$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft File: hPqw1oT6rxaVCqyjjm1lOszyWLw.mft (raw, json) Hash identifier: XQGGjo/xUg6v55Eokrw8Go5OQYDkfcJaq2O2TAvykM4= Subject key identifier: 38:6D:37:D7:52:DC:B7:F7:97:FD:A9:60:8A:DA:91:75:A8:4A:E1:58 Authority key identifier: 84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC Certificate issuer: /CN=A914247C/serialNumber=84FAB0D684FAAF16950AACA38E6D653ACCF258BC Certificate serial: 0A46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft Manifest number: 0A41 Signing time: Sat 18 May 2024 20:28:21 +0000 Manifest this update: Sat 18 May 2024 20:28:21 +0000 Manifest next update: Sat 25 May 2024 20:28:21 +0000 Files and hashes: 1: hPqw1oT6rxaVCqyjjm1lOszyWLw.crl (hash: pCm/G5l18Opej0UZx8BlaqYPtSykF63WPAK4OyKsnhM=) 2: E1AB1F92430F11EAA60DB885C4F9AE02.roa (hash: Fk3GHK65KNeSPb414Ft5ldVXfZbMJfk67OvDASYBWA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.crl rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2630 (0xa46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C/serialNumber=84FAB0D684FAAF16950AACA38E6D653ACCF258BC Validity Not Before: May 18 20:28:21 2024 GMT Not After : May 25 20:28:21 2024 GMT Subject: CN=66490f65-1753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:74:3b:82:b5:bf:4b:0a:83:d6:12:ff:f1:75: aa:30:a0:1c:3c:6f:b2:a7:80:cc:d6:ec:ec:9f:cc: 4b:77:54:07:dd:45:ff:56:be:f8:aa:f4:1a:c8:1f: 68:be:73:09:2b:00:c2:e2:ec:93:2a:50:1a:e9:86: ab:f5:85:47:37:fb:c4:2b:4b:a0:6e:44:61:e6:9d: 8a:4a:43:42:98:25:09:24:61:86:c5:b0:21:2f:b7: a3:c8:50:35:21:c4:5b:05:6c:f3:c8:70:bd:95:6e: bd:0c:24:85:e0:30:3f:02:30:68:11:62:69:d4:f6: fa:84:1a:f5:da:52:f1:ca:46:97:4b:22:68:78:45: 4e:1f:6b:e8:8a:6d:0d:be:fb:f5:b4:f9:7a:85:6e: 33:6b:2e:78:4b:c3:3f:21:75:2d:ec:77:d5:ae:fd: 3b:17:f1:af:a1:d8:a7:a7:17:51:ea:13:a6:ee:60: 51:6c:8e:69:df:35:90:64:c6:80:e6:42:42:77:5c: 7c:5a:63:61:d9:44:e2:8d:70:4f:11:54:0f:bd:e4: 32:3a:45:52:ef:fa:d2:a7:13:83:fd:1c:6d:5b:53: 94:03:cf:41:e3:a4:0c:5e:e2:39:75:ea:f5:5e:e5: 4c:8b:fe:5b:a8:75:9e:d7:b6:bc:b6:54:98:18:16: 03:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6D:37:D7:52:DC:B7:F7:97:FD:A9:60:8A:DA:91:75:A8:4A:E1:58 X509v3 Authority Key Identifier: keyid:84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:87:46:76:65:b7:fc:b8:76:16:d9:5e:b3:36:3d:51:e9:fc: af:70:8c:90:2e:c8:53:57:cd:17:de:c1:a4:da:6f:70:92:99: 70:ee:64:41:06:d7:7f:fc:49:e8:a0:9c:3a:d4:b2:a2:aa:e2: 97:9e:67:b9:60:71:27:8a:c8:5c:6d:bf:b0:ae:3e:87:9b:d4: ec:85:76:97:37:49:70:8a:4f:d2:b6:b4:ae:5f:c4:92:15:b9: 40:22:43:70:1d:b8:eb:3f:c8:10:ed:9d:40:d5:37:74:cc:2c: cd:cf:17:0f:2f:a6:b7:b1:bf:91:e8:ed:6f:12:be:b7:1b:4d: 3b:48:d0:17:7a:dc:2a:6d:65:60:34:16:f6:a0:a8:54:31:62: ef:10:7b:36:88:38:e1:b5:7e:27:15:b7:4c:c0:fd:cf:50:cd: fe:cb:bd:63:db:7a:4b:dd:e8:23:8b:99:96:c4:54:03:21:2f: 84:f9:29:52:e9:a5:9c:1c:ec:cb:1a:fc:f2:71:de:96:d9:d8: ee:20:3b:ac:de:3f:bc:b1:f7:21:ce:c8:47:22:42:cd:70:32: ae:8a:86:b8:b9:97:15:97:f6:fa:61:a4:70:be:c9:af:fe:a1: f6:0d:78:41:60:ac:10:96:de:fc:23:d6:d7:f3:99:ea:be:e3: 3e:71:c1:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKDg0RkFCMEQ2ODRGQUFGMTY5NTBBQUNBMzhFNkQ2NTNB Q0NGMjU4QkMwHhcNMjQwNTE4MjAyODIxWhcNMjQwNTI1MjAyODIxWjAYMRYwFAYD VQQDEw02NjQ5MGY2NS0xNzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3Q7grW/SwqD1hL/8XWqMKAcPG+yp4DM1uzsn8xLd1QH3UX/Vr74qvQayB9o vnMJKwDC4uyTKlAa6Yar9YVHN/vEK0ugbkRh5p2KSkNCmCUJJGGGxbAhL7ejyFA1 IcRbBWzzyHC9lW69DCSF4DA/AjBoEWJp1Pb6hBr12lLxykaXSyJoeEVOH2voim0N vvv1tPl6hW4zay54S8M/IXUt7HfVrv07F/GvodinpxdR6hOm7mBRbI5p3zWQZMaA 5kJCd1x8WmNh2UTijXBPEVQPveQyOkVS7/rSpxOD/RxtW1OUA89B46QMXuI5der1 XuVMi/5bqHWe17a8tlSYGBYDjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhtN9dS 3Lf3l/2pYIrakXWoSuFYMB8GA1UdIwQYMBaAFIT6sNaE+q8WlQqso45tZTrM8li8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy85MEY2MzJEQTQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi9oUHF3MW9UNnJ4YVZDcXlqam0xbE9zenlX THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hQcXcxb1Q2cnhhVkNxeWpqbTFsT3N6eVdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy85MEY2MzJEQTQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi9oUHF3MW9UNnJ4 YVZDcXlqam0xbE9zenlXTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+h0Z2Zbf8uHYW2V6zNj1R6fyvcIyQLshTV80X3sGk2m9wkplw7mRB Btd//EnooJw61LKiquKXnme5YHEnishcbb+wrj6Hm9TshXaXN0lwik/StrSuX8SS FblAIkNwHbjrP8gQ7Z1A1Td0zCzNzxcPL6a3sb+R6O1vEr63G007SNAXetwqbWVg NBb2oKhUMWLvEHs2iDjhtX4nFbdMwP3PUM3+y71j23pL3egji5mWxFQDIS+E+SlS 6aWcHOzLGvzycd6W2djuIDus3j+8sfchzshHIkLNcDKuioa4uZcVl/b6YaRwvsmv /qH2DXhBYKwQlt78I9bX85nqvuM+ccH7 -----END CERTIFICATE-----Generated at Sat May 18 21:24:21 2024 by rpki-client on console-fra.rpki-client.org