$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: 6jG85u0hthfXvwkzZoP8190yqqqiiRlhVhE2tJjYEYI= Subject key identifier: 44:38:79:5A:A7:2F:FC:9F:06:AE:60:2A:42:5C:63:7B:00:D7:DF:8B Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 68 Signing time: Sun 19 May 2024 08:20:01 +0000 Manifest this update: Sun 19 May 2024 08:20:00 +0000 Manifest next update: Sun 26 May 2024 08:20:00 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: Hmug33jI1H4at0wbE0dki8MqjphdoiBN85Ow7O/6IbY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: May 19 08:20:00 2024 GMT Not After : May 26 08:20:00 2024 GMT Subject: CN=6649b631-d38e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:49:c6:43:1e:a5:41:68:d5:80:60:5d:6f:76: a2:1e:c9:ec:2c:90:fb:ab:bf:aa:e1:fe:f9:50:33: ca:0b:a8:3a:8d:ad:12:6a:10:a2:78:5c:af:c4:ff: 5c:63:c7:f8:c1:14:46:fe:50:05:2b:db:ae:9a:7d: a1:4d:88:ac:dc:4d:f6:ff:b1:b8:71:b3:f4:63:9c: 27:f9:85:54:c0:3a:03:29:c5:fb:0b:c1:3e:d2:ac: ed:fe:ed:51:c5:2e:fb:74:2a:99:39:1a:74:96:c6: 54:b3:29:d7:3f:d8:a6:5b:98:d4:12:b6:b7:3b:fa: 55:4e:f3:61:3b:dd:78:24:43:8e:e5:d6:7c:05:29: 6d:c3:a3:94:b3:fb:64:71:d6:60:92:8e:e6:0a:e2: 3a:53:57:4e:da:a1:ff:0b:25:85:64:4c:0c:46:cd: 73:1d:f5:98:87:a0:00:a9:b6:91:a7:25:21:aa:a4: 30:f7:e1:72:2c:60:ac:34:2f:2c:a8:0c:29:dc:f8: e1:3e:03:e4:2d:21:24:eb:95:e9:e8:89:42:47:da: 39:86:8e:9c:32:7e:1c:a4:1a:f5:63:5a:1d:85:d4: 6b:3d:37:0b:cb:1c:18:7d:75:d8:40:a3:c6:8e:ee: fe:01:52:57:be:c3:9b:19:81:2e:5a:21:56:52:ba: a2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:38:79:5A:A7:2F:FC:9F:06:AE:60:2A:42:5C:63:7B:00:D7:DF:8B X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:06:af:e7:29:f6:32:5f:d1:bb:eb:f5:e7:24:1d:c0:f0:47: ce:84:f2:16:e2:89:df:e3:8f:9b:d2:e6:e9:ed:87:b0:d6:23: 18:38:bf:f5:02:63:1f:18:b4:69:0a:2d:b5:59:55:0d:27:d7: c1:bc:17:33:1d:3e:7f:80:2d:3e:c3:25:9b:5c:92:d2:28:a4: d8:66:23:ab:ff:22:a9:cc:d5:7c:d9:6d:d7:8e:7e:be:6f:d7: 6f:7b:a5:56:bf:f8:e0:69:9f:3a:6d:96:77:bd:5b:07:e7:34: c0:04:0e:3f:86:7b:a7:58:06:0c:5e:ec:99:fc:95:8d:de:01: b8:f7:d5:ec:4f:4b:18:d1:9b:c1:81:f5:e9:b4:19:44:bf:5b: 09:4b:5f:63:b9:49:7f:d2:25:f4:d9:76:a9:1e:90:71:59:eb: 0d:ee:41:81:75:bc:de:21:54:c0:c8:85:35:b0:3e:e2:e4:b4: c8:31:ec:4b:f2:c1:bf:ef:c9:79:d5:0f:d8:eb:5b:7b:85:f7: 56:ae:c2:ca:3a:2d:97:ec:22:11:fd:17:11:a0:40:4d:5a:ce: 6c:0d:39:18:61:cb:5d:8c:ff:f0:f8:81:6c:af:54:31:02:2c: a0:5a:4d:0c:11:04:9e:87:8b:4d:31:90:0c:cd:cf:5f:f4:5d: f5:4d:73:60 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTUwMDExMC8GA1UEBRMoNzQzRTc4QzQ1OThFRkM3MkRBMDg0NjQ2NTBFQjhGOUNE QTE2Rjk4MDAeFw0yNDA1MTkwODIwMDBaFw0yNDA1MjYwODIwMDBaMBgxFjAUBgNV BAMTDTY2NDliNjMxLWQzOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6ScZDHqVBaNWAYF1vdqIeyewskPurv6rh/vlQM8oLqDqNrRJqEKJ4XK/E/1xj x/jBFEb+UAUr266afaFNiKzcTfb/sbhxs/RjnCf5hVTAOgMpxfsLwT7SrO3+7VHF Lvt0Kpk5GnSWxlSzKdc/2KZbmNQStrc7+lVO82E73XgkQ47l1nwFKW3Do5Sz+2Rx 1mCSjuYK4jpTV07aof8LJYVkTAxGzXMd9ZiHoACptpGnJSGqpDD34XIsYKw0Lyyo DCnc+OE+A+QtISTrlenoiUJH2jmGjpwyfhykGvVjWh2F1Gs9NwvLHBh9ddhAo8aO 7v4BUle+w5sZgS5aIVZSuqIxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURDh5Wqcv /J8GrmAqQlxjewDX34swHwYDVR0jBBgwFoAUdD54xFmO/HLaCEZGUOuPnNoW+YAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFNTAwLzNGRkY1QzNFQzcy RDExRUU5QzdDMzUxREM0RjlBRTAyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1Z QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEQ1NHhGbU9fSExhQ0VaR1VPdVBuTm9XLVlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURF NTAwLzNGRkY1QzNFQzcyRDExRUU5QzdDMzUxREM0RjlBRTAyL2RENTR4Rm1PX0hM YUNFWkdVT3VQbk5vVy1ZQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHMGr+cp9jJf0bvr9eckHcDwR86E8hbiid/jj5vS5unth7DWIxg4v/UC Yx8YtGkKLbVZVQ0n18G8FzMdPn+ALT7DJZtcktIopNhmI6v/IqnM1XzZbdeOfr5v 1297pVa/+OBpnzptlne9WwfnNMAEDj+Ge6dYBgxe7Jn8lY3eAbj31exPSxjRm8GB 9em0GUS/WwlLX2O5SX/SJfTZdqkekHFZ6w3uQYF1vN4hVMDIhTWwPuLktMgx7Evy wb/vyXnVD9jrW3uF91auwso6LZfsIhH9FxGgQE1azmwNORhhy12M//D4gWyvVDEC LKBaTQwRBJ6Hi00xkAzNz1/0XfVNc2A= -----END CERTIFICATE-----Generated at Sun May 19 09:04:14 2024 by rpki-client on console-fra.rpki-client.org