$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: 3p1D7k8aejV6A3QuzZW4vl6JyZOurSrIofxBaZFIVEA= Subject key identifier: 26:91:01:BB:9F:E0:47:7E:E5:36:06:0E:FB:BA:22:6D:79:B7:B3:C3 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0111 Signing time: Tue 07 May 2024 05:23:54 +0000 Manifest this update: Tue 07 May 2024 05:23:54 +0000 Manifest next update: Tue 14 May 2024 05:23:54 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: fNbjG7Nc+oFpy9+sV+VXm+p27WFHde1rzukUZuKCzc8=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: AAsU3r5wEkF6f9iXxm6/6FcRALPM6e8iuLNdCiCtbqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: May 7 05:23:54 2024 GMT Not After : May 14 05:23:54 2024 GMT Subject: CN=6639baea-e44a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ee:3b:79:a5:e6:9d:08:25:51:ed:d5:14:e8: 70:b0:18:5c:f0:8b:87:bd:9f:4e:8f:f1:60:ba:f4: cf:63:e0:8e:78:dd:59:72:d5:5d:c4:b6:21:05:c0: f5:b2:31:37:ba:a9:01:3a:69:a0:2a:ff:6d:fe:1a: 8a:b2:4f:29:f6:d0:5c:08:5c:d2:41:b4:5b:ad:d7: 36:b5:a1:78:85:1b:4c:04:38:fd:ea:2d:2d:08:bf: 98:f0:d2:74:3c:d0:81:f3:cd:d1:61:c6:23:36:b3: 0a:6e:d6:10:0b:72:25:56:68:6d:04:09:5c:ba:67: 3a:1d:f0:d7:99:ee:07:bf:ce:50:59:db:d3:f1:11: d9:1c:4b:17:65:2c:a3:7c:e4:7c:64:af:ae:34:f9: a2:a1:6f:ee:38:71:02:23:9e:24:46:1f:9c:37:9f: 6b:39:93:6c:1e:0e:14:3c:81:fb:ff:0f:10:aa:91: b6:cb:7b:a7:41:58:78:9e:db:26:57:4c:47:bc:44: fa:73:b5:23:99:b0:71:d4:77:76:ec:6d:e2:c1:ae: 40:74:7c:ef:03:06:c6:d6:77:c4:e1:68:6a:67:bc: 18:b8:80:52:21:d8:59:8a:d3:a7:57:9c:fa:e5:04: 93:0c:cd:c3:90:34:57:1f:6b:df:72:0c:11:a1:e3: 89:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:91:01:BB:9F:E0:47:7E:E5:36:06:0E:FB:BA:22:6D:79:B7:B3:C3 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:81:67:0d:b1:75:88:bc:30:35:70:6d:65:55:39:05:7d:d5: e0:bd:c0:d5:bc:3b:25:0e:b6:33:d9:0d:d8:95:70:2a:d5:b8: c4:56:32:bf:08:f2:53:14:ba:85:10:3e:5d:60:07:ad:fe:ae: 4a:e1:9a:8b:d2:11:f2:42:29:5d:31:65:a8:b5:e0:a4:6e:8f: 5b:0d:ca:f2:a9:93:b5:4c:b3:0e:9a:8a:62:6f:64:9c:60:a8: d1:ac:f8:4a:6c:51:b6:12:c9:f7:3e:8d:ad:69:09:15:9e:6d: 8b:9c:bf:5a:46:5a:a1:80:cc:1d:f4:14:fa:fe:f7:67:b2:20: 36:b8:c5:26:e1:54:c1:c3:6b:b2:22:b1:8d:6b:67:01:49:c1: 93:93:55:8b:4f:17:1a:c0:15:71:a2:8b:e1:3a:db:45:52:2b: 0d:68:77:8f:3d:b9:75:88:ac:9e:4c:6e:8d:bf:0c:07:36:27: 79:c6:f4:2a:93:6e:f0:1d:3a:da:e3:12:a2:0b:2c:ab:31:05: 9d:49:70:0e:db:80:a4:de:12:75:83:40:52:9a:67:49:3f:8a: a2:e2:67:bc:c1:d3:3a:1e:3c:a5:0b:cd:dc:47:2f:53:db:72: d1:a7:2a:e0:85:5b:45:98:08:98:75:28:42:d1:3c:d7:87:6d: b0:f8:a0:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjQwNTA3MDUyMzU0WhcNMjQwNTE0MDUyMzU0WjAYMRYwFAYD VQQDEw02NjM5YmFlYS1lNDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwe47eaXmnQglUe3VFOhwsBhc8IuHvZ9Oj/FguvTPY+COeN1ZctVdxLYhBcD1 sjE3uqkBOmmgKv9t/hqKsk8p9tBcCFzSQbRbrdc2taF4hRtMBDj96i0tCL+Y8NJ0 PNCB883RYcYjNrMKbtYQC3IlVmhtBAlcumc6HfDXme4Hv85QWdvT8RHZHEsXZSyj fOR8ZK+uNPmioW/uOHECI54kRh+cN59rOZNsHg4UPIH7/w8QqpG2y3unQVh4ntsm V0xHvET6c7UjmbBx1Hd27G3iwa5AdHzvAwbG1nfE4WhqZ7wYuIBSIdhZitOnV5z6 5QSTDM3DkDRXH2vfcgwRoeOJOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaRAbuf 4Ed+5TYGDvu6Im15t7PDMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJgWcNsXWIvDA1cG1lVTkFfdXgvcDVvDslDrYz2Q3YlXAq1bjEVjK/ CPJTFLqFED5dYAet/q5K4ZqL0hHyQildMWWoteCkbo9bDcryqZO1TLMOmopib2Sc YKjRrPhKbFG2Esn3Po2taQkVnm2LnL9aRlqhgMwd9BT6/vdnsiA2uMUm4VTBw2uy IrGNa2cBScGTk1WLTxcawBVxoovhOttFUisNaHePPbl1iKyeTG6NvwwHNid5xvQq k27wHTra4xKiCyyrMQWdSXAO24Ck3hJ1g0BSmmdJP4qi4me8wdM6HjylC83cRy9T 23LRpyrghVtFmAiYdShC0TzXh22w+KC6 -----END CERTIFICATE-----Generated at Tue May 7 06:29:47 2024 by rpki-client on console-ams.rpki-client.org