$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: oudSwUQ4TknjjgN5Gw1biLcexJxWbue8ACX411zlBaY= Subject key identifier: 6E:76:6F:8C:5A:A4:16:85:08:AF:D7:19:88:39:4B:9F:D9:BE:00:CB Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 0241 Signing time: Tue 07 May 2024 03:57:37 +0000 Manifest this update: Tue 07 May 2024 03:57:37 +0000 Manifest next update: Tue 14 May 2024 03:57:37 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: wh1CUIxUwvTzwZ7nJ1/tMZMLfdYNubp2HikY1yWoW50=) 2: 7704C7B0D65111EC8F5E2576C4F9AE02.roa (hash: taeHKSQWipXWAdVzTuKaHFKdvJk17h6okEmsUH46UHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: May 7 03:57:37 2024 GMT Not After : May 14 03:57:37 2024 GMT Subject: CN=6639a6b1-1a2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1f:65:bd:d0:f4:11:3b:4f:a8:11:16:7d:54: 89:eb:61:7d:36:e9:51:79:05:19:d5:38:66:2a:e0: 52:47:e1:a6:2c:f3:b4:59:07:0a:c4:21:7b:9f:be: 37:9f:c5:e4:3e:db:01:41:fd:5c:fb:2d:c6:fd:f8: 39:2f:a9:68:49:cb:af:9a:0a:4e:5e:ce:cf:ac:15: b0:13:8b:0e:09:c7:5d:af:b0:d4:3e:eb:c8:ca:dc: 61:2f:8c:e0:fe:4b:67:19:92:86:80:dd:c1:e8:77: 87:5a:3b:2e:93:c3:e5:1a:a8:36:a5:40:e0:e5:37: 80:c5:86:36:df:c7:d3:e3:17:a5:0a:e1:39:4c:56: 0b:9b:68:a9:95:6e:96:60:df:23:38:90:1e:11:bf: 8a:ee:d3:42:50:c0:88:9e:81:07:c5:29:a9:df:5c: 4e:39:12:a0:79:a8:56:33:ac:cd:2f:95:f1:4b:5a: 82:3a:a1:94:6c:46:f9:73:3b:7d:c2:38:f0:98:b6: a0:0e:a2:7d:10:8c:a6:96:87:89:e2:1e:0a:eb:12: b6:bc:9c:f5:29:c0:58:d3:f5:47:81:85:e3:51:64: 01:64:68:c3:47:f2:38:97:9d:aa:94:6e:38:f0:eb: 57:6b:47:45:b9:5d:fc:07:02:70:1d:3e:06:60:02: 4b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:76:6F:8C:5A:A4:16:85:08:AF:D7:19:88:39:4B:9F:D9:BE:00:CB X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:0f:a2:d9:cc:a2:cd:a8:cd:01:c1:8e:45:30:7b:d9:d4:eb: ee:da:9d:3b:de:ec:e2:cd:ec:6b:2c:6f:a7:77:31:71:b5:ad: 12:4f:3d:25:1b:d4:d0:81:d5:e5:dc:71:c4:a1:92:85:b4:fd: 8a:be:61:68:3a:32:49:70:4d:6f:70:d9:9a:36:c3:2b:37:47: 0e:57:a7:01:08:59:c9:e1:03:18:21:4c:62:1e:40:dd:22:4f: db:86:3c:d8:5b:b2:15:9f:c5:5d:92:06:2f:3a:24:25:31:0e: d4:0d:a0:cc:fc:fe:be:12:1b:4b:17:d3:be:f5:1c:5e:5b:e1: 7c:ac:9c:5c:09:5e:27:43:10:8c:2b:8d:58:20:9c:1b:b4:9f: 3f:2b:1b:a7:e9:07:56:70:c4:b0:56:ab:1d:94:ca:50:af:1c: 7b:84:a7:b0:1e:07:93:8a:d8:4d:4e:12:2b:6f:26:53:ee:6a: 9e:58:c4:e7:3b:ae:34:57:6b:7c:56:ea:06:78:1c:ba:01:67: 60:d0:cf:e4:69:d4:70:84:d7:f1:55:46:db:ae:56:93:30:69: 6c:f7:22:e3:97:f3:38:82:cd:b4:7c:82:f0:a2:2b:6f:bd:15: ae:74:c2:3e:7f:8b:06:bf:cf:b8:41:85:df:bc:22:73:09:5c: 89:8b:fb:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjQwNTA3MDM1NzM3WhcNMjQwNTE0MDM1NzM3WjAYMRYwFAYD VQQDEw02NjM5YTZiMS0xYTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1R9lvdD0ETtPqBEWfVSJ62F9NulReQUZ1ThmKuBSR+GmLPO0WQcKxCF7n743 n8XkPtsBQf1c+y3G/fg5L6loScuvmgpOXs7PrBWwE4sOCcddr7DUPuvIytxhL4zg /ktnGZKGgN3B6HeHWjsuk8PlGqg2pUDg5TeAxYY238fT4xelCuE5TFYLm2iplW6W YN8jOJAeEb+K7tNCUMCInoEHxSmp31xOORKgeahWM6zNL5XxS1qCOqGUbEb5czt9 wjjwmLagDqJ9EIymloeJ4h4K6xK2vJz1KcBY0/VHgYXjUWQBZGjDR/I4l52qlG44 8OtXa0dFuV38BwJwHT4GYAJLOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG52b4xa pBaFCK/XGYg5S5/ZvgDLMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlD6LZzKLNqM0BwY5FMHvZ1Ovu2p073uzizexrLG+ndzFxta0STz0l G9TQgdXl3HHEoZKFtP2KvmFoOjJJcE1vcNmaNsMrN0cOV6cBCFnJ4QMYIUxiHkDd Ik/bhjzYW7IVn8VdkgYvOiQlMQ7UDaDM/P6+EhtLF9O+9RxeW+F8rJxcCV4nQxCM K41YIJwbtJ8/Kxun6QdWcMSwVqsdlMpQrxx7hKewHgeTithNThIrbyZT7mqeWMTn O640V2t8VuoGeBy6AWdg0M/kadRwhNfxVUbbrlaTMGls9yLjl/M4gs20fILwoitv vRWudMI+f4sGv8+4QYXfvCJzCVyJi/vv -----END CERTIFICATE-----Generated at Tue May 7 04:34:49 2024 by rpki-client on console-fra.rpki-client.org