$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft File: HWw-nEchLuSN-fVOZJCpphbUEYk.mft (raw, json) Hash identifier: KHXDpQkdlUdF5Pva41S5DxGANbK+LG6DbgD2vRlggLI= Subject key identifier: FB:4A:29:DF:E6:8F:08:40:F5:9A:BC:9B:3B:67:BC:E8:6B:51:77:1F Authority key identifier: 1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 Certificate issuer: /CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft Manifest number: 011B Signing time: Sun 19 May 2024 05:15:24 +0000 Manifest this update: Sun 19 May 2024 05:15:23 +0000 Manifest next update: Sun 26 May 2024 05:15:23 +0000 Files and hashes: 1: HWw-nEchLuSN-fVOZJCpphbUEYk.crl (hash: 6THx/Qi6RKEd3RW6kJF3Vr1YSVkbLnvtQcy57QXlqqs=) 2: 3B7794D2664A11EDB095B812C4F9AE02.roa (hash: kKym4tMnXYD3PFHPGozVQ9+n2YMSGZbnL09kPMnj9JM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Validity Not Before: May 19 05:15:23 2024 GMT Not After : May 26 05:15:23 2024 GMT Subject: CN=66498aeb-aa02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3c:e1:6d:74:a3:d9:4d:e1:cb:75:80:ac:4b: 58:5f:73:27:84:ab:b0:f2:47:6f:e8:4b:e1:9c:c6: 75:f3:78:d8:df:c3:91:26:52:5d:3d:f8:6e:55:89: f4:c1:94:02:8d:63:61:42:3c:4b:d5:f3:ec:a5:19: 62:b8:0d:25:d6:19:0a:08:85:ea:e6:ad:f8:59:a0: 15:e7:49:5f:31:79:fc:fe:ba:34:74:1f:8a:27:23: cd:06:d0:6d:2e:65:bb:ea:52:35:5a:18:90:95:8e: c0:6e:d8:22:f6:e5:41:84:29:b6:44:9c:10:56:a6: 39:a7:bb:c8:33:64:08:a6:1f:96:f5:b0:40:be:39: 59:bf:e0:bc:8e:8b:01:f6:c4:de:a1:89:52:b7:0a: f4:69:44:b5:c6:89:f8:15:14:be:80:03:91:61:48: c6:d5:80:85:14:b7:72:3c:c4:ab:b7:8f:84:40:5e: ba:30:40:6a:27:dd:c9:76:cb:5b:a8:e7:18:f7:ab: 56:1d:e9:00:fb:d5:9d:72:4b:ef:41:4f:8d:63:c6: c9:d3:cf:03:54:21:dd:c0:ec:0f:20:09:c8:c8:35: d5:db:9a:cf:b4:8d:f5:29:f6:65:a4:cb:2a:4e:6e: 26:9f:2f:c2:c6:86:b5:a2:ad:76:27:ea:31:52:6a: 68:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4A:29:DF:E6:8F:08:40:F5:9A:BC:9B:3B:67:BC:E8:6B:51:77:1F X509v3 Authority Key Identifier: keyid:1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:26:9c:75:24:1a:42:7a:b2:cc:2c:7b:12:58:40:7b:29:03: a2:94:5c:22:95:0c:51:55:1f:cb:c9:ae:b7:82:40:38:ac:14: 66:3a:f5:cb:22:61:d9:ec:0f:c9:b3:4d:9d:2f:b8:a7:e6:c8: f0:90:a2:c3:7d:6b:5a:4b:ee:a6:07:6d:87:35:34:32:27:28: d6:5b:05:a8:75:68:76:ab:12:97:86:05:04:7e:3b:84:60:f8: 94:f9:d9:bd:c6:1e:4f:49:aa:ab:df:d4:3c:a7:f5:16:2f:32: c5:51:69:70:5d:04:33:d5:5e:35:a0:fa:10:74:fb:f6:8f:c8: ef:3b:66:e3:40:5c:a7:d2:67:bf:9d:59:f6:19:0b:6e:c7:b3: 42:73:51:b4:69:7d:3f:25:16:da:2a:18:a9:c5:e6:15:8d:5f: 01:e0:d1:a5:16:24:6c:30:74:27:f8:06:95:82:41:3b:9a:36: 10:dd:0e:d7:5c:fc:76:45:22:b7:b2:11:ad:8e:56:e4:6a:d2: c6:4d:29:5b:25:8a:51:98:e3:ad:db:12:7b:67:a7:c6:dd:1e: e7:36:ff:90:4b:06:42:e1:45:d9:eb:4b:72:84:dd:c0:1b:62: e1:52:af:ec:89:65:f1:0c:40:f2:7d:39:dd:72:74:6a:d7:07: 9f:1d:14:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZBRUUxMTAvBgNVBAUTKDFENkMzRTlDNDcyMTJFRTQ4REY5RjU0RTY0OTBBOUE2 MTZENDExODkwHhcNMjQwNTE5MDUxNTIzWhcNMjQwNTI2MDUxNTIzWjAYMRYwFAYD VQQDEw02NjQ5OGFlYi1hYTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujzhbXSj2U3hy3WArEtYX3MnhKuw8kdv6EvhnMZ183jY38ORJlJdPfhuVYn0 wZQCjWNhQjxL1fPspRliuA0l1hkKCIXq5q34WaAV50lfMXn8/ro0dB+KJyPNBtBt LmW76lI1WhiQlY7Abtgi9uVBhCm2RJwQVqY5p7vIM2QIph+W9bBAvjlZv+C8josB 9sTeoYlStwr0aUS1xon4FRS+gAORYUjG1YCFFLdyPMSrt4+EQF66MEBqJ93Jdstb qOcY96tWHekA+9WdckvvQU+NY8bJ088DVCHdwOwPIAnIyDXV25rPtI31KfZlpMsq Tm4mny/Cxoa1oq12J+oxUmpoGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtKKd/m jwhA9Zq8mztnvOhrUXcfMB8GA1UdIwQYMBaAFB1sPpxHIS7kjfn1TmSQqaYW1BGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkFFRS80RjMzMjg4MjY2 NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1U04tZlZPWkpDcHBoYlVF WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXdy1uRWNoTHVTTi1mVk9aSkNwcGhiVUVZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkFFRS80RjMzMjg4MjY2NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1 U04tZlZPWkpDcHBoYlVFWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2Jpx1JBpCerLMLHsSWEB7KQOilFwilQxRVR/Lya63gkA4rBRmOvXL ImHZ7A/Js02dL7in5sjwkKLDfWtaS+6mB22HNTQyJyjWWwWodWh2qxKXhgUEfjuE YPiU+dm9xh5PSaqr39Q8p/UWLzLFUWlwXQQz1V41oPoQdPv2j8jvO2bjQFyn0me/ nVn2GQtux7NCc1G0aX0/JRbaKhipxeYVjV8B4NGlFiRsMHQn+AaVgkE7mjYQ3Q7X XPx2RSK3shGtjlbkatLGTSlbJYpRmOOt2xJ7Z6fG3R7nNv+QSwZC4UXZ60tyhN3A G2LhUq/siWXxDEDyfTndcnRq1wefHRSy -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org