$ rpki-client -vvf rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft File: HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft (raw, json) Hash identifier: lx3kpo830CfaNvxAR2Coe5F8q261mQVGW/xVkbDfKX4= Subject key identifier: 9E:A1:75:92:FA:5C:3D:BC:F8:38:DB:0D:26:9B:D1:9F:A4:14:8B:37 Authority key identifier: 1C:62:DC:1D:80:CB:AB:03:03:53:E1:F5:74:B3:60:01:98:FB:6B:71 Certificate issuer: /CN=A916ED18/serialNumber=1C62DC1D80CBAB030353E1F574B3600198FB6B71 Certificate serial: 1889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft Manifest number: 1875 Signing time: Sat 18 May 2024 16:54:14 +0000 Manifest this update: Sat 18 May 2024 16:54:13 +0000 Manifest next update: Sat 25 May 2024 16:54:13 +0000 Files and hashes: 1: HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl (hash: hJycRU9d5VIFlmoYEUmEDxEn7Bgnc09sPZcFY2N/UBM=) 2: BE8F165C873111E9AA82EC27C4F9AE02.roa (hash: Xvk9c25qRt1XT1WoQeTZNF8a7ZR5UOWIfJYiBZNp3Lo=) 3: 9C1DF7FC434311ECBE4BAA38C4F9AE02.roa (hash: ZYXynd/2Y7ukYX8bO7tWRLxmXPOwOSzcsRTG+CNcqC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6281 (0x1889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916ED18/serialNumber=1C62DC1D80CBAB030353E1F574B3600198FB6B71 Validity Not Before: May 18 16:54:13 2024 GMT Not After : May 25 16:54:13 2024 GMT Subject: CN=6648dd36-fbfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:34:9c:cb:0c:89:71:87:52:f1:0e:41:18:60: e5:87:4d:93:be:5a:d7:e2:35:08:35:42:c0:a1:62: dc:f1:0e:26:12:db:c4:95:9f:bc:98:fc:29:49:d9: ba:05:ec:1d:07:70:b7:a9:9f:ab:e8:7e:d8:da:8a: 0c:52:d9:c4:77:5c:03:51:7e:86:f4:89:a4:6d:ae: 67:84:32:fd:5e:8a:a3:17:33:06:03:6e:e4:1a:28: 27:d2:29:81:e1:5c:14:a8:5a:7b:ca:ee:6e:7a:5c: fb:cd:e8:4c:a4:00:01:74:ea:0d:cc:64:48:c3:62: 17:53:e4:5e:b4:a3:20:1e:9b:86:61:ad:ea:a6:8f: 49:95:de:5f:64:9e:3a:85:41:97:04:06:27:24:3d: a0:1a:60:90:cd:b6:84:53:c3:ba:05:c0:e5:90:fd: 9e:de:a3:e6:a1:4d:d5:fa:b1:29:a6:f6:19:c8:31: 25:de:d9:6e:79:b3:4e:fa:78:42:d0:db:6c:da:96: 7e:3a:3b:a0:4c:d1:f5:01:50:77:dd:b7:6f:c8:59: 54:c5:4d:32:a1:9d:98:94:6f:8f:14:8c:91:b0:cb: 8e:a0:52:aa:04:af:65:cf:f5:33:b8:d9:3d:df:d3: 49:e2:72:50:1d:f7:6f:e1:35:bf:02:b3:21:cf:cd: a7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A1:75:92:FA:5C:3D:BC:F8:38:DB:0D:26:9B:D1:9F:A4:14:8B:37 X509v3 Authority Key Identifier: keyid:1C:62:DC:1D:80:CB:AB:03:03:53:E1:F5:74:B3:60:01:98:FB:6B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:79:5f:ff:34:c6:30:32:8d:87:82:0f:bd:a4:43:f0:44:b4: b0:94:05:88:1b:97:68:01:5a:c7:7e:d1:83:a5:32:7d:3e:52: d2:eb:10:1c:22:59:c6:d6:fa:3e:66:b1:e2:58:db:0d:d1:f4: 37:c0:c8:4e:c5:b8:32:ea:45:d6:91:c9:ed:61:a8:f6:07:ca: 55:1b:bb:2e:78:29:de:04:2d:f6:02:cd:82:70:c1:05:6d:3a: a5:28:99:34:11:d0:6b:9b:7b:8b:60:51:6c:0b:3c:29:ea:b1: e0:cd:2e:bb:69:14:28:05:5f:a4:91:c6:87:1b:0f:98:27:5a: 7d:d3:61:bd:7e:51:ea:d0:59:1a:5a:72:12:74:37:9c:cc:fe: 30:e8:dd:49:63:5c:86:1c:54:f6:9e:0c:41:f5:07:c3:be:02: f6:17:a9:55:58:74:20:f6:8b:c5:d7:c4:b9:e9:3e:01:99:4c: 75:52:0f:12:44:9b:66:86:8f:a7:f2:29:53:27:a0:dd:48:20: ae:07:86:40:4f:b9:9f:17:8b:75:34:7d:b5:60:53:3d:ea:39: 12:4c:68:de:7c:7a:02:cf:f8:0b:76:01:b3:ad:d2:87:20:7d: f8:42:13:b5:d0:f1:85:a6:b6:41:93:0f:e2:d7:6b:d9:23:3b: 60:2e:77:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEMTgxMTAvBgNVBAUTKDFDNjJEQzFEODBDQkFCMDMwMzUzRTFGNTc0QjM2MDAx OThGQjZCNzEwHhcNMjQwNTE4MTY1NDEzWhcNMjQwNTI1MTY1NDEzWjAYMRYwFAYD VQQDEw02NjQ4ZGQzNi1mYmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7DScywyJcYdS8Q5BGGDlh02TvlrX4jUINULAoWLc8Q4mEtvElZ+8mPwpSdm6 BewdB3C3qZ+r6H7Y2ooMUtnEd1wDUX6G9Imkba5nhDL9XoqjFzMGA27kGign0imB 4VwUqFp7yu5uelz7zehMpAABdOoNzGRIw2IXU+RetKMgHpuGYa3qpo9Jld5fZJ46 hUGXBAYnJD2gGmCQzbaEU8O6BcDlkP2e3qPmoU3V+rEppvYZyDEl3tluebNO+nhC 0Nts2pZ+OjugTNH1AVB33bdvyFlUxU0yoZ2YlG+PFIyRsMuOoFKqBK9lz/UzuNk9 39NJ4nJQHfdv4TW/ArMhz82nrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6hdZL6 XD28+DjbDSab0Z+kFIs3MB8GA1UdIwQYMBaAFBxi3B2Ay6sDA1Ph9XSzYAGY+2tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUQxOC9GRkZFQzExQTdB RjgxMUU3ODk4QTZGMkVDNEY5QUUwMi9IR0xjSFlETHF3TURVLUgxZExOZ0Faajdh M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hHTGNIWURMcXdNRFUtSDFkTE5nQVpqN2EzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUQxOC9GRkZFQzExQTdBRjgxMUU3ODk4QTZGMkVDNEY5QUUwMi9IR0xjSFlETHF3 TURVLUgxZExOZ0FaajdhM0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkeV//NMYwMo2Hgg+9pEPwRLSwlAWIG5doAVrHftGDpTJ9PlLS6xAc IlnG1vo+ZrHiWNsN0fQ3wMhOxbgy6kXWkcntYaj2B8pVG7sueCneBC32As2CcMEF bTqlKJk0EdBrm3uLYFFsCzwp6rHgzS67aRQoBV+kkcaHGw+YJ1p902G9flHq0Fka WnISdDeczP4w6N1JY1yGHFT2ngxB9QfDvgL2F6lVWHQg9ovF18S56T4BmUx1Ug8S RJtmho+n8ilTJ6DdSCCuB4ZAT7mfF4t1NH21YFM96jkSTGjefHoCz/gLdgGzrdKH IH34QhO10PGFprZBkw/i12vZIztgLneg -----END CERTIFICATE-----Generated at Sat May 18 17:37:33 2024 by rpki-client on console-fra.rpki-client.org