$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: RYVhpY8GBKY/sv9Z3PdXvBczmpcCiHEe80HEFPUaxqc= Subject key identifier: B9:BD:69:39:91:7F:18:31:15:43:F6:7A:F9:5D:8F:6A:1A:43:F6:98 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 0745 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 073E Signing time: Thu 02 May 2024 22:33:10 +0000 Manifest this update: Thu 02 May 2024 22:33:10 +0000 Manifest next update: Thu 09 May 2024 22:33:10 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: jBcuevX/huF4p0TQhbvOaW00QJ72BAjtffyz6LTGezE=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: OSbXh9zQxt7fc7/E4bJQI3cGElZpZOUkVqVOHwbtAvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1861 (0x745) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: May 2 22:33:10 2024 GMT Not After : May 9 22:33:10 2024 GMT Subject: CN=663414a6-6cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:95:9a:1f:74:05:e0:6a:4e:73:ca:69:00:81: 8d:d9:4d:35:e2:8c:b1:8b:51:7b:e2:9e:7b:90:21: 75:a9:d8:42:01:86:99:fb:1e:75:d3:d1:4d:c1:e5: a6:a5:ac:44:44:2c:83:c5:e5:92:37:a9:00:b2:12: fa:76:fd:8b:6e:60:4d:63:e6:cb:d9:94:1c:ec:e7: 72:6b:2c:cd:02:1a:20:88:27:c2:e1:8f:af:65:1d: 19:39:fb:3c:64:cf:5d:0c:be:5c:ac:78:14:7f:30: ad:aa:60:cc:9c:90:97:d7:7f:00:b1:89:f4:1c:5a: 1b:ca:64:a7:3d:9e:f3:49:ee:33:c7:ac:60:f4:4b: 49:ae:23:f1:a0:98:9d:d8:35:0a:4a:69:d8:2e:c2: e1:9b:dd:68:1c:1c:c8:b6:c1:6b:d0:8d:eb:8b:ef: 7f:b4:0c:7a:e5:9c:51:cc:55:a8:85:3f:fc:11:72: e2:fc:57:eb:8f:23:1e:40:d4:eb:56:c3:4a:bb:ec: 92:02:34:07:91:de:2e:b7:aa:ea:37:27:e7:7a:9d: ab:80:37:1b:34:f4:ba:7b:a2:c1:5c:b9:ec:46:da: 50:c0:0e:cf:0c:c3:05:16:9d:6f:2d:d6:df:ee:cf: d4:fb:a7:22:5c:a8:1d:ea:58:b6:90:f2:26:34:33: 52:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:BD:69:39:91:7F:18:31:15:43:F6:7A:F9:5D:8F:6A:1A:43:F6:98 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:2e:2c:59:32:3a:cb:04:b1:34:29:2a:ae:53:52:14:c7:45: 92:92:11:35:ce:5c:f1:cb:8b:db:60:5b:24:9c:cc:11:60:27: 6f:e4:dc:8c:16:8a:07:f3:df:f4:02:d2:78:1d:c0:4f:f9:43: 5d:ec:32:f4:b9:f9:47:6a:e8:4e:50:5b:ad:b9:98:ac:ab:2c: 49:01:66:91:24:38:df:0b:42:89:54:be:7e:7f:a4:5a:bd:a2: 08:39:d6:85:08:33:a1:11:f5:14:96:0c:3f:24:65:94:ee:15: ab:b4:87:51:7b:73:c2:fc:75:8e:f4:5d:92:95:11:6a:c3:55: dc:45:e6:61:26:f7:e9:63:9a:90:e1:92:ec:17:0a:b4:68:97: 23:c1:e9:b0:35:3c:eb:3b:70:4d:43:85:e1:89:9e:24:2c:9b: 58:0d:aa:dc:a8:57:e4:ac:9a:d8:16:03:ed:16:75:3b:e5:f2: eb:43:b1:45:b1:6b:f2:7e:a9:c4:29:c5:f4:ac:53:30:e1:f5: 39:7f:c9:5b:f1:f5:0f:65:06:83:23:13:0c:2d:2e:c3:cc:6c: 88:3e:de:53:24:50:4b:8e:5f:7b:65:21:97:05:be:a0:43:59: 54:23:49:63:db:02:8e:18:ad:71:88:06:e3:5c:9c:0c:a3:0c: 2d:27:e8:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjQwNTAyMjIzMzEwWhcNMjQwNTA5MjIzMzEwWjAYMRYwFAYD VQQDEw02NjM0MTRhNi02Y2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZWaH3QF4GpOc8ppAIGN2U014oyxi1F74p57kCF1qdhCAYaZ+x5109FNweWm paxERCyDxeWSN6kAshL6dv2LbmBNY+bL2ZQc7OdyayzNAhogiCfC4Y+vZR0ZOfs8 ZM9dDL5crHgUfzCtqmDMnJCX138AsYn0HFobymSnPZ7zSe4zx6xg9EtJriPxoJid 2DUKSmnYLsLhm91oHBzItsFr0I3ri+9/tAx65ZxRzFWohT/8EXLi/FfrjyMeQNTr VsNKu+ySAjQHkd4ut6rqNyfnep2rgDcbNPS6e6LBXLnsRtpQwA7PDMMFFp1vLdbf 7s/U+6ciXKgd6li2kPImNDNSlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLm9aTmR fxgxFUP2evldj2oaQ/aYMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByLixZMjrLBLE0KSquU1IUx0WSkhE1zlzxy4vbYFsknMwRYCdv5NyM FooH89/0AtJ4HcBP+UNd7DL0uflHauhOUFutuZisqyxJAWaRJDjfC0KJVL5+f6Ra vaIIOdaFCDOhEfUUlgw/JGWU7hWrtIdRe3PC/HWO9F2SlRFqw1XcReZhJvfpY5qQ 4ZLsFwq0aJcjwemwNTzrO3BNQ4XhiZ4kLJtYDarcqFfkrJrYFgPtFnU75fLrQ7FF sWvyfqnEKcX0rFMw4fU5f8lb8fUPZQaDIxMMLS7DzGyIPt5TJFBLjl97ZSGXBb6g Q1lUI0lj2wKOGK1xiAbjXJwMowwtJ+gY -----END CERTIFICATE-----Generated at Thu May 2 23:19:04 2024 by rpki-client on console-ams.rpki-client.org