$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft File: hYtkVOIiRseB5RNSswVkEJhoV34.mft (raw, json) Hash identifier: I4fEKhVwCwDC7m+SMN7qc+kdULfTN+XGVnAPya5r69M= Subject key identifier: 69:B8:16:49:CD:B1:32:2F:0D:E6:A6:34:6F:B3:62:EE:65:FD:F4:2B Authority key identifier: 85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E Certificate issuer: /CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft Manifest number: 36 Signing time: Sun 19 May 2024 08:17:29 +0000 Manifest this update: Sun 19 May 2024 08:17:28 +0000 Manifest next update: Sun 26 May 2024 08:17:28 +0000 Files and hashes: 1: hYtkVOIiRseB5RNSswVkEJhoV34.crl (hash: a4Rmksk1uPyaxjcD6FkwsU1uLw/HO70BNO414u/K2LE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Validity Not Before: May 19 08:17:28 2024 GMT Not After : May 26 08:17:28 2024 GMT Subject: CN=6649b599-6aab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a2:f5:69:e6:a3:c8:0a:3b:11:5b:91:79:88: c3:50:e2:ca:be:71:ed:11:e4:08:91:08:d7:53:40: db:54:aa:c1:6f:09:d8:e0:0e:4b:08:e5:ee:86:6a: ff:22:82:58:28:36:7a:4b:98:33:0a:94:10:86:aa: f5:40:f3:c0:9d:42:44:de:57:8b:e3:9d:2b:5a:35: 48:20:8e:e0:d8:07:cf:1f:b1:e2:1e:88:e2:53:1e: 7e:85:0b:a8:1e:00:57:79:58:40:85:40:bd:c1:b6: 45:ae:49:6a:11:5a:74:95:5f:b5:45:38:f9:ed:5f: 23:62:d5:c1:7e:36:4c:85:c1:bc:38:3d:c1:ad:57: c7:db:23:c0:d6:6c:fa:19:8f:4a:44:ba:fe:26:e5: ab:04:5e:83:63:e4:69:c7:dc:7d:77:b1:71:e8:6e: fb:78:5a:ef:b6:26:83:6b:c7:d1:84:fb:57:df:72: 17:bf:ac:bd:d1:9d:7a:50:85:49:78:ae:fe:d7:80: 1e:05:5f:10:59:26:b9:56:f9:18:e2:7d:40:26:bb: 1f:66:0f:42:bd:63:15:bd:2d:c3:8a:85:3e:42:e0: 1f:a4:eb:d0:80:1b:1f:a6:bf:fd:ac:e3:98:5a:e5: fd:4d:50:d7:4b:d4:27:36:f8:38:ca:3a:f5:57:98: 93:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B8:16:49:CD:B1:32:2F:0D:E6:A6:34:6F:B3:62:EE:65:FD:F4:2B X509v3 Authority Key Identifier: keyid:85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c5:7a:4e:e5:b2:db:c7:15:45:c9:42:ae:a3:73:e1:17:c6: f6:e6:aa:92:40:be:37:01:35:9e:55:e1:d9:b9:9b:39:c6:62: 58:75:aa:4e:32:10:da:93:f2:68:4c:de:75:28:1a:fe:68:8f: 9f:80:e5:aa:dd:09:13:86:3a:69:d7:13:a9:32:a5:76:d4:2e: 67:f6:3e:f3:86:6a:f1:a9:2d:96:e3:af:6f:4a:75:1a:f6:30: 77:a4:99:a9:7c:fd:4f:b8:8b:39:64:aa:f2:00:3e:a1:41:55: 21:e9:5c:57:e0:4a:9d:f6:40:8f:80:40:7f:b4:db:3f:47:81: 4b:c3:67:d4:ca:f8:a2:c4:bd:1d:2c:28:f6:4e:f5:bb:19:84: 18:15:20:5a:93:1e:d1:c6:e9:76:ba:33:bb:a7:25:f3:77:07: d9:57:5a:7e:ca:4d:ca:aa:1c:94:54:e4:25:fb:fc:86:b8:37: cc:78:e4:d8:6a:98:ff:b0:45:f0:01:7f:4e:a3:15:14:a9:16: 43:8d:ab:a2:aa:e5:6b:ef:00:b4:93:09:0c:9b:44:b3:dc:50: db:e7:d2:78:42:96:5a:55:6b:80:17:1c:e5:ec:0b:24:07:80: f9:58:50:93:fb:3d:9f:98:03:f9:81:99:da:a0:fa:62:91:7d: 3e:25:30:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NjVDNzExMC8GA1UEBRMoODU4QjY0NTRFMjIyNDZDNzgxRTUxMzUyQjMwNTY0MTA5 ODY4NTc3RTAeFw0yNDA1MTkwODE3MjhaFw0yNDA1MjYwODE3MjhaMBgxFjAUBgNV BAMTDTY2NDliNTk5LTZhYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkovVp5qPICjsRW5F5iMNQ4sq+ce0R5AiRCNdTQNtUqsFvCdjgDksI5e6Gav8i glgoNnpLmDMKlBCGqvVA88CdQkTeV4vjnStaNUggjuDYB88fseIeiOJTHn6FC6ge AFd5WECFQL3BtkWuSWoRWnSVX7VFOPntXyNi1cF+NkyFwbw4PcGtV8fbI8DWbPoZ j0pEuv4m5asEXoNj5GnH3H13sXHobvt4Wu+2JoNrx9GE+1ffche/rL3RnXpQhUl4 rv7XgB4FXxBZJrlW+RjifUAmux9mD0K9YxW9LcOKhT5C4B+k69CAGx+mv/2s45ha 5f1NUNdL1Cc2+DjKOvVXmJMTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUabgWSc2x Mi8N5qY0b7Ni7mX99CswHwYDVR0jBBgwFoAUhYtkVOIiRseB5RNSswVkEJhoV34w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY2NUM3L0VEMEZCNjg2QzNF NDExRUU5NjEzRjU4M0M0RjlBRTAyL2hZdGtWT0lpUnNlQjVSTlNzd1ZrRUpob1Yz NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFl0a1ZPSWlSc2VCNVJOU3N3VmtFSmhvVjM0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY2 NUM3L0VEMEZCNjg2QzNFNDExRUU5NjEzRjU4M0M0RjlBRTAyL2hZdGtWT0lpUnNl QjVSTlNzd1ZrRUpob1YzNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHHFek7lstvHFUXJQq6jc+EXxvbmqpJAvjcBNZ5V4dm5mznGYlh1qk4y ENqT8mhM3nUoGv5oj5+A5ardCROGOmnXE6kypXbULmf2PvOGavGpLZbjr29KdRr2 MHekmal8/U+4izlkqvIAPqFBVSHpXFfgSp32QI+AQH+02z9HgUvDZ9TK+KLEvR0s KPZO9bsZhBgVIFqTHtHG6Xa6M7unJfN3B9lXWn7KTcqqHJRU5CX7/Ia4N8x45Nhq mP+wRfABf06jFRSpFkONq6Kq5WvvALSTCQybRLPcUNvn0nhCllpVa4AXHOXsCyQH gPlYUJP7PZ+YA/mBmdqg+mKRfT4lMBA= -----END CERTIFICATE-----Generated at Sun May 19 09:04:15 2024 by rpki-client on console-fra.rpki-client.org