$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: ZoNp7l4/czrcjMfSJsfuDlvchUfObIWq6OYitv7gNoA= Subject key identifier: EC:7F:DD:51:F1:49:99:69:27:72:74:C1:C8:30:5C:16:E3:9E:8D:3D Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 087A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 0869 Signing time: Tue 30 Apr 2024 21:59:44 +0000 Manifest this update: Tue 30 Apr 2024 21:59:44 +0000 Manifest next update: Tue 07 May 2024 21:59:44 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: kBwU4pPwTO7O4OWoTOooZDRzHrsWKIWH/0g4hl4RLQE=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: dacTnDo6kXwS7X9nTb4Pneo4gL1gz4Jx9A34+LKy+gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Apr 30 21:59:44 2024 GMT Not After : May 7 21:59:44 2024 GMT Subject: CN=663169d0-5e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c8:9b:13:51:ff:5f:f3:e4:1c:8c:fc:ce:2d: 89:e5:26:6b:10:8d:bd:12:58:ad:63:16:a7:99:2e: b6:9e:ae:82:9c:c8:55:c5:1b:9e:4a:c9:90:c5:22: a4:75:0d:46:a2:53:a3:9b:3c:f4:44:ab:e7:2e:1f: 2d:e5:0c:36:eb:c9:3a:1b:37:08:84:5c:9a:60:45: 2e:43:1e:c6:7d:13:8b:b5:b5:ea:e9:8d:be:95:7a: 37:54:a3:86:43:3f:c8:ce:82:24:8c:02:f9:38:c2: d9:dd:8b:e3:1c:78:2a:53:55:16:46:43:fd:9d:4e: 20:d3:84:46:59:62:09:01:86:06:68:95:fb:c7:39: a3:bb:65:6a:e6:41:08:5a:fe:3b:1a:42:25:1a:2e: fc:a8:b1:77:5b:44:f6:df:d4:4a:c7:4b:5e:80:f5: 96:f8:dd:13:b7:6e:2c:19:b9:d7:29:be:45:81:73: aa:e9:8d:26:85:d5:05:8a:b0:14:90:9c:99:4a:e8: ec:42:93:6a:d9:a8:25:ad:ad:ad:73:0f:51:aa:cc: f0:6c:bb:73:08:c1:17:01:58:07:bf:2a:30:62:09: 3e:5b:d9:8e:4b:56:56:1f:b1:9d:6a:5d:00:ca:55: 11:b9:22:31:26:a7:00:27:62:6f:74:34:a8:03:73: ff:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7F:DD:51:F1:49:99:69:27:72:74:C1:C8:30:5C:16:E3:9E:8D:3D X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:5b:a6:8b:aa:f2:0e:32:24:cb:8a:8a:ff:60:be:e4:04:9b: 68:62:a4:f3:52:f9:3f:7e:83:5d:6a:a6:0e:03:c8:98:44:83: a4:77:b2:15:ee:45:be:80:4e:32:e4:21:07:18:de:03:7f:fc: f1:90:59:6c:fc:6e:19:0e:85:89:49:1b:80:6a:35:b1:69:2c: 12:40:74:ba:5a:c6:89:ac:4d:f7:8c:3c:41:da:c4:23:37:b0: e1:42:cf:0c:99:96:ce:f8:c2:b0:80:c2:62:6f:13:6c:72:d4: 86:8a:b2:77:7f:b8:ba:f9:1c:5b:13:5e:1c:d3:34:c2:21:cd: 35:8c:4f:7e:17:58:12:8d:ad:4e:72:5f:8a:a0:4a:ca:dc:0b: 5c:68:5d:2d:b0:21:2c:76:43:3b:01:e9:d3:8b:68:fd:8c:35: f3:a7:dd:26:f8:1a:9d:ec:5c:52:73:6a:96:83:36:04:3c:ee: 9e:36:88:b5:3c:6f:09:03:43:57:c6:f6:a9:94:e7:ef:c8:d7: fe:bd:5b:b6:d1:1d:5e:89:de:28:ad:81:60:83:b3:76:63:20: 93:1b:7c:a5:17:38:46:62:80:93:f1:33:31:df:77:54:78:0b: e1:28:96:bc:0d:62:c5:63:20:2d:22:bb:b5:96:30:92:5b:59: 12:fa:01:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjQwNDMwMjE1OTQ0WhcNMjQwNTA3MjE1OTQ0WjAYMRYwFAYD VQQDEw02NjMxNjlkMC01ZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8ibE1H/X/PkHIz8zi2J5SZrEI29ElitYxanmS62nq6CnMhVxRueSsmQxSKk dQ1GolOjmzz0RKvnLh8t5Qw268k6GzcIhFyaYEUuQx7GfROLtbXq6Y2+lXo3VKOG Qz/IzoIkjAL5OMLZ3YvjHHgqU1UWRkP9nU4g04RGWWIJAYYGaJX7xzmju2Vq5kEI Wv47GkIlGi78qLF3W0T239RKx0tegPWW+N0Tt24sGbnXKb5FgXOq6Y0mhdUFirAU kJyZSujsQpNq2aglra2tcw9RqszwbLtzCMEXAVgHvyowYgk+W9mOS1ZWH7Gdal0A ylURuSIxJqcAJ2JvdDSoA3P/TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOx/3VHx SZlpJ3J0wcgwXBbjno09MB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2W6aLqvIOMiTLior/YL7kBJtoYqTzUvk/foNdaqYOA8iYRIOkd7IV 7kW+gE4y5CEHGN4Df/zxkFls/G4ZDoWJSRuAajWxaSwSQHS6WsaJrE33jDxB2sQj N7DhQs8MmZbO+MKwgMJibxNsctSGirJ3f7i6+RxbE14c0zTCIc01jE9+F1gSja1O cl+KoErK3AtcaF0tsCEsdkM7AenTi2j9jDXzp90m+Bqd7FxSc2qWgzYEPO6eNoi1 PG8JA0NXxvaplOfvyNf+vVu20R1eid4orYFgg7N2YyCTG3ylFzhGYoCT8TMx33dU eAvhKJa8DWLFYyAtIru1ljCSW1kS+gG1 -----END CERTIFICATE-----Generated at Tue Apr 30 22:56:14 2024 by rpki-client on console-fra.rpki-client.org