$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: WpplhIOywSCDGJuJAbQC8GiKuBcQXJuvkLn4+ONIvaM= Subject key identifier: EC:54:72:95:57:53:7C:8E:D9:52:FC:A3:42:75:67:A1:89:CA:A2:CA Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 0216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 0214 Signing time: Sat 01 Jun 2024 05:18:17 +0000 Manifest this update: Sat 01 Jun 2024 05:18:17 +0000 Manifest next update: Sat 08 Jun 2024 05:18:17 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: cw7yHN3n0fGzquyXPNFQqNqT2aUUJza42jKGXgSN4L8=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: EVQlU+S/2s/UcJyyzJXmDiouSiSVIwQ7PR6gf3pJo30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Jun 1 05:18:17 2024 GMT Not After : Jun 8 05:18:17 2024 GMT Subject: CN=665aaf19-b2f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4a:46:33:82:8b:57:d1:f2:94:ff:1d:29:bd: f1:02:f7:aa:a9:26:80:68:f0:68:e6:70:80:44:fc: 9b:e8:9d:85:e0:fd:a1:35:1a:ea:dc:9f:e4:18:98: d9:07:f6:a6:58:de:fc:80:da:2f:54:c6:24:97:dc: 7b:5d:20:06:a5:6c:d1:85:21:3b:21:9f:45:9f:20: ed:e9:83:1c:c5:8f:3b:b7:3d:c0:e4:fa:aa:7d:89: 89:28:34:0d:fb:1e:02:ea:c9:6f:14:0c:b9:24:19: f1:92:77:71:b2:20:bc:ff:79:49:de:f0:42:99:ca: 61:b3:87:ff:10:7d:40:7d:7e:d5:79:51:4c:9c:4e: 63:3a:fd:74:0a:43:0b:4c:bf:48:3f:51:c4:01:7c: d2:9d:be:6f:50:cd:9b:40:1e:86:fb:63:c0:1a:16: c3:41:01:6b:d9:1d:43:69:d9:e8:55:bd:8a:0f:ee: 19:d1:54:68:76:15:0f:be:c6:08:ae:01:cd:f6:33: b2:71:33:ad:a0:36:f1:b7:4f:13:d7:f5:a6:58:48: cd:4c:91:ec:ff:e1:d4:94:21:a2:f2:90:9e:dd:f6: c8:cb:6c:b9:e1:a1:ff:a3:88:a9:1f:a5:6c:4c:fa: b6:a7:04:e4:6d:7f:ed:32:e6:9a:60:ef:39:59:69: 4f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:54:72:95:57:53:7C:8E:D9:52:FC:A3:42:75:67:A1:89:CA:A2:CA X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:51:46:56:68:c2:b2:fe:0a:f6:35:a4:4f:a0:99:b4:1b:4e: c5:33:8f:d8:83:9b:5f:2c:ae:c8:c8:17:77:b7:4b:ed:f2:68: eb:8c:9d:9d:58:50:a6:4a:73:9d:58:ae:ec:ca:78:7d:71:a0: 58:c9:53:2d:ee:c7:64:1e:73:97:c6:fc:8b:e8:8d:94:8a:81: 2c:3f:d2:42:9f:26:36:09:c6:67:72:41:78:bf:de:53:f9:6b: 52:c9:b6:71:d0:ed:8e:07:85:1d:07:67:e7:c6:7f:a8:f3:32: fd:cc:59:41:5b:f0:41:0c:ff:5e:f7:07:98:d7:18:62:c9:28: 3d:ba:6b:03:70:1b:06:61:7c:46:22:14:3d:04:f1:ba:e8:70: d3:57:5d:da:34:0b:e3:63:47:7b:9c:94:a8:81:c3:19:8a:03: ac:70:70:f9:90:8d:6c:ba:8e:f6:d0:9a:e3:12:97:57:20:d9: 72:43:75:ad:0c:ec:3d:18:0d:0d:f6:b4:67:e1:67:28:fa:a3: e5:a4:34:a8:d0:c5:38:16:0a:14:e5:7d:a1:0f:2d:a0:9b:57: 79:bf:83:b5:07:8e:4e:ec:1b:35:2c:1a:a2:ab:ae:50:0e:3c: 2e:e2:9a:3f:32:1d:9f:a1:56:34:c7:a4:81:12:72:ad:c4:ec: 8c:4e:98:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjQwNjAxMDUxODE3WhcNMjQwNjA4MDUxODE3WjAYMRYwFAYD VQQDEw02NjVhYWYxOS1iMmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0pGM4KLV9HylP8dKb3xAveqqSaAaPBo5nCARPyb6J2F4P2hNRrq3J/kGJjZ B/amWN78gNovVMYkl9x7XSAGpWzRhSE7IZ9FnyDt6YMcxY87tz3A5PqqfYmJKDQN +x4C6slvFAy5JBnxkndxsiC8/3lJ3vBCmcphs4f/EH1AfX7VeVFMnE5jOv10CkML TL9IP1HEAXzSnb5vUM2bQB6G+2PAGhbDQQFr2R1DadnoVb2KD+4Z0VRodhUPvsYI rgHN9jOycTOtoDbxt08T1/WmWEjNTJHs/+HUlCGi8pCe3fbIy2y54aH/o4ipH6Vs TPq2pwTkbX/tMuaaYO85WWlPMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxUcpVX U3yO2VL8o0J1Z6GJyqLKMB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjUUZWaMKy/gr2NaRPoJm0G07FM4/Yg5tfLK7IyBd3t0vt8mjrjJ2d WFCmSnOdWK7synh9caBYyVMt7sdkHnOXxvyL6I2UioEsP9JCnyY2CcZnckF4v95T +WtSybZx0O2OB4UdB2fnxn+o8zL9zFlBW/BBDP9e9weY1xhiySg9umsDcBsGYXxG IhQ9BPG66HDTV13aNAvjY0d7nJSogcMZigOscHD5kI1suo720JrjEpdXINlyQ3Wt DOw9GA0N9rRn4Wco+qPlpDSo0MU4FgoU5X2hDy2gm1d5v4O1B45O7Bs1LBqiq65Q Djwu4po/Mh2foVY0x6SBEnKtxOyMTphQ -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:43 2024 by rpki-client on console-fra.rpki-client.org