$ rpki-client -vvf rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft File: HA0tulqzbC-WcsFN2He57qBsysc.mft (raw, json) Hash identifier: NHjFzkUKj9o/uPccIWA4kaC7PKCXoJINUb9fkQby2ms= Subject key identifier: 39:E7:DF:97:A2:3A:17:C4:7B:21:B3:3A:2F:D1:C3:EA:A7:31:C2:44 Authority key identifier: 1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 Certificate issuer: /CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Certificate serial: 07DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft Manifest number: 07D4 Signing time: Sat 18 May 2024 21:59:26 +0000 Manifest this update: Sat 18 May 2024 21:59:25 +0000 Manifest next update: Sat 25 May 2024 21:59:25 +0000 Files and hashes: 1: HA0tulqzbC-WcsFN2He57qBsysc.crl (hash: mATBLobToOicPOiUf/zQlP/k29HISuk/om5IutSUDpU=) 2: BB250202BC2C11EA96657B4BC4F9AE02.roa (hash: 55fsaizBqEu3e90yC2x/I1kOSQT9VgTLmnZ3HBo57BI=) 3: BA69B6FABC2C11EA96657B4BC4F9AE02.roa (hash: RNINxFrQwPuuERXsrP312wcyCTJRUDXWpfeAQDP7E3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2014 (0x7de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E11B4/serialNumber=1C0D2DBA5AB36C2F9672C14DD877B9EEA06CCAC7 Validity Not Before: May 18 21:59:25 2024 GMT Not After : May 25 21:59:25 2024 GMT Subject: CN=664924bd-f323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:65:ec:d1:43:20:b6:1d:36:2c:92:41:98:eb: 72:1c:00:97:6d:52:38:36:71:18:5b:e0:31:02:e5: 2a:a4:ef:f7:c8:e0:ac:cf:b7:13:d4:95:f5:4d:04: eb:26:be:64:ae:4f:f0:8b:4e:1c:42:1a:7f:2b:a3: 46:39:10:76:55:f9:7f:29:2b:17:53:a7:df:ab:e7: ad:61:21:f8:f1:2f:e2:27:05:c4:db:41:78:04:bb: 2a:6a:75:a3:cf:36:54:41:24:cb:9c:25:7f:cc:c2: ab:92:5e:0a:0c:29:4c:e5:55:3d:7f:f4:e1:29:9c: 15:63:88:0e:be:00:7d:d7:76:75:9c:5a:63:52:8c: 13:50:ea:15:d7:1f:9e:5e:c5:43:e6:55:03:df:ce: c1:35:6e:04:02:6a:3d:29:4b:13:a5:e7:c8:52:8b: c4:3a:a0:4a:de:bc:31:31:72:03:cf:ca:dc:ba:37: 25:01:fe:8e:38:21:ac:84:8a:2e:95:37:8f:09:52: 36:d5:58:d5:fc:a9:71:9d:3f:36:b9:1e:cb:c7:26: 19:d5:a7:fa:2e:04:ff:07:51:43:19:ab:bf:58:06: 26:12:7c:f2:b3:8f:15:7a:d0:38:f9:c1:10:1f:ac: d4:98:c3:22:19:53:6f:74:bd:bb:bd:0a:0f:62:c5: 9e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E7:DF:97:A2:3A:17:C4:7B:21:B3:3A:2F:D1:C3:EA:A7:31:C2:44 X509v3 Authority Key Identifier: keyid:1C:0D:2D:BA:5A:B3:6C:2F:96:72:C1:4D:D8:77:B9:EE:A0:6C:CA:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA0tulqzbC-WcsFN2He57qBsysc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E11B4/B1993C40BC2B11EA82B6874AC4F9AE02/HA0tulqzbC-WcsFN2He57qBsysc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:8d:e9:c3:0c:72:39:b3:cc:4c:e3:3f:01:85:98:8e:d0:fe: bd:d6:ff:7b:69:50:11:e5:3a:7e:ea:49:1c:6c:f6:3f:8a:8c: 5b:7d:a0:7a:25:65:13:81:62:bc:1e:23:15:57:16:27:fa:8d: 2a:0f:85:34:d1:d2:cd:55:50:a5:ed:a3:0b:ee:c1:7d:3e:ec: 2a:93:ee:18:67:3b:c0:1e:3e:ea:7d:50:e4:d2:c2:91:7e:39: d5:e2:ce:e7:33:33:48:5b:17:e0:72:f5:f5:86:a3:91:bf:82: 68:9a:2a:99:d3:f6:e6:56:8d:2b:c0:be:d8:d1:37:85:70:0c: 42:02:1d:0e:2a:72:80:58:ef:67:e2:e4:91:74:6d:78:e8:61: 26:2c:df:62:ac:61:d9:d0:95:ad:f9:57:60:e0:f8:d6:03:57: 23:fb:26:e0:e3:55:50:65:23:43:47:dd:6a:fd:bf:8e:a0:a9: 03:5e:c1:d0:e7:c6:cf:f6:3d:cd:ee:78:02:1d:0f:07:ba:a0: c9:0b:ee:d1:aa:d5:19:6d:e5:23:e3:46:47:1a:98:d6:d2:ee: bc:bf:69:f5:b2:48:a8:ce:3a:58:0f:a2:3b:a3:59:5d:ca:db: 86:d7:8e:b3:03:7e:ec:ff:4f:4e:21:f4:53:e4:ca:d0:a4:66: 8c:3c:42:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTExQjQxMTAvBgNVBAUTKDFDMEQyREJBNUFCMzZDMkY5NjcyQzE0REQ4NzdCOUVF QTA2Q0NBQzcwHhcNMjQwNTE4MjE1OTI1WhcNMjQwNTI1MjE1OTI1WjAYMRYwFAYD VQQDEw02NjQ5MjRiZC1mMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmXs0UMgth02LJJBmOtyHACXbVI4NnEYW+AxAuUqpO/3yOCsz7cT1JX1TQTr Jr5krk/wi04cQhp/K6NGORB2Vfl/KSsXU6ffq+etYSH48S/iJwXE20F4BLsqanWj zzZUQSTLnCV/zMKrkl4KDClM5VU9f/ThKZwVY4gOvgB913Z1nFpjUowTUOoV1x+e XsVD5lUD387BNW4EAmo9KUsTpefIUovEOqBK3rwxMXIDz8rcujclAf6OOCGshIou lTePCVI21VjV/KlxnT82uR7LxyYZ1af6LgT/B1FDGau/WAYmEnzys48VetA4+cEQ H6zUmMMiGVNvdL27vQoPYsWe8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnn35ei OhfEeyGzOi/Rw+qnMcJEMB8GA1UdIwQYMBaAFBwNLbpas2wvlnLBTdh3ue6gbMrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTFCNC9CMTk5M0M0MEJD MkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJDLVdjc0ZOMkhlNTdxQnN5 c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBMHR1bHF6YkMtV2NzRk4ySGU1N3FCc3lzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTFCNC9CMTk5M0M0MEJDMkIxMUVBODJCNjg3NEFDNEY5QUUwMi9IQTB0dWxxemJD LVdjc0ZOMkhlNTdxQnN5c2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxjenDDHI5s8xM4z8BhZiO0P691v97aVAR5Tp+6kkcbPY/ioxbfaB6 JWUTgWK8HiMVVxYn+o0qD4U00dLNVVCl7aML7sF9Puwqk+4YZzvAHj7qfVDk0sKR fjnV4s7nMzNIWxfgcvX1hqORv4JomiqZ0/bmVo0rwL7Y0TeFcAxCAh0OKnKAWO9n 4uSRdG146GEmLN9irGHZ0JWt+Vdg4PjWA1cj+ybg41VQZSNDR91q/b+OoKkDXsHQ 58bP9j3N7ngCHQ8HuqDJC+7RqtUZbeUj40ZHGpjW0u68v2n1skiozjpYD6I7o1ld ytuG146zA37s/09OIfRT5MrQpGaMPEKH -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org