$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft File: h81xgndjHgvdtrTzot8esxEio4E.mft (raw, json) Hash identifier: NHHIG3YTTbTzkw7Pmdm+Bn1H2Dep14EzWqzKZDRaTsY= Subject key identifier: 77:5F:08:E2:87:B0:57:AD:6C:B7:74:D3:A4:AB:F6:BA:8C:6A:17:04 Authority key identifier: 87:CD:71:82:77:63:1E:0B:DD:B6:B4:F3:A2:DF:1E:B3:11:22:A3:81 Certificate issuer: /CN=A91F2DDD/serialNumber=87CD718277631E0BDDB6B4F3A2DF1EB31122A381 Certificate serial: 0D8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft Manifest number: 0FC9 Signing time: Sat 04 May 2024 18:43:25 +0000 Manifest this update: Sat 04 May 2024 18:43:25 +0000 Manifest next update: Sat 11 May 2024 18:43:25 +0000 Files and hashes: 1: h81xgndjHgvdtrTzot8esxEio4E.crl (hash: LQ2T1YKlulY6Qub87cIiY0++jAStzu2tbmVJ7IwVbxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:43:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3467 (0xd8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD/serialNumber=87CD718277631E0BDDB6B4F3A2DF1EB31122A381 Validity Not Before: May 4 18:43:25 2024 GMT Not After : May 11 18:43:25 2024 GMT Subject: CN=663681cd-25e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:94:da:5a:3d:bc:5e:89:41:3f:97:c8:b7:8a: c9:ac:49:42:1e:cf:91:16:a8:e9:47:e9:88:89:02: 1d:45:0e:a3:63:d0:86:ab:bd:38:a8:a3:6b:d4:65: 26:ba:f2:c2:17:92:5d:1a:24:24:e9:be:f4:2d:e7: 56:22:9b:3f:e3:34:56:fb:45:2a:c1:76:0d:71:df: 6a:18:45:db:1a:79:b4:c5:4f:a4:0c:11:ee:fc:6a: 24:36:13:f1:de:a8:54:74:46:b1:ef:27:db:00:d8: c5:3e:74:3e:7a:52:31:a5:fb:86:ef:fe:7e:91:59: cf:4e:62:ed:a6:7b:4c:99:29:e2:a1:c6:cf:6a:c0: 13:bb:01:dd:5c:1d:00:17:5b:8c:e2:a9:48:f3:20: 27:1f:d9:9b:b5:57:9d:ce:0e:fb:81:eb:98:52:85: 50:e6:58:e5:a5:7d:8f:0c:8d:a8:03:59:d5:8d:5c: 4f:65:04:aa:a7:6c:fb:de:61:26:74:23:50:83:50: da:7c:04:1e:de:ef:5a:ea:cb:ff:1e:44:8b:c2:e8: fe:86:ce:45:9d:6e:bf:71:a4:74:7f:c3:58:d5:1e: 99:0c:fc:d5:80:04:13:37:7b:90:1c:57:b4:4c:94: f4:ec:df:44:2c:75:17:9f:86:5d:fb:8c:7c:62:76: 0b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:5F:08:E2:87:B0:57:AD:6C:B7:74:D3:A4:AB:F6:BA:8C:6A:17:04 X509v3 Authority Key Identifier: keyid:87:CD:71:82:77:63:1E:0B:DD:B6:B4:F3:A2:DF:1E:B3:11:22:A3:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h81xgndjHgvdtrTzot8esxEio4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/h81xgndjHgvdtrTzot8esxEio4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:71:93:02:0e:d0:97:b8:22:2a:c0:50:51:3b:a4:51:99:09: 31:b6:11:2c:0a:7d:63:57:b6:e3:97:e8:ce:7a:cf:66:2c:ec: d2:e8:d1:21:e8:70:33:8b:b8:27:14:eb:14:8d:6b:40:94:28: ae:36:26:e9:73:c9:9a:13:32:fe:e0:fa:e6:0f:be:87:d6:ab: 81:7f:df:77:fb:b8:f9:35:e4:34:93:71:ac:47:21:60:1e:b0: a0:ef:ea:a5:93:8c:c0:a6:14:e2:47:ef:f6:57:92:86:9d:c4: ad:40:b5:54:b5:ee:48:9c:5f:f1:fb:5b:7d:8e:79:61:54:d6: 0a:47:b4:47:82:ed:c4:77:85:71:b5:22:38:85:d8:23:6d:22: 5e:e0:6b:9b:f7:87:ec:ab:87:90:ca:59:0c:d3:63:f6:eb:6d: 61:37:54:ad:b0:65:48:67:45:4d:94:c1:6a:63:58:f4:16:3a: ca:c4:0e:f7:3b:53:9b:43:da:5b:5f:28:38:22:a8:c9:1c:c5: b9:94:3e:1c:89:6d:f7:62:a1:2b:67:94:70:b3:c3:22:07:e3: b5:3b:80:65:53:05:c1:bd:c3:f1:b5:ad:c7:1f:37:5d:1e:84: 37:d8:3e:c9:81:44:39:80:42:7f:a7:14:17:b1:84:16:bf:3f: 78:1e:d0:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKDg3Q0Q3MTgyNzc2MzFFMEJEREI2QjRGM0EyREYxRUIz MTEyMkEzODEwHhcNMjQwNTA0MTg0MzI1WhcNMjQwNTExMTg0MzI1WjAYMRYwFAYD VQQDEw02NjM2ODFjZC0yNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JTaWj28XolBP5fIt4rJrElCHs+RFqjpR+mIiQIdRQ6jY9CGq704qKNr1GUm uvLCF5JdGiQk6b70LedWIps/4zRW+0UqwXYNcd9qGEXbGnm0xU+kDBHu/GokNhPx 3qhUdEax7yfbANjFPnQ+elIxpfuG7/5+kVnPTmLtpntMmSniocbPasATuwHdXB0A F1uM4qlI8yAnH9mbtVedzg77geuYUoVQ5ljlpX2PDI2oA1nVjVxPZQSqp2z73mEm dCNQg1DafAQe3u9a6sv/HkSLwuj+hs5FnW6/caR0f8NY1R6ZDPzVgAQTN3uQHFe0 TJT07N9ELHUXn4Zd+4x8YnYL6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdfCOKH sFetbLd006Sr9rqMahcEMB8GA1UdIwQYMBaAFIfNcYJ3Yx4L3ba086LfHrMRIqOB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi9oODF4Z25kakhndmR0clR6b3Q4ZXN4RWlv NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4MXhnbmRqSGd2ZHRyVHpvdDhlc3hFaW80RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi9oODF4Z25kakhn dmR0clR6b3Q4ZXN4RWlvNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbcZMCDtCXuCIqwFBRO6RRmQkxthEsCn1jV7bjl+jOes9mLOzS6NEh 6HAzi7gnFOsUjWtAlCiuNibpc8maEzL+4PrmD76H1quBf993+7j5NeQ0k3GsRyFg HrCg7+qlk4zAphTiR+/2V5KGncStQLVUte5InF/x+1t9jnlhVNYKR7RHgu3Ed4Vx tSI4hdgjbSJe4Gub94fsq4eQylkM02P2621hN1StsGVIZ0VNlMFqY1j0FjrKxA73 O1ObQ9pbXyg4IqjJHMW5lD4ciW33YqErZ5Rws8MiB+O1O4BlUwXBvcPxta3HHzdd HoQ32D7JgUQ5gEJ/pxQXsYQWvz94HtB0 -----END CERTIFICATE-----Generated at Sat May 4 20:37:20 2024 by rpki-client on console-fra.rpki-client.org