$ rpki-client -vvf rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft File: hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft (raw, json) Hash identifier: HraLkde8B8D/MW+kmZkZfilK7oPDtxnMG+zA1aJTf6Y= Subject key identifier: 1E:87:8F:45:13:9E:AC:94:48:FF:22:B1:C1:66:43:7D:D1:D2:FA:9B Authority key identifier: 87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 Certificate issuer: /CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft Manifest number: 50 Signing time: Wed 15 May 2024 08:00:52 +0000 Manifest this update: Wed 15 May 2024 08:00:52 +0000 Manifest next update: Wed 22 May 2024 08:00:52 +0000 Files and hashes: 1: hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl (hash: I3TfmyPjaClttkqkGF8rEIFx2hSapS+bld3N5DdM4Lc=) 2: F0D7EB5097FA11EE90066875C4F9AE02.roa (hash: tzCx2cpMAr1xDe6bcG5xLFjaHWbUzHdoW0sCdmUCgGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Validity Not Before: May 15 08:00:52 2024 GMT Not After : May 22 08:00:52 2024 GMT Subject: CN=66446bb4-771d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fe:50:ba:25:5f:94:54:3a:d3:2d:b0:8a:4c: a0:a3:fa:c8:1b:99:39:ac:d3:7d:24:70:d8:54:56: bc:93:be:c4:f5:35:c4:2a:3b:5d:15:aa:2e:ac:1c: 73:4f:9c:29:ea:fb:ae:ad:10:96:b2:2c:c4:c9:2a: 29:c1:10:36:51:2c:7d:7c:cd:e7:eb:2d:43:a9:99: ce:96:ca:fc:f4:5d:db:37:2c:8c:34:80:fd:00:4f: 1e:73:19:4b:a0:f0:49:cb:25:73:6c:46:88:e4:9f: e6:b0:b8:68:84:c5:ec:90:a3:77:ee:98:6b:83:ff: 61:f6:3e:28:c1:a4:b2:c3:e4:48:37:60:c5:eb:7e: dd:f7:1f:fd:9c:30:9a:25:17:b2:ca:46:6f:0a:60: 78:12:d2:55:93:1a:44:d1:91:f5:c1:59:f5:95:cd: c9:58:c2:ca:2a:66:8c:eb:5e:59:40:8d:97:a5:19: c7:bb:96:0d:f8:c0:72:22:12:11:37:db:53:21:ef: e4:1d:ed:2f:fe:9b:d5:ed:24:bf:b0:6f:49:17:23: 53:9e:14:54:54:e7:3c:99:ce:37:4f:c9:62:49:10: ef:1f:5d:85:4a:8c:6d:c1:2f:42:3a:50:75:e6:b9: 3f:cd:1b:2a:a6:29:6f:6e:f0:2b:ce:ad:89:bb:3a: ca:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:87:8F:45:13:9E:AC:94:48:FF:22:B1:C1:66:43:7D:D1:D2:FA:9B X509v3 Authority Key Identifier: keyid:87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:03:50:74:c8:0f:59:53:8a:4a:5d:88:88:56:2c:db:2a:62: e2:69:4a:91:60:8c:d2:a2:33:d9:76:8c:3e:da:0b:d1:4f:3d: 93:08:5e:1f:65:b7:b9:1c:dc:fc:2f:23:d0:84:37:6c:70:f5: 7f:79:37:1b:63:01:6d:58:5b:32:05:75:c0:17:82:9f:b2:db: ee:98:1b:77:d6:41:1d:f4:cb:1c:4d:cf:89:9c:c2:ce:df:7d: 6b:76:4a:f6:56:68:b5:1e:00:1a:52:45:29:97:2b:80:67:55: 55:89:a4:b3:b2:20:9e:76:40:56:b1:d8:bf:7a:b3:61:2a:8b: 18:34:6f:fe:ae:60:25:de:12:ef:61:97:25:59:52:66:ca:ca: 9c:96:0f:c2:57:7a:ee:1b:29:55:3f:7f:1a:e5:74:97:3f:77: 6b:86:4a:33:ba:b9:9a:a5:15:e9:58:7d:c4:7b:cf:89:91:4c: 76:fb:5e:b3:64:cc:1d:a0:1c:f9:14:e6:4d:40:65:76:f5:cb: 26:37:af:6d:05:e9:d6:bf:99:3c:27:f2:6a:55:53:f0:3a:9c: 3a:c9:5e:bf:ed:ba:dd:6a:be:93:d4:56:e0:b6:da:4c:53:f8: 70:e7:70:d9:b5:64:6d:5f:55:05:1b:40:e2:8f:f7:47:9c:7a: ae:9d:38:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QUM5QTExMC8GA1UEBRMoODcyOEI4MjhGMzE4NjAzRTQ0NzExMDcwQzI0RUNDMDg4 QTE5MDA2MDAeFw0yNDA1MTUwODAwNTJaFw0yNDA1MjIwODAwNTJaMBgxFjAUBgNV BAMTDTY2NDQ2YmI0LTc3MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM/lC6JV+UVDrTLbCKTKCj+sgbmTms030kcNhUVryTvsT1NcQqO10Vqi6sHHNP nCnq+66tEJayLMTJKinBEDZRLH18zefrLUOpmc6Wyvz0Xds3LIw0gP0ATx5zGUug 8EnLJXNsRojkn+awuGiExeyQo3fumGuD/2H2PijBpLLD5Eg3YMXrft33H/2cMJol F7LKRm8KYHgS0lWTGkTRkfXBWfWVzclYwsoqZozrXllAjZelGce7lg34wHIiEhE3 21Mh7+Qd7S/+m9XtJL+wb0kXI1OeFFRU5zyZzjdPyWJJEO8fXYVKjG3BL0I6UHXm uT/NGyqmKW9u8CvOrYm7OsozAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHoePRROe rJRI/yKxwWZDfdHS+pswHwYDVR0jBBgwFoAUhyi4KPMYYD5EcRBwwk7MCIoZAGAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBQzlBL0UxOUEyNTc4OTdG NDExRUVCQ0VEQzM0RkM0RjlBRTAyL2h5aTRLUE1ZWUQ1RWNSQnd3azdNQ0lvWkFH QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHlpNEtQTVlZRDVFY1JCd3drN01DSW9aQUdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlB QzlBL0UxOUEyNTc4OTdGNDExRUVCQ0VEQzM0RkM0RjlBRTAyL2h5aTRLUE1ZWUQ1 RWNSQnd3azdNQ0lvWkFHQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHADUHTID1lTikpdiIhWLNsqYuJpSpFgjNKiM9l2jD7aC9FPPZMIXh9l t7kc3PwvI9CEN2xw9X95NxtjAW1YWzIFdcAXgp+y2+6YG3fWQR30yxxNz4mcws7f fWt2SvZWaLUeABpSRSmXK4BnVVWJpLOyIJ52QFax2L96s2Eqixg0b/6uYCXeEu9h lyVZUmbKypyWD8JXeu4bKVU/fxrldJc/d2uGSjO6uZqlFelYfcR7z4mRTHb7XrNk zB2gHPkU5k1AZXb1yyY3r20F6da/mTwn8mpVU/A6nDrJXr/tut1qvpPUVuC22kxT +HDncNm1ZG1fVQUbQOKP90eceq6dOGI= -----END CERTIFICATE-----Generated at Wed May 15 09:04:41 2024 by rpki-client on console-ams.rpki-client.org