$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 2id0T0OOgbWgGGg7loYcsGoZn9GE7kgyf6ssqRroOf4= Subject key identifier: 53:85:3C:2C:3F:86:51:FE:47:89:67:A4:75:54:53:6C:00:C1:B6:6A Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 3527 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 3527 Signing time: Mon 03 Jun 2024 07:31:18 +0000 Manifest this update: Mon 03 Jun 2024 07:31:18 +0000 Manifest next update: Mon 10 Jun 2024 07:31:18 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: DoYCLzhSr3TGf0DkKJCnmE+/k+2eYFNrufnMRNRJxCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Jun 2024 04:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13607 (0x3527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Jun 3 07:31:18 2024 GMT Not After : Jun 10 07:31:18 2024 GMT Subject: CN=665d7146-164e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:24:9f:b6:b5:98:82:89:68:31:c3:29:f2:fc: 13:0b:34:0f:23:d3:d9:c2:5f:f7:8f:09:9d:dd:16: 1b:ed:e9:64:c0:c1:c0:ae:58:1e:8f:0e:ae:7c:11: 0a:e8:50:f5:15:5b:0c:94:cd:b0:58:3f:02:e5:6f: ec:89:a7:c9:b8:79:03:a3:88:a6:62:ec:90:f6:30: 64:d7:77:61:98:ce:d2:3c:a7:24:2d:45:4e:de:0b: 10:4e:2a:5b:ad:ac:48:4f:ab:3c:16:9c:c1:71:df: 53:80:87:b2:b4:05:ed:51:9b:f9:66:1f:36:18:b4: e8:04:4c:d0:18:8c:aa:ad:dd:e2:f1:89:b5:58:8c: 00:11:f9:5b:6b:61:b6:cb:08:ed:0a:37:94:c0:4d: 32:ee:f1:06:b8:72:bd:bb:f3:ee:33:30:e8:d7:1d: 41:b4:a8:b6:72:93:fd:b8:de:a0:90:e0:06:30:d4: cd:8b:53:81:6e:84:8c:7d:81:fc:d4:4e:34:d5:33: a8:b5:85:d7:6b:c5:83:4f:c4:78:a8:39:f3:0d:32: ec:fb:00:bb:41:dc:62:6e:12:1d:ae:88:3c:7f:bb: 0d:11:59:47:fa:ef:91:b6:a6:0a:22:1a:f6:65:50: 44:0a:b5:55:86:5b:6c:89:d6:6e:31:7c:54:b8:97: aa:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:85:3C:2C:3F:86:51:FE:47:89:67:A4:75:54:53:6C:00:C1:B6:6A X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c6:54:a3:66:9a:7d:f6:1f:1d:13:2a:4b:86:d7:f0:4f:dd: 9b:76:2b:fd:e2:42:9e:78:87:db:4d:80:3d:8f:cc:63:fe:9e: 65:82:ac:85:0c:ec:f2:59:bd:20:96:5f:4b:39:47:2b:12:b6: 33:fd:0c:51:7d:76:f9:aa:7d:8e:be:4e:2c:d3:72:23:0f:dd: 6e:53:6e:ba:e6:a6:3d:e2:a3:1a:16:39:5c:e8:31:22:21:b7: c7:05:02:75:a0:dc:12:5b:99:4c:44:0e:47:26:b9:f9:ba:8c: 2f:53:71:43:36:97:f5:c5:bf:2e:ab:9b:a6:98:b9:e7:84:4d: 81:f4:ec:6a:4b:1a:74:9d:21:9b:9f:75:0b:32:00:ee:25:3e: 42:82:d9:ba:33:b9:8e:ca:71:e9:08:48:88:57:e4:4b:73:41: 85:1d:69:26:23:a2:54:23:74:b1:6b:7c:32:78:7e:95:9a:33: aa:72:94:80:32:dd:76:31:b5:fb:a6:7d:a0:aa:1c:85:6d:6b: f8:2a:f8:3e:a0:df:31:5c:b4:51:da:66:f6:ea:2a:5c:86:d4: 0e:00:2f:ce:d1:bf:31:eb:8a:59:e9:78:c5:dd:1a:4e:6c:8f: ff:09:4a:38:a7:c7:65:58:af:58:b1:9f:b5:ef:15:b5:85:09: ea:76:8b:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjQwNjAzMDczMTE4WhcNMjQwNjEwMDczMTE4WjAYMRYwFAYD VQQDEw02NjVkNzE0Ni0xNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCSftrWYgoloMcMp8vwTCzQPI9PZwl/3jwmd3RYb7elkwMHArlgejw6ufBEK 6FD1FVsMlM2wWD8C5W/siafJuHkDo4imYuyQ9jBk13dhmM7SPKckLUVO3gsQTipb raxIT6s8FpzBcd9TgIeytAXtUZv5Zh82GLToBEzQGIyqrd3i8Ym1WIwAEflba2G2 ywjtCjeUwE0y7vEGuHK9u/PuMzDo1x1BtKi2cpP9uN6gkOAGMNTNi1OBboSMfYH8 1E401TOotYXXa8WDT8R4qDnzDTLs+wC7QdxibhIdrog8f7sNEVlH+u+RtqYKIhr2 ZVBECrVVhltsidZuMXxUuJeqKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOFPCw/ hlH+R4lnpHVUU2wAwbZqMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtxlSjZpp99h8dEypLhtfwT92bdiv94kKeeIfbTYA9j8xj/p5lgqyF DOzyWb0gll9LOUcrErYz/QxRfXb5qn2Ovk4s03IjD91uU2665qY94qMaFjlc6DEi IbfHBQJ1oNwSW5lMRA5HJrn5uowvU3FDNpf1xb8uq5ummLnnhE2B9OxqSxp0nSGb n3ULMgDuJT5Cgtm6M7mOynHpCEiIV+RLc0GFHWkmI6JUI3Sxa3wyeH6VmjOqcpSA Mt12MbX7pn2gqhyFbWv4Kvg+oN8xXLRR2mb26ipchtQOAC/O0b8x64pZ6XjF3RpO bI//CUo4p8dlWK9YsZ+17xW1hQnqdovP -----END CERTIFICATE-----Generated at Mon Jun 3 08:51:00 2024 by rpki-client on console-fra.rpki-client.org