$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft File: hYtkVOIiRseB5RNSswVkEJhoV34.mft (raw, json) Hash identifier: tU78fYoazME3AsF1Powt0VwNJovKam38CfZ/OXxjeVQ= Subject key identifier: E1:A8:EE:2B:96:45:C3:F1:C8:EB:AB:CC:F3:21:1F:83:D1:E7:8F:3A Authority key identifier: 85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E Certificate issuer: /CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft Manifest number: 35 Signing time: Fri 17 May 2024 08:26:20 +0000 Manifest this update: Fri 17 May 2024 08:26:20 +0000 Manifest next update: Fri 24 May 2024 08:26:20 +0000 Files and hashes: 1: hYtkVOIiRseB5RNSswVkEJhoV34.crl (hash: 07RUSsXZgbdHI9TrfF+X6twZGDR6/3qehHF0MXCyZcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65C7/serialNumber=858B6454E22246C781E51352B30564109868577E Validity Not Before: May 17 08:26:20 2024 GMT Not After : May 24 08:26:20 2024 GMT Subject: CN=664714ac-d01c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:08:15:43:89:52:42:37:9a:5c:cd:02:ce:fc: e9:4d:60:4c:da:19:9a:eb:79:9a:c6:bc:e8:68:06: f3:c1:bc:93:ec:cb:76:a9:8d:40:e7:ec:a4:bf:80: f2:9f:ab:40:c4:13:10:06:ab:ae:2e:b1:5d:0f:d4: f7:b4:e6:a7:98:b8:e1:23:16:4f:ed:db:1c:10:30: 4a:d3:03:a1:15:dc:f3:ec:38:27:04:2e:ae:ed:10: 36:07:55:4d:73:b4:9d:05:c6:3a:29:a2:a5:5f:bf: 1d:de:63:5b:31:ce:ed:8f:26:a7:ae:05:17:e9:3a: be:b6:c9:75:58:3f:ca:8f:f6:5b:6d:1f:28:ee:7e: 6f:83:20:76:c6:0e:1a:b6:ea:6b:62:b3:bf:ab:97: e6:e3:fc:c6:f2:9a:9c:56:ff:df:ff:ab:0d:c5:e8: 2d:c3:84:8d:0d:8d:b9:9f:b6:e3:19:4f:25:8e:7c: 7a:4a:80:5b:d4:f6:0c:f5:a7:46:b7:e8:69:44:aa: 1e:86:f4:0c:e9:3f:2d:fb:eb:25:74:88:94:e5:48: d1:4f:51:4d:32:af:82:66:2c:7c:0f:44:c4:a3:7f: 79:52:05:bb:d6:c8:6b:bd:8a:be:24:b9:9f:26:67: f9:3c:78:50:b3:de:a5:f7:94:b2:5c:27:db:09:e6: 41:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A8:EE:2B:96:45:C3:F1:C8:EB:AB:CC:F3:21:1F:83:D1:E7:8F:3A X509v3 Authority Key Identifier: keyid:85:8B:64:54:E2:22:46:C7:81:E5:13:52:B3:05:64:10:98:68:57:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hYtkVOIiRseB5RNSswVkEJhoV34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/ED0FB686C3E411EE9613F583C4F9AE02/hYtkVOIiRseB5RNSswVkEJhoV34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:4d:40:c1:72:68:62:25:91:15:a2:44:8f:c6:c3:24:3b:c9: 0c:e7:07:6c:1b:c6:bb:3b:5d:51:c1:93:37:36:d3:b0:8b:b5: 61:55:3b:e8:e7:6d:52:e1:84:b4:22:59:a7:4c:cd:d0:65:90: 5f:05:cd:82:c1:68:2f:83:fd:41:52:a7:45:b5:35:f2:14:76: 06:a8:d6:6f:5c:7d:87:92:e8:d6:6f:3d:7c:89:d9:9c:ff:f0: a5:93:fc:4e:98:cb:69:73:59:f0:d6:d5:3b:42:d4:21:d1:4a: 47:7b:43:20:3c:e0:91:3c:7a:ef:f5:05:eb:5a:1d:12:42:d9: 8c:1e:5a:b0:96:76:5b:47:9c:fe:53:96:d4:5d:2c:f3:60:b1: 6c:50:05:ff:d7:a4:28:3c:ff:14:9f:f7:eb:b2:10:a8:12:be: 1a:3c:e9:83:ee:02:6a:f8:21:d0:d6:37:f8:b4:9a:38:9c:c5: 33:cc:52:2e:46:e5:f6:fd:3b:6a:bd:21:91:04:de:c8:f1:91: 2e:ef:a6:81:85:b3:97:81:55:38:25:e1:0e:95:f8:8b:ee:57: 75:e5:45:64:92:38:d2:69:29:34:b5:e7:97:d7:54:e4:06:e4: 53:36:a6:2d:a1:dc:99:43:d2:40:59:dc:f8:5a:6b:38:93:41: 77:50:50:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NjVDNzExMC8GA1UEBRMoODU4QjY0NTRFMjIyNDZDNzgxRTUxMzUyQjMwNTY0MTA5 ODY4NTc3RTAeFw0yNDA1MTcwODI2MjBaFw0yNDA1MjQwODI2MjBaMBgxFjAUBgNV BAMTDTY2NDcxNGFjLWQwMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVCBVDiVJCN5pczQLO/OlNYEzaGZrreZrGvOhoBvPBvJPsy3apjUDn7KS/gPKf q0DEExAGq64usV0P1Pe05qeYuOEjFk/t2xwQMErTA6EV3PPsOCcELq7tEDYHVU1z tJ0FxjopoqVfvx3eY1sxzu2PJqeuBRfpOr62yXVYP8qP9lttHyjufm+DIHbGDhq2 6mtis7+rl+bj/MbympxW/9//qw3F6C3DhI0NjbmftuMZTyWOfHpKgFvU9gz1p0a3 6GlEqh6G9AzpPy376yV0iJTlSNFPUU0yr4JmLHwPRMSjf3lSBbvWyGu9ir4kuZ8m Z/k8eFCz3qX3lLJcJ9sJ5kH/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4ajuK5ZF w/HI66vM8yEfg9HnjzowHwYDVR0jBBgwFoAUhYtkVOIiRseB5RNSswVkEJhoV34w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY2NUM3L0VEMEZCNjg2QzNF NDExRUU5NjEzRjU4M0M0RjlBRTAyL2hZdGtWT0lpUnNlQjVSTlNzd1ZrRUpob1Yz NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFl0a1ZPSWlSc2VCNVJOU3N3VmtFSmhvVjM0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY2 NUM3L0VEMEZCNjg2QzNFNDExRUU5NjEzRjU4M0M0RjlBRTAyL2hZdGtWT0lpUnNl QjVSTlNzd1ZrRUpob1YzNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJBNQMFyaGIlkRWiRI/GwyQ7yQznB2wbxrs7XVHBkzc207CLtWFVO+jn bVLhhLQiWadMzdBlkF8FzYLBaC+D/UFSp0W1NfIUdgao1m9cfYeS6NZvPXyJ2Zz/ 8KWT/E6Yy2lzWfDW1TtC1CHRSkd7QyA84JE8eu/1BetaHRJC2YweWrCWdltHnP5T ltRdLPNgsWxQBf/XpCg8/xSf9+uyEKgSvho86YPuAmr4IdDWN/i0mjicxTPMUi5G 5fb9O2q9IZEE3sjxkS7vpoGFs5eBVTgl4Q6V+IvuV3XlRWSSONJpKTS155fXVOQG 5FM2pi2h3JlD0kBZ3PhaaziTQXdQUMg= -----END CERTIFICATE-----Generated at Fri May 17 10:10:53 2024 by rpki-client on console-fra.rpki-client.org