$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: 3qzZKVQURYSEiYUHNkJAd0jsCpVDtNywHtKau9dK6xc= Subject key identifier: B8:85:2E:73:ED:50:59:90:A6:80:D2:03:A0:EA:BA:4B:77:48:F8:D0 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0716 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 0705 Signing time: Thu 02 May 2024 22:51:25 +0000 Manifest this update: Thu 02 May 2024 22:51:25 +0000 Manifest next update: Thu 09 May 2024 22:51:25 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: 5UYFBPUMFmyFWutlriY45FS1DNaX44oh+rwALnFPhgc=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: tr8aJViu1PcA5mVxlwXOduo3fTXSlZD4RqOWLmfPc9k=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: tP9bMN6R2kyhExEDnLcqXBcoLmgbQ94K8lLRNPV7ISU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1814 (0x716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: May 2 22:51:25 2024 GMT Not After : May 9 22:51:25 2024 GMT Subject: CN=663418ed-7a88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:22:b5:80:9d:41:59:31:5b:97:ad:95:de:93: d2:c8:76:30:5e:65:22:aa:9d:4f:ce:7f:bf:ef:dd: 47:57:77:a7:ed:c2:f3:aa:de:1c:e1:b7:54:ce:65: fd:05:49:4f:cc:bc:09:15:71:96:33:8e:ed:ae:c5: 49:b6:ea:6e:9b:f5:d6:50:cd:3b:56:83:ff:bc:c2: 65:55:ac:46:96:78:46:51:c9:e2:91:df:6f:d6:52: ae:1c:43:53:ca:ed:d9:53:ee:2c:01:ee:83:71:02: 94:ec:97:11:b7:31:e8:51:c9:eb:22:33:60:4e:5a: c1:87:c6:85:44:25:9d:ce:88:76:4a:c6:71:e0:85: 81:f1:f3:b6:c8:ef:9d:45:96:d4:e0:ff:d6:93:08: 30:fe:8a:7f:e6:31:d2:f3:fb:40:6a:50:ca:ca:bf: 31:63:a1:4b:72:bf:32:d3:d9:f2:2a:81:74:ff:0d: 7b:5d:06:45:b6:7e:2c:19:0f:b5:85:35:82:d7:f2: 36:bb:06:63:90:e3:ab:ac:b3:95:da:ec:8d:1f:83: e2:a9:13:c5:34:31:66:16:b7:7b:fc:3c:6c:02:ac: df:66:2d:dd:bc:9d:64:25:17:7d:85:b1:e7:e8:e5: 3b:85:11:1c:f0:ef:7c:85:b4:46:de:6f:6a:c8:01: a1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:85:2E:73:ED:50:59:90:A6:80:D2:03:A0:EA:BA:4B:77:48:F8:D0 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:6f:78:3a:be:45:1b:44:16:11:c3:7d:ea:b4:b8:82:d5:57: 67:74:07:bc:ec:e4:22:88:ff:98:f3:d8:7f:29:e6:24:ea:35: 31:80:ba:5b:c2:90:e7:d4:88:4e:a2:6c:44:f2:dc:c1:1b:c0: b3:04:36:e7:74:fe:d8:4d:94:52:fe:a1:ef:23:1e:d0:a8:e9: 82:70:79:a0:d0:41:a4:af:39:85:f9:1e:63:7a:21:5a:11:07: 25:34:4b:4a:43:8f:6f:60:ba:9a:a8:ec:82:1c:d1:22:81:ff: 47:9f:f3:85:5d:6c:35:98:a4:70:4f:3a:38:fa:46:69:cf:7d: d3:9c:6a:6f:57:ce:3d:22:8f:30:89:1f:44:f9:70:bc:be:3f: 09:3b:5a:76:1a:9a:44:a9:71:32:77:74:37:f9:f4:bb:08:26: 57:8b:8c:6e:0d:2d:35:aa:b2:9d:11:74:6c:69:3f:fd:a1:79: 5c:0a:06:c8:40:8b:7f:a4:c0:b0:41:67:5f:dc:d2:50:61:2a: 43:07:e0:1c:11:4a:76:b5:7b:ba:fd:a4:e2:fe:3f:fe:0c:f0: 3c:44:66:70:90:8a:c2:13:34:22:ac:35:c7:13:c8:93:86:18: d5:27:57:a5:a9:13:1a:cb:7b:ef:61:53:e8:87:13:16:63:99: 6c:5a:85:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjQwNTAyMjI1MTI1WhcNMjQwNTA5MjI1MTI1WjAYMRYwFAYD VQQDEw02NjM0MThlZC03YTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yK1gJ1BWTFbl62V3pPSyHYwXmUiqp1Pzn+/791HV3en7cLzqt4c4bdUzmX9 BUlPzLwJFXGWM47trsVJtupum/XWUM07VoP/vMJlVaxGlnhGUcnikd9v1lKuHENT yu3ZU+4sAe6DcQKU7JcRtzHoUcnrIjNgTlrBh8aFRCWdzoh2SsZx4IWB8fO2yO+d RZbU4P/Wkwgw/op/5jHS8/tAalDKyr8xY6FLcr8y09nyKoF0/w17XQZFtn4sGQ+1 hTWC1/I2uwZjkOOrrLOV2uyNH4PiqRPFNDFmFrd7/DxsAqzfZi3dvJ1kJRd9hbHn 6OU7hREc8O98hbRG3m9qyAGhpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiFLnPt UFmQpoDSA6Dqukt3SPjQMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+b3g6vkUbRBYRw33qtLiC1VdndAe87OQiiP+Y89h/KeYk6jUxgLpb wpDn1IhOomxE8tzBG8CzBDbndP7YTZRS/qHvIx7QqOmCcHmg0EGkrzmF+R5jeiFa EQclNEtKQ49vYLqaqOyCHNEigf9Hn/OFXWw1mKRwTzo4+kZpz33TnGpvV849Io8w iR9E+XC8vj8JO1p2GppEqXEyd3Q3+fS7CCZXi4xuDS01qrKdEXRsaT/9oXlcCgbI QIt/pMCwQWdf3NJQYSpDB+AcEUp2tXu6/aTi/j/+DPA8RGZwkIrCEzQirDXHE8iT hhjVJ1elqRMay3vvYVPohxMWY5lsWoUM -----END CERTIFICATE-----Generated at Thu May 2 23:19:00 2024 by rpki-client on console-ams.rpki-client.org