$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft File: HtdycKSBilV07-7Kyvt0g812iCE.mft (raw, json) Hash identifier: RU4lIGaGdglzFaAI2venUN3q+LZX6QQxnLef4ED1Cdc= Subject key identifier: 24:5E:5A:16:B4:9C:9D:0F:7B:6B:8A:E7:F3:13:C9:E0:DC:C8:45:CA Authority key identifier: 1E:D7:72:70:A4:81:8A:55:74:EF:EE:CA:CA:FB:74:83:CD:76:88:21 Certificate issuer: /CN=A91CFE58/serialNumber=1ED77270A4818A5574EFEECACAFB7483CD768821 Certificate serial: 0997 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft Manifest number: 0991 Signing time: Sat 18 May 2024 20:54:58 +0000 Manifest this update: Sat 18 May 2024 20:54:58 +0000 Manifest next update: Sat 25 May 2024 20:54:58 +0000 Files and hashes: 1: HtdycKSBilV07-7Kyvt0g812iCE.crl (hash: QmPO6RuyPm/sxQevSO40qvUEJWUANRlod9sCr4rm4O8=) 2: 7C29A45A669A11EA9A11434FC4F9AE02.roa (hash: iUA/ZdTXCvsQrhEvaWnotgmVkLDZ38sifwKb0kQ4+mE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.crl rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2455 (0x997) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE58/serialNumber=1ED77270A4818A5574EFEECACAFB7483CD768821 Validity Not Before: May 18 20:54:58 2024 GMT Not After : May 25 20:54:58 2024 GMT Subject: CN=664915a2-6649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f7:fc:0b:68:e3:6e:01:72:d7:f3:fe:f2:16: d9:12:ce:57:e3:e9:9f:89:8d:5b:83:33:b2:26:d6: 05:23:2b:8f:67:2d:70:aa:91:10:53:0d:ec:79:e1: 62:b1:42:69:0f:38:27:73:bb:b7:3b:fd:ad:45:32: cb:7f:73:ac:98:f5:d6:7f:84:74:58:2f:a3:8d:04: 5f:88:d3:cd:8a:2f:74:c2:2d:1f:dc:69:66:ed:88: 8b:dc:83:26:69:42:04:60:13:7d:82:40:54:ef:91: 81:56:32:d1:22:1b:69:53:3d:f9:0b:a5:6c:6d:f4: ab:92:4b:07:c3:75:f0:d8:ac:25:6b:3c:d4:cd:a4: d9:0a:5a:9c:7e:4f:9b:c7:c7:3d:f7:ff:ed:6f:e8: 1a:01:84:f7:d7:5c:d9:0a:12:38:36:b9:7c:3b:8d: 75:25:d7:7e:af:2a:56:dc:c2:5b:9e:b8:91:60:88: 3f:a5:f0:b9:a7:28:c7:d6:0f:66:bb:b9:6e:8f:da: 7a:12:14:1c:fc:f9:2e:64:cd:64:a2:20:9d:e8:d0: 73:3e:f1:b1:d0:fe:a7:42:09:07:29:e4:53:e3:20: ec:a2:2c:49:d2:6c:fb:69:0c:f5:5f:01:40:f8:f3: d9:e7:9f:88:f1:e6:b7:ff:f7:de:94:e5:31:9d:26: 41:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:5E:5A:16:B4:9C:9D:0F:7B:6B:8A:E7:F3:13:C9:E0:DC:C8:45:CA X509v3 Authority Key Identifier: keyid:1E:D7:72:70:A4:81:8A:55:74:EF:EE:CA:CA:FB:74:83:CD:76:88:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtdycKSBilV07-7Kyvt0g812iCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE58/6033CF6A669911EABF13C94DC4F9AE02/HtdycKSBilV07-7Kyvt0g812iCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:02:5a:aa:37:26:75:d9:40:a7:bc:d1:36:93:d7:d9:18:59: 1e:17:5d:aa:53:e8:bc:d9:3a:d2:cb:72:ae:60:da:22:00:cd: 9e:86:4b:60:99:5e:de:af:bf:4e:99:fd:3d:33:fc:72:e3:ae: 7c:47:8a:1f:7c:9c:51:e5:fa:34:1d:06:62:ee:24:40:07:88: 0c:61:90:27:60:5b:49:86:fa:8d:54:05:18:80:60:31:e9:94: f6:f7:86:4a:9e:6f:63:3f:88:61:c3:d8:95:be:c0:71:b3:bd: 34:26:78:10:4f:57:ab:d9:fb:c4:d6:d1:c1:55:2c:0d:9d:8a: 6f:5b:8d:07:d9:83:a3:11:8a:b7:40:77:97:58:8f:2c:b5:a8: ea:9f:f6:e9:98:76:6c:5e:0d:45:c7:36:8a:22:d6:58:50:50: 46:e2:75:96:34:f7:c0:cf:e4:dc:30:8b:31:56:3f:cb:cc:84: fd:3a:47:94:cb:ae:87:8e:c6:14:ca:22:1c:d6:35:2e:b0:97: 52:2b:db:52:3c:47:b2:17:d3:8a:23:9d:20:41:95:ee:3a:40: 51:90:7f:0e:11:49:a8:ed:28:68:f1:88:c6:1e:3d:67:92:ac: 6c:45:ae:70:b9:69:4f:e5:a9:3e:64:9b:ee:96:3b:31:3b:b0: 0d:33:47:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFNTgxMTAvBgNVBAUTKDFFRDc3MjcwQTQ4MThBNTU3NEVGRUVDQUNBRkI3NDgz Q0Q3Njg4MjEwHhcNMjQwNTE4MjA1NDU4WhcNMjQwNTI1MjA1NDU4WjAYMRYwFAYD VQQDEw02NjQ5MTVhMi02NjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvf8C2jjbgFy1/P+8hbZEs5X4+mfiY1bgzOyJtYFIyuPZy1wqpEQUw3seeFi sUJpDzgnc7u3O/2tRTLLf3OsmPXWf4R0WC+jjQRfiNPNii90wi0f3Glm7YiL3IMm aUIEYBN9gkBU75GBVjLRIhtpUz35C6VsbfSrkksHw3Xw2KwlazzUzaTZClqcfk+b x8c99//tb+gaAYT311zZChI4Nrl8O411Jdd+rypW3MJbnriRYIg/pfC5pyjH1g9m u7luj9p6EhQc/PkuZM1koiCd6NBzPvGx0P6nQgkHKeRT4yDsoixJ0mz7aQz1XwFA +PPZ55+I8ea3//felOUxnSZB2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCReWha0 nJ0Pe2uK5/MTyeDcyEXKMB8GA1UdIwQYMBaAFB7XcnCkgYpVdO/uysr7dIPNdogh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkU1OC82MDMzQ0Y2QTY2 OTkxMUVBQkYxM0M5NERDNEY5QUUwMi9IdGR5Y0tTQmlsVjA3LTdLeXZ0MGc4MTJp Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZHljS1NCaWxWMDctN0t5dnQwZzgxMmlDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkU1OC82MDMzQ0Y2QTY2OTkxMUVBQkYxM0M5NERDNEY5QUUwMi9IdGR5Y0tTQmls VjA3LTdLeXZ0MGc4MTJpQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+AlqqNyZ12UCnvNE2k9fZGFkeF12qU+i82TrSy3KuYNoiAM2ehktg mV7er79Omf09M/xy4658R4offJxR5fo0HQZi7iRAB4gMYZAnYFtJhvqNVAUYgGAx 6ZT294ZKnm9jP4hhw9iVvsBxs700JngQT1er2fvE1tHBVSwNnYpvW40H2YOjEYq3 QHeXWI8stajqn/bpmHZsXg1FxzaKItZYUFBG4nWWNPfAz+TcMIsxVj/LzIT9OkeU y66HjsYUyiIc1jUusJdSK9tSPEeyF9OKI50gQZXuOkBRkH8OEUmo7Sho8YjGHj1n kqxsRa5wuWlP5ak+ZJvuljsxO7ANM0cb -----END CERTIFICATE-----Generated at Sat May 18 21:31:31 2024 by rpki-client on console-ams.rpki-client.org