$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: siikVpktJEt1lj9TLWQpFcanLgIwW04UYjoqHHOGZgk= Subject key identifier: 6C:F3:A9:F3:88:CB:48:81:C7:06:0C:E7:3B:76:45:43:8F:B6:46:4C Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0B16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0B11 Signing time: Sat 18 May 2024 19:51:38 +0000 Manifest this update: Sat 18 May 2024 19:51:37 +0000 Manifest next update: Sat 25 May 2024 19:51:37 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: kApj7o6QrlRgqDcBB/nPZ03P8PKdQmQu4dKfYct3Gqk=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: w46/yODGWvHBkd9PbW2KqO7XZYZAu2gEbXFm/BujtBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2838 (0xb16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: May 18 19:51:37 2024 GMT Not After : May 25 19:51:37 2024 GMT Subject: CN=664906c9-858c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cd:34:34:6f:c5:38:32:84:1e:86:2e:a1:b9: 17:32:d8:44:2f:f7:ac:2c:36:ac:89:27:41:fc:29: 5e:65:4b:2b:11:13:15:5b:4a:ed:02:f0:34:93:94: 3f:2a:89:58:7b:14:30:bd:54:72:04:3e:46:ac:60: de:1e:d0:b4:35:a9:66:4b:21:8c:21:97:02:d8:82: a8:e5:f5:58:08:e7:cd:9a:9d:38:92:50:15:f2:95: cb:6e:9b:4e:13:d8:f4:7a:2d:b2:78:ee:88:a6:30: fb:00:f8:33:62:bf:c2:20:75:0e:d2:85:6c:7e:71: c7:30:91:d2:7c:0c:21:8d:08:24:44:0b:3e:4a:65: ad:64:eb:4f:2d:a0:5d:d6:30:dd:60:d1:5a:80:74: 0d:d4:2e:a5:bb:fa:59:e9:02:ca:14:df:91:0c:8a: 9f:87:87:31:0a:84:7f:ca:92:d9:d0:2b:61:83:d3: 29:57:af:2a:2e:25:b1:8d:18:68:18:aa:6a:00:90: ee:04:c6:40:15:28:da:4e:12:48:81:9d:24:b9:0c: 20:44:38:60:5a:6b:37:bb:66:34:03:4d:fc:60:60: 75:4a:c7:6e:29:a4:43:17:40:f0:b4:ee:a1:28:44: e3:b2:6c:e2:c8:e3:9e:a2:79:2d:a7:8b:68:51:9f: 3f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:F3:A9:F3:88:CB:48:81:C7:06:0C:E7:3B:76:45:43:8F:B6:46:4C X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:48:d4:cb:c7:a0:2a:65:39:3e:11:e6:ae:7e:56:42:fc:f1: 47:80:48:52:37:8d:e5:d8:a2:f2:17:0c:6d:31:c1:81:65:41: 06:88:47:ea:48:60:0a:ac:66:03:19:7c:29:e2:45:92:b2:ea: 80:f6:e7:fb:e8:a1:10:f9:aa:b8:24:a8:63:ee:38:30:b6:96: 43:5e:e5:a7:b2:e1:17:6d:82:ef:5c:6f:8a:f0:c8:0b:35:39: 3e:54:0c:8a:3a:6c:04:14:a6:e0:b1:3d:07:02:8c:ed:50:75: 19:97:1a:a6:cb:9c:64:21:b0:1e:d5:61:99:e4:3e:55:77:0e: 89:25:41:82:cd:af:a2:7d:e3:f3:99:75:dc:b6:20:7c:66:66: a2:9c:cf:ac:e9:94:53:3c:f5:8c:80:16:c0:a0:60:f9:ea:ac: ee:35:f8:8d:33:77:48:71:27:c9:0f:fe:59:17:e1:11:40:bd: f1:1c:b5:06:17:6e:ec:87:cc:57:ba:2d:9f:41:5b:2f:e0:08: 91:51:fe:3c:cb:92:0a:2f:67:ea:6a:00:12:f0:6a:17:7e:06: 22:2c:40:28:74:f5:b2:fc:5a:5d:ab:25:c1:b3:9c:c5:99:e2: 76:43:22:09:20:61:b9:7b:d4:85:0d:0b:81:05:4e:d7:f9:7b: 9b:b8:e2:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjQwNTE4MTk1MTM3WhcNMjQwNTI1MTk1MTM3WjAYMRYwFAYD VQQDEw02NjQ5MDZjOS04NThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr800NG/FODKEHoYuobkXMthEL/esLDasiSdB/CleZUsrERMVW0rtAvA0k5Q/ KolYexQwvVRyBD5GrGDeHtC0NalmSyGMIZcC2IKo5fVYCOfNmp04klAV8pXLbptO E9j0ei2yeO6IpjD7APgzYr/CIHUO0oVsfnHHMJHSfAwhjQgkRAs+SmWtZOtPLaBd 1jDdYNFagHQN1C6lu/pZ6QLKFN+RDIqfh4cxCoR/ypLZ0Cthg9MpV68qLiWxjRho GKpqAJDuBMZAFSjaThJIgZ0kuQwgRDhgWms3u2Y0A038YGB1SsduKaRDF0DwtO6h KETjsmziyOOeonktp4toUZ8/dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzzqfOI y0iBxwYM5zt2RUOPtkZMMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClSNTLx6AqZTk+EeauflZC/PFHgEhSN43l2KLyFwxtMcGBZUEGiEfq SGAKrGYDGXwp4kWSsuqA9uf76KEQ+aq4JKhj7jgwtpZDXuWnsuEXbYLvXG+K8MgL NTk+VAyKOmwEFKbgsT0HAoztUHUZlxqmy5xkIbAe1WGZ5D5Vdw6JJUGCza+ifePz mXXctiB8ZmainM+s6ZRTPPWMgBbAoGD56qzuNfiNM3dIcSfJD/5ZF+ERQL3xHLUG F27sh8xXui2fQVsv4AiRUf48y5IKL2fqagAS8GoXfgYiLEAodPWy/FpdqyXBs5zF meJ2QyIJIGG5e9SFDQuBBU7X+XubuOIE -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org