$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: 0exnv44K05RsDt6zf17kyhV5PUg4vCzpJNRWgJA3AHY= Subject key identifier: 75:9C:D9:83:66:90:53:A6:42:74:BD:13:AB:EE:2F:0B:9A:C9:D7:3D Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 33CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 33C8 Signing time: Fri 31 May 2024 14:28:36 +0000 Manifest this update: Fri 31 May 2024 14:28:36 +0000 Manifest next update: Fri 07 Jun 2024 14:28:36 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: 7SP8WbSf1LHyptedjdAztukGVReqQjQIexKGV56ICTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13259 (0x33cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: May 31 14:28:36 2024 GMT Not After : Jun 7 14:28:36 2024 GMT Subject: CN=6659de94-301b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:41:8f:25:5a:e6:b1:92:d6:e1:1d:b5:97:04: 71:e7:7e:a0:cb:ff:90:e1:8d:ff:9d:d8:74:0a:4b: 59:5b:90:9e:a8:a3:e1:d1:f2:51:d3:fe:f0:d5:8d: d8:ec:99:d9:aa:f5:55:5d:ec:ed:66:aa:c1:d1:f0: 8b:d7:bb:72:c8:3e:fe:4d:cd:aa:81:6c:56:a9:fd: 73:34:a7:b2:ec:86:23:bb:e8:02:fa:6e:a7:dd:76: 49:48:3b:be:c0:af:13:81:75:d9:3e:f9:33:05:c8: 40:87:9e:2b:8d:a3:41:75:e7:ad:06:4d:a4:b0:e6: 60:15:0b:bc:fa:0a:eb:9a:cc:a1:53:1d:f4:c8:3c: 5d:c3:b7:a6:cc:fd:b0:10:e2:c7:d7:e2:d0:1d:9a: 30:42:32:86:d8:f2:3f:03:72:60:78:20:0f:3b:2f: 50:c1:a4:14:c8:b0:82:2f:37:78:f1:80:26:3e:4c: a9:4a:88:1c:70:26:1f:8b:97:84:b0:95:7c:08:76: 4a:16:08:b8:2a:68:be:1b:4f:17:ab:eb:d2:22:dc: b2:31:14:56:b2:bc:f2:ae:dd:71:79:91:24:17:84: 5a:15:7a:ff:50:b9:de:ba:f0:9f:44:ca:ea:56:9a: 95:24:0a:13:de:f0:45:5d:3a:e0:6e:3d:b3:e8:bd: 71:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9C:D9:83:66:90:53:A6:42:74:BD:13:AB:EE:2F:0B:9A:C9:D7:3D X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:3f:6a:e3:e5:9a:f3:0b:f5:55:09:b0:6b:37:5e:94:1c:6d: 9f:a2:7e:86:df:4f:3b:92:61:a5:f9:2b:c4:de:74:fc:5b:15: 5a:3e:90:0f:5a:a4:c9:38:b2:c6:77:cb:67:be:1c:7a:ce:e0: 94:69:24:cf:c4:66:f4:63:52:b2:63:4e:26:31:a1:0c:a9:7e: 37:45:ad:ae:28:cc:bc:ed:04:48:52:a6:ab:7a:0a:ee:e4:f1: e1:8b:6d:ac:32:78:59:97:d2:f8:c2:50:58:3f:6c:23:36:54: 4f:a7:11:38:85:77:8e:1d:3d:d0:74:3d:f9:99:e8:b7:e0:12: 2c:ee:c3:f1:0c:25:e7:bd:1a:99:a5:01:84:e8:9e:b3:31:25: 43:de:8b:4e:61:c1:2a:4b:00:b9:51:cf:53:56:2c:5c:59:70: 34:4d:6b:80:44:2d:f9:21:c1:0e:8f:46:dc:cf:fc:da:8b:db: 54:72:86:87:88:02:b5:4c:33:cb:a8:fa:13:32:81:25:a2:81: c6:29:9b:4b:11:3e:ee:b0:95:de:d8:c3:09:e0:2f:84:75:56: 2b:d3:50:9f:32:ce:b3:4a:4d:35:78:ef:a4:d6:6c:0b:3c:d0: 5f:a9:2d:0c:12:3b:92:03:cc:32:76:73:0b:cf:67:4c:12:5b: 69:27:c6:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjQwNTMxMTQyODM2WhcNMjQwNjA3MTQyODM2WjAYMRYwFAYD VQQDEw02NjU5ZGU5NC0zMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0GPJVrmsZLW4R21lwRx536gy/+Q4Y3/ndh0CktZW5CeqKPh0fJR0/7w1Y3Y 7JnZqvVVXeztZqrB0fCL17tyyD7+Tc2qgWxWqf1zNKey7IYju+gC+m6n3XZJSDu+ wK8TgXXZPvkzBchAh54rjaNBdeetBk2ksOZgFQu8+grrmsyhUx30yDxdw7emzP2w EOLH1+LQHZowQjKG2PI/A3JgeCAPOy9QwaQUyLCCLzd48YAmPkypSogccCYfi5eE sJV8CHZKFgi4Kmi+G08Xq+vSItyyMRRWsrzyrt1xeZEkF4RaFXr/ULneuvCfRMrq VpqVJAoT3vBFXTrgbj2z6L1x5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWc2YNm kFOmQnS9E6vuLwuaydc9MB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPP2rj5ZrzC/VVCbBrN16UHG2fon6G3087kmGl+SvE3nT8WxVaPpAP WqTJOLLGd8tnvhx6zuCUaSTPxGb0Y1KyY04mMaEMqX43Ra2uKMy87QRIUqaregru 5PHhi22sMnhZl9L4wlBYP2wjNlRPpxE4hXeOHT3QdD35mei34BIs7sPxDCXnvRqZ pQGE6J6zMSVD3otOYcEqSwC5Uc9TVixcWXA0TWuARC35IcEOj0bcz/zai9tUcoaH iAK1TDPLqPoTMoElooHGKZtLET7usJXe2MMJ4C+EdVYr01CfMs6zSk01eO+k1mwL PNBfqS0MEjuSA8wydnMLz2dMEltpJ8b6 -----END CERTIFICATE-----Generated at Fri May 31 15:08:34 2024 by rpki-client on console-fra.rpki-client.org