60:8a:a8:ae:cc:f7:06:d3:c6:8f:7d:f4: 5d:bb:1a:13:ee:11:cd:e7:d5:b1:e2:92:e7:1a:44: 23:eb:35:ec:22:a2:d5:0b:12:b0:ee:25:0e:d4:65: 33:a2:ea:58:44:02:27:2f:83:54:96:c4:71:fa:d6: 33:4d:bc:6d:2d:61:ae:2e:04:da:ee:94:bc:f1:1f: 80:4d:28:26:f0:bf:23:31:82:a1:d7:da:d4:17:6c: bb:39:96:38:8c:9c:24:fd:62:7b:38:1a:6d:e8:2e: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5E:32:02:69:B1:8D:63:6B:EA:DC:19:0B:B6:EB:A9:7A:81:26:88 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:fe:3e:c0:41:99:00:8e:f6:e7:e4:83:72:49:d0:3d:1e:96: 52:a1:b7:39:b3:57:7e:34:96:61:92:de:20:65:56:37:75:dc: 97:19:29:94:95:08:af:fe:d5:e9:97:b8:e6:6a:20:ba:0e:8b: 4c:51:b9:40:20:ce:0c:74:67:69:eb:62:30:9d:24:65:f7:37: 4b:7a:78:6d:e3:bf:25:ab:fa:50:06:c4:e7:b7:81:f3:29:c5: 07:41:14:70:ad:a8:a3:7f:a9:b3:87:cd:2b:ac:3a:19:41:c8: 65:0e:3b:3e:17:eb:ef:c6:4d:dd:76:69:9f:d0:8e:fe:bc:87: 9a:f3:7e:12:a5:6c:54:b4:8c:e8:22:ae:50:5b:f2:eb:c8:4e: 70:c2:d8:bf:04:1b:92:de:d1:9b:b4:1d:68:22:a0:1f:55:ad: c1:90:18:96:5d:bc:b0:9e:d9:08:56:9b:4e:61:88:be:b3:a2: 01:81:ba:ec:45:d4:f2:05:48:fa:f6:7c:9c:b8:92:ab:c2:58: 8c:7d:4f:05:54:ac:31:ef:4c:b9:f6:0c:1c:6e:bf:5d:57:ce: 2e:b7:ff:b5:fb:49:6c:06:ca:81:69:b7:ff:2c:51:08:78:a2: b5:71:6c:9a:da:39:ed:97:b4:6a:0b:ba:dd:05:8c:76:12:7b: e9:d3:ab:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjQwNDI4MjI0OTU3WhcNMjQwNTA1MjI0OTU3WjAYMRYwFAYD VQQDEw02NjJlZDI5NS1kM2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw60wmv1lbA7m8yCfnAwpQNC8Rbb9WQaI8lH1umdtFNgCMSBmMVhT4EBDu8pM tXxE5x3WBzxQOg3rQDSBuqWOkejgwm7j8wwxvlqKQoyLp8FlHIbVDu4KBNkqiylo A7+jjKhGibirQRhOoQ8UAepbTIT0FTLWnKwLdgMme1dJnYgA7L18n8or0F+KO9ag FUBFu1mfToKGgkRgiqiuzPcG08aPffRduxoT7hHN59Wx4pLnGkQj6zXsIqLVCxKw 7iUO1GUzoupYRAInL4NUlsRx+tYzTbxtLWGuLgTa7pS88R+ATSgm8L8jMYKh19rU F2y7OZY4jJwk/WJ7OBpt6C5sAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9eMgJp sY1ja+rcGQu266l6gSaIMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8/j7AQZkAjvbn5INySdA9HpZSobc5s1d+NJZhkt4gZVY3ddyXGSmU lQiv/tXpl7jmaiC6DotMUblAIM4MdGdp62IwnSRl9zdLenht478lq/pQBsTnt4Hz KcUHQRRwraijf6mzh80rrDoZQchlDjs+F+vvxk3ddmmf0I7+vIea834SpWxUtIzo Iq5QW/LryE5wwti/BBuS3tGbtB1oIqAfVa3BkBiWXbywntkIVptOYYi+s6IBgbrs RdTyBUj69nycuJKrwliMfU8FVKwx70y59gwcbr9dV84ut/+1+0lsBsqBabf/LFEI eKK1cWya2jntl7RqC7rdBYx2Envp06vB -----END CERTIFICATE-----Generated at Sun Apr 28 23:36:47 2024 by rpki-client on console-ams.rpki-client.org