$ rpki-client -vvf rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft File: HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft (raw, json) Hash identifier: C+yp8HejMolZvINQCFbW0DWyjgKIRPWquI7NvDpTNOU= Subject key identifier: 8D:F5:06:5A:FC:8A:ED:05:A6:FD:68:1E:6D:DD:04:67:CC:73:7D:91 Authority key identifier: 1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E Certificate issuer: /CN=A91D19ED/serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Certificate serial: 0593 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft Manifest number: 058C Signing time: Fri 03 May 2024 00:39:19 +0000 Manifest this update: Fri 03 May 2024 00:39:19 +0000 Manifest next update: Fri 10 May 2024 00:39:19 +0000 Files and hashes: 1: HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl (hash: /47ubAxhDKcPo48DYLnh+mRfxNlGajKg73k8zMtMPOk=) 2: C28841A201DB11EDA4B7F257C4F9AE02.roa (hash: gl+Xayi16U6h277wIL1sN1GFI6Op5pizCRAvEuYKZew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1427 (0x593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D19ED/serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Validity Not Before: May 3 00:39:19 2024 GMT Not After : May 10 00:39:19 2024 GMT Subject: CN=66343237-3859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:62:21:80:03:32:49:a5:f2:34:f7:f5:6c:10: a0:7e:c5:68:fb:49:ec:7b:1c:fe:c2:63:94:f9:eb: 18:16:f5:46:58:6a:31:97:79:d2:15:b2:5d:7a:4e: 69:16:3b:7d:95:7a:c1:72:00:57:ff:cf:05:49:dc: 12:e5:2b:5f:5d:73:0f:c1:7a:64:76:26:33:16:26: 7e:5b:86:79:4d:0c:9f:f6:dc:1a:24:51:ab:f0:3f: fd:8b:ec:78:46:8b:9a:67:5f:6a:09:52:e2:d8:1e: b2:23:8d:8f:44:c0:47:b3:1c:0b:b5:5f:82:ee:c5: af:90:0c:62:e3:4e:d4:1e:3e:52:79:f0:60:3a:02: 5d:e9:47:e7:41:18:ae:11:d8:a5:a0:29:b4:d2:74: b1:80:1f:87:30:33:22:7a:a7:4b:37:8b:d8:7b:af: c4:0f:26:7c:55:d4:f9:1a:06:2d:2e:27:42:9c:fa: 3e:c0:fc:b0:f4:2d:4b:b3:1f:49:38:6b:ad:78:84: d0:6e:86:ba:ae:ba:4f:00:98:00:4f:32:50:9e:90: 34:a8:c6:fa:45:b6:bb:72:57:78:1a:f3:56:c2:fd: 8e:75:c8:0e:0f:f5:60:ea:38:53:b7:9f:55:3e:d9: 76:2e:67:78:0d:a0:18:48:28:08:4d:ca:ad:ad:c5: 9c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F5:06:5A:FC:8A:ED:05:A6:FD:68:1E:6D:DD:04:67:CC:73:7D:91 X509v3 Authority Key Identifier: keyid:1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:32:da:a4:99:40:58:d5:90:28:ea:9f:32:00:de:c8:d5:11: 79:9b:db:c9:bf:f2:07:bf:5c:bc:5c:14:fb:57:07:89:20:78: 08:d6:ba:d3:39:de:f2:91:ff:a3:58:7b:ff:95:4c:07:2e:d5: 6c:af:6d:11:c9:dc:8a:d4:04:3b:48:95:40:42:a7:27:6e:75: 53:67:1a:4c:f7:73:2a:cc:14:26:7f:33:da:b7:29:20:07:8b: 0d:5c:87:7b:08:8d:66:2f:36:10:86:ed:71:62:72:a5:e1:f0: 1f:95:37:9d:39:e4:00:e8:cc:54:e5:fd:54:97:54:05:fc:f7: 44:40:47:bf:75:b5:f0:91:32:af:49:c5:5c:3d:27:72:4c:cd: 27:2e:4d:6b:fe:2a:29:a4:ca:48:58:ed:34:a7:98:48:0a:55: 31:5a:25:1d:eb:14:97:ef:70:40:00:37:32:38:24:8a:42:88: f8:66:eb:3d:b6:ef:bd:b5:52:8c:f0:ff:ec:1c:5f:48:e5:3f: 22:05:2b:5e:c2:c9:2e:08:fe:fa:80:0b:21:08:63:97:11:89: 03:44:ab:4b:f3:cd:cd:83:7a:2e:62:65:cc:27:23:35:58:47: 3e:87:c0:60:73:0b:8e:e3:7a:48:54:cf:26:19:6e:c9:21:63: a7:08:84:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE5RUQxMTAvBgNVBAUTKDFFRDRBNTA0NDlGODYyMDBBMEMyNjY4MDY5QTI4MzI0 RjlGNkE5M0UwHhcNMjQwNTAzMDAzOTE5WhcNMjQwNTEwMDAzOTE5WjAYMRYwFAYD VQQDEw02NjM0MzIzNy0zODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7GIhgAMySaXyNPf1bBCgfsVo+0nsexz+wmOU+esYFvVGWGoxl3nSFbJdek5p Fjt9lXrBcgBX/88FSdwS5StfXXMPwXpkdiYzFiZ+W4Z5TQyf9twaJFGr8D/9i+x4 RouaZ19qCVLi2B6yI42PRMBHsxwLtV+C7sWvkAxi407UHj5SefBgOgJd6UfnQRiu EdiloCm00nSxgB+HMDMieqdLN4vYe6/EDyZ8VdT5GgYtLidCnPo+wPyw9C1Lsx9J OGuteITQboa6rrpPAJgATzJQnpA0qMb6Rba7cld4GvNWwv2OdcgOD/Vg6jhTt59V Ptl2Lmd4DaAYSCgITcqtrcWc/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI31Blr8 iu0Fpv1oHm3dBGfMc32RMB8GA1UdIwQYMBaAFB7UpQRJ+GIAoMJmgGmigyT59qk+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTlFRC81NEI5N0EyNjhB QjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFlnQ2d3bWFBYWFLREpQbjJx VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0U2xCRW40WWdDZ3dtYUFhYUtESlBuMnFUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTlFRC81NEI5N0EyNjhBQjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFln Q2d3bWFBYWFLREpQbjJxVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCMtqkmUBY1ZAo6p8yAN7I1RF5m9vJv/IHv1y8XBT7VweJIHgI1rrT Od7ykf+jWHv/lUwHLtVsr20RydyK1AQ7SJVAQqcnbnVTZxpM93MqzBQmfzPatykg B4sNXId7CI1mLzYQhu1xYnKl4fAflTedOeQA6MxU5f1Ul1QF/PdEQEe/dbXwkTKv ScVcPSdyTM0nLk1r/ioppMpIWO00p5hIClUxWiUd6xSX73BAADcyOCSKQoj4Zus9 tu+9tVKM8P/sHF9I5T8iBStewskuCP76gAshCGOXEYkDRKtL883Ng3ouYmXMJyM1 WEc+h8BgcwuO43pIVM8mGW7JIWOnCISg -----END CERTIFICATE-----Generated at Fri May 3 01:30:28 2024 by rpki-client on console-fra.rpki-client.org