$ rpki-client -vvf rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft File: HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft (raw, json) Hash identifier: tJjWsPnSYCAc8r3NE4vYx2aTWA7IAFiMQuu1CNx6sWQ= Subject key identifier: E7:0F:23:1C:00:43:70:F6:B4:DC:B8:31:50:AF:DE:EA:4A:B0:37:ED Authority key identifier: 1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C Certificate issuer: /CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft Manifest number: FF Signing time: Sun 19 May 2024 05:37:21 +0000 Manifest this update: Sun 19 May 2024 05:37:20 +0000 Manifest next update: Sun 26 May 2024 05:37:20 +0000 Files and hashes: 1: HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl (hash: CFyEPNJ7E1QC8axVar8WBRTInJRkvchMsVGvHu2hCcE=) 2: F2AB2F288FE011EDA9919C57C4F9AE02.roa (hash: j2B/1YBlPE46G5yeDHdnDnb9mxYWTsPXU0v9hB2F54Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C Validity Not Before: May 19 05:37:20 2024 GMT Not After : May 26 05:37:20 2024 GMT Subject: CN=66499010-324c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a6:70:0b:ff:f7:4b:38:a9:3a:5a:8d:bc:b3: 8e:77:69:18:dc:56:f1:2e:df:69:33:ad:2b:15:93: 1d:02:a2:59:c6:92:34:45:13:e8:6f:de:cf:87:8c: 2b:7b:31:3e:01:f0:6f:e9:1a:cb:da:82:35:00:af: f1:11:ff:39:99:0f:36:d9:88:dd:30:ce:27:f6:e1: 88:fa:20:ce:67:7d:32:11:0c:0f:ad:35:4b:bd:32: f9:4e:f2:fa:7a:6c:1b:24:d6:8f:12:2d:9c:e7:49: 88:a4:25:be:79:0a:8c:0b:b2:5c:b9:8b:66:e1:8a: 62:be:47:53:83:1b:cc:da:65:e8:b8:9d:1a:63:80: e6:ec:ae:2e:e2:3d:54:a0:5f:37:b1:ee:b6:4a:0f: d8:80:9b:a2:d8:82:69:cf:8c:2b:91:43:65:61:88: 3b:24:d6:03:29:b4:89:c9:fd:20:ba:13:87:56:cf: 02:9a:39:95:89:5c:e5:22:96:0f:73:37:0f:34:9f: 00:d0:af:0e:c1:06:45:c8:e9:99:bc:a8:ac:56:1d: e9:1e:d3:7f:a4:7c:40:15:37:ef:f8:ba:30:00:c3: 4d:65:b8:58:30:a1:96:24:a9:54:15:b3:26:37:f9: 3e:84:6c:be:cb:a2:23:1d:05:ba:dc:70:34:f6:ac: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0F:23:1C:00:43:70:F6:B4:DC:B8:31:50:AF:DE:EA:4A:B0:37:ED X509v3 Authority Key Identifier: keyid:1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:53:b7:77:27:ea:a9:01:d2:06:4f:df:1b:a5:92:90:f0:4c: 9f:a5:92:cd:ef:2e:b4:2e:e2:87:bb:68:90:12:35:6a:eb:85: d7:5d:7c:07:92:84:e3:0b:aa:90:16:3b:52:41:e0:1a:d2:36: a8:9a:a6:c1:64:97:71:5b:5a:f9:b4:2f:2d:6e:19:92:ca:1f: 56:ae:dd:df:95:f8:e2:a6:7f:95:d0:4d:cd:fc:6c:20:e4:55: f2:f2:f2:ec:ca:06:df:11:1d:62:d4:86:cc:26:91:3a:40:2c: c0:46:07:d8:8a:2b:64:af:b1:52:5b:2d:f7:4e:22:c2:15:8d: cf:28:88:c6:35:43:40:a5:d0:ea:82:94:ad:13:e6:c1:0a:2f: a4:3c:2f:a1:04:45:73:ee:0a:0a:33:36:05:11:34:6c:45:c0: 8d:c9:63:3b:6c:a2:85:c2:99:32:68:64:e0:d9:3d:22:0f:4c: 70:00:9a:a9:36:38:2d:02:27:f5:0b:0c:ac:83:99:9f:2f:0f: df:ee:9f:1d:4c:b7:2c:5b:14:0e:13:e6:25:33:07:66:e8:6c: 0e:a6:87:fb:f5:5f:06:f2:f9:f2:2d:de:a9:f9:90:55:5e:87: c6:a3:ca:d8:03:79:25:84:70:65:b7:a9:f2:9c:98:46:c6:ad: d5:96:11:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM2MDkxMTAvBgNVBAUTKDFDNDIyQkIxRkM5NkZFNjBENEIyRkY1RjZDMTI0NTBF Q0M5RUU5NkMwHhcNMjQwNTE5MDUzNzIwWhcNMjQwNTI2MDUzNzIwWjAYMRYwFAYD VQQDEw02NjQ5OTAxMC0zMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaZwC//3SzipOlqNvLOOd2kY3FbxLt9pM60rFZMdAqJZxpI0RRPob97Ph4wr ezE+AfBv6RrL2oI1AK/xEf85mQ822YjdMM4n9uGI+iDOZ30yEQwPrTVLvTL5TvL6 emwbJNaPEi2c50mIpCW+eQqMC7JcuYtm4YpivkdTgxvM2mXouJ0aY4Dm7K4u4j1U oF83se62Sg/YgJui2IJpz4wrkUNlYYg7JNYDKbSJyf0guhOHVs8CmjmViVzlIpYP czcPNJ8A0K8OwQZFyOmZvKisVh3pHtN/pHxAFTfv+LowAMNNZbhYMKGWJKlUFbMm N/k+hGy+y6IjHQW63HA09qyi1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcPIxwA Q3D2tNy4MVCv3upKsDftMB8GA1UdIwQYMBaAFBxCK7H8lv5g1LL/X2wSRQ7Mnuls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzYwOS8yM0Y5RThCQThG REUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19tRFVzdjlmYkJKRkRzeWU2 V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFSXJzZnlXX21EVXN2OWZiQkpGRHN5ZTZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzYwOS8yM0Y5RThCQThGREUxMUVEQUUzNjlBNTNDNEY5QUUwMi9IRUlyc2Z5V19t RFVzdjlmYkJKRkRzeWU2V3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiU7d3J+qpAdIGT98bpZKQ8EyfpZLN7y60LuKHu2iQEjVq64XXXXwH koTjC6qQFjtSQeAa0jaomqbBZJdxW1r5tC8tbhmSyh9Wrt3flfjipn+V0E3N/Gwg 5FXy8vLsygbfER1i1IbMJpE6QCzARgfYiitkr7FSWy33TiLCFY3PKIjGNUNApdDq gpStE+bBCi+kPC+hBEVz7goKMzYFETRsRcCNyWM7bKKFwpkyaGTg2T0iD0xwAJqp NjgtAif1Cwysg5mfLw/f7p8dTLcsWxQOE+YlMwdm6GwOpof79V8G8vnyLd6p+ZBV XofGo8rYA3klhHBlt6nynJhGxq3VlhGz -----END CERTIFICATE-----Generated at Sun May 19 07:40:39 2024 by rpki-client on console-fra.rpki-client.org