$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: 0uLJSp3CpcrVhwxoJS2AOnEm3xsFAsqzMXqtURbPo58= Subject key identifier: FF:3E:D7:A3:5B:41:C6:02:65:F7:40:F3:44:93:27:E9:DF:F3:E7:42 Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: 3A Signing time: Sun 19 May 2024 08:19:23 +0000 Manifest this update: Sun 19 May 2024 08:19:23 +0000 Manifest next update: Sun 26 May 2024 08:19:23 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: eQZPz+1Op/EYLVragXByWlpoAQl2mQrFuJxt5p67TLs=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: U2pgcPipddVZ72wsOjIBUQaJaHNGvZhnk8uGYFZu+oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: May 19 08:19:23 2024 GMT Not After : May 26 08:19:23 2024 GMT Subject: CN=6649b60b-4d27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4e:a3:9f:39:cd:45:31:57:64:8e:fc:34:07: 76:2c:4e:82:b4:4c:92:45:cf:cf:1e:f5:e4:0b:f9: 65:65:5e:20:71:ec:1e:34:c3:1e:a0:68:6c:d6:18: 07:cf:d5:29:f1:6c:03:c3:dd:27:cc:7d:93:5f:f1: 1e:ac:1d:c1:ac:7d:0e:e7:c3:d0:09:54:4a:52:1d: 71:9b:8f:2a:54:12:93:0a:f9:0a:82:95:b8:96:c4: f0:f8:67:ce:7e:0b:2d:a6:c9:7d:75:45:b2:0a:e0: 52:85:0c:0c:2f:43:51:d2:51:ca:91:89:16:d0:d5: 14:0d:1b:a3:c7:b9:37:f0:d5:49:f2:58:ec:fa:85: 9b:96:f6:a0:d8:bb:72:06:09:b6:c1:94:da:fe:a8: f1:cb:fe:8b:55:14:15:07:df:2d:10:24:fa:1e:3c: 58:13:03:72:5a:ec:ec:cb:52:a0:d2:27:ac:2f:ff: 0c:f0:07:39:63:d7:bb:55:9c:ab:92:f9:e3:a0:69: 47:14:8a:d2:7a:ed:23:40:52:4c:25:f6:1e:85:5a: c5:cb:b3:ed:3e:20:3a:55:a6:15:ca:f7:fd:c2:36: 7f:8c:c3:f8:ef:99:fe:d4:c2:65:e9:a5:47:54:bd: d1:f0:82:55:67:95:b0:ad:2f:da:e9:7d:a0:8e:ca: 6c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:3E:D7:A3:5B:41:C6:02:65:F7:40:F3:44:93:27:E9:DF:F3:E7:42 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:5f:dd:ec:77:5d:b4:7c:23:a6:2e:f0:ae:de:de:21:bd:2c: 45:d4:c9:c1:e3:c7:d2:1d:c5:f4:44:03:c6:23:3d:f1:f3:8a: 77:9a:60:22:27:96:d9:aa:e0:84:2a:1d:8a:c6:20:4c:0b:93: b2:2f:07:ac:4b:f5:bc:d9:65:9a:d3:c0:0d:11:22:53:8c:74: 9c:9f:92:0d:86:fb:85:d8:73:35:f6:9b:6a:4c:29:95:b2:29: 9e:41:a5:6a:36:05:d1:f3:be:89:67:1c:25:18:9b:06:92:5a: 24:e4:7e:99:49:f7:64:ac:62:9c:43:16:ef:10:c1:6f:fd:78: df:24:34:20:17:6c:8e:22:ad:6d:01:67:d6:13:18:88:4c:33: f8:e0:99:8f:ce:4a:90:df:ba:d7:9d:53:d3:b8:9b:13:d4:93: b6:b4:8a:9e:d7:b9:47:a8:91:7d:6d:c3:8b:fd:e2:ff:30:52: b3:87:64:72:83:0d:7a:9e:b2:35:a4:22:25:a4:d3:fd:1b:ba: 82:77:b6:9e:6e:94:04:c1:84:9b:a2:0e:27:e9:bc:df:4b:a3: 11:07:f1:54:62:89:b2:37:ae:a3:f9:24:04:fa:f0:78:bf:f5: 7a:65:f8:56:0d:64:a3:55:46:75:4b:5a:5a:a0:43:7b:ad:de: ca:b8:f4:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OEMxRTExMC8GA1UEBRMoMURGOUMwQ0VGOUE3N0RDRDE1QkI1MUY5M0ZEMzQyOTk5 QkUxMTY1ODAeFw0yNDA1MTkwODE5MjNaFw0yNDA1MjYwODE5MjNaMBgxFjAUBgNV BAMTDTY2NDliNjBiLTRkMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjTqOfOc1FMVdkjvw0B3YsToK0TJJFz88e9eQL+WVlXiBx7B40wx6gaGzWGAfP 1SnxbAPD3SfMfZNf8R6sHcGsfQ7nw9AJVEpSHXGbjypUEpMK+QqClbiWxPD4Z85+ Cy2myX11RbIK4FKFDAwvQ1HSUcqRiRbQ1RQNG6PHuTfw1UnyWOz6hZuW9qDYu3IG CbbBlNr+qPHL/otVFBUH3y0QJPoePFgTA3Ja7OzLUqDSJ6wv/wzwBzlj17tVnKuS +eOgaUcUitJ67SNAUkwl9h6FWsXLs+0+IDpVphXK9/3CNn+Mw/jvmf7UwmXppUdU vdHwglVnlbCtL9rpfaCOymxxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/z7Xo1tB xgJl90DzRJMn6d/z50IwHwYDVR0jBBgwFoAUHfnAzvmnfc0Vu1H5P9NCmZvhFlgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4QzFFL0MyODYwMzJFQzY0 NzExRUU5RDY4RUI3RkM0RjlBRTAyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZs Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGZuQXp2bW5mYzBWdTFINVA5TkNtWnZoRmxnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4 QzFFL0MyODYwMzJFQzY0NzExRUU5RDY4RUI3RkM0RjlBRTAyL0hmbkF6dm1uZmMw VnUxSDVQOU5DbVp2aEZsZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACZf3ex3XbR8I6Yu8K7e3iG9LEXUycHjx9IdxfREA8YjPfHzineaYCIn ltmq4IQqHYrGIEwLk7IvB6xL9bzZZZrTwA0RIlOMdJyfkg2G+4XYczX2m2pMKZWy KZ5BpWo2BdHzvolnHCUYmwaSWiTkfplJ92SsYpxDFu8QwW/9eN8kNCAXbI4irW0B Z9YTGIhMM/jgmY/OSpDfutedU9O4mxPUk7a0ip7XuUeokX1tw4v94v8wUrOHZHKD DXqesjWkIiWk0/0buoJ3tp5ulATBhJuiDifpvN9LoxEH8VRiibI3rqP5JAT68Hi/ 9Xpl+FYNZKNVRnVLWlqgQ3ut3sq49P4= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org