$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft File: CHspwfvXREICrgAqSXEn_WbyStk.mft (raw, json) Hash identifier: FfscxtY0U8bKzeEVOlklDhNtvM/lvt+992dFw50qOpQ= Subject key identifier: B1:F2:65:42:02:E6:C4:00:C9:6F:82:99:82:C0:94:B9:CF:DD:9F:8B Authority key identifier: 08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 Certificate issuer: /CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Certificate serial: 03B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft Manifest number: 03AC Signing time: Wed 01 May 2024 02:49:14 +0000 Manifest this update: Wed 01 May 2024 02:49:13 +0000 Manifest next update: Wed 08 May 2024 02:49:13 +0000 Files and hashes: 1: CHspwfvXREICrgAqSXEn_WbyStk.crl (hash: X28WrIhAhKdg0phGHY9kX//jT89WydC/eeHj6uwcwco=) 2: D3C965FA45F611EC9FB3BB49C4F9AE02.roa (hash: JQcDPvGf5Ge/ehbUfKvSdEVu20oeVzlrwDyvsIfGmBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Validity Not Before: May 1 02:49:13 2024 GMT Not After : May 8 02:49:13 2024 GMT Subject: CN=6631ada9-1a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:94:b4:19:f1:79:5e:fb:04:99:f3:f2:a6:36: a0:24:2e:75:af:0c:3a:65:15:70:71:80:db:78:39: 60:29:0b:67:22:70:d7:e1:32:e2:6b:2c:ad:5d:75: 66:b5:8a:47:5a:f8:b3:a9:af:77:c0:32:62:78:ad: 24:f5:6c:02:4c:ff:f6:67:02:86:90:f1:df:67:10: aa:75:af:4e:50:bb:4d:b3:fb:19:1e:b5:67:e7:8c: d2:c5:f9:7f:5d:ea:fe:3c:c2:3e:d5:54:6a:3b:28: 2a:8e:d1:9e:55:31:f9:dd:91:25:c4:40:9a:5b:ce: e4:7f:5a:3f:7b:e9:81:aa:d3:e8:6d:0d:e8:af:37: 83:ed:f4:a0:c4:0b:8f:f4:1e:98:ee:4b:9a:6d:ba: 52:7d:3b:02:e9:ee:11:c2:d1:2e:56:64:90:2e:6e: 19:c4:dd:f5:e8:8a:0d:c0:c6:28:f5:d1:a9:73:8b: 05:a7:8c:86:67:12:75:5c:f3:14:47:24:c3:67:3d: bf:3f:88:20:c3:93:56:f0:ae:b8:44:04:46:c0:df: 3c:d8:49:2d:c5:46:64:c0:d9:98:5e:25:29:48:17: f2:50:e8:ac:fe:f1:bf:d4:c3:04:e2:6b:66:8a:e4: a2:46:6f:9c:82:3c:a7:cb:77:1c:1d:94:91:2c:50: 25:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F2:65:42:02:E6:C4:00:C9:6F:82:99:82:C0:94:B9:CF:DD:9F:8B X509v3 Authority Key Identifier: keyid:08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:1c:2f:a9:87:c3:7e:e1:10:33:25:c2:7f:f5:74:da:27:bd: 75:1f:8f:ac:9f:86:dd:8b:01:03:66:22:8b:3d:4e:99:82:60: 98:25:bf:83:2e:dd:76:a6:de:8a:a2:05:e4:02:ef:52:41:30: 53:22:74:0f:55:5f:4f:10:94:da:f1:3a:23:6f:bb:5f:2d:55: b8:5a:a0:a8:c8:c3:42:ce:00:f2:bf:78:3f:e2:66:58:82:a6: 41:9c:4b:24:cc:74:3c:13:74:3d:06:97:2d:cc:10:d8:f3:41: ac:46:10:cc:18:72:46:15:6d:cf:48:9c:c2:bf:85:37:7c:5a: d1:09:73:84:b2:5b:bb:05:72:91:f4:ea:08:b3:f2:22:96:8d: 15:8d:ce:ee:eb:b7:6d:bb:8e:b6:11:65:78:48:ea:d4:94:b6: 9f:ee:24:e9:7f:ff:6f:97:44:77:c5:70:e9:39:93:66:d0:44: 7f:f3:44:a7:04:a6:52:e4:0e:fc:7b:e2:f3:21:8b:c0:2c:20: 9e:ff:ac:9d:fa:37:0d:42:e9:ae:f1:87:0b:0e:f1:8a:f1:c2: 34:96:95:f5:a8:15:9b:c2:71:cc:94:ff:7f:9f:c7:2f:47:1f: 35:1f:1e:4d:6f:84:0e:a6:d4:61:1c:69:33:92:3d:76:f7:19: 3e:42:20:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRDkxMTAvBgNVBAUTKDA4N0IyOUMxRkJENzQ0NDIwMkFFMDAyQTQ5NzEyN0ZE NjZGMjRBRDkwHhcNMjQwNTAxMDI0OTEzWhcNMjQwNTA4MDI0OTEzWjAYMRYwFAYD VQQDEw02NjMxYWRhOS0xYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45S0GfF5XvsEmfPypjagJC51rww6ZRVwcYDbeDlgKQtnInDX4TLiayytXXVm tYpHWvizqa93wDJieK0k9WwCTP/2ZwKGkPHfZxCqda9OULtNs/sZHrVn54zSxfl/ Xer+PMI+1VRqOygqjtGeVTH53ZElxECaW87kf1o/e+mBqtPobQ3orzeD7fSgxAuP 9B6Y7kuabbpSfTsC6e4RwtEuVmSQLm4ZxN316IoNwMYo9dGpc4sFp4yGZxJ1XPMU RyTDZz2/P4ggw5NW8K64RARGwN882EktxUZkwNmYXiUpSBfyUOis/vG/1MME4mtm iuSiRm+cgjyny3ccHZSRLFAlwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHyZUIC 5sQAyW+CmYLAlLnP3Z+LMB8GA1UdIwQYMBaAFAh7KcH710RCAq4AKklxJ/1m8krZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVEOS82QTc2NUFBQTQ1 REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJFSUNyZ0FxU1hFbl9XYnlT dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIc3B3ZnZYUkVJQ3JnQXFTWEVuX1dieVN0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUVEOS82QTc2NUFBQTQ1REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJF SUNyZ0FxU1hFbl9XYnlTdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSHC+ph8N+4RAzJcJ/9XTaJ711H4+sn4bdiwEDZiKLPU6ZgmCYJb+D Lt12pt6KogXkAu9SQTBTInQPVV9PEJTa8Tojb7tfLVW4WqCoyMNCzgDyv3g/4mZY gqZBnEskzHQ8E3Q9BpctzBDY80GsRhDMGHJGFW3PSJzCv4U3fFrRCXOEslu7BXKR 9OoIs/Iilo0Vjc7u67dtu462EWV4SOrUlLaf7iTpf/9vl0R3xXDpOZNm0ER/80Sn BKZS5A78e+LzIYvALCCe/6yd+jcNQumu8YcLDvGK8cI0lpX1qBWbwnHMlP9/n8cv Rx81Hx5Nb4QOptRhHGkzkj129xk+QiCE -----END CERTIFICATE-----Generated at Wed May 1 03:20:37 2024 by rpki-client on console-fra.rpki-client.org