$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft File: kHuyYrVxYj40suIMYKcYwXOcw70.mft (raw, json) Hash identifier: cK8WOxs03l4lv+JHnd/uzkicuLtoqRNsYKJW60kvuKs= Subject key identifier: 2A:3C:95:F7:54:99:84:0D:13:73:59:E1:F0:B0:C0:BF:A4:C7:10:BD Authority key identifier: 90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD Certificate issuer: /CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft Manifest number: 02D9 Signing time: Sun 05 May 2024 03:30:39 +0000 Manifest this update: Sun 05 May 2024 03:30:39 +0000 Manifest next update: Sun 12 May 2024 03:30:39 +0000 Files and hashes: 1: kHuyYrVxYj40suIMYKcYwXOcw70.crl (hash: zPzPHEgmLOlQJ/sS7G7ueEdajiPpkBV5c/JrC7XojC0=) 2: 5B92665E9ADD11ECA5401423C4F9AE02.roa (hash: lSLBriHRX11FONZNG/sRS79LEifS1Ktn8fDveXnQBko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Validity Not Before: May 5 03:30:39 2024 GMT Not After : May 12 03:30:39 2024 GMT Subject: CN=6636fd5f-5d44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:31:d0:56:73:7b:11:f9:ab:66:6c:d3:b0:bf: 9a:b1:cb:5c:25:6d:41:83:85:a0:17:46:6a:fc:a8: 91:cc:41:f6:12:94:99:74:d8:60:54:d6:8b:69:39: 3c:92:6f:91:98:fb:21:9c:ee:c4:16:89:bb:ca:06: e5:a0:01:d2:47:ee:03:0c:51:79:25:29:05:ac:32: ef:06:e1:d4:67:e9:26:45:c6:ae:26:cf:30:e8:58: 47:3a:a1:6a:62:4f:ec:c1:4c:71:e8:a0:10:b3:c6: 24:19:13:7d:b3:81:f7:83:59:86:90:31:76:ba:8b: c1:96:93:9c:b1:e3:a0:25:c4:7d:d4:de:7a:d0:13: 52:8d:38:29:4e:a5:75:45:04:dd:b9:7e:43:18:52: df:e9:c3:14:e9:35:d2:38:f0:23:25:f6:c3:d9:18: 31:91:08:ca:b3:9e:97:85:0f:4d:a7:9c:3b:dc:e8: 7c:7b:60:28:e4:31:02:da:3f:c5:21:42:3f:e7:c0: 67:d3:dd:af:75:dc:eb:35:d2:23:8b:14:65:74:ea: ee:dd:30:1c:f2:ae:b3:ec:35:a2:7e:75:6d:ee:d8: 4a:d4:2d:92:81:4b:67:1f:fe:b3:cc:dd:98:32:3a: c7:e6:52:25:19:6e:ec:1e:36:b7:db:75:29:7b:82: a2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:3C:95:F7:54:99:84:0D:13:73:59:E1:F0:B0:C0:BF:A4:C7:10:BD X509v3 Authority Key Identifier: keyid:90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c9:95:78:40:f1:c8:14:d0:8b:0d:5f:76:95:ff:f0:0b:c8: 0d:8c:90:4f:fd:f4:f4:8b:a9:4e:0f:c2:b1:7e:ad:ea:cf:ff: a1:db:80:50:5d:a4:ee:b2:a4:73:75:bb:8c:2f:7f:9c:9b:f2: 5d:9e:3c:17:4e:95:4d:4f:88:ec:6e:ad:45:19:8d:d4:55:b4: 9f:5b:29:10:b4:28:12:2b:23:87:fc:a5:5f:e9:bd:7d:78:57: 69:1a:c1:d6:af:59:d7:b3:dc:d4:5e:db:60:d0:5d:14:8a:e2: 8d:62:1d:b2:00:a3:5e:f8:5e:0b:db:62:ef:31:b0:76:d1:0d: b6:29:de:d4:a2:b3:e7:63:99:fa:d7:24:d9:6a:86:d2:be:a5: f5:43:ad:67:9f:e7:48:c2:dd:67:28:85:1a:58:34:5a:df:50: 05:d9:c3:4b:f4:bd:2b:18:0c:46:d2:54:a0:86:06:4f:70:9b: 0f:63:c4:bc:29:f4:ca:e6:93:a9:bf:02:4c:a5:bd:2e:58:4c: 0f:c8:85:2c:d7:1b:6a:55:d6:de:c4:23:af:d8:5d:aa:a2:ee: 2b:2c:41:66:68:5a:4c:a1:cc:61:47:75:e3:e2:c8:6c:c9:ac: b7:02:d6:86:1f:44:4f:12:f7:9a:17:29:19:eb:45:a4:f4:a9: 05:ce:94:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBNjQxMTAvBgNVBAUTKDkwN0JCMjYyQjU3MTYyM0UzNEIyRTIwQzYwQTcxOEMx NzM5Q0MzQkQwHhcNMjQwNTA1MDMzMDM5WhcNMjQwNTEyMDMzMDM5WjAYMRYwFAYD VQQDEw02NjM2ZmQ1Zi01ZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDHQVnN7EfmrZmzTsL+asctcJW1Bg4WgF0Zq/KiRzEH2EpSZdNhgVNaLaTk8 km+RmPshnO7EFom7ygbloAHSR+4DDFF5JSkFrDLvBuHUZ+kmRcauJs8w6FhHOqFq Yk/swUxx6KAQs8YkGRN9s4H3g1mGkDF2uovBlpOcseOgJcR91N560BNSjTgpTqV1 RQTduX5DGFLf6cMU6TXSOPAjJfbD2RgxkQjKs56XhQ9Np5w73Oh8e2Ao5DEC2j/F IUI/58Bn092vddzrNdIjixRldOru3TAc8q6z7DWifnVt7thK1C2SgUtnH/6zzN2Y MjrH5lIlGW7sHja323Upe4KiLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCo8lfdU mYQNE3NZ4fCwwL+kxxC9MB8GA1UdIwQYMBaAFJB7smK1cWI+NLLiDGCnGMFznMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0E2NC8zNThDNjdCRTlB REExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlqNDBzdUlNWUtjWXdYT2N3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIdXlZclZ4WWo0MHN1SU1ZS2NZd1hPY3c3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0E2NC8zNThDNjdCRTlBREExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlq NDBzdUlNWUtjWXdYT2N3NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQyZV4QPHIFNCLDV92lf/wC8gNjJBP/fT0i6lOD8Kxfq3qz/+h24BQ XaTusqRzdbuML3+cm/JdnjwXTpVNT4jsbq1FGY3UVbSfWykQtCgSKyOH/KVf6b19 eFdpGsHWr1nXs9zUXttg0F0UiuKNYh2yAKNe+F4L22LvMbB20Q22Kd7UorPnY5n6 1yTZaobSvqX1Q61nn+dIwt1nKIUaWDRa31AF2cNL9L0rGAxG0lSghgZPcJsPY8S8 KfTK5pOpvwJMpb0uWEwPyIUs1xtqVdbexCOv2F2qou4rLEFmaFpMocxhR3Xj4shs yay3AtaGH0RPEveaFykZ60Wk9KkFzpRw -----END CERTIFICATE-----Generated at Sun May 5 04:34:55 2024 by rpki-client on console-fra.rpki-client.org