$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft File: hpk8iGXMBr2Yu5T0pukGEieCgAA.mft (raw, json) Hash identifier: OfpEVzMlnehb17Ol7yV1v7/obFqvGDMscLvd0knOJ90= Subject key identifier: 13:4C:33:50:A3:87:4F:F0:0B:57:EB:1E:58:D2:C3:E2:FC:5F:E2:0A Authority key identifier: 86:99:3C:88:65:CC:06:BD:98:BB:94:F4:A6:E9:06:12:27:82:80:00 Certificate issuer: /CN=A91DC6AD/serialNumber=86993C8865CC06BD98BB94F4A6E9061227828000 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft Manifest number: 7A Signing time: Sun 19 May 2024 07:19:56 +0000 Manifest this update: Sun 19 May 2024 07:19:56 +0000 Manifest next update: Sun 26 May 2024 07:19:56 +0000 Files and hashes: 1: hpk8iGXMBr2Yu5T0pukGEieCgAA.crl (hash: UIrevO/02xlGMK+fjuXbQkoNfWdWFXW+JtB73dqiqrw=) 2: E2ECBFC65DF211EEB46BCB27C4F9AE02.roa (hash: 9scsfricJHNTlxVYnqhrqI59Q1yKpliiSe4JfKuir+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.crl rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC6AD/serialNumber=86993C8865CC06BD98BB94F4A6E9061227828000 Validity Not Before: May 19 07:19:56 2024 GMT Not After : May 26 07:19:56 2024 GMT Subject: CN=6649a81c-c302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:d3:b1:bc:0c:79:95:d5:37:e2:e6:f7:eb:2d: 79:5c:23:10:8a:de:b4:82:d8:0d:6a:42:e1:79:2e: 9f:e2:38:a5:eb:f1:0c:96:46:6e:3c:4f:1e:49:eb: ed:a8:9b:d1:17:cc:61:0d:1b:44:b0:43:6d:99:94: 35:fc:79:f8:55:4a:c0:b0:ca:e8:dc:bd:92:ea:fa: b1:eb:f4:9e:4c:d6:6b:32:43:a7:65:96:cb:d9:63: 0c:21:3c:51:a7:e1:5f:47:de:fd:65:96:49:e1:6f: 10:97:71:f6:f1:82:40:5c:a9:4f:20:0d:e0:c8:9f: aa:d8:6d:6b:21:19:79:a3:5c:c0:20:a9:fc:f5:1e: 3e:5b:2d:18:0e:3d:e0:a7:89:c1:a0:6c:e5:84:f3: 0e:5f:9e:31:3f:7a:50:5f:e5:18:0d:6e:8a:9f:0e: 44:57:30:97:d0:c5:fc:db:b6:7f:4f:c9:73:ce:c4: 40:07:11:54:11:47:b4:57:3c:e3:90:97:36:a8:8a: ad:15:e6:21:7c:2d:61:af:d8:ae:72:20:fe:90:72: 56:6c:ef:e1:93:ce:9c:40:29:6f:bc:17:7c:ee:1b: 49:92:fa:c7:5d:15:6f:22:65:09:09:83:37:44:15: 22:bf:08:43:96:f2:54:ef:09:39:3d:71:ed:44:82: 62:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:4C:33:50:A3:87:4F:F0:0B:57:EB:1E:58:D2:C3:E2:FC:5F:E2:0A X509v3 Authority Key Identifier: keyid:86:99:3C:88:65:CC:06:BD:98:BB:94:F4:A6:E9:06:12:27:82:80:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:45:a1:88:f3:8c:8e:64:b0:56:2f:b6:a1:69:64:5e:a5:b4: 54:6a:b2:0a:1f:a3:a5:5a:c3:9b:2f:80:a0:43:fe:b8:d7:1d: fd:da:06:56:70:3c:a0:c2:df:b6:f8:08:53:85:ee:f0:a6:ac: 19:b5:ef:c4:cd:4b:df:e3:4e:df:a2:c2:2f:ed:05:49:41:2b: ae:38:b4:7f:27:4e:f9:c5:a1:d7:8b:03:c0:be:70:77:6e:ff: 82:23:61:10:02:d6:e4:d4:dc:bd:3b:1e:90:3b:19:5e:15:3e: dd:a1:63:d9:24:a8:1d:a8:a4:43:ff:a9:27:06:84:ea:8b:44: 77:48:43:4a:b4:18:53:db:15:a6:5f:1d:ad:89:78:3e:fc:5e: b9:01:c9:50:25:f6:7f:bd:3b:24:e4:ab:e4:9f:97:37:de:ba: 76:56:65:1e:82:6c:86:e8:8c:58:95:60:85:24:d6:55:a2:f7: f1:db:0b:75:e7:c3:32:26:d6:36:87:a1:80:27:c6:59:ee:93: ef:86:f3:a1:b9:4e:72:33:cd:52:1e:1f:8c:a1:e6:d8:53:3b: 20:00:09:6c:e0:07:7b:a7:11:74:44:d5:54:9d:c1:32:b3:03: e6:be:bc:a3:9b:9a:dd:9b:e6:03:37:b3:9e:fb:44:af:f6:76: 55:98:25:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzZBRDExMC8GA1UEBRMoODY5OTNDODg2NUNDMDZCRDk4QkI5NEY0QTZFOTA2MTIy NzgyODAwMDAeFw0yNDA1MTkwNzE5NTZaFw0yNDA1MjYwNzE5NTZaMBgxFjAUBgNV BAMTDTY2NDlhODFjLWMzMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD907G8DHmV1Tfi5vfrLXlcIxCK3rSC2A1qQuF5Lp/iOKXr8QyWRm48Tx5J6+2o m9EXzGENG0SwQ22ZlDX8efhVSsCwyujcvZLq+rHr9J5M1msyQ6dllsvZYwwhPFGn 4V9H3v1llknhbxCXcfbxgkBcqU8gDeDIn6rYbWshGXmjXMAgqfz1Hj5bLRgOPeCn icGgbOWE8w5fnjE/elBf5RgNboqfDkRXMJfQxfzbtn9PyXPOxEAHEVQRR7RXPOOQ lzaoiq0V5iF8LWGv2K5yIP6QclZs7+GTzpxAKW+8F3zuG0mS+sddFW8iZQkJgzdE FSK/CEOW8lTvCTk9ce1EgmKpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE0wzUKOH T/ALV+seWNLD4vxf4gowHwYDVR0jBBgwFoAUhpk8iGXMBr2Yu5T0pukGEieCgAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDNkFELzUzOUYyM0NDNURG MjExRUU5QjA0NDMwRUM0RjlBRTAyL2hwazhpR1hNQnIyWXU1VDBwdWtHRWllQ2dB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHBrOGlHWE1CcjJZdTVUMHB1a0dFaWVDZ0FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD NkFELzUzOUYyM0NDNURGMjExRUU5QjA0NDMwRUM0RjlBRTAyL2hwazhpR1hNQnIy WXU1VDBwdWtHRWllQ2dBQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACVFoYjzjI5ksFYvtqFpZF6ltFRqsgofo6Vaw5svgKBD/rjXHf3aBlZw PKDC37b4CFOF7vCmrBm178TNS9/jTt+iwi/tBUlBK644tH8nTvnFodeLA8C+cHdu /4IjYRAC1uTU3L07HpA7GV4VPt2hY9kkqB2opEP/qScGhOqLRHdIQ0q0GFPbFaZf Ha2JeD78XrkByVAl9n+9OyTkq+SflzfeunZWZR6CbIbojFiVYIUk1lWi9/HbC3Xn wzIm1jaHoYAnxlnuk++G86G5TnIzzVIeH4yh5thTOyAACWzgB3unEXRE1VSdwTKz A+a+vKObmt2b5gM3s577RK/2dlWYJZU= -----END CERTIFICATE-----Generated at Sun May 19 08:26:45 2024 by rpki-client on console-fra.rpki-client.org