$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: YRKlYpCnPZE0gnehbdVovBE4ea92mMvMH3HdtUhM2Qw= Subject key identifier: DA:BD:F1:AA:35:04:6C:1C:7B:79:AB:87:EF:6E:9E:9A:03:7C:F2:E7 Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 0297 Signing time: Sat 01 Jun 2024 04:48:36 +0000 Manifest this update: Sat 01 Jun 2024 04:48:36 +0000 Manifest next update: Sat 08 Jun 2024 04:48:36 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: eLO49XpsYKES89APnVvJcYOj6Vw0FUcLg2zDuDa+Z5Q=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: BArGwM1bK+rweYsGVKqgC9JYCGyliz8oP72ndcEJbbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Jun 1 04:48:36 2024 GMT Not After : Jun 8 04:48:36 2024 GMT Subject: CN=665aa824-dd7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:68:29:38:c3:b9:2c:84:7f:40:40:0e:d9:39: 88:8c:e1:a1:4f:79:b6:50:c2:85:f5:17:3a:3b:7d: aa:ff:f5:3b:a2:2c:c7:b1:9f:c8:28:81:3d:d2:53: d9:32:32:41:b2:4e:cc:f9:31:23:2e:36:07:4d:50: 03:ff:c8:e4:81:4c:2f:6f:f6:95:72:46:02:ad:7c: 06:61:8a:bb:7d:2c:55:94:75:2d:79:b1:a4:d5:27: 38:aa:73:47:d3:df:f3:c7:d9:88:01:4e:8d:7c:87: 3b:39:47:ba:39:87:3d:cd:c0:9a:76:3a:27:5a:d7: 77:47:99:3d:f7:e7:e3:f0:06:5d:4a:f9:f1:07:1c: 43:9a:66:b2:76:07:fd:9d:10:96:b1:c1:14:41:a4: a8:c4:da:c9:cb:a6:18:30:cb:14:62:88:0a:bf:da: fe:fd:9e:61:c7:1d:64:f6:c1:2f:c7:a7:5a:ed:16: fa:74:1b:5d:cc:94:62:dc:12:64:ee:8c:54:af:ca: 45:f1:67:da:f9:34:ed:97:0c:53:1e:fd:70:d4:ef: 6e:98:41:e5:45:fb:74:07:0a:16:11:b8:58:70:3e: 38:14:66:95:32:a0:1b:07:b2:20:85:74:19:5c:19: d1:69:d0:05:64:ea:2e:56:90:e1:2e:f3:6f:eb:01: fe:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:BD:F1:AA:35:04:6C:1C:7B:79:AB:87:EF:6E:9E:9A:03:7C:F2:E7 X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b7:73:2e:98:91:a0:52:4b:22:7b:d6:5d:98:58:f9:54:a3: 20:74:06:99:d0:2f:cc:e8:9a:35:d2:9b:a4:99:c3:06:5a:ae: 91:8c:c1:38:3e:77:30:6d:50:0f:f4:f8:af:a3:ee:83:7f:88: 91:d3:a5:20:4f:b2:4a:92:90:07:2b:fd:57:c5:d5:ff:20:3d: e1:ce:0a:72:fd:4e:74:b9:ea:2f:5e:36:d3:b1:08:a5:4a:72: 02:94:82:a8:4a:87:d8:cb:6a:5e:89:b8:72:72:94:0f:a0:a4: 6e:53:79:7b:f5:df:88:01:ea:5f:c7:c3:55:03:51:62:ae:9d: 73:e2:88:c5:f9:5f:04:76:5b:a1:b5:4e:98:5b:5a:86:86:f9: d7:ec:86:d2:a3:90:d9:16:e8:60:bd:1d:8f:a4:60:ad:f7:05: e5:c6:8c:fa:36:47:66:42:be:01:9c:1e:ec:ec:98:5b:fb:20: 66:ea:9e:c4:94:81:46:bd:ec:fe:5a:e9:ab:7d:05:58:da:a0: e6:db:39:81:c2:f1:b3:23:90:ee:95:e3:fc:55:51:ab:d9:bb: 89:e9:b1:46:9c:3c:ab:cd:fc:47:39:e0:79:85:1c:53:d4:a6: 0a:9e:d0:a3:e1:07:31:3b:1c:25:f3:2b:f3:eb:28:47:0c:66: 6c:6a:85:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjQwNjAxMDQ0ODM2WhcNMjQwNjA4MDQ0ODM2WjAYMRYwFAYD VQQDEw02NjVhYTgyNC1kZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12gpOMO5LIR/QEAO2TmIjOGhT3m2UMKF9Rc6O32q//U7oizHsZ/IKIE90lPZ MjJBsk7M+TEjLjYHTVAD/8jkgUwvb/aVckYCrXwGYYq7fSxVlHUtebGk1Sc4qnNH 09/zx9mIAU6NfIc7OUe6OYc9zcCadjonWtd3R5k99+fj8AZdSvnxBxxDmmaydgf9 nRCWscEUQaSoxNrJy6YYMMsUYogKv9r+/Z5hxx1k9sEvx6da7Rb6dBtdzJRi3BJk 7oxUr8pF8Wfa+TTtlwxTHv1w1O9umEHlRft0BwoWEbhYcD44FGaVMqAbB7IghXQZ XBnRadAFZOouVpDhLvNv6wH+qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNq98ao1 BGwce3mrh+9unpoDfPLnMB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNt3MumJGgUksie9ZdmFj5VKMgdAaZ0C/M6Jo10pukmcMGWq6RjME4 PncwbVAP9Pivo+6Df4iR06UgT7JKkpAHK/1XxdX/ID3hzgpy/U50ueovXjbTsQil SnIClIKoSofYy2peibhycpQPoKRuU3l79d+IAepfx8NVA1Firp1z4ojF+V8Edluh tU6YW1qGhvnX7IbSo5DZFuhgvR2PpGCt9wXlxoz6NkdmQr4BnB7s7Jhb+yBm6p7E lIFGvez+WumrfQVY2qDm2zmBwvGzI5DuleP8VVGr2buJ6bFGnDyrzfxHOeB5hRxT 1KYKntCj4QcxOxwl8yvz6yhHDGZsaoWP -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:10 2024 by rpki-client on console-ams.rpki-client.org