$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: WWNhqlI8qAfED7KbUPBWkctVYEqZGPydGZYl6UNav6A= Subject key identifier: FD:AF:D6:8E:42:02:BF:E9:36:FF:8C:18:89:1F:5F:09:2B:4A:73:EC Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 071D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 070C Signing time: Sat 18 May 2024 22:41:09 +0000 Manifest this update: Sat 18 May 2024 22:41:09 +0000 Manifest next update: Sat 25 May 2024 22:41:09 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: Zdrut3rjhsiCyaGRGCV7X1ecjqwZoCMO4nauJ12XRtw=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: tr8aJViu1PcA5mVxlwXOduo3fTXSlZD4RqOWLmfPc9k=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: tP9bMN6R2kyhExEDnLcqXBcoLmgbQ94K8lLRNPV7ISU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: May 18 22:41:09 2024 GMT Not After : May 25 22:41:09 2024 GMT Subject: CN=66492e85-0eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:7c:20:c7:5f:43:60:e8:7b:70:64:4d:63:0b: a0:39:80:52:97:8c:10:b1:c7:02:dc:16:0d:f7:e5: 57:ef:a8:41:6d:ee:44:85:34:ba:25:7a:ba:ac:f0: ff:b5:eb:82:73:46:7c:80:6e:40:22:a5:c0:c1:91: a1:36:a6:58:9a:73:1a:d1:80:7c:da:81:eb:f8:8f: 8a:fd:a0:85:21:5f:29:65:dc:5d:9f:39:45:b0:ca: 90:4e:a7:56:ed:4b:21:f5:dc:d7:8d:c9:ab:b5:7d: d7:dc:32:c6:25:5a:49:ec:e4:0e:b7:05:7d:ca:cd: d7:0b:9c:ca:a6:c5:1d:d5:7c:bc:87:6e:92:69:5f: 9e:33:2e:d4:d3:a8:74:8e:c5:19:84:e3:69:1f:56: 6b:51:7b:3e:da:51:00:e8:9e:29:9b:c2:52:8f:77: ae:6c:47:58:fe:e6:bd:e9:a1:d6:6d:1b:df:76:2f: f8:d2:66:e2:76:9e:2b:6c:e7:ed:4c:8a:1b:d3:f7: 13:4b:94:58:51:4e:8a:7c:f6:d6:2e:0b:9f:6f:cb: a0:4b:df:f6:df:c4:90:28:35:a6:26:a0:cc:aa:a8: 45:68:97:ee:ae:b7:6b:8c:7e:63:84:06:fa:36:da: f0:15:1b:e0:a0:b2:24:c5:d9:f2:51:77:90:c3:6c: 34:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:AF:D6:8E:42:02:BF:E9:36:FF:8C:18:89:1F:5F:09:2B:4A:73:EC X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:85:32:62:6a:40:85:b7:30:d2:ed:67:d5:59:f3:bc:30:97: c7:18:5e:28:76:1c:c5:ed:ce:cf:fd:93:69:71:22:28:a7:79: 0b:4f:8a:4f:18:4b:c6:7b:63:72:17:63:ef:aa:71:1c:07:3e: 41:e9:b2:e4:73:b2:5b:30:27:18:c9:63:95:f5:99:d1:92:36: 4a:f7:05:9d:94:d9:e0:91:eb:94:c4:54:6f:0c:c6:f4:74:69: d8:af:0d:83:6e:e7:09:ff:27:12:f6:64:00:f5:b2:ae:95:df: 09:1a:ea:f4:74:45:1d:22:5c:71:2a:61:b3:d6:c3:34:b2:95: 38:12:7e:d6:20:88:e8:af:a8:c8:4f:73:fa:76:f5:93:80:b9: 39:8a:e7:08:28:71:48:36:e4:d5:3f:2e:96:e3:31:77:a9:c8: 68:38:31:20:85:6c:78:79:6d:3b:7d:42:72:cc:fc:05:aa:f9: 8f:01:f1:88:8d:97:7a:b3:50:98:da:7d:1f:ab:94:b5:9e:11: 23:5b:b3:37:9d:cd:8d:d4:90:da:90:fa:52:9d:0c:30:7f:5f: 04:7f:31:84:27:1c:63:5c:01:ea:1c:73:9c:7d:9c:e3:0b:53: d1:a3:a7:5e:74:88:05:da:85:92:fc:99:39:9e:ad:1c:00:af: 9d:eb:25:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjQwNTE4MjI0MTA5WhcNMjQwNTI1MjI0MTA5WjAYMRYwFAYD VQQDEw02NjQ5MmU4NS0wZWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7nwgx19DYOh7cGRNYwugOYBSl4wQsccC3BYN9+VX76hBbe5EhTS6JXq6rPD/ teuCc0Z8gG5AIqXAwZGhNqZYmnMa0YB82oHr+I+K/aCFIV8pZdxdnzlFsMqQTqdW 7Ush9dzXjcmrtX3X3DLGJVpJ7OQOtwV9ys3XC5zKpsUd1Xy8h26SaV+eMy7U06h0 jsUZhONpH1ZrUXs+2lEA6J4pm8JSj3eubEdY/ua96aHWbRvfdi/40mbidp4rbOft TIob0/cTS5RYUU6KfPbWLgufb8ugS9/238SQKDWmJqDMqqhFaJfurrdrjH5jhAb6 NtrwFRvgoLIkxdnyUXeQw2w0OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2v1o5C Ar/pNv+MGIkfXwkrSnPsMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAhTJiakCFtzDS7WfVWfO8MJfHGF4odhzF7c7P/ZNpcSIop3kLT4pP GEvGe2NyF2PvqnEcBz5B6bLkc7JbMCcYyWOV9ZnRkjZK9wWdlNngkeuUxFRvDMb0 dGnYrw2DbucJ/ycS9mQA9bKuld8JGur0dEUdIlxxKmGz1sM0spU4En7WIIjor6jI T3P6dvWTgLk5iucIKHFINuTVPy6W4zF3qchoODEghWx4eW07fUJyzPwFqvmPAfGI jZd6s1CY2n0fq5S1nhEjW7M3nc2N1JDakPpSnQwwf18EfzGEJxxjXAHqHHOcfZzj C1PRo6dedIgF2oWS/Jk5nq0cAK+d6yWP -----END CERTIFICATE-----Generated at Sun May 19 00:16:12 2024 by rpki-client on console-fra.rpki-client.org