$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft File: hHItvUIme93Vm4hBUpklNTHgY2Q.mft (raw, json) Hash identifier: H5SQruIozqKA9tiX725+IMuqfDSSqvc6VRpXn0X28sA= Subject key identifier: 1F:85:89:6D:6A:54:B3:52:AC:31:22:8C:18:08:EB:04:95:21:C8:90 Authority key identifier: 84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 Certificate issuer: /CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Certificate serial: 170D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft Manifest number: 170D Signing time: Tue 30 Apr 2024 17:14:32 +0000 Manifest this update: Tue 30 Apr 2024 17:14:31 +0000 Manifest next update: Tue 07 May 2024 17:14:31 +0000 Files and hashes: 1: hHItvUIme93Vm4hBUpklNTHgY2Q.crl (hash: GyQY+Fdh19Hm3bjuL4/ex42bQf8aAaJcxgC7bqCe7YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5901 (0x170d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF3/serialNumber=84722DBD42267BDDD59B88415299253531E06364 Validity Not Before: Apr 30 17:14:31 2024 GMT Not After : May 7 17:14:31 2024 GMT Subject: CN=663126f7-4cd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:53:bb:28:74:6c:3b:fa:94:54:b8:e2:b1:a0: 2b:5a:92:d8:b3:12:16:ad:4d:39:32:c8:ad:84:ea: bb:c7:a6:9f:ab:eb:b8:7c:6a:e5:c1:01:a8:84:14: 49:b2:fe:c5:18:c3:1f:6d:60:1e:88:b8:74:f6:e5: 1a:bb:6f:b1:4b:fd:f5:8f:e6:13:4f:ce:84:a2:cc: 61:4e:8d:c9:2d:83:d0:d7:d6:5b:16:03:64:84:a8: 40:3e:03:7a:b6:f2:b3:5d:fe:d8:f9:0b:e6:5b:50: 79:a7:83:95:4d:ec:af:a6:ae:fa:e4:c7:54:98:16: 36:ea:1d:96:50:90:06:3d:33:11:a1:5d:2a:c1:dd: 36:d3:9a:73:8e:50:e3:d7:ce:99:7f:d8:79:e5:64: 56:33:c6:b6:e4:03:2a:95:1e:d3:cc:6b:6d:54:1e: 0d:62:ab:52:68:e2:04:ed:63:04:06:f0:b6:76:4c: 57:d6:8d:6c:b9:5e:02:44:4b:43:85:4b:0e:a7:7e: 00:76:6f:ac:e4:1f:03:25:ae:47:91:dd:b3:cb:ff: 27:8a:62:f5:46:5d:c3:11:df:ac:db:e7:10:ad:94: 25:a5:c1:be:a4:fd:6c:79:ba:a7:2e:48:98:dd:ce: cf:b9:a3:55:a3:c5:30:6c:ad:aa:86:b9:82:5f:76: dd:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:85:89:6D:6A:54:B3:52:AC:31:22:8C:18:08:EB:04:95:21:C8:90 X509v3 Authority Key Identifier: keyid:84:72:2D:BD:42:26:7B:DD:D5:9B:88:41:52:99:25:35:31:E0:63:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHItvUIme93Vm4hBUpklNTHgY2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF3/E6337D30BD3211E7A9C2C813C4F9AE02/hHItvUIme93Vm4hBUpklNTHgY2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:0e:01:d7:90:20:db:80:41:18:61:d9:70:91:d9:98:25:2b: 92:25:70:64:d2:e7:76:dd:f6:dc:87:18:04:2e:9d:06:8e:58: fe:ce:78:00:3b:d4:51:94:fc:82:79:4e:76:40:19:4a:a8:c9: 43:92:21:2e:2c:9d:ed:d5:fa:5e:69:8b:62:49:fd:b9:5f:e7: 76:36:11:be:48:96:e7:f0:67:f6:0e:60:4f:b0:eb:70:b5:a6: d5:37:75:d6:ce:3c:c2:8e:13:91:d6:6f:aa:52:ba:42:d0:83: 4b:37:a1:b8:0b:59:86:98:da:0e:6c:e6:41:f9:af:39:a3:a2: 41:99:9b:d2:1e:7c:e0:ac:b8:7d:09:f9:8c:2f:75:9a:df:32: 39:a4:d9:a6:e3:d5:5f:e6:30:3b:0f:40:76:2a:0d:91:f7:32: bd:de:eb:d6:b3:49:4a:e3:83:e8:34:4a:47:dd:f2:41:65:a1: c8:36:39:f2:46:9e:3c:bc:7e:ac:38:66:b5:36:2d:46:77:41: 93:ec:49:54:32:59:07:14:c4:d5:4f:f3:08:a7:c4:4a:26:8c: bd:01:0f:90:e1:d0:4b:31:b5:14:78:a0:88:d1:b5:87:62:98: 58:29:ad:0b:e1:37:4f:58:e9:ba:a3:bc:86:3e:5f:c4:67:a2: 6c:54:cc:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjMxMTAvBgNVBAUTKDg0NzIyREJENDIyNjdCRERENTlCODg0MTUyOTkyNTM1 MzFFMDYzNjQwHhcNMjQwNDMwMTcxNDMxWhcNMjQwNTA3MTcxNDMxWjAYMRYwFAYD VQQDEw02NjMxMjZmNy00Y2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlO7KHRsO/qUVLjisaArWpLYsxIWrU05MsithOq7x6afq+u4fGrlwQGohBRJ sv7FGMMfbWAeiLh09uUau2+xS/31j+YTT86EosxhTo3JLYPQ19ZbFgNkhKhAPgN6 tvKzXf7Y+QvmW1B5p4OVTeyvpq765MdUmBY26h2WUJAGPTMRoV0qwd0205pzjlDj 186Zf9h55WRWM8a25AMqlR7TzGttVB4NYqtSaOIE7WMEBvC2dkxX1o1suV4CREtD hUsOp34Adm+s5B8DJa5Hkd2zy/8nimL1Rl3DEd+s2+cQrZQlpcG+pP1sebqnLkiY 3c7PuaNVo8UwbK2qhrmCX3bdlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+FiW1q VLNSrDEijBgI6wSVIciQMB8GA1UdIwQYMBaAFIRyLb1CJnvd1ZuIQVKZJTUx4GNk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGMy9FNjMzN0QzMEJE MzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5M1ZtNGhCVXBrbE5USGdZ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hISXR2VUltZTkzVm00aEJVcGtsTlRIZ1kyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGMy9FNjMzN0QzMEJEMzIxMUU3QTlDMkM4MTNDNEY5QUUwMi9oSEl0dlVJbWU5 M1ZtNGhCVXBrbE5USGdZMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTDgHXkCDbgEEYYdlwkdmYJSuSJXBk0ud23fbchxgELp0Gjlj+zngA O9RRlPyCeU52QBlKqMlDkiEuLJ3t1fpeaYtiSf25X+d2NhG+SJbn8Gf2DmBPsOtw tabVN3XWzjzCjhOR1m+qUrpC0INLN6G4C1mGmNoObOZB+a85o6JBmZvSHnzgrLh9 CfmML3Wa3zI5pNmm49Vf5jA7D0B2Kg2R9zK93uvWs0lK44PoNEpH3fJBZaHINjny Rp48vH6sOGa1Ni1Gd0GT7ElUMlkHFMTVT/MIp8RKJoy9AQ+Q4dBLMbUUeKCI0bWH YphYKa0L4TdPWOm6o7yGPl/EZ6JsVMzD -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:36 2024 by rpki-client on console-fra.rpki-client.org