$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: OYAnf8EYbKCVOLFWJVw9pXf0m1aTS/FhdkNXFCTDiUg= Subject key identifier: 5B:B3:91:47:7D:EA:86:0B:B0:38:2A:AD:15:86:88:C7:5E:86:D9:D2 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 0590 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 058A Signing time: Sun 05 May 2024 00:40:16 +0000 Manifest this update: Sun 05 May 2024 00:40:16 +0000 Manifest next update: Sun 12 May 2024 00:40:16 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: CrWB2AhQ8QOFFb4Vtt8d1pf1wFz5Arfc5T4jh745jwo=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: BiDJ4XF6Ax6PI7rFoQvYoHT4M7blNEix6qUHG/hXUqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: May 5 00:40:16 2024 GMT Not After : May 12 00:40:16 2024 GMT Subject: CN=6636d570-4adf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7d:2b:1b:54:c2:7d:7f:d1:6e:05:72:9e:7f: 24:52:6c:a9:44:ce:e9:5e:7f:ee:10:dd:32:48:ee: 51:d5:84:3d:f7:48:10:6c:ac:36:90:8c:1a:b0:a9: 06:e7:de:8b:1e:51:60:5a:9a:ed:c4:fd:05:69:58: ff:77:d0:26:5e:a9:2f:98:51:60:f9:5b:22:0c:b0: 12:27:a7:f2:1a:75:65:ba:f8:3e:2a:20:16:25:2e: cd:82:67:ba:ac:7d:5e:fa:cd:90:4c:40:bb:f9:87: 69:c5:4d:e9:5b:db:46:27:16:9f:ec:73:59:45:03: 8d:6a:62:b8:42:c5:f4:8e:6d:be:95:b3:62:0b:ca: f5:ab:6c:1a:ba:60:69:54:c8:4d:7d:cb:00:41:21: 04:89:d7:93:36:9f:b2:ee:7d:63:5b:c5:72:da:c5: 2c:f9:1a:7f:de:f4:eb:0b:24:45:3c:87:6c:53:51: df:87:72:f3:23:f4:c4:48:0e:3c:9a:83:08:8e:06: bb:10:56:7b:d5:e7:42:5b:ec:34:3e:e5:da:31:f4: bd:b8:67:ff:60:ce:53:5f:9a:72:c3:12:43:cd:7d: 79:47:0c:c1:62:50:a4:1f:60:d3:f6:b6:04:b5:6f: af:ea:07:69:72:08:d3:d6:6a:c5:90:28:f7:ee:7d: 5a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B3:91:47:7D:EA:86:0B:B0:38:2A:AD:15:86:88:C7:5E:86:D9:D2 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:fe:6b:e6:99:2b:6d:f4:1e:ca:4b:92:41:68:ef:c1:53:26: 1e:82:d1:73:09:79:9a:95:a9:5c:cf:f2:8a:5a:50:55:5b:54: a2:60:ce:c9:83:01:2f:e1:7e:e8:40:67:e8:31:c4:0c:d8:90: c9:e9:8b:f9:40:2f:cd:3a:be:19:8c:36:f2:22:dd:f8:75:f6: ce:f0:4b:26:5d:e3:78:d1:c4:5b:cf:ab:67:ff:3b:06:ae:15: b2:7b:9b:33:7d:e8:cc:13:f5:d6:87:ed:0d:6f:4f:38:ae:b9: c6:24:60:b0:cd:b0:07:d7:06:0e:9b:83:e8:74:29:89:fa:fb: 38:1f:e9:c5:69:ac:22:af:14:ec:91:fe:e9:ef:27:12:85:b9: d1:39:80:44:d0:2c:b5:78:23:1f:92:f9:5a:51:b8:ea:b7:84: 4b:5e:b3:74:79:ff:d9:11:c5:8e:8b:10:d8:b7:42:21:fa:04: dc:d4:c9:8d:fd:1e:5b:61:f9:2c:29:91:2a:69:51:ee:2a:58: 09:16:d7:fa:67:8c:4a:12:f3:18:d9:8c:fe:fd:ab:3c:24:5c: 5a:c3:74:f8:3d:f5:99:f4:f5:9f:f7:89:ee:c2:d6:ba:af:ff: cd:b9:6d:34:5b:7f:8a:c2:5f:53:10:38:4a:20:f6:b6:36:ba: ae:93:07:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjQwNTA1MDA0MDE2WhcNMjQwNTEyMDA0MDE2WjAYMRYwFAYD VQQDEw02NjM2ZDU3MC00YWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4X0rG1TCfX/RbgVynn8kUmypRM7pXn/uEN0ySO5R1YQ990gQbKw2kIwasKkG 596LHlFgWprtxP0FaVj/d9AmXqkvmFFg+VsiDLASJ6fyGnVluvg+KiAWJS7Ngme6 rH1e+s2QTEC7+YdpxU3pW9tGJxaf7HNZRQONamK4QsX0jm2+lbNiC8r1q2waumBp VMhNfcsAQSEEideTNp+y7n1jW8Vy2sUs+Rp/3vTrCyRFPIdsU1Hfh3LzI/TESA48 moMIjga7EFZ71edCW+w0PuXaMfS9uGf/YM5TX5pywxJDzX15RwzBYlCkH2DT9rYE tW+v6gdpcgjT1mrFkCj37n1aqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuzkUd9 6oYLsDgqrRWGiMdehtnSMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs/mvmmStt9B7KS5JBaO/BUyYegtFzCXmalalcz/KKWlBVW1SiYM7J gwEv4X7oQGfoMcQM2JDJ6Yv5QC/NOr4ZjDbyIt34dfbO8EsmXeN40cRbz6tn/zsG rhWye5szfejME/XWh+0Nb084rrnGJGCwzbAH1wYOm4PodCmJ+vs4H+nFaawirxTs kf7p7ycShbnROYBE0Cy1eCMfkvlaUbjqt4RLXrN0ef/ZEcWOixDYt0Ih+gTc1MmN /R5bYfksKZEqaVHuKlgJFtf6Z4xKEvMY2Yz+/as8JFxaw3T4PfWZ9PWf94nuwta6 r//NuW00W3+Kwl9TEDhKIPa2Nrqukwe8 -----END CERTIFICATE-----Generated at Sun May 5 01:22:18 2024 by rpki-client on console-fra.rpki-client.org