$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: 1kJo/sHT+DVfV6VF912x9lMTbk4S8q/isENPtucNAnA= Subject key identifier: 4D:4B:2C:6D:30:4D:A5:F9:35:5A:14:ED:12:C1:A4:B0:14:32:AD:D4 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 13FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 13F3 Signing time: Sat 18 May 2024 17:30:13 +0000 Manifest this update: Sat 18 May 2024 17:30:12 +0000 Manifest next update: Sat 25 May 2024 17:30:12 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: Dco2DVUcuL+8dbV4CmZIHciYBGksOcCqjw0LB6ZaPKE=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: CIGlpvkFxQBpTdIiM2OJXd45dg87sgYC6+6uY0OF7Tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5119 (0x13ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: May 18 17:30:12 2024 GMT Not After : May 25 17:30:12 2024 GMT Subject: CN=6648e5a4-4ef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5f:b3:b3:b3:cf:56:ff:b5:37:a2:d9:2d:e1: 47:52:93:49:4c:75:bb:d2:9c:2c:1d:60:6a:1e:d3: 4e:07:1d:5c:da:14:5b:91:22:2f:7f:16:4e:6a:00: f3:70:3b:1c:c4:73:5b:a3:d4:45:fa:51:8b:b8:68: a4:99:51:b4:ac:e3:0f:ce:09:ee:50:11:19:eb:e6: aa:51:0a:38:f8:0e:9f:72:07:27:54:4f:de:70:46: 49:b3:04:ae:ca:88:fe:02:85:f3:13:51:41:b8:cc: 63:53:c6:32:e2:f4:d8:c5:b5:b7:d8:b4:31:5b:9e: 68:dc:ec:a8:50:73:09:2e:ea:3b:79:8b:74:5f:0b: 42:aa:80:bf:39:8c:ef:2e:d7:ca:38:b0:00:26:63: d7:9e:4f:d4:74:5e:71:51:69:8b:3d:76:9a:73:a3: 81:c4:0f:91:d1:b7:87:8d:33:02:60:e9:de:0e:62: 8f:92:ce:2c:da:84:14:3d:31:fe:71:df:89:0e:23: 75:e0:27:75:1e:f9:73:b3:58:27:d4:9f:21:88:67: 96:76:af:5a:3d:2a:b6:fd:bd:29:03:6c:d4:d5:27: 08:15:bb:01:ab:b7:20:65:32:0c:24:9a:00:85:dd: b0:e3:53:8d:5d:4c:58:b8:63:9a:01:3c:9a:9f:b0: 5b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:4B:2C:6D:30:4D:A5:F9:35:5A:14:ED:12:C1:A4:B0:14:32:AD:D4 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:c0:08:68:34:77:b7:f7:f2:c7:13:d7:d2:8c:81:f9:f1:4d: 19:bb:85:4c:4d:ca:50:50:8d:e7:64:16:e6:e0:b0:0e:b2:a3: cd:2f:cf:27:53:46:be:52:f6:a3:d9:c5:e7:69:fa:94:a0:1f: 23:ca:9d:05:4f:cf:15:82:99:aa:66:2e:5a:6f:97:d7:ad:20: 1d:20:55:a2:41:cd:35:f7:7a:e1:f0:a5:77:85:af:d6:78:0d: 50:8d:49:7b:e0:18:c4:7e:1e:25:c4:da:c2:21:95:37:13:03: ce:ad:f9:9d:e8:b5:09:f2:f5:b6:f1:6b:dd:b6:a0:53:09:82: 50:a1:0d:03:1d:4c:a5:25:86:b3:f1:2e:bb:76:00:63:63:f7: 2e:3b:79:d0:cf:1c:d7:ce:0c:10:2f:79:45:31:31:4b:de:82: 1a:30:10:72:81:b8:44:3a:a6:57:3e:a1:3e:09:b8:60:8d:e6: a0:4a:20:f3:e3:16:1e:6b:26:2e:8f:63:30:10:39:8d:f4:fc: 74:85:b6:3e:f0:96:51:b5:c9:07:37:45:91:77:f8:44:7d:99: dc:f1:4b:53:bf:97:a7:45:22:2b:c5:ce:c0:07:23:4a:80:7d: 60:e9:e6:35:66:f9:5c:0f:c5:06:75:42:3d:21:01:c2:12:5d: ec:10:86:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjQwNTE4MTczMDEyWhcNMjQwNTI1MTczMDEyWjAYMRYwFAYD VQQDEw02NjQ4ZTVhNC00ZWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1+zs7PPVv+1N6LZLeFHUpNJTHW70pwsHWBqHtNOBx1c2hRbkSIvfxZOagDz cDscxHNbo9RF+lGLuGikmVG0rOMPzgnuUBEZ6+aqUQo4+A6fcgcnVE/ecEZJswSu yoj+AoXzE1FBuMxjU8Yy4vTYxbW32LQxW55o3OyoUHMJLuo7eYt0XwtCqoC/OYzv LtfKOLAAJmPXnk/UdF5xUWmLPXaac6OBxA+R0beHjTMCYOneDmKPks4s2oQUPTH+ cd+JDiN14Cd1Hvlzs1gn1J8hiGeWdq9aPSq2/b0pA2zU1ScIFbsBq7cgZTIMJJoA hd2w41ONXUxYuGOaATyan7BbuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1LLG0w TaX5NVoU7RLBpLAUMq3UMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCwAhoNHe39/LHE9fSjIH58U0Zu4VMTcpQUI3nZBbm4LAOsqPNL88n U0a+Uvaj2cXnafqUoB8jyp0FT88VgpmqZi5ab5fXrSAdIFWiQc0193rh8KV3ha/W eA1QjUl74BjEfh4lxNrCIZU3EwPOrfmd6LUJ8vW28WvdtqBTCYJQoQ0DHUylJYaz 8S67dgBjY/cuO3nQzxzXzgwQL3lFMTFL3oIaMBBygbhEOqZXPqE+CbhgjeagSiDz 4xYeayYuj2MwEDmN9Px0hbY+8JZRtckHN0WRd/hEfZnc8UtTv5enRSIrxc7AByNK gH1g6eY1ZvlcD8UGdUI9IQHCEl3sEIaj -----END CERTIFICATE-----Generated at Sat May 18 18:21:37 2024 by rpki-client on console-ams.rpki-client.org