$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft File: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft (raw, json) Hash identifier: l4ATGze+3BSGcvcTAQ/OHGSaHCMtJjfLXZRPHtQqZqY= Subject key identifier: 6E:5C:3F:53:5B:28:99:F3:8E:06:CB:C7:1C:7D:72:7B:7E:D3:0B:58 Authority key identifier: 87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 Certificate issuer: /CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Certificate serial: 1C6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft Manifest number: 1C56 Signing time: Sat 18 May 2024 16:34:47 +0000 Manifest this update: Sat 18 May 2024 16:34:47 +0000 Manifest next update: Sat 25 May 2024 16:34:47 +0000 Files and hashes: 1: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl (hash: OBmDl/6hJpNvJjz6NosEEa1kRwk/DVvTjEca3eSgtHc=) 2: F959A9A0F11011EB8E63FC73C4F9AE02.roa (hash: lgyUxKxQwD/USXERFmZ/C5l2ud571oJQXSeGgzVlXQk=) 3: 2C9502D83C4011EA852C097BC4F9AE02.roa (hash: gQbrYaQX93Dy7t6tPlyoJ+ydeyI3aXJAqSLNxQcjczs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7275 (0x1c6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Validity Not Before: May 18 16:34:47 2024 GMT Not After : May 25 16:34:47 2024 GMT Subject: CN=6648d8a7-4243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1e:a6:28:3a:e6:fd:7c:56:05:f3:e2:e0:24: a5:db:c5:d7:61:7c:0c:75:4c:1b:f6:25:50:dc:80: ca:98:f6:07:06:f6:bc:85:e8:08:91:2e:e0:e5:89: 31:f6:e3:ad:db:05:26:19:6e:36:56:49:a4:9a:62: 5d:eb:2b:20:98:c9:ec:61:c1:ef:84:b1:49:83:30: 44:27:a9:35:45:4e:90:3c:91:be:5a:d6:19:12:06: 36:b3:bf:18:53:ff:26:ed:89:dd:10:35:60:e6:03: f6:64:d9:80:3e:7e:a4:f8:56:b7:77:33:33:4b:2b: 9c:11:56:b6:17:a8:f7:8f:6c:aa:64:d9:4a:7a:eb: 26:1c:7a:98:4c:b0:01:af:07:fc:11:77:14:74:18: 25:e0:b9:40:c4:67:fc:de:70:9c:4e:4c:29:ed:cb: 2b:fb:4b:09:ec:9e:f4:5d:63:36:08:ff:23:a9:6b: ee:88:b2:63:9a:f2:eb:16:05:ae:a1:1a:05:00:f3: 49:ae:8a:54:0f:8f:9e:42:cb:9a:d9:bc:e0:2a:08: 1b:74:cc:63:d1:de:4e:fa:66:a0:a1:fd:de:e7:9c: 9f:63:1b:e3:65:74:22:24:91:78:78:e5:a4:c4:c0: 12:04:04:41:62:ae:60:99:ef:ee:40:4a:85:33:d6: 11:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:5C:3F:53:5B:28:99:F3:8E:06:CB:C7:1C:7D:72:7B:7E:D3:0B:58 X509v3 Authority Key Identifier: keyid:87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:fb:29:31:e6:cd:86:f7:07:81:e7:09:ed:6e:36:ab:ae:78: bb:1a:ca:29:7a:27:a7:4b:c1:0b:7a:47:19:35:ca:ef:c8:64: dc:61:b3:81:d8:06:63:ca:ef:70:b4:36:62:61:3f:36:3b:bf: 6d:ad:5f:fb:a2:8d:f5:07:13:c9:33:c4:79:4d:c8:47:91:d7: d3:48:7b:b9:59:1e:ff:55:5b:2f:00:0d:c6:0a:68:49:b2:4f: b2:93:5f:a5:92:e9:d5:28:a4:37:a0:ba:9a:47:0a:ad:3a:12: f6:b5:09:69:7f:d3:5a:97:e8:a3:ed:e3:1b:f1:af:73:f3:b6: f4:e2:21:53:57:6c:9c:13:b6:88:21:28:41:f1:14:0f:e3:d1: d6:3b:5a:e2:1e:f9:1c:25:3d:6b:b4:b1:ab:ba:1e:6a:8d:e7: 3a:de:eb:2b:7b:cb:a7:88:d0:61:01:63:1e:e8:de:42:3b:82: 16:e6:8d:12:39:7e:86:9b:92:c8:f1:09:1c:9d:97:62:2c:6d: af:83:c8:9a:d7:d5:42:f6:59:b3:a1:3c:a9:84:4e:4f:ac:6b: a5:ee:aa:1f:88:42:15:f2:5d:f3:d7:ac:90:6f:a6:bf:02:bd: 05:c4:a0:3d:c4:29:39:d8:37:0e:ea:fd:00:9e:dc:5a:57:f9: d4:b3:cf:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBOEMxMTAvBgNVBAUTKDg3MEI5Q0QyRTQxREFCMDVCRDU1MjdDOTE1MEU5NDg5 NTk3MTY2OTYwHhcNMjQwNTE4MTYzNDQ3WhcNMjQwNTI1MTYzNDQ3WjAYMRYwFAYD VQQDEw02NjQ4ZDhhNy00MjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoh6mKDrm/XxWBfPi4CSl28XXYXwMdUwb9iVQ3IDKmPYHBva8hegIkS7g5Ykx 9uOt2wUmGW42VkmkmmJd6ysgmMnsYcHvhLFJgzBEJ6k1RU6QPJG+WtYZEgY2s78Y U/8m7YndEDVg5gP2ZNmAPn6k+Fa3dzMzSyucEVa2F6j3j2yqZNlKeusmHHqYTLAB rwf8EXcUdBgl4LlAxGf83nCcTkwp7csr+0sJ7J70XWM2CP8jqWvuiLJjmvLrFgWu oRoFAPNJropUD4+eQsua2bzgKggbdMxj0d5O+magof3e55yfYxvjZXQiJJF4eOWk xMASBARBYq5gme/uQEqFM9YRnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5cP1Nb KJnzjgbLxxx9cnt+0wtYMB8GA1UdIwQYMBaAFIcLnNLkHasFvVUnyRUOlIlZcWaW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUE4Qy9GMjdCOUNERUJC ODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3VzlWU2ZKRlE2VWlWbHha cFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h3dWMwdVFkcXdXOVZTZkpGUTZVaVZseFpwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUE4Qy9GMjdCOUNERUJCODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3 VzlWU2ZKRlE2VWlWbHhacFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM+ykx5s2G9weB5wntbjarrni7GsopeienS8ELekcZNcrvyGTcYbOB 2AZjyu9wtDZiYT82O79trV/7oo31BxPJM8R5TchHkdfTSHu5WR7/VVsvAA3GCmhJ sk+yk1+lkunVKKQ3oLqaRwqtOhL2tQlpf9Nal+ij7eMb8a9z87b04iFTV2ycE7aI IShB8RQP49HWO1riHvkcJT1rtLGruh5qjec63usre8uniNBhAWMe6N5CO4IW5o0S OX6Gm5LI8QkcnZdiLG2vg8ia19VC9lmzoTyphE5PrGul7qofiEIV8l3z16yQb6a/ Ar0FxKA9xCk52DcO6v0AntxaV/nUs8/t -----END CERTIFICATE-----Generated at Sat May 18 16:57:54 2024 by rpki-client on console-fra.rpki-client.org