$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: cpdpUtTcgQS1hSjDYsYehywpZuOO6xDr85ov3hG6nbM= Subject key identifier: D9:E9:25:88:C4:9F:D4:B2:A3:DB:AE:AA:7C:A3:91:7B:BF:D2:A0:AB Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0249 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 0246 Signing time: Sun 19 May 2024 03:57:23 +0000 Manifest this update: Sun 19 May 2024 03:57:22 +0000 Manifest next update: Sun 26 May 2024 03:57:22 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: lze/K9QQa9GY8VvKXhW1qa8uPyhmazPgNbOXFsnScQg=) 2: 7704C7B0D65111EC8F5E2576C4F9AE02.roa (hash: taeHKSQWipXWAdVzTuKaHFKdvJk17h6okEmsUH46UHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: May 19 03:57:22 2024 GMT Not After : May 26 03:57:22 2024 GMT Subject: CN=664978a2-1f67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f3:25:52:84:38:b9:d2:57:50:e6:49:a7:4d: 18:fd:5e:c9:c3:57:47:32:3b:5f:29:04:4c:fb:7d: 26:bf:fd:bb:6b:85:22:cc:2c:c5:6f:6f:ef:68:7a: 60:01:93:e8:3b:19:35:fe:dc:10:f2:ae:04:15:6f: 90:ca:eb:81:82:26:64:83:e4:08:27:7c:f4:e9:fd: da:56:02:79:16:e5:78:9c:97:df:04:ca:45:9e:96: 44:88:d7:dd:55:e6:ca:a6:4b:47:04:f5:4b:3d:57: 33:25:e9:f4:ac:23:ab:29:55:d7:72:03:cc:bf:43: 35:b7:08:15:0d:fb:11:d1:2c:94:28:0e:4d:41:62: e6:5f:80:35:4e:56:90:0f:b4:8c:5a:04:bb:72:ff: 56:72:b9:3d:3d:6e:ec:56:a7:53:bf:48:6c:8b:50: 5a:90:cf:dc:93:8c:17:aa:97:4f:74:5d:b4:ed:49: cd:5a:20:79:1d:e8:05:30:ed:9b:6d:51:b1:ea:50: 1d:9c:1e:91:eb:99:61:fc:4c:cf:5b:70:e1:7b:39: e0:b9:64:b8:60:b4:67:29:35:19:b9:00:1a:f1:10: d0:34:b0:f0:b6:29:1b:b6:8e:dd:20:94:5a:9e:88: 45:3f:fc:8a:2d:17:9b:72:2b:f3:94:fe:8d:37:82: 5c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E9:25:88:C4:9F:D4:B2:A3:DB:AE:AA:7C:A3:91:7B:BF:D2:A0:AB X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:97:f8:a9:12:4a:83:f3:78:e2:b0:94:bb:2e:4f:2b:d3:92: 34:25:60:2e:b0:04:95:8d:01:ed:06:b7:e5:a8:a3:f9:43:0f: 36:3f:16:ad:8d:ec:22:6e:79:38:83:62:eb:6c:e3:fb:f5:40: f5:2d:c1:ff:c3:b2:a7:47:4e:2b:79:6e:89:ef:f3:7e:b2:e4: f1:d4:df:06:7d:9c:96:58:f8:3d:a9:94:1f:bf:f9:78:29:e4: 89:5f:cd:89:f5:86:89:9f:69:bf:88:a1:9f:fc:7a:c8:eb:38: 10:fd:f3:a6:f5:43:80:b4:98:8a:bc:72:fc:ad:dd:45:48:bd: 09:ae:a7:41:ac:db:33:02:9e:dd:34:da:9b:c5:32:dc:0a:74: 7d:79:89:27:89:1f:f4:f2:7a:0c:cf:30:32:b2:0f:91:f8:11: 44:a1:b0:ff:ce:91:7d:76:bd:ef:1d:32:e4:e4:1b:8c:36:d0: 54:a5:71:e7:09:5f:26:24:2c:b4:c5:ee:87:a9:9a:e8:fa:4d: d2:15:32:29:81:c0:57:c9:32:92:30:b7:ff:b8:0b:c2:df:ad: fd:48:21:f8:85:82:a2:54:be:39:20:5b:ef:f1:54:e3:f5:3a: 64:a2:e6:53:e9:2b:e8:59:3c:89:29:e3:6b:58:a8:15:ca:bc: 84:74:fb:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjQwNTE5MDM1NzIyWhcNMjQwNTI2MDM1NzIyWjAYMRYwFAYD VQQDEw02NjQ5NzhhMi0xZjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PMlUoQ4udJXUOZJp00Y/V7Jw1dHMjtfKQRM+30mv/27a4UizCzFb2/vaHpg AZPoOxk1/twQ8q4EFW+QyuuBgiZkg+QIJ3z06f3aVgJ5FuV4nJffBMpFnpZEiNfd VebKpktHBPVLPVczJen0rCOrKVXXcgPMv0M1twgVDfsR0SyUKA5NQWLmX4A1TlaQ D7SMWgS7cv9Wcrk9PW7sVqdTv0hsi1BakM/ck4wXqpdPdF207UnNWiB5HegFMO2b bVGx6lAdnB6R65lh/EzPW3DheznguWS4YLRnKTUZuQAa8RDQNLDwtikbto7dIJRa nohFP/yKLRebcivzlP6NN4Jc2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnpJYjE n9Syo9uuqnyjkXu/0qCrMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwl/ipEkqD83jisJS7Lk8r05I0JWAusASVjQHtBrflqKP5Qw82Pxat jewibnk4g2LrbOP79UD1LcH/w7KnR04reW6J7/N+suTx1N8GfZyWWPg9qZQfv/l4 KeSJX82J9YaJn2m/iKGf/HrI6zgQ/fOm9UOAtJiKvHL8rd1FSL0JrqdBrNszAp7d NNqbxTLcCnR9eYkniR/08noMzzAysg+R+BFEobD/zpF9dr3vHTLk5BuMNtBUpXHn CV8mJCy0xe6HqZro+k3SFTIpgcBXyTKSMLf/uAvC3639SCH4hYKiVL45IFvv8VTj 9TpkouZT6SvoWTyJKeNrWKgVyryEdPtJ -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org