$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: dWzH6a/oyh72MQbNU7dQt6N8anRzWN+wh7WCRV7OJfA= Subject key identifier: EB:C3:19:A7:12:BE:64:8E:7C:DF:6A:12:72:A5:7F:6A:9F:74:EB:DC Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 31 Signing time: Sun 19 May 2024 08:21:26 +0000 Manifest this update: Sun 19 May 2024 08:21:25 +0000 Manifest next update: Sun 26 May 2024 08:21:25 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: E+ZA4bIVanWoMtVBRSFLiZ1VLfsBJxUUPr3+2tpTqGs=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: XaFNne7Xrp7ObyH6kM4Sf6qkLJXEBjVi+NCRmMqlT/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: May 19 08:21:25 2024 GMT Not After : May 26 08:21:25 2024 GMT Subject: CN=6649b685-98be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:72:04:03:43:ab:fb:b7:14:93:69:58:9f:34: 52:34:16:a2:88:a3:5f:76:fc:54:12:0b:69:14:eb: 35:0c:e4:a7:0e:b1:a5:ba:44:ad:97:fd:51:a1:db: 0f:3f:78:3b:53:aa:6c:2c:83:ac:13:32:32:af:50: ef:79:ff:67:53:73:0e:02:e6:6d:ce:86:c8:f9:40: d3:a2:2e:ad:e9:8f:39:f9:14:78:05:ac:38:08:1d: 01:95:0b:12:eb:36:a0:67:2d:28:7b:7f:4f:f9:55: 49:35:46:cb:69:c2:d8:0b:43:40:c0:80:4b:ea:b7: 73:12:41:b8:31:9a:2b:a6:dd:b0:bd:25:9b:32:df: 22:22:58:31:27:4e:d9:09:94:8e:e1:3c:ed:d2:3e: 37:96:e5:32:f8:5c:f2:ae:70:1e:05:4d:da:19:6b: 2c:e1:ed:d2:b7:63:77:5c:8d:48:8e:c0:ed:99:90: 57:8a:a7:a7:7a:64:78:09:6f:89:ab:40:5d:8e:d9: 74:e7:fc:2d:15:61:3c:5b:23:de:6f:98:d6:e9:ee: ed:c7:36:96:69:6a:cd:b8:40:ab:21:9f:2b:5e:9e: be:fe:72:8f:c7:cc:2b:38:80:82:47:cd:1c:fa:0e: cb:a0:1a:85:d3:60:fa:a6:fb:16:cd:46:5e:e1:eb: 5a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C3:19:A7:12:BE:64:8E:7C:DF:6A:12:72:A5:7F:6A:9F:74:EB:DC X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:fb:ff:40:2d:02:73:05:e0:89:cf:9f:51:0c:4c:bd:85:1b: 3e:1c:0b:14:c5:58:f3:58:a8:60:77:ab:fc:e5:c8:a0:e3:7d: 1e:14:d5:18:8f:67:8c:f4:29:29:c2:a8:b7:d0:bf:2b:0f:36: 29:57:53:ba:51:f3:f8:1d:27:73:a1:8e:c7:3c:4c:b4:77:ce: be:f4:34:ec:23:cc:ed:8e:b0:a3:77:c7:22:cd:ec:72:7e:75: dd:54:6f:f1:25:40:a6:3f:b2:09:5e:e5:7c:35:95:82:67:7e: ab:82:6e:ad:0f:f8:15:02:54:80:0a:cc:22:98:d5:6a:35:97: 52:98:77:4b:ec:02:c4:42:4e:c6:4f:b9:11:63:b0:e3:74:be: 5b:5e:4b:75:e4:f4:dd:64:ed:94:9c:1c:5a:ec:58:ad:c6:cc: ce:11:28:6c:9c:88:f8:7e:b5:82:74:09:41:8c:39:78:a3:6d: 5f:81:04:83:54:5f:eb:2a:ea:c3:1f:01:c1:97:98:ab:98:cc: 40:6f:c8:91:8e:86:2e:81:e2:f9:e0:16:7e:58:bd:68:2c:c7: 60:f6:7e:b6:e0:f5:7f:2f:fa:e8:37:7b:4b:ed:0d:f2:02:9b: 21:65:2f:03:45:c1:02:c7:79:c3:71:74:4b:08:38:9b:b9:90: 7b:01:9a:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTg4NTExMC8GA1UEBRMoODcwMTg2QjY1N0QxMUIyOThBODRCMDI0MjBFRTc0RTFG QkI1QzI4MjAeFw0yNDA1MTkwODIxMjVaFw0yNDA1MjYwODIxMjVaMBgxFjAUBgNV BAMTDTY2NDliNjg1LTk4YmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8cgQDQ6v7txSTaVifNFI0FqKIo192/FQSC2kU6zUM5KcOsaW6RK2X/VGh2w8/ eDtTqmwsg6wTMjKvUO95/2dTcw4C5m3Ohsj5QNOiLq3pjzn5FHgFrDgIHQGVCxLr NqBnLSh7f0/5VUk1RstpwtgLQ0DAgEvqt3MSQbgxmium3bC9JZsy3yIiWDEnTtkJ lI7hPO3SPjeW5TL4XPKucB4FTdoZayzh7dK3Y3dcjUiOwO2ZkFeKp6d6ZHgJb4mr QF2O2XTn/C0VYTxbI95vmNbp7u3HNpZpas24QKshnytenr7+co/HzCs4gIJHzRz6 DsugGoXTYPqm+xbNRl7h61qrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU68MZpxK+ ZI5832oScqV/ap9069wwHwYDVR0jBBgwFoAUhwGGtlfRGymKhLAkIO504fu1woIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxODg1L0Q1RkVBM0RFQzlG RDExRUVBNjc3NzkzQkM0RjlBRTAyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdv SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHdHR3RsZlJHeW1LaExBa0lPNTA0ZnUxd29JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx ODg1L0Q1RkVBM0RFQzlGRDExRUVBNjc3NzkzQkM0RjlBRTAyL2h3R0d0bGZSR3lt S2hMQWtJTzUwNGZ1MXdvSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIT7/0AtAnMF4InPn1EMTL2FGz4cCxTFWPNYqGB3q/zlyKDjfR4U1RiP Z4z0KSnCqLfQvysPNilXU7pR8/gdJ3Ohjsc8TLR3zr70NOwjzO2OsKN3xyLN7HJ+ dd1Ub/ElQKY/sgle5Xw1lYJnfquCbq0P+BUCVIAKzCKY1Wo1l1KYd0vsAsRCTsZP uRFjsON0vlteS3Xk9N1k7ZScHFrsWK3GzM4RKGyciPh+tYJ0CUGMOXijbV+BBINU X+sq6sMfAcGXmKuYzEBvyJGOhi6B4vngFn5YvWgsx2D2frbg9X8v+ug3e0vtDfIC myFlLwNFwQLHecNxdEsIOJu5kHsBmgo= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org