$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft File: HQDCg8qhqzzENxoqOE1isc1E-6c.mft (raw, json) Hash identifier: 9GUDyM/2ODtHAzSjCRtX5wyqRMtg6r6t9gS8khSjAoU= Subject key identifier: F0:90:F8:3C:E8:91:EF:7B:BA:49:88:41:11:72:83:CA:51:DC:A6:F5 Authority key identifier: 1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 Certificate issuer: /CN=A912F387/serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft Manifest number: 66 Signing time: Wed 29 May 2024 08:16:52 +0000 Manifest this update: Wed 29 May 2024 08:16:51 +0000 Manifest next update: Wed 05 Jun 2024 08:16:51 +0000 Files and hashes: 1: HQDCg8qhqzzENxoqOE1isc1E-6c.crl (hash: WK1WZdun0HKyfDHpypBFD6VnmPnBptaOFxCCyvzW3Qs=) 2: A9A8FE1A83BC11EEB6C07756C4F9AE02.roa (hash: ZmlvuqiuQGpwnuAUeqJbTPK/3SghVoMsywCuvsX+JN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387/serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Validity Not Before: May 29 08:16:51 2024 GMT Not After : Jun 5 08:16:51 2024 GMT Subject: CN=6656e473-f213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:55:dc:dd:0c:4f:4b:79:d7:be:05:05:94:60: 98:a0:6e:27:a8:48:7f:1f:24:e6:b1:5a:93:3b:1e: a8:c0:44:01:62:d3:99:16:6f:48:7f:0c:6d:92:ce: 34:48:74:00:28:9e:60:85:ef:d9:17:0c:be:99:ac: 04:1f:8e:76:c3:a1:2e:de:fb:24:90:56:55:4a:3c: a2:0a:d4:a9:2e:4c:a0:e7:b8:f6:eb:c1:8d:9d:30: 0a:3e:bc:84:13:f6:c7:05:dc:cf:a7:cb:ad:6a:71: c6:41:43:d2:17:82:65:c7:54:1f:6c:36:eb:bd:8b: aa:d8:e4:1f:02:c1:c5:37:f5:15:23:e7:e4:29:14: ac:b0:36:45:cb:a8:5a:2a:32:58:d7:5a:ca:a6:33: cb:20:dc:a6:2d:44:9c:25:25:ad:db:53:88:cb:c3: 23:92:ba:6c:96:96:64:96:aa:fb:82:c8:8f:f0:48: f4:9e:12:f5:2a:96:38:9b:aa:77:5c:fb:9d:da:7d: 73:89:36:8b:1e:52:e5:79:87:4c:0a:fd:1b:ee:8d: 8f:75:9f:90:95:3d:19:99:fa:53:3e:93:3a:86:90: ed:e4:92:b5:7a:34:14:f8:cb:d7:d6:97:e5:32:25: 0e:73:f3:16:e1:4f:54:52:28:87:cf:61:c2:67:ba: 89:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:90:F8:3C:E8:91:EF:7B:BA:49:88:41:11:72:83:CA:51:DC:A6:F5 X509v3 Authority Key Identifier: keyid:1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:58:0c:29:0b:fc:05:c7:1e:7d:6a:3d:80:7c:48:fa:1c:92: 1f:0b:6d:ea:d8:07:d5:64:9a:bd:a0:c9:98:96:79:ac:5d:73: 45:02:78:95:3c:95:eb:34:f1:f9:44:ce:b6:dd:df:b8:db:60: c6:b4:d2:2b:fe:d1:98:9e:f1:99:f0:fe:c6:f3:61:17:13:d1: 23:85:f5:ca:67:55:53:a4:93:ca:fb:b9:3a:b7:31:09:b1:77: 17:19:c8:12:df:19:af:1f:45:d8:ae:c6:ef:d4:5a:c0:c0:1a: 09:dd:ad:33:a3:41:e5:eb:56:79:c0:f0:5b:57:c8:49:e8:5d: ae:3b:99:d8:6e:be:d5:b8:f3:4e:75:94:15:22:23:e5:88:74: 7c:85:b9:d0:d1:23:cc:4d:8b:a1:75:33:cc:71:1b:47:dc:24: f6:5e:b6:f1:5a:20:1a:5e:89:2d:e3:2f:c6:75:3f:46:60:21: 7b:d7:e6:b9:6a:3e:e3:5a:8d:d8:76:85:a7:87:28:5c:0c:6f: 5a:3e:21:c9:35:2b:79:ec:1e:29:57:fe:0d:c8:48:5a:03:15: 1d:8d:d4:3f:2e:d0:14:9d:38:bd:d6:d8:98:66:07:3d:26:72: 02:89:c9:c3:8e:4f:31:85:ae:41:c2:5e:5f:9b:87:58:79:bf: b1:c4:0f:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjM4NzExMC8GA1UEBRMoMUQwMEMyODNDQUExQUIzQ0M0MzcxQTJBMzg0RDYyQjFD RDQ0RkJBNzAeFw0yNDA1MjkwODE2NTFaFw0yNDA2MDUwODE2NTFaMBgxFjAUBgNV BAMTDTY2NTZlNDczLWYyMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqVdzdDE9Lede+BQWUYJigbieoSH8fJOaxWpM7HqjARAFi05kWb0h/DG2SzjRI dAAonmCF79kXDL6ZrAQfjnbDoS7e+ySQVlVKPKIK1KkuTKDnuPbrwY2dMAo+vIQT 9scF3M+ny61qccZBQ9IXgmXHVB9sNuu9i6rY5B8CwcU39RUj5+QpFKywNkXLqFoq MljXWsqmM8sg3KYtRJwlJa3bU4jLwyOSumyWlmSWqvuCyI/wSPSeEvUqljibqndc +53afXOJNoseUuV5h0wK/RvujY91n5CVPRmZ+lM+kzqGkO3kkrV6NBT4y9fWl+Uy JQ5z8xbhT1RSKIfPYcJnuomnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8JD4POiR 73u6SYhBEXKDylHcpvUwHwYDVR0jBBgwFoAUHQDCg8qhqzzENxoqOE1isc1E+6cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGMzg3LzVGM0M4NDk2ODNB MzExRUVBMEI0MjgxQ0M0RjlBRTAyL0hRRENnOHFocXp6RU54b3FPRTFpc2MxRS02 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFFEQ2c4cWhxenpFTnhvcU9FMWlzYzFFLTZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJG Mzg3LzVGM0M4NDk2ODNBMzExRUVBMEI0MjgxQ0M0RjlBRTAyL0hRRENnOHFocXp6 RU54b3FPRTFpc2MxRS02Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFlYDCkL/AXHHn1qPYB8SPockh8LberYB9Vkmr2gyZiWeaxdc0UCeJU8 les08flEzrbd37jbYMa00iv+0Zie8Znw/sbzYRcT0SOF9cpnVVOkk8r7uTq3MQmx dxcZyBLfGa8fRdiuxu/UWsDAGgndrTOjQeXrVnnA8FtXyEnoXa47mdhuvtW48051 lBUiI+WIdHyFudDRI8xNi6F1M8xxG0fcJPZetvFaIBpeiS3jL8Z1P0ZgIXvX5rlq PuNajdh2haeHKFwMb1o+Ick1K3nsHilX/g3ISFoDFR2N1D8u0BSdOL3W2JhmBz0m cgKJycOOTzGFrkHCXl+bh1h5v7HED8g= -----END CERTIFICATE-----Generated at Wed May 29 10:43:05 2024 by rpki-client on console-ams.rpki-client.org