$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: su09F0gznq6q4+6GzBkRIkqv0mUnHLR7LOxVH2V9A6w= Subject key identifier: A1:12:60:5D:50:4A:B6:71:53:E5:8C:99:FB:B5:11:C0:28:09:E3:25 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 33D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 33D1 Signing time: Sat 18 May 2024 14:58:06 +0000 Manifest this update: Sat 18 May 2024 14:58:05 +0000 Manifest next update: Sat 25 May 2024 14:58:05 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: CO6hb2VVjgcLaCv0qVtaKa+JLo7keyJr/zSSq7b7KGo=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: +OwFewk9ymglfVJ+smaviULwYCdFbGXjXh7fZzykIh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13273 (0x33d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: May 18 14:58:05 2024 GMT Not After : May 25 14:58:05 2024 GMT Subject: CN=6648c1fd-69fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:75:61:19:39:8e:09:4b:a9:2a:7c:68:fa:fa: 64:24:ef:a4:6d:8c:3b:7a:b6:19:e1:91:c7:40:64: 1d:07:86:ee:2f:92:a2:78:cd:58:40:89:50:9c:f8: aa:25:f9:f8:61:5d:b0:c3:bf:b0:49:8b:8c:0a:ed: 30:7f:c9:2a:13:1b:37:af:61:c3:f3:e8:f2:e5:15: 43:a4:d2:e0:20:b7:d8:38:42:06:3c:6a:14:22:cb: b2:65:ad:1c:f6:ad:a4:df:00:61:46:71:7e:00:32: ce:9b:9c:bd:8a:1b:24:2f:c3:aa:ea:41:a4:9d:d6: 2e:c6:5d:44:82:03:3c:0d:de:b6:69:95:9b:84:22: 33:b3:19:30:ff:c0:25:44:14:3f:58:f9:3d:8b:c1: 98:ef:cc:e2:08:30:ee:21:00:2d:60:9d:30:f6:ab: b1:2c:97:23:27:10:24:6c:92:a9:c7:92:c7:2f:e8: 10:fb:7c:37:e1:54:60:e5:84:0e:cd:01:ad:c7:19: 95:e4:c5:e9:92:4e:37:db:80:09:59:a9:79:05:4c: b0:ee:ce:1b:18:85:27:33:e7:0b:3c:c3:70:eb:27: ae:27:1a:79:15:d4:e7:aa:59:21:a6:b8:36:09:1e: b0:b5:70:72:cc:db:6d:2a:53:3d:bc:1c:58:62:e4: 25:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:12:60:5D:50:4A:B6:71:53:E5:8C:99:FB:B5:11:C0:28:09:E3:25 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:0b:66:7e:c8:53:75:b3:52:27:0a:ce:3c:7f:19:7d:3e:30: 15:40:8e:57:0b:df:f9:3d:6d:a8:35:b1:62:4b:6d:c6:f9:6d: 6e:8a:5e:0b:db:ce:27:14:6f:0d:9f:a4:da:7c:0c:e8:5f:f6: 72:c2:cb:a9:0d:1e:33:18:41:2c:3a:5f:81:d6:06:c6:7e:17: fb:8b:47:cd:85:34:a8:52:80:86:dc:f6:5d:c4:9d:da:54:d9: e8:51:e9:aa:23:83:d3:e4:9e:df:aa:c5:3e:ed:75:f1:4c:21: 6a:60:48:c0:fe:d5:47:38:b0:20:8c:75:0d:6b:dd:4d:c4:d6: 9a:a1:ba:94:57:ed:03:4e:6b:18:68:62:5c:92:72:1a:36:21: fb:86:d3:ae:9a:38:f9:04:7f:e7:9b:4c:5d:cf:b8:06:22:72: 8f:a5:84:d3:52:4b:03:26:72:9e:8d:b1:3a:38:de:66:b7:93: 2d:4c:b7:a1:11:84:6f:67:ed:ff:ca:1a:b8:a5:05:02:ed:e4: e7:a1:99:96:bb:9c:5b:93:33:3b:49:a7:f4:a3:78:ed:a4:1a: b0:26:36:c8:d8:7a:70:dc:8f:7e:27:3d:01:f1:a0:73:48:96: cb:d1:a7:8a:2d:5b:d7:22:af:aa:75:2f:60:47:24:21:83:8c: a0:b2:85:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjQwNTE4MTQ1ODA1WhcNMjQwNTI1MTQ1ODA1WjAYMRYwFAYD VQQDEw02NjQ4YzFmZC02OWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHVhGTmOCUupKnxo+vpkJO+kbYw7erYZ4ZHHQGQdB4buL5KieM1YQIlQnPiq Jfn4YV2ww7+wSYuMCu0wf8kqExs3r2HD8+jy5RVDpNLgILfYOEIGPGoUIsuyZa0c 9q2k3wBhRnF+ADLOm5y9ihskL8Oq6kGkndYuxl1EggM8Dd62aZWbhCIzsxkw/8Al RBQ/WPk9i8GY78ziCDDuIQAtYJ0w9quxLJcjJxAkbJKpx5LHL+gQ+3w34VRg5YQO zQGtxxmV5MXpkk4324AJWal5BUyw7s4bGIUnM+cLPMNw6yeuJxp5FdTnqlkhprg2 CR6wtXByzNttKlM9vBxYYuQlhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKESYF1Q SrZxU+WMmfu1EcAoCeMlMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9C2Z+yFN1s1InCs48fxl9PjAVQI5XC9/5PW2oNbFiS23G+W1uil4L 284nFG8Nn6TafAzoX/ZywsupDR4zGEEsOl+B1gbGfhf7i0fNhTSoUoCG3PZdxJ3a VNnoUemqI4PT5J7fqsU+7XXxTCFqYEjA/tVHOLAgjHUNa91NxNaaobqUV+0DTmsY aGJcknIaNiH7htOumjj5BH/nm0xdz7gGInKPpYTTUksDJnKejbE6ON5mt5MtTLeh EYRvZ+3/yhq4pQUC7eTnoZmWu5xbkzM7Saf0o3jtpBqwJjbI2Hpw3I9+Jz0B8aBz SJbL0aeKLVvXIq+qdS9gRyQhg4ygsoU5 -----END CERTIFICATE-----Generated at Sat May 18 15:58:23 2024 by rpki-client on console-ams.rpki-client.org