$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft File: HuygOndlK5BwteEzgJoiODDInPk.mft (raw, json) Hash identifier: UXvSzWTrisSUllTad/8ZhM2FrdXx0ybotpv6mDA3OSo= Subject key identifier: C0:E9:3D:C8:13:44:FF:88:4B:61:EC:58:BF:09:46:FE:2C:DA:18:8A Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft Manifest number: 01A2 Signing time: Sat 01 Jun 2024 05:53:48 +0000 Manifest this update: Sat 01 Jun 2024 05:53:47 +0000 Manifest next update: Sat 08 Jun 2024 05:53:47 +0000 Files and hashes: 1: HuygOndlK5BwteEzgJoiODDInPk.crl (hash: yRqi+5EdR2LwhC9TH/ODyEtvBp9B5ZPxuKEhYYClng4=) 2: 8BF25C3C777D11ED9F54B75EC4F9AE02.roa (hash: tvzj3tzfI8FoOtT4Sv2qeoWxVx8nmv/haifKFcWk9eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: Jun 1 05:53:47 2024 GMT Not After : Jun 8 05:53:47 2024 GMT Subject: CN=665ab76b-bea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d2:c7:ed:22:fe:a8:9d:93:5b:3f:e7:5e:ef: b5:0f:60:d3:39:4d:a7:b2:60:82:8d:66:b2:17:ad: db:54:66:c5:a9:66:57:fd:6e:ff:c5:e6:e3:0d:c1: 21:00:9d:61:91:0d:e2:e9:40:69:48:59:1c:59:30: 25:e5:7c:d0:7c:c7:2c:03:f5:36:bc:a2:b2:01:61: 00:ab:64:ce:b4:92:cf:f5:3d:c7:f1:3d:3c:72:a8: 52:e6:00:09:81:47:fd:d3:86:37:0c:02:65:67:82: d3:aa:16:ae:99:84:7d:9b:4e:0c:d3:c3:70:0d:a5: e0:b2:05:9d:c7:ae:d3:0c:38:cd:96:bd:fd:89:18: a9:b7:ff:33:01:93:ab:0f:b6:a2:90:63:64:60:d7: 4d:ff:10:4e:8e:6f:35:01:5f:e2:3b:ca:d5:09:d2: 2c:26:12:24:86:8e:fa:22:ab:a7:6c:fa:8a:57:1d: e9:38:b2:87:51:0a:11:9d:6b:a8:66:45:46:0f:87: 6f:db:b7:87:e5:b1:ac:54:07:ff:2d:30:5a:89:79: 64:17:29:00:df:0f:aa:36:f2:1f:81:c4:93:76:e7: 43:55:de:f2:84:aa:bc:80:36:0b:3b:06:a7:3f:3f: d1:80:1b:ed:98:78:34:53:74:08:dd:07:1e:ce:35: 79:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E9:3D:C8:13:44:FF:88:4B:61:EC:58:BF:09:46:FE:2C:DA:18:8A X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:6e:e3:05:d5:80:d5:41:a8:77:27:c9:0d:9b:c5:9f:7b:3e: 7d:06:16:1b:df:6f:1e:d6:69:21:61:68:75:38:e8:99:b6:32: b7:6f:e1:28:d9:03:8c:04:a3:0d:19:70:1d:56:c0:c0:a8:e8: 90:99:48:28:7c:83:2f:0e:9a:ca:0a:35:7b:e1:f7:a6:46:03: 6e:d4:c3:98:cf:ab:95:04:4a:3b:63:d8:b1:cb:f1:70:41:60: eb:82:09:2b:87:3c:32:09:c5:e0:e0:c7:df:ef:18:e9:03:f6: d0:e7:2d:2a:8a:d5:df:81:59:4f:17:5d:a8:34:48:20:32:19: 6b:66:47:88:d3:e5:62:3a:af:f0:de:67:37:9b:12:d8:cc:be: 80:99:49:30:46:f6:a2:77:92:c3:a3:32:a6:c3:9b:cd:e8:dc: b4:75:74:08:fd:4e:26:41:d2:84:5c:cc:00:09:5c:73:68:e5: d0:a2:13:0c:3f:3f:6f:11:92:a2:89:3a:2f:9b:66:d2:44:52: b8:b1:03:aa:58:13:db:00:af:fd:f3:30:f6:9d:60:af:a1:b0: 74:99:9e:d4:2b:01:0a:b6:37:1b:b1:f1:58:8a:81:25:48:64: 67:d3:7f:bc:e3:13:4f:a0:42:e4:60:c1:dd:2a:51:53:7e:4e: 8a:96:1f:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjQwNjAxMDU1MzQ3WhcNMjQwNjA4MDU1MzQ3WjAYMRYwFAYD VQQDEw02NjVhYjc2Yi1iZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtLH7SL+qJ2TWz/nXu+1D2DTOU2nsmCCjWayF63bVGbFqWZX/W7/xebjDcEh AJ1hkQ3i6UBpSFkcWTAl5XzQfMcsA/U2vKKyAWEAq2TOtJLP9T3H8T08cqhS5gAJ gUf904Y3DAJlZ4LTqhaumYR9m04M08NwDaXgsgWdx67TDDjNlr39iRipt/8zAZOr D7aikGNkYNdN/xBOjm81AV/iO8rVCdIsJhIkho76IqunbPqKVx3pOLKHUQoRnWuo ZkVGD4dv27eH5bGsVAf/LTBaiXlkFykA3w+qNvIfgcSTdudDVd7yhKq8gDYLOwan Pz/RgBvtmHg0U3QI3QcezjV5FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDpPcgT RP+IS2HsWL8JRv4s2hiKMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQ1Ni84MThCNEQwMjFBQUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1 Qnd0ZUV6Z0pvaU9EREluUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLbuMF1YDVQah3J8kNm8Wfez59BhYb328e1mkhYWh1OOiZtjK3b+Eo 2QOMBKMNGXAdVsDAqOiQmUgofIMvDprKCjV74femRgNu1MOYz6uVBEo7Y9ixy/Fw QWDrggkrhzwyCcXg4Mff7xjpA/bQ5y0qitXfgVlPF12oNEggMhlrZkeI0+ViOq/w 3mc3mxLYzL6AmUkwRvaid5LDozKmw5vN6Ny0dXQI/U4mQdKEXMwACVxzaOXQohMM Pz9vEZKiiTovm2bSRFK4sQOqWBPbAK/98zD2nWCvobB0mZ7UKwEKtjcbsfFYioEl SGRn03+84xNPoELkYMHdKlFTfk6Klh/d -----END CERTIFICATE-----Generated at Sat Jun 1 06:27:37 2024 by rpki-client on console-fra.rpki-client.org