$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft File: HRIX74_oS1glUWcbyjXmhEhpJJc.mft (raw, json) Hash identifier: XNLMECR6+3Bm5EAX0Py//tVhympSFlpS0Ic2OlTZc8w= Subject key identifier: DC:CE:D4:1B:ED:78:4A:BC:49:3A:A8:19:C9:79:0E:FD:05:8F:09:E7 Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 098A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft Manifest number: 0983 Signing time: Wed 22 May 2024 20:57:36 +0000 Manifest this update: Wed 22 May 2024 20:57:36 +0000 Manifest next update: Wed 29 May 2024 20:57:36 +0000 Files and hashes: 1: HRIX74_oS1glUWcbyjXmhEhpJJc.crl (hash: hkLmm0CzngthWF9+BgWnd9McBltn8IWGYbOsj2p9ALk=) 2: 9261E554464611EE84B7C534C4F9AE02.roa (hash: 46K/PdxaAiu2tPx+wYWEAj6YWSYgs7IFdJ9KG+ZJop0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 20:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2442 (0x98a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: May 22 20:57:36 2024 GMT Not After : May 29 20:57:36 2024 GMT Subject: CN=664e5c40-9da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:ca:a0:40:80:06:68:3a:38:3a:53:5c:88:e1: 08:7b:98:65:a5:cf:56:6c:49:64:8c:a3:e6:ce:59: ec:fa:ac:bf:a3:93:4f:ab:81:d4:f3:81:34:14:29: d6:38:16:15:d6:12:4d:f3:b0:b3:c9:1b:5d:bb:59: a1:30:ba:93:49:16:5f:c1:8f:3f:b9:26:d5:f7:0f: a7:fd:49:63:4a:33:03:71:f8:bc:32:5a:f9:b9:a0: ff:35:70:51:c6:5a:85:a4:b3:03:80:e5:51:a6:3d: 28:43:a8:c3:81:7f:14:5a:ad:43:5a:7a:07:62:3f: c7:a5:c5:68:dc:8f:7f:83:2b:38:59:d3:62:b3:56: 71:2b:72:97:11:cc:75:d8:6b:1e:b9:4b:c6:3b:aa: 12:ef:01:b7:30:23:e6:75:da:cf:d3:40:94:3a:b8: f2:03:98:88:36:fb:14:6c:74:0e:2f:eb:7e:84:e3: 6c:7e:b3:17:bc:05:f3:ad:69:f2:f3:f8:16:81:7c: 50:cf:75:f7:15:c1:e3:71:ba:ce:1a:9e:50:e8:bc: 37:8a:60:a9:e8:1e:76:02:1b:53:17:23:5d:5e:27: 08:b4:13:2e:3a:d0:ed:4f:5e:35:e2:0a:9a:ff:8e: 1c:98:19:03:06:a8:f2:6f:0b:c6:b1:0d:25:6f:7a: 77:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:CE:D4:1B:ED:78:4A:BC:49:3A:A8:19:C9:79:0E:FD:05:8F:09:E7 X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:cc:85:e0:84:92:b7:6b:9a:94:7e:56:4c:c1:7d:c9:1b:46: 9b:7a:93:fb:5a:3e:59:71:ac:5c:49:03:e3:79:95:64:7e:8c: 39:d0:86:ed:6b:f3:25:8c:c3:4d:97:0e:65:4f:69:d0:af:d6: 85:cc:4d:bb:01:0b:3f:ba:0b:61:ce:73:d7:b7:ca:80:55:bb: 34:83:1b:de:51:67:1d:b3:71:4f:d0:74:49:59:c4:5c:ee:17: 14:05:f1:55:11:24:97:3a:e1:d2:f8:24:90:5b:4b:00:d3:2a: 64:b3:7a:52:c6:52:65:3f:d6:f0:f4:6c:66:09:42:81:52:e7: 59:9a:c4:df:b2:97:61:91:c4:a3:aa:9e:4b:45:57:fc:2b:3e: d5:b6:7b:6b:1d:d7:f0:19:9b:38:d7:a7:d7:74:08:a0:90:81: fa:ff:48:cc:d9:14:59:81:d4:e7:1a:40:24:bd:2c:1d:9e:6e: 47:c3:9c:43:77:9f:14:19:f4:45:7e:0e:f5:54:34:ee:38:45: bb:cc:55:c3:e7:05:1f:56:2b:45:85:34:5b:1f:ab:dc:0b:f5: 40:eb:68:cb:13:14:3f:62:f7:38:4f:72:5b:cf:17:ef:64:85: b5:87:5a:ac:d9:fb:77:e6:15:f8:31:b8:43:48:a8:7d:9d:20: 86:a4:5b:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjQwNTIyMjA1NzM2WhcNMjQwNTI5MjA1NzM2WjAYMRYwFAYD VQQDEw02NjRlNWM0MC05ZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+MqgQIAGaDo4OlNciOEIe5hlpc9WbElkjKPmzlns+qy/o5NPq4HU84E0FCnW OBYV1hJN87CzyRtdu1mhMLqTSRZfwY8/uSbV9w+n/UljSjMDcfi8Mlr5uaD/NXBR xlqFpLMDgOVRpj0oQ6jDgX8UWq1DWnoHYj/HpcVo3I9/gys4WdNis1ZxK3KXEcx1 2GseuUvGO6oS7wG3MCPmddrP00CUOrjyA5iINvsUbHQOL+t+hONsfrMXvAXzrWny 8/gWgXxQz3X3FcHjcbrOGp5Q6Lw3imCp6B52AhtTFyNdXicItBMuOtDtT1414gqa /44cmBkDBqjybwvGsQ0lb3p3gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzO1Bvt eEq8STqoGcl5Dv0FjwnnMB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJCNC9EOTU0QkFCRTY5QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1Mx Z2xVV2NieWpYbWhFaHBKSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBizIXghJK3a5qUflZMwX3JG0abepP7Wj5ZcaxcSQPjeZVkfow50Ibt a/MljMNNlw5lT2nQr9aFzE27AQs/ugthznPXt8qAVbs0gxveUWcds3FP0HRJWcRc 7hcUBfFVESSXOuHS+CSQW0sA0ypks3pSxlJlP9bw9GxmCUKBUudZmsTfspdhkcSj qp5LRVf8Kz7VtntrHdfwGZs416fXdAigkIH6/0jM2RRZgdTnGkAkvSwdnm5Hw5xD d58UGfRFfg71VDTuOEW7zFXD5wUfVitFhTRbH6vcC/VA62jLExQ/Yvc4T3Jbzxfv ZIW1h1qs2ft35hX4MbhDSKh9nSCGpFt+ -----END CERTIFICATE-----Generated at Wed May 22 22:41:54 2024 by rpki-client on console-fra.rpki-client.org