$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft File: hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft (raw, json) Hash identifier: hZf6D0EOqYlZe2djHnRA5PgG0fK836K332irT6Al8dE= Subject key identifier: 14:E6:F2:D5:45:99:19:0A:A0:DB:50:9C:A4:7E:D2:4D:77:40:52:A6 Authority key identifier: 86:22:33:3D:BC:07:73:38:0B:A3:76:47:DC:C3:F3:E6:55:F3:4B:C6 Certificate issuer: /CN=A91B3759/serialNumber=8622333DBC0773380BA37647DCC3F3E655F34BC6 Certificate serial: 06E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft Manifest number: 06DF Signing time: Sat 18 May 2024 22:52:24 +0000 Manifest this update: Sat 18 May 2024 22:52:24 +0000 Manifest next update: Sat 25 May 2024 22:52:24 +0000 Files and hashes: 1: hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl (hash: dfHSGmL77A5H2VS6LOPRFv6A31S8IwJS9UFcpu+7SSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1763 (0x6e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3759/serialNumber=8622333DBC0773380BA37647DCC3F3E655F34BC6 Validity Not Before: May 18 22:52:24 2024 GMT Not After : May 25 22:52:24 2024 GMT Subject: CN=66493128-5db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ac:b6:01:b7:00:3a:a5:ea:e6:c1:97:91:b3: 04:b5:5f:5a:4c:f4:20:b7:fe:b3:a7:f7:6f:ad:07: dc:22:39:37:cb:8f:15:85:08:0a:0c:99:3f:bb:a6: 0e:ca:1a:af:22:94:76:89:06:20:38:47:42:ea:bc: e9:19:a9:d5:c7:fe:a5:d5:f6:f3:3d:7b:c1:41:a0: cb:0a:9a:a3:d0:9b:ff:68:25:3a:58:f2:62:35:b9: 51:65:6e:10:9a:72:2b:b2:d2:45:b1:a4:7e:82:2a: 63:0b:71:19:cf:9e:a7:f1:9f:f4:da:35:a2:0f:bf: 80:f0:79:1c:6b:a9:3d:39:da:d0:15:49:8a:72:e4: 4b:77:00:ad:5c:2c:94:21:1e:24:8c:4e:9f:30:ab: 20:95:eb:b7:06:dc:4f:c5:2e:b0:0e:ca:f1:aa:6f: 47:8d:b7:d2:b4:c7:63:63:ac:71:0e:07:ec:5e:c2: a4:db:de:70:06:96:ff:d8:b2:87:07:23:81:c1:2b: 93:25:97:56:cd:fd:e9:16:e4:01:6b:e4:0a:ef:26: dd:f1:c0:52:73:b8:68:81:fe:3e:86:c2:ee:d1:1f: 53:f4:73:dc:d3:6c:e6:ee:a7:37:60:e7:99:14:47: 56:e9:47:7f:ad:34:ba:20:66:bb:8b:95:c1:c1:0d: 77:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E6:F2:D5:45:99:19:0A:A0:DB:50:9C:A4:7E:D2:4D:77:40:52:A6 X509v3 Authority Key Identifier: keyid:86:22:33:3D:BC:07:73:38:0B:A3:76:47:DC:C3:F3:E6:55:F3:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:e9:f1:7a:d7:15:47:63:0d:c4:fd:ff:02:66:a1:71:21:d6: ed:9c:1a:8d:7d:21:a3:22:07:f7:b0:20:13:ab:51:ee:b1:75: 58:7f:11:c2:40:c9:f9:43:83:80:e2:cd:8a:ff:a1:81:69:37: 8f:40:18:7d:a8:c7:5b:37:53:c1:49:da:26:fe:f2:db:79:44: 86:c4:b8:27:c2:0c:10:cf:5e:c3:3b:76:58:d7:59:8a:6d:83: b2:88:13:0c:ea:97:a3:bb:f5:fd:34:e0:3f:1d:25:b9:54:67: 9c:b6:70:74:e6:9a:b4:91:cb:19:6b:8f:ad:77:cb:2a:df:28: f7:20:50:b4:7c:16:21:f5:3e:64:08:13:cd:b5:f4:99:26:45: 27:aa:f8:63:3a:4a:66:5e:bf:39:f1:f1:8d:86:0b:58:e1:04: 00:90:d5:45:3c:7a:4a:ea:2e:db:ea:dd:0c:35:5f:3e:45:15: c8:ce:ed:7d:df:52:1f:47:d7:38:00:c0:4c:8d:8e:0a:61:10: e0:0f:99:20:10:0b:06:86:05:34:c1:33:b1:7a:76:cb:40:09: 50:1b:51:a6:8c:30:bc:5d:49:43:52:d0:e3:a2:ba:8c:24:7b: 07:a2:d9:29:38:6e:49:4d:73:78:a3:06:a9:b3:28:8e:9e:b4: 83:77:e7:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3NTkxMTAvBgNVBAUTKDg2MjIzMzNEQkMwNzczMzgwQkEzNzY0N0RDQzNGM0U2 NTVGMzRCQzYwHhcNMjQwNTE4MjI1MjI0WhcNMjQwNTI1MjI1MjI0WjAYMRYwFAYD VQQDEw02NjQ5MzEyOC01ZGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ky2AbcAOqXq5sGXkbMEtV9aTPQgt/6zp/dvrQfcIjk3y48VhQgKDJk/u6YO yhqvIpR2iQYgOEdC6rzpGanVx/6l1fbzPXvBQaDLCpqj0Jv/aCU6WPJiNblRZW4Q mnIrstJFsaR+gipjC3EZz56n8Z/02jWiD7+A8Hkca6k9OdrQFUmKcuRLdwCtXCyU IR4kjE6fMKsgleu3BtxPxS6wDsrxqm9HjbfStMdjY6xxDgfsXsKk295wBpb/2LKH ByOBwSuTJZdWzf3pFuQBa+QK7ybd8cBSc7hogf4+hsLu0R9T9HPc02zm7qc3YOeZ FEdW6Ud/rTS6IGa7i5XBwQ13AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTm8tVF mRkKoNtQnKR+0k13QFKmMB8GA1UdIwQYMBaAFIYiMz28B3M4C6N2R9zD8+ZV80vG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzc1OS8wOTBGNUFBQTA1 MTkxMUVCOUQ1MERENkVDNEY5QUUwMi9oaUl6UGJ3SGN6Z0xvM1pIM01QejVsWHpT OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpSXpQYndIY3pnTG8zWkgzTVB6NWxYelM4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Mzc1OS8wOTBGNUFBQTA1MTkxMUVCOUQ1MERENkVDNEY5QUUwMi9oaUl6UGJ3SGN6 Z0xvM1pIM01QejVsWHpTOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB96fF61xVHYw3E/f8CZqFxIdbtnBqNfSGjIgf3sCATq1HusXVYfxHC QMn5Q4OA4s2K/6GBaTePQBh9qMdbN1PBSdom/vLbeUSGxLgnwgwQz17DO3ZY11mK bYOyiBMM6peju/X9NOA/HSW5VGectnB05pq0kcsZa4+td8sq3yj3IFC0fBYh9T5k CBPNtfSZJkUnqvhjOkpmXr858fGNhgtY4QQAkNVFPHpK6i7b6t0MNV8+RRXIzu19 31IfR9c4AMBMjY4KYRDgD5kgEAsGhgU0wTOxenbLQAlQG1GmjDC8XUlDUtDjorqM JHsHotkpOG5JTXN4owapsyiOnrSDd+fz -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org