$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft File: HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft (raw, json) Hash identifier: Js9nRghuAC1q+sr0UAjJgw3Bk7xIqQLDSeRMxDRFW0Q= Subject key identifier: 32:DF:DF:10:14:2B:9E:C1:4B:C9:87:E0:CA:AF:3F:AC:23:45:CC:D7 Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Certificate serial: 0A17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft Manifest number: 0A03 Signing time: Thu 02 May 2024 20:50:27 +0000 Manifest this update: Thu 02 May 2024 20:50:26 +0000 Manifest next update: Thu 09 May 2024 20:50:26 +0000 Files and hashes: 1: HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl (hash: ylIu1DAu07pMEsTq+pJ3+CJ30iKJmXuQ0SwdLNGybJY=) 2: DC41C3A4AC2311EE92AE162DC4F9AE02.roa (hash: a3oIzAQ/6v1tE3Un2yhTJX2qBz4v5oVCdJt9vu/qbNg=) 3: 5ED7EE9ED30F11EEA44B8A2EC4F9AE02.roa (hash: EIcrLVlKgH5M2zcwjgWTH9r5Amdsi4OOAVMCOKdP9uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2583 (0xa17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4 Validity Not Before: May 2 20:50:26 2024 GMT Not After : May 9 20:50:26 2024 GMT Subject: CN=6633fc92-3cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b0:95:18:de:fe:30:8f:77:29:92:61:d6:24: 09:07:1f:a6:5f:14:6f:b2:31:5e:e5:b3:b4:66:b6: 28:21:03:02:5f:ba:70:cc:06:59:e7:d2:96:31:31: d8:a4:aa:b9:4e:09:13:45:5f:ab:fe:80:37:e4:66: 8a:7e:3e:94:29:69:29:4c:21:8d:01:6f:d8:e5:43: 01:38:ea:4b:83:e2:7e:d2:c0:d1:ac:57:87:0f:de: f8:89:71:6f:81:53:c7:6c:fc:4b:1c:89:0e:f1:24: 61:4e:1e:3b:c5:67:a3:00:c4:9f:ab:4e:16:f2:bf: 2a:bf:15:a4:d5:be:68:00:b8:ea:f0:03:33:5b:22: 05:ec:2d:8d:11:0a:22:20:3e:17:d5:1b:8e:86:5a: 86:d1:90:7a:80:22:76:f3:ed:59:3f:d7:4b:33:31: 23:35:09:82:51:94:3f:64:25:f6:1b:93:31:1c:ca: fd:77:7d:61:fb:ad:e6:f2:a7:43:12:82:93:7f:ed: 3c:b8:a8:e2:55:b3:df:9e:9a:8f:33:37:08:1e:19: ff:1a:24:49:de:ff:67:55:d4:ef:2f:b7:33:56:8c: d4:c2:2a:d9:1b:cd:ef:c4:55:56:59:51:43:13:af: 7c:75:88:a5:c9:12:99:3e:f4:83:96:1e:b0:1b:15: 86:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:DF:DF:10:14:2B:9E:C1:4B:C9:87:E0:CA:AF:3F:AC:23:45:CC:D7 X509v3 Authority Key Identifier: keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:77:07:1b:ca:0a:c0:0e:99:bb:b9:ee:ec:c9:61:7c:71:d4: 42:76:31:bb:f7:45:7e:53:c4:c4:0e:32:92:db:c0:71:8c:9c: d1:88:14:9c:7e:ef:37:21:9f:c8:ab:83:0a:85:9e:a8:f4:e2: 7b:cd:52:06:5c:aa:36:95:8d:f8:74:ea:84:35:5a:74:c2:8c: 2d:3b:21:7f:d9:29:8d:23:4c:aa:19:ea:bf:62:3d:e3:af:f8: fd:17:f9:04:28:16:2f:f4:8e:4d:a7:31:b0:8a:d1:1c:77:07: 39:f3:36:25:97:ec:85:9d:dd:8e:5a:cd:3d:dd:15:a3:37:08: 91:bc:06:ae:78:20:75:c8:29:d3:be:42:9b:ec:dc:d3:44:23: d0:6f:ef:54:15:42:3f:84:28:ef:ff:31:6b:e1:9f:31:f3:95: 40:37:17:5b:ea:10:40:10:c5:52:70:52:da:c1:5f:80:67:41: bc:6c:d9:b4:48:70:f4:60:eb:98:8c:f3:79:6a:e0:68:23:00: cc:d6:04:51:ec:6e:04:3b:9c:c7:db:ca:c0:f7:b3:ab:d8:12: f7:d7:a0:58:83:76:49:5b:f1:7b:cf:cd:00:72:31:c2:58:bc: b6:29:74:e9:1d:68:72:10:8d:2c:dd:9c:8b:08:00:ad:9a:e9: ac:e4:83:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y3MjExMTAvBgNVBAUTKDFERDcxN0IyMjk5MzYxOTBDRUI2NjdDN0NFMUNBOUY5 QkZCNUZBQzQwHhcNMjQwNTAyMjA1MDI2WhcNMjQwNTA5MjA1MDI2WjAYMRYwFAYD VQQDEw02NjMzZmM5Mi0zY2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLCVGN7+MI93KZJh1iQJBx+mXxRvsjFe5bO0ZrYoIQMCX7pwzAZZ59KWMTHY pKq5TgkTRV+r/oA35GaKfj6UKWkpTCGNAW/Y5UMBOOpLg+J+0sDRrFeHD974iXFv gVPHbPxLHIkO8SRhTh47xWejAMSfq04W8r8qvxWk1b5oALjq8AMzWyIF7C2NEQoi ID4X1RuOhlqG0ZB6gCJ28+1ZP9dLMzEjNQmCUZQ/ZCX2G5MxHMr9d31h+63m8qdD EoKTf+08uKjiVbPfnpqPMzcIHhn/GiRJ3v9nVdTvL7czVozUwirZG83vxFVWWVFD E698dYilyRKZPvSDlh6wGxWGJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLf3xAU K57BS8mH4MqvP6wjRczXMB8GA1UdIwQYMBaAFB3XF7Ipk2GQzrZnx84cqfm/tfrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjcyMS82NDQyNDM3QTUz QUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFlaRE90bWZIemh5cC1iLTEt c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hkY1hzaW1UWVpET3RtZkh6aHlwLWItMS1zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjcyMS82NDQyNDM3QTUzQUMxMUVBOUFENTRCMkZDNEY5QUUwMi9IZGNYc2ltVFla RE90bWZIemh5cC1iLTEtc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOdwcbygrADpm7ue7syWF8cdRCdjG790V+U8TEDjKS28BxjJzRiBSc fu83IZ/Iq4MKhZ6o9OJ7zVIGXKo2lY34dOqENVp0wowtOyF/2SmNI0yqGeq/Yj3j r/j9F/kEKBYv9I5NpzGwitEcdwc58zYll+yFnd2OWs093RWjNwiRvAaueCB1yCnT vkKb7NzTRCPQb+9UFUI/hCjv/zFr4Z8x85VANxdb6hBAEMVScFLawV+AZ0G8bNm0 SHD0YOuYjPN5auBoIwDM1gRR7G4EO5zH28rA97Or2BL316BYg3ZJW/F7z80AcjHC WLy2KXTpHWhyEI0s3ZyLCACtmums5IMF -----END CERTIFICATE-----Generated at Thu May 2 22:28:49 2024 by rpki-client on console-ams.rpki-client.org