$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft File: he6QOP_DVBq9-33Z7TPyquNy54w.mft (raw, json) Hash identifier: smPbtfhdrBw34qjz1dSQSmxeCsiDM14c7jcT/87yFdE= Subject key identifier: A2:85:04:97:B0:BB:9E:1C:D9:08:45:16:BE:13:14:37:39:96:24:F3 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 04BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft Manifest number: 04B6 Signing time: Sat 01 Jun 2024 02:29:50 +0000 Manifest this update: Sat 01 Jun 2024 02:29:49 +0000 Manifest next update: Sat 08 Jun 2024 02:29:49 +0000 Files and hashes: 1: he6QOP_DVBq9-33Z7TPyquNy54w.crl (hash: /aCUiV8/bUWhTq05HPnqt0soWU2VHZ+WAsI/SKrjt7s=) 2: 09182D38084E11EF89D29620C4F9AE02.roa (hash: ezYsgIsJQh8aISDzGTb2ynExMdrgWLQpdiVgohF5Bnw=) 3: 07FBA006084E11EF89D29620C4F9AE02.roa (hash: kLrHarsAJe0BrznIqBMgdmpnUXMXpEfMItL+hhFxFSE=) 4: 08990BC0084E11EF89D29620C4F9AE02.roa (hash: i1fkph3atVfnVEbnt9xSvvG/cUJYGzp+on9uV8ITB20=) 5: 7AFCC818E38611EB8BC17765C4F9AE02.roa (hash: cYehtuypxx/DqVciqwtyme0u/Ljft0WiF3QhRefDaVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Jun 1 02:29:49 2024 GMT Not After : Jun 8 02:29:49 2024 GMT Subject: CN=665a879e-c1f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:32:fc:fd:8b:2d:b5:69:74:e3:1e:ce:7f:5b: 78:3f:09:b0:c8:d7:70:92:31:a7:d1:9d:44:de:cb: 3b:d2:01:a9:06:3e:03:27:67:94:d0:1d:42:8a:fa: 37:3b:06:9b:1b:39:92:0c:2a:75:b9:1c:ed:39:2e: 32:76:33:fd:57:50:d2:1f:aa:c4:ba:f5:8f:a7:0c: 58:df:75:b5:8b:91:f3:bf:25:1b:a0:85:8d:37:fb: 3c:99:d4:f6:fa:2a:d8:b1:fa:59:60:03:64:34:d6: 74:48:ea:1f:04:ec:b5:ee:cb:92:75:88:19:4e:ba: dd:5c:79:75:8b:b3:51:5e:56:98:07:de:c6:0c:8c: a8:95:81:2a:ac:3a:16:a6:5b:8e:85:9a:e2:f0:7f: 6f:5d:a1:93:0e:db:56:19:43:96:7f:80:29:a6:ac: ef:82:ff:07:44:a0:5d:36:5f:03:7e:5e:9b:60:a3: c1:c5:4a:97:c9:84:4c:ba:80:e2:60:68:4a:ea:77: bd:75:81:a5:ac:88:25:88:f6:bc:e3:bc:66:4a:a1: 48:c0:7b:4a:01:48:99:32:dd:03:ce:97:29:2e:d1: 06:33:7c:bc:f0:1b:98:56:9e:75:ef:9b:54:4e:d8: d3:c0:cd:bf:d0:f0:fa:09:97:c5:1f:a5:cd:f1:32: 3e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:85:04:97:B0:BB:9E:1C:D9:08:45:16:BE:13:14:37:39:96:24:F3 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:98:6a:37:b0:ab:92:6d:b5:38:f0:95:1e:ce:d7:ba:ee:59: fb:7b:eb:25:4e:b1:d3:0e:65:e0:f9:cb:89:ca:52:28:8a:73: 9b:64:b8:a2:3b:aa:8b:09:14:51:55:58:e5:0f:00:c8:9d:70: 3d:e7:57:e4:65:b8:b4:a4:a6:05:af:b4:0a:95:a0:97:31:28: c2:0f:cc:fb:5e:fa:1f:c4:76:8d:9a:27:a8:d9:95:e7:d2:28: ca:24:92:22:f4:52:4a:b1:62:c0:39:05:25:f4:8f:5e:4b:32: aa:b6:6e:9a:0b:99:82:cd:62:12:9b:8b:d1:a2:87:0c:44:66: 59:91:ca:b6:b2:41:98:e5:84:25:bd:86:f3:4a:d4:a1:73:08: a9:e0:da:32:2b:62:ad:46:90:1a:28:45:5e:63:73:a6:74:fb: 6d:bd:5d:52:7b:96:85:20:bc:a4:b8:04:4c:b9:c9:04:17:5c: 3f:a4:cb:a0:1a:78:b3:d3:ec:3d:b6:c2:c9:21:67:5a:00:d5: 22:ed:69:a5:37:31:4d:3c:5d:19:f3:29:08:d0:db:b9:47:97: 6a:ca:a2:51:a4:19:60:ff:2a:37:95:39:b0:62:32:e5:48:80: 12:4d:15:ba:5e:74:9f:20:4b:ae:11:d7:bc:ed:3b:c3:98:fc: 22:64:d0:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjQwNjAxMDIyOTQ5WhcNMjQwNjA4MDIyOTQ5WjAYMRYwFAYD VQQDEw02NjVhODc5ZS1jMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TL8/YsttWl04x7Of1t4PwmwyNdwkjGn0Z1E3ss70gGpBj4DJ2eU0B1Civo3 OwabGzmSDCp1uRztOS4ydjP9V1DSH6rEuvWPpwxY33W1i5HzvyUboIWNN/s8mdT2 +irYsfpZYANkNNZ0SOofBOy17suSdYgZTrrdXHl1i7NRXlaYB97GDIyolYEqrDoW pluOhZri8H9vXaGTDttWGUOWf4Appqzvgv8HRKBdNl8Dfl6bYKPBxUqXyYRMuoDi YGhK6ne9dYGlrIgliPa847xmSqFIwHtKAUiZMt0DzpcpLtEGM3y88BuYVp5175tU TtjTwM2/0PD6CZfFH6XN8TI+SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKFBJew u54c2QhFFr4TFDc5liTzMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVFNC9FRDA3OURGRUUzODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZC cTktMzNaN1RQeXF1Tnk1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrmGo3sKuSbbU48JUezte67ln7e+slTrHTDmXg+cuJylIoinObZLii O6qLCRRRVVjlDwDInXA951fkZbi0pKYFr7QKlaCXMSjCD8z7XvofxHaNmieo2ZXn 0ijKJJIi9FJKsWLAOQUl9I9eSzKqtm6aC5mCzWISm4vRoocMRGZZkcq2skGY5YQl vYbzStShcwip4NoyK2KtRpAaKEVeY3OmdPttvV1Se5aFILykuARMuckEF1w/pMug Gniz0+w9tsLJIWdaANUi7WmlNzFNPF0Z8ykI0Nu5R5dqyqJRpBlg/yo3lTmwYjLl SIASTRW6XnSfIEuuEde87TvDmPwiZNCg -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:09 2024 by rpki-client on console-fra.rpki-client.org