$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: B2HiOBqX0LxNl/dOC2MEiwn60deEa5uLUliFh4uvBtc= Subject key identifier: 6F:80:60:2B:7D:FF:B2:1E:43:F9:65:92:78:4D:D0:63:EB:D3:BA:67 Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 0330 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 032B Signing time: Sat 01 Jun 2024 04:09:50 +0000 Manifest this update: Sat 01 Jun 2024 04:09:50 +0000 Manifest next update: Sat 08 Jun 2024 04:09:50 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: vIgGghvdHwON9OBpVeE6IDI8bXqgvpQHB2vpMmqnBrI=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: FLNuzQsiXD7KkcF5wVKcCpcAVmQ8hS+JXE7aj3S10Xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 816 (0x330) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Jun 1 04:09:50 2024 GMT Not After : Jun 8 04:09:50 2024 GMT Subject: CN=665a9f0e-d7de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:db:3b:dd:39:40:06:cc:41:0f:89:50:5b:6e: 26:19:eb:4b:17:da:f1:5b:07:c4:2b:cd:be:4c:8b: b5:c9:bb:06:57:1d:8f:2a:e1:d9:76:ad:b6:49:fc: 45:05:a4:42:04:04:60:06:a2:5a:9a:7f:2f:7d:cf: 63:cd:59:04:30:09:55:7c:a9:d0:59:5e:b0:dc:fb: 8e:be:99:a0:4c:96:41:da:b8:eb:73:26:d1:f0:fb: 86:6c:fd:a6:3a:a2:fa:90:0e:92:10:e2:f9:05:28: 67:ba:45:76:90:3f:3d:d5:64:fa:e3:a9:aa:16:74: 9f:4c:75:9f:73:bb:c6:13:0e:7d:8e:b8:9d:d6:b3: 7d:27:0c:b4:27:db:f1:4f:1e:64:f5:f3:7c:2a:ef: 43:4f:66:bf:6b:31:00:24:c6:f4:48:4a:48:58:2f: 6d:b5:37:c0:48:c0:a7:9d:e7:d4:71:a7:9b:d9:fa: 64:99:14:04:fb:c7:b7:0b:7b:54:60:df:af:5b:4f: ca:b7:94:9c:42:41:67:a2:7c:bd:0a:02:66:78:d0: ba:e2:16:cc:5c:c4:e9:f5:76:3e:e6:46:4a:b2:b7: a4:bb:a1:12:a8:be:30:c1:79:99:63:c5:38:78:b0: 5e:3f:ad:85:19:30:94:62:52:7d:66:be:79:64:6a: dc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:80:60:2B:7D:FF:B2:1E:43:F9:65:92:78:4D:D0:63:EB:D3:BA:67 X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:02:57:01:fc:93:13:1a:1e:a9:77:29:4f:30:31:b6:fe:93: c8:4d:28:18:38:23:16:2b:64:34:2c:82:6a:87:93:a6:2e:4e: 8d:c2:98:24:7d:40:f0:2e:11:8b:14:47:c5:f2:78:fc:33:e8: 7f:74:f3:2e:eb:fb:32:b2:b5:2c:80:9c:c6:90:c3:19:80:87: e1:1b:6e:d3:fd:78:67:60:5c:b0:3d:8d:f5:79:3d:8d:85:c7: 67:bd:36:fd:a7:65:8a:c6:97:cf:f4:ff:bc:98:b1:26:62:2b: 72:7f:40:1e:04:c9:d6:55:47:61:06:4e:b2:0b:65:6d:3b:9b: 94:c2:9e:23:20:16:13:38:94:2c:68:c7:8d:9e:9a:31:ab:bd: 3e:1b:4e:72:9d:e5:5a:79:ca:aa:35:65:97:01:a5:e3:f9:f6: 47:12:d9:64:5b:ca:69:b1:1f:01:ad:d2:e9:35:52:ce:22:47: 47:04:e8:15:80:cc:ed:ca:5b:29:07:59:b7:e9:e1:11:34:c4: 9f:39:23:08:55:36:5a:14:3b:4b:11:c1:bc:61:75:3b:ec:06: 5f:0b:b7:97:8c:0f:50:de:1c:d7:f4:cd:25:af:f3:15:22:e5: 8f:ed:0f:b0:ba:1c:52:6a:7e:03:b7:40:27:e5:68:90:68:2c: 26:85:ce:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjQwNjAxMDQwOTUwWhcNMjQwNjA4MDQwOTUwWjAYMRYwFAYD VQQDEw02NjVhOWYwZS1kN2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ds73TlABsxBD4lQW24mGetLF9rxWwfEK82+TIu1ybsGVx2PKuHZdq22SfxF BaRCBARgBqJamn8vfc9jzVkEMAlVfKnQWV6w3PuOvpmgTJZB2rjrcybR8PuGbP2m OqL6kA6SEOL5BShnukV2kD891WT646mqFnSfTHWfc7vGEw59jrid1rN9Jwy0J9vx Tx5k9fN8Ku9DT2a/azEAJMb0SEpIWC9ttTfASMCnnefUcaeb2fpkmRQE+8e3C3tU YN+vW0/Kt5ScQkFnony9CgJmeNC64hbMXMTp9XY+5kZKsreku6ESqL4wwXmZY8U4 eLBeP62FGTCUYlJ9Zr55ZGrcSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+AYCt9 /7IeQ/llknhN0GPr07pnMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJAlcB/JMTGh6pdylPMDG2/pPITSgYOCMWK2Q0LIJqh5OmLk6Nwpgk fUDwLhGLFEfF8nj8M+h/dPMu6/sysrUsgJzGkMMZgIfhG27T/XhnYFywPY31eT2N hcdnvTb9p2WKxpfP9P+8mLEmYityf0AeBMnWVUdhBk6yC2VtO5uUwp4jIBYTOJQs aMeNnpoxq70+G05yneVaecqqNWWXAaXj+fZHEtlkW8ppsR8BrdLpNVLOIkdHBOgV gMztylspB1m36eERNMSfOSMIVTZaFDtLEcG8YXU77AZfC7eXjA9Q3hzX9M0lr/MV IuWP7Q+wuhxSan4Dt0An5WiQaCwmhc5Z -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:07 2024 by rpki-client on console-fra.rpki-client.org