$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: 6A68SNmnvR1urm/MWWsH+kojpyPhVbNQkoaH3+ATahY= Subject key identifier: 3B:88:FE:62:A9:DB:8E:E7:6F:AD:87:64:02:92:C8:27:37:FE:EF:A2 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 33D4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 33D4 Signing time: Sun 02 Jun 2024 14:23:34 +0000 Manifest this update: Sun 02 Jun 2024 14:23:33 +0000 Manifest next update: Sun 09 Jun 2024 14:23:33 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: r0MQFA37tdoSnJvPwx0emort4TFjWu0NPqK0cuAWxfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 14:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13268 (0x33d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Jun 2 14:23:33 2024 GMT Not After : Jun 9 14:23:33 2024 GMT Subject: CN=665c8066-394c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:46:20:68:b7:f0:56:a3:7d:0c:86:06:b9:31: d8:44:36:9d:a3:32:65:30:80:74:b3:0c:1b:1f:71: d0:53:45:2f:c4:97:ad:34:79:57:d7:02:38:97:e0: 76:61:d1:36:26:4d:6f:ec:d4:58:75:aa:78:ea:86: 27:4e:20:02:79:9b:b5:69:25:da:11:c1:4d:2f:27: 59:fd:6b:72:bf:a5:c6:64:fa:0a:03:f8:e8:fb:0a: c1:fd:c5:20:23:a3:d8:e3:66:b1:63:90:2c:30:a1: 38:34:38:fc:9d:5a:a8:3c:1e:db:b9:a4:1c:98:86: ad:e7:82:27:c4:07:de:43:d3:c5:2d:f7:87:74:c5: 92:c8:40:31:5a:32:e9:3e:cd:03:d3:dc:1c:8c:da: 41:44:aa:e1:76:a5:a2:68:95:f8:9d:f0:92:d6:5a: 9b:c3:96:df:70:84:9c:71:d6:9f:17:c8:40:a7:89: 14:4f:fd:3d:b3:2f:7d:85:a5:cc:ab:b5:d4:26:2c: c5:f6:37:46:8e:90:4d:65:25:65:c2:53:65:4a:42: ef:9e:34:d9:98:fa:04:11:6f:de:82:9d:2d:a3:7d: 10:91:cf:1d:2d:60:f5:1e:a0:b5:ac:ce:43:a9:27: 2b:61:f0:9d:7a:7c:fd:d9:80:f7:29:de:61:ca:44: 16:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:88:FE:62:A9:DB:8E:E7:6F:AD:87:64:02:92:C8:27:37:FE:EF:A2 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:3b:9b:b5:a4:3d:96:bd:58:f4:26:d8:76:dd:55:7b:23:68: 24:89:14:93:7d:54:75:43:56:41:01:4c:f9:f7:b6:f9:64:07: d9:14:e5:7b:bf:9c:23:a2:2d:00:9a:8a:bb:f5:7c:7c:51:62: 87:06:1a:ac:95:ab:63:8f:52:c4:86:4c:3e:88:90:7f:2b:ad: 66:9b:23:c8:03:b4:ad:9a:2e:11:5a:e9:04:81:20:f7:a1:fa: b7:78:18:5c:b8:18:c6:70:d0:da:4a:97:57:c8:f4:80:38:2e: ee:07:f0:e4:1e:61:c5:69:22:5d:76:d3:52:78:b2:56:f3:bd: d7:17:b5:6c:03:e8:81:dd:b5:77:42:33:93:b3:83:e9:51:11: 07:39:a3:f2:60:f7:6a:ee:8f:17:e9:16:ee:6d:29:f0:de:fc: 11:bc:f7:db:6d:cf:e0:95:eb:b9:58:2a:96:ec:99:91:b9:6e: de:ad:06:89:0c:6a:7d:1a:dd:53:67:95:92:a9:63:c8:b1:71: b8:82:3e:e5:c9:73:bf:c9:95:4a:55:35:9f:52:c3:9b:0d:b9: 2c:26:ae:46:4c:f9:fa:98:78:cc:ce:26:e7:7f:dc:8d:8e:8a: 62:08:c7:8c:a4:1f:f9:14:bf:fd:bc:f7:d1:c6:0e:29:33:a7: 48:37:a6:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjQwNjAyMTQyMzMzWhcNMjQwNjA5MTQyMzMzWjAYMRYwFAYD VQQDEw02NjVjODA2Ni0zOTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEYgaLfwVqN9DIYGuTHYRDadozJlMIB0swwbH3HQU0UvxJetNHlX1wI4l+B2 YdE2Jk1v7NRYdap46oYnTiACeZu1aSXaEcFNLydZ/Wtyv6XGZPoKA/jo+wrB/cUg I6PY42axY5AsMKE4NDj8nVqoPB7buaQcmIat54InxAfeQ9PFLfeHdMWSyEAxWjLp Ps0D09wcjNpBRKrhdqWiaJX4nfCS1lqbw5bfcISccdafF8hAp4kUT/09sy99haXM q7XUJizF9jdGjpBNZSVlwlNlSkLvnjTZmPoEEW/egp0to30Qkc8dLWD1HqC1rM5D qScrYfCdenz92YD3Kd5hykQW9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDuI/mKp 247nb62HZAKSyCc3/u+iMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBO5u1pD2WvVj0Jth23VV7I2gkiRSTfVR1Q1ZBAUz597b5ZAfZFOV7 v5wjoi0Amoq79Xx8UWKHBhqslatjj1LEhkw+iJB/K61mmyPIA7Stmi4RWukEgSD3 ofq3eBhcuBjGcNDaSpdXyPSAOC7uB/DkHmHFaSJddtNSeLJW873XF7VsA+iB3bV3 QjOTs4PpUREHOaPyYPdq7o8X6RbubSnw3vwRvPfbbc/gleu5WCqW7JmRuW7erQaJ DGp9Gt1TZ5WSqWPIsXG4gj7lyXO/yZVKVTWfUsObDbksJq5GTPn6mHjMzibnf9yN jopiCMeMpB/5FL/9vPfRxg4pM6dIN6Z3 -----END CERTIFICATE-----Generated at Sun Jun 2 18:46:19 2024 by rpki-client on console-ams.rpki-client.org