$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: hsEXdH6RSW6HTl2nLA7TrhdTzq5es3s7bH5A87fhmcE= Subject key identifier: 06:D5:8D:D9:A1:BE:3D:0B:8A:72:27:1E:E1:3C:CF:71:58:E1:15:A8 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 1043 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 175F Signing time: Sat 04 May 2024 18:07:55 +0000 Manifest this update: Sat 04 May 2024 18:07:54 +0000 Manifest next update: Sat 11 May 2024 18:07:54 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: qDX0Sn9F202eUqxgkK4RW0e4LGnpLirsboxI2lkqV0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4163 (0x1043) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: May 4 18:07:54 2024 GMT Not After : May 11 18:07:54 2024 GMT Subject: CN=6636797a-ed19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:98:0b:b1:b4:96:d5:d6:12:d5:99:4f:31: 66:8e:6b:69:09:a2:15:f5:2f:96:1d:95:cf:21:aa: 83:49:9f:3e:ee:ba:1b:96:61:af:ab:77:ae:3a:e8: ce:6a:71:a7:af:e4:4a:a6:84:8b:fb:b4:c9:be:29: 1d:c3:bc:2e:94:c8:09:a4:ed:f6:de:6f:51:4e:43: 1a:c4:11:b5:fc:7a:6d:dc:92:eb:3f:97:99:57:11: ed:9b:05:b0:23:4d:8c:e7:e2:11:a6:c4:f4:44:93: e7:b7:12:ef:9d:dd:d7:37:2b:b4:3d:c8:ff:7b:64: 89:8e:60:7e:a3:29:c8:a1:d6:3c:5d:82:d4:fe:02: c6:d1:32:e2:31:28:14:cb:21:93:2c:2b:a1:d4:36: 4d:28:46:54:b4:b5:26:63:ac:81:93:d6:db:83:02: dd:01:96:27:ab:6c:6e:36:7c:52:39:20:c8:01:ce: 9a:28:52:8b:93:54:c7:22:0b:cc:2f:6a:13:ec:93: 6c:be:86:9d:95:93:d0:6d:b2:bb:06:8f:11:82:13: 31:bb:eb:ff:4c:af:f4:9e:09:8b:28:3e:34:be:f7: 33:ea:61:ca:2b:c3:25:a6:65:88:c9:1c:5d:43:ce: 6e:db:03:40:d1:e6:5d:d5:9e:74:9f:49:2a:8b:3f: d0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D5:8D:D9:A1:BE:3D:0B:8A:72:27:1E:E1:3C:CF:71:58:E1:15:A8 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:92:9d:62:ea:b6:06:10:f3:7d:44:22:ed:38:01:90:3a:90: 41:54:a8:d9:e0:45:96:02:99:9c:58:27:ca:cb:86:46:52:0a: 11:22:7e:cd:ed:a4:0b:4a:10:80:b3:a1:0c:f4:07:eb:de:70: de:a8:fe:3b:20:bf:81:fd:1a:a6:d4:9a:1c:c0:0d:b1:b9:52: cc:cb:7d:31:32:d8:9f:cd:8e:09:4d:7e:17:78:af:de:95:96: 1f:51:8e:2a:aa:ec:25:56:35:82:00:f8:23:4c:71:85:a9:62: 73:a4:c4:34:d1:4b:ed:d4:cd:10:9e:92:3c:0d:06:0c:aa:91: ae:3f:36:c9:d8:76:46:de:80:a1:ff:25:fa:27:1b:fc:95:f5: a3:a0:93:b6:0b:36:30:78:aa:67:c2:60:c5:ee:85:46:82:2f: f6:ff:3a:55:4f:ac:27:67:7e:09:b9:e2:5a:09:ed:e0:6c:c9: f7:07:8d:7f:ce:22:b4:53:2c:2c:ba:a0:29:16:cd:ea:4a:9b: a9:90:6f:a1:b9:05:e0:0d:d9:fc:f9:44:fe:ba:04:a9:fd:4f: 19:28:02:df:45:f0:5a:74:38:5a:9c:36:1f:e9:fb:61:e5:a8: 41:b2:2c:f5:73:60:ea:c9:7e:04:f3:c5:6b:d8:76:ff:41:01: 45:3a:b5:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjQwNTA0MTgwNzU0WhcNMjQwNTExMTgwNzU0WjAYMRYwFAYD VQQDEw02NjM2Nzk3YS1lZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFyYC7G0ltXWEtWZTzFmjmtpCaIV9S+WHZXPIaqDSZ8+7roblmGvq3euOujO anGnr+RKpoSL+7TJvikdw7wulMgJpO323m9RTkMaxBG1/Hpt3JLrP5eZVxHtmwWw I02M5+IRpsT0RJPntxLvnd3XNyu0Pcj/e2SJjmB+oynIodY8XYLU/gLG0TLiMSgU yyGTLCuh1DZNKEZUtLUmY6yBk9bbgwLdAZYnq2xuNnxSOSDIAc6aKFKLk1THIgvM L2oT7JNsvoadlZPQbbK7Bo8RghMxu+v/TK/0ngmLKD40vvcz6mHKK8MlpmWIyRxd Q85u2wNA0eZd1Z50n0kqiz/QSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbVjdmh vj0LinInHuE8z3FY4RWoMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhkp1i6rYGEPN9RCLtOAGQOpBBVKjZ4EWWApmcWCfKy4ZGUgoRIn7N 7aQLShCAs6EM9Afr3nDeqP47IL+B/Rqm1JocwA2xuVLMy30xMtifzY4JTX4XeK/e lZYfUY4qquwlVjWCAPgjTHGFqWJzpMQ00Uvt1M0QnpI8DQYMqpGuPzbJ2HZG3oCh /yX6Jxv8lfWjoJO2CzYweKpnwmDF7oVGgi/2/zpVT6wnZ34JueJaCe3gbMn3B41/ ziK0UywsuqApFs3qSpupkG+huQXgDdn8+UT+ugSp/U8ZKALfRfBadDhanDYf6fth 5ahBsiz1c2DqyX4E88Vr2Hb/QQFFOrV4 -----END CERTIFICATE-----Generated at Sat May 4 20:37:04 2024 by rpki-client on console-fra.rpki-client.org