$ rpki-client -vvf rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft File: hm540aRej9EmgIr_fOpPwI59kqg.mft (raw, json) Hash identifier: bYdxOscfex+QefESYBmJKmoFIZAV4+mNUVXUAjmjUyo= Subject key identifier: 7A:1C:38:86:F7:DD:C9:F9:C0:84:F6:C3:6E:12:0D:78:EB:80:60:33 Authority key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 Certificate issuer: /CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft Manifest number: 16 Signing time: Wed 29 May 2024 09:31:27 +0000 Manifest this update: Wed 29 May 2024 09:31:26 +0000 Manifest next update: Wed 05 Jun 2024 09:31:26 +0000 Files and hashes: 1: hm540aRej9EmgIr_fOpPwI59kqg.crl (hash: WPByskqpip+pRbXw9/IIvi9+FgnqeCEgnf7dlIoVbuQ=) 2: 894D6CDE1C3511EFA78E995CC4F9AE02.roa (hash: fBFXcdAZgwAA4HLRbPP5MvkSc7dixgCX9sRkgzdP3/g=) 3: 5A2117421CD211EF8B7FFC13C4F9AE02.roa (hash: S3LIKI0qAK1zVXE4OwQziJGCtFWoDIK87ZoNwB06tTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 09:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Validity Not Before: May 29 09:31:26 2024 GMT Not After : Jun 5 09:31:26 2024 GMT Subject: CN=6656f5ee-7370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6e:9b:94:60:a1:4a:a5:3a:d2:50:54:46:c4: 97:4f:0f:5e:99:ca:28:62:38:24:4e:2d:69:45:83: ee:23:75:d9:2e:76:2c:e2:5d:05:91:32:9d:43:dd: 0a:15:80:cb:16:2d:cd:a3:21:b4:90:f3:fb:21:eb: e9:99:b4:77:fc:aa:97:e6:9c:68:6f:8d:2e:a9:19: c5:99:26:40:6b:25:ea:1b:47:f2:64:65:a7:42:42: 19:34:1a:08:a6:95:d1:18:f9:62:ba:6d:a5:f4:c0: 42:1e:81:61:aa:f7:bd:5a:27:80:45:b3:1a:49:51: 10:d9:0a:46:c5:fb:8e:81:9d:fe:87:e8:9a:4e:cf: 06:32:0c:a0:6d:bc:5f:c9:09:b7:32:9d:61:a1:31: d0:9c:f2:1b:76:f9:7f:06:a0:3b:81:f8:15:21:41: bc:55:52:15:19:9a:a7:b9:67:6e:78:fc:0d:90:d7: 2f:ac:94:5a:ca:ab:59:e5:77:d4:1b:20:b6:1d:61: fc:60:5b:63:07:85:de:ea:bb:10:6e:2b:f4:a4:ea: f7:5c:ca:ab:41:ff:c7:ed:92:4e:45:c9:a8:3c:c2: 92:45:15:fc:16:44:55:5e:84:2a:47:fb:f2:63:48: 74:fc:d1:20:00:78:70:d2:ee:60:6e:83:9f:78:ec: b1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1C:38:86:F7:DD:C9:F9:C0:84:F6:C3:6E:12:0D:78:EB:80:60:33 X509v3 Authority Key Identifier: keyid:86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:ec:71:b6:39:df:c6:ae:0b:fe:c4:7c:d9:48:6c:7b:8c:aa: 96:29:27:20:92:28:9c:d3:28:51:f9:9c:27:b2:db:95:76:5b: 75:3c:55:6f:99:98:a9:9f:04:fe:fb:f4:3a:ac:08:f9:3e:e4: 6e:f2:ee:3b:cc:26:7c:4d:ac:67:fa:ae:e6:9d:30:80:81:29: 32:08:fa:4e:21:e3:5f:f8:b9:87:07:b0:1b:68:e3:4e:9a:1e: e1:04:67:cf:a4:a6:a9:7c:cd:78:e2:be:b6:45:00:3c:6c:62: 63:67:89:a8:af:80:ee:39:70:05:17:cb:48:eb:e4:0c:d0:e8: 9c:2e:08:2c:ef:02:18:0b:69:1f:67:0b:3d:a2:41:34:3c:76: 94:2d:55:c2:3d:56:10:3b:23:39:5c:1b:e6:b8:ce:d4:05:34: bd:ab:db:76:36:7d:8b:ff:b5:e6:03:af:48:8d:16:b8:98:4a: 66:9b:2d:db:da:d6:dc:b4:68:93:1c:05:0f:90:aa:0f:a6:e5: a7:b0:fa:c6:22:f4:54:e6:e2:c5:96:30:3e:57:96:7f:04:62: 73:a0:81:87:23:bd:07:8e:d9:84:3d:74:c0:ce:0e:e6:d3:47: 0b:d8:9a:c7:b7:f9:7f:36:04:34:b3:8e:81:a6:ea:c5:09:51: 31:08:40:d9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0ZDRTExMC8GA1UEBRMoODY2RTc4RDFBNDVFOEZEMTI2ODA4QUZGN0NFQTRGQzA4 RTdEOTJBODAeFw0yNDA1MjkwOTMxMjZaFw0yNDA2MDUwOTMxMjZaMBgxFjAUBgNV BAMTDTY2NTZmNWVlLTczNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYbpuUYKFKpTrSUFRGxJdPD16ZyihiOCROLWlFg+4jddkudiziXQWRMp1D3QoV gMsWLc2jIbSQ8/sh6+mZtHf8qpfmnGhvjS6pGcWZJkBrJeobR/JkZadCQhk0Ggim ldEY+WK6baX0wEIegWGq971aJ4BFsxpJURDZCkbF+46Bnf6H6JpOzwYyDKBtvF/J CbcynWGhMdCc8ht2+X8GoDuB+BUhQbxVUhUZmqe5Z254/A2Q1y+slFrKq1nld9Qb ILYdYfxgW2MHhd7quxBuK/Sk6vdcyqtB/8ftkk5Fyag8wpJFFfwWRFVehCpH+/Jj SHT80SAAeHDS7mBug5947LEdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUehw4hvfd yfnAhPbDbhINeOuAYDMwHwYDVR0jBBgwFoAUhm540aRej9EmgIr/fOpPwI59kqgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDRkNFL0UwQkUzNkFDMDIz RjExRUY4RTVDMUU1OEM0RjlBRTAyL2htNTQwYVJlajlFbWdJcl9mT3BQd0k1OWtx Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaG01NDBhUmVqOUVtZ0lyX2ZPcFB3STU5a3FnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD RkNFL0UwQkUzNkFDMDIzRjExRUY4RTVDMUU1OEM0RjlBRTAyL2htNTQwYVJlajlF bWdJcl9mT3BQd0k1OWtxZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGDscbY538auC/7EfNlIbHuMqpYpJyCSKJzTKFH5nCey25V2W3U8VW+Z mKmfBP779DqsCPk+5G7y7jvMJnxNrGf6ruadMICBKTII+k4h41/4uYcHsBto406a HuEEZ8+kpql8zXjivrZFADxsYmNniaivgO45cAUXy0jr5AzQ6JwuCCzvAhgLaR9n Cz2iQTQ8dpQtVcI9VhA7IzlcG+a4ztQFNL2r23Y2fYv/teYDr0iNFriYSmabLdva 1ty0aJMcBQ+Qqg+m5aew+sYi9FTm4sWWMD5Xln8EYnOggYcjvQeO2YQ9dMDODubT RwvYmse3+X82BDSzjoGm6sUJUTEIQNk= -----END CERTIFICATE-----Generated at Wed May 29 10:43:03 2024 by rpki-client on console-ams.rpki-client.org