$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json) Hash identifier: Lo/Sym3loal7b5+O2v8VvXA9dGtiOU4Rb8of7JYLEw0= Subject key identifier: 7B:72:49:82:CF:F9:B3:B0:34:FE:E6:46:CE:70:B9:16:48:F0:D4:AE Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0D30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft Manifest number: 0D26 Signing time: Thu 02 May 2024 18:46:36 +0000 Manifest this update: Thu 02 May 2024 18:46:35 +0000 Manifest next update: Thu 09 May 2024 18:46:35 +0000 Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: yMJORYzxh7FgqAorbZPKmaSNuTOSSTm06zIrKjxbcN0=) 2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: qCAKgLjSLQVpqeSB9DPCjoQb5DaM/m2x9TSh6/Y2h7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3376 (0xd30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: May 2 18:46:35 2024 GMT Not After : May 9 18:46:35 2024 GMT Subject: CN=6633df8c-c453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ce:bf:e8:bb:df:bd:93:92:6d:a3:ca:67:6f: 94:5c:65:c7:fc:c9:a1:b9:ad:87:63:63:f1:cc:9a: 56:03:bd:25:a6:8e:1f:5c:fc:98:3d:57:da:e3:cf: d4:69:c7:b2:3d:1b:4a:f3:1e:36:ef:6e:a0:14:c1: 82:0e:e7:8a:fd:0c:56:3a:65:59:de:dd:36:12:ac: c9:20:46:3f:8f:ac:6e:0f:f8:04:41:78:ae:76:26: 65:fa:c2:93:2d:72:2c:cc:a8:ff:2e:e4:39:de:11: 93:82:71:e3:07:5b:cd:5b:82:9c:22:6f:dc:de:df: 41:0d:02:9b:6b:9d:47:76:2b:ce:d7:60:77:d7:e2: af:78:4c:43:47:0d:7f:16:21:b5:72:c4:17:95:a6: 9b:9c:d2:b0:75:49:c9:65:5a:5e:6a:b6:03:29:22: c0:47:63:c8:f1:c5:7b:31:83:ce:8c:74:20:a0:1b: 94:65:7a:dc:4a:9f:19:f6:e9:96:ec:52:f9:61:85: b2:bf:5a:7f:f5:37:be:50:8b:58:45:c4:da:b1:6f: 13:16:62:c1:17:8d:ad:0f:90:2d:e2:7a:a8:55:02: a2:cd:28:ce:c7:db:77:b7:9f:ec:1c:01:7b:8d:67: da:8c:95:0c:f3:84:3a:b3:ec:87:f6:c0:6c:76:5e: 62:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:72:49:82:CF:F9:B3:B0:34:FE:E6:46:CE:70:B9:16:48:F0:D4:AE X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:4d:1a:4c:0c:c6:8d:66:d5:50:5c:c4:33:bc:9a:d7:1d:ff: 9f:25:e0:3e:9d:4b:cd:37:8b:3c:96:56:95:eb:07:47:76:22: 2e:d4:59:4f:c5:ec:f9:ec:d3:15:6f:ea:3b:1f:18:03:24:ef: a6:05:97:2d:21:61:d5:8b:5b:25:05:c7:09:fd:d7:fa:ff:23: c6:35:b1:6e:22:77:c8:31:26:66:82:ad:cc:82:4a:61:3a:4f: ca:0d:34:90:84:42:a0:35:07:ef:94:fd:10:b8:89:89:8c:89: 26:94:c9:03:b0:46:4c:57:9a:ab:26:7e:17:3c:d9:ad:6e:30: 31:ef:fe:ae:c5:f0:da:d4:74:f5:f9:13:b5:18:e8:3a:b9:34: e7:8f:3b:ab:3a:60:40:75:fb:0e:1f:8d:6c:2c:a7:f0:39:41: 9c:b2:fe:70:18:66:e5:f2:58:5d:9b:f4:cd:85:af:45:5b:4a: a9:f1:49:4e:8a:9e:1c:b2:fa:59:f0:98:7a:87:33:30:c0:f1: 82:44:1d:a0:14:f7:b2:55:a4:ba:31:26:59:56:19:af:5b:23: 25:8a:cd:56:70:23:5a:9c:51:1f:6f:16:4b:ea:ba:2a:72:6f: 15:10:7b:35:e1:fb:cc:95:f6:fb:0c:70:21:03:dd:53:1f:8c: e5:de:9c:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjQwNTAyMTg0NjM1WhcNMjQwNTA5MTg0NjM1WjAYMRYwFAYD VQQDEw02NjMzZGY4Yy1jNDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxM6/6LvfvZOSbaPKZ2+UXGXH/Mmhua2HY2PxzJpWA70lpo4fXPyYPVfa48/U aceyPRtK8x42726gFMGCDueK/QxWOmVZ3t02EqzJIEY/j6xuD/gEQXiudiZl+sKT LXIszKj/LuQ53hGTgnHjB1vNW4KcIm/c3t9BDQKba51HdivO12B31+KveExDRw1/ FiG1csQXlaabnNKwdUnJZVpearYDKSLAR2PI8cV7MYPOjHQgoBuUZXrcSp8Z9umW 7FL5YYWyv1p/9Te+UItYRcTasW8TFmLBF42tD5At4nqoVQKizSjOx9t3t5/sHAF7 jWfajJUM84Q6s+yH9sBsdl5i6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtySYLP +bOwNP7mRs5wuRZI8NSuMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEE0Ri9FNTI5NUM0OEIxQUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3 clU5ZmxsM05WZUN5bU1RdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1TRpMDMaNZtVQXMQzvJrXHf+fJeA+nUvNN4s8llaV6wdHdiIu1FlP xez57NMVb+o7HxgDJO+mBZctIWHVi1slBccJ/df6/yPGNbFuInfIMSZmgq3Mgkph Ok/KDTSQhEKgNQfvlP0QuImJjIkmlMkDsEZMV5qrJn4XPNmtbjAx7/6uxfDa1HT1 +RO1GOg6uTTnjzurOmBAdfsOH41sLKfwOUGcsv5wGGbl8lhdm/TNha9FW0qp8UlO ip4csvpZ8Jh6hzMwwPGCRB2gFPeyVaS6MSZZVhmvWyMlis1WcCNanFEfbxZL6roq cm8VEHs14fvMlfb7DHAhA91TH4zl3pw6 -----END CERTIFICATE-----Generated at Thu May 2 20:04:39 2024 by rpki-client on console-ams.rpki-client.org