$ rpki-client -vvf rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft File: hQaYWfujzd6OwbgaHgTdYFCzgRM.mft (raw, json) Hash identifier: 6PnVA2iRy1fH5hVOXqBhkFpK/ULND7yxmiN77GRc79E= Subject key identifier: D3:D4:E0:AE:AD:65:AC:71:AD:6E:19:8A:BD:DD:03:AF:26:AC:82:4D Authority key identifier: 85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 Certificate issuer: /CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Certificate serial: 33CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft Manifest number: 33CB Signing time: Fri 31 May 2024 14:38:45 +0000 Manifest this update: Fri 31 May 2024 14:38:44 +0000 Manifest next update: Fri 07 Jun 2024 14:38:44 +0000 Files and hashes: 1: hQaYWfujzd6OwbgaHgTdYFCzgRM.crl (hash: k3s15qioMMg0Pjm9LKsJcmdwKQzQOco9okfPNL5wJOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13259 (0x33cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509C4/serialNumber=85069859FBA3CDDE8EC1B81A1E04DD6050B38113 Validity Not Before: May 31 14:38:44 2024 GMT Not After : Jun 7 14:38:44 2024 GMT Subject: CN=6659e0f4-00ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:49:30:c0:25:ff:7a:ba:40:b5:59:a8:b8:ed: 26:01:d1:c9:50:8f:94:d2:f3:c6:52:ea:98:d2:0b: 2c:d2:f4:df:66:97:00:df:78:80:54:48:78:91:36: ed:5d:35:4c:cc:e7:60:96:c5:aa:d4:a5:ad:88:20: 43:7f:de:90:16:e3:3b:d6:6e:cf:82:28:be:3b:c0: 04:f7:22:a1:a7:78:1f:8f:8e:95:26:ce:6d:af:b0: 63:99:6e:f4:65:1d:cd:45:15:2a:ed:8a:9b:85:29: 5a:d5:64:8c:ad:36:e6:99:73:76:5c:42:d3:68:09: 57:55:5f:50:f8:22:32:1a:ef:b7:be:82:02:a4:44: 74:77:dd:7e:b3:23:3c:69:96:0b:3c:f2:77:5e:cd: e5:aa:cf:28:e5:b2:59:20:66:af:98:78:15:74:e3: ce:00:f3:85:ac:07:5b:73:ca:a5:5d:ce:ed:00:10: 4c:fb:fa:0f:c7:f1:2d:a2:cc:a6:6e:cf:97:2e:41: fc:d2:14:f5:2e:95:18:a8:87:3f:e9:3a:74:38:76: a2:7d:8e:11:b8:2e:ed:c4:6e:fa:33:c7:82:92:30: a0:2a:c2:fe:e6:91:79:c5:c6:be:26:e1:5f:02:3b: af:b5:62:02:b7:31:de:d7:3c:bb:4d:38:bd:84:89: 74:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D4:E0:AE:AD:65:AC:71:AD:6E:19:8A:BD:DD:03:AF:26:AC:82:4D X509v3 Authority Key Identifier: keyid:85:06:98:59:FB:A3:CD:DE:8E:C1:B8:1A:1E:04:DD:60:50:B3:81:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hQaYWfujzd6OwbgaHgTdYFCzgRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509C4/4B8961381D8B11E28A33C7E508B02CD2/hQaYWfujzd6OwbgaHgTdYFCzgRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:cb:19:e6:2d:28:34:00:51:76:0e:30:37:4b:67:ea:f1:2e: 1a:7e:ae:be:d9:0e:09:36:28:9e:57:d0:3f:f1:b3:b6:ab:a1: 5b:dc:fb:8b:68:f3:41:17:68:fc:5c:b1:f6:f2:fb:b7:66:64: ed:65:e4:44:17:07:01:ee:90:cc:3f:cb:90:ec:c1:d8:8e:87: 8c:87:1d:86:8c:bd:e5:8a:4b:02:ab:b9:11:01:33:e0:a9:8d: da:39:b7:ba:66:10:dc:e0:39:14:61:7f:3a:9b:fa:cc:ce:00: 69:d5:6d:73:41:91:1a:6c:9b:7e:4e:f0:44:fb:00:26:8b:cd: 8a:99:7a:83:15:6c:d4:34:dc:5b:a6:50:b9:01:1a:dc:39:ee: 6a:d9:e4:6c:41:04:38:9a:3e:ae:7f:c6:8c:a6:06:9a:ff:c9: 32:2f:be:58:48:d7:a0:28:ab:f1:07:61:e5:75:22:85:79:9e: 86:c3:48:35:ad:6c:da:85:c0:27:fa:51:a7:6e:5f:1c:15:dd: 51:ea:31:ee:aa:9f:a0:b6:11:1e:36:61:ce:d2:0d:8a:1a:c4: 33:e8:a1:5b:e6:f8:73:d4:0e:2e:6b:27:34:ee:8b:c6:97:37: 06:d3:02:7a:f7:fe:94:34:04:ba:8c:07:4c:90:9e:ef:36:fb: 1a:62:41:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA5QzQxMTAvBgNVBAUTKDg1MDY5ODU5RkJBM0NEREU4RUMxQjgxQTFFMDRERDYw NTBCMzgxMTMwHhcNMjQwNTMxMTQzODQ0WhcNMjQwNjA3MTQzODQ0WjAYMRYwFAYD VQQDEw02NjU5ZTBmNC0wMGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0kwwCX/erpAtVmouO0mAdHJUI+U0vPGUuqY0gss0vTfZpcA33iAVEh4kTbt XTVMzOdglsWq1KWtiCBDf96QFuM71m7Pgii+O8AE9yKhp3gfj46VJs5tr7BjmW70 ZR3NRRUq7YqbhSla1WSMrTbmmXN2XELTaAlXVV9Q+CIyGu+3voICpER0d91+syM8 aZYLPPJ3Xs3lqs8o5bJZIGavmHgVdOPOAPOFrAdbc8qlXc7tABBM+/oPx/Etosym bs+XLkH80hT1LpUYqIc/6Tp0OHaifY4RuC7txG76M8eCkjCgKsL+5pF5xca+JuFf AjuvtWICtzHe1zy7TTi9hIl0BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPU4K6t ZaxxrW4Zir3dA68mrIJNMB8GA1UdIwQYMBaAFIUGmFn7o83ejsG4Gh4E3WBQs4ET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDlDNC80Qjg5NjEzODFE OEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpkNk93YmdhSGdUZFlGQ3pn Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hRYVlXZnVqemQ2T3diZ2FIZ1RkWUZDemdSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlDNC80Qjg5NjEzODFEOEIxMUUyOEEzM0M3RTUwOEIwMkNEMi9oUWFZV2Z1anpk Nk93YmdhSGdUZFlGQ3pnUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfyxnmLSg0AFF2DjA3S2fq8S4afq6+2Q4JNiieV9A/8bO2q6Fb3PuL aPNBF2j8XLH28vu3ZmTtZeREFwcB7pDMP8uQ7MHYjoeMhx2GjL3liksCq7kRATPg qY3aObe6ZhDc4DkUYX86m/rMzgBp1W1zQZEabJt+TvBE+wAmi82KmXqDFWzUNNxb plC5ARrcOe5q2eRsQQQ4mj6uf8aMpgaa/8kyL75YSNegKKvxB2HldSKFeZ6Gw0g1 rWzahcAn+lGnbl8cFd1R6jHuqp+gthEeNmHO0g2KGsQz6KFb5vhz1A4uayc07ovG lzcG0wJ69/6UNAS6jAdMkJ7vNvsaYkGW -----END CERTIFICATE-----Generated at Fri May 31 15:08:09 2024 by rpki-client on console-fra.rpki-client.org