$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: 5N/9rDw7DqUq/r09rYb4nfDDvtld4jgbHp51M4FGYRI= Subject key identifier: FF:60:83:B7:71:0A:1E:17:29:DC:1F:49:BB:ED:5F:0E:10:F7:7E:57 Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: 38 Signing time: Wed 15 May 2024 08:30:26 +0000 Manifest this update: Wed 15 May 2024 08:30:26 +0000 Manifest next update: Wed 22 May 2024 08:30:26 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: 3MQjXDgKY76/VkZjglHyXpfG6czsIrZc+4PWGO6y/rg=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: U2pgcPipddVZ72wsOjIBUQaJaHNGvZhnk8uGYFZu+oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: May 15 08:30:26 2024 GMT Not After : May 22 08:30:26 2024 GMT Subject: CN=664472a2-74ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f7:0b:71:c1:13:c6:a2:c1:83:0d:c9:9c:1f: 79:1d:b2:a6:1e:bc:8e:5c:53:0e:7e:8d:f1:b4:fb: e8:39:f7:d9:21:59:bf:a4:ed:c2:ca:08:52:c7:c2: 6b:bf:0e:1a:ca:a4:e2:95:5d:02:55:36:78:35:59: 25:52:4b:58:b4:38:c0:d7:fd:42:f9:5c:87:ae:af: f0:84:22:7c:bc:72:7b:1a:7e:a4:3b:44:1a:d4:40: e1:e1:3e:7b:6f:ea:b5:3b:b3:63:88:ce:b8:74:45: 63:ff:1d:85:7b:73:2d:64:c2:d2:d8:c6:b1:cb:25: 32:24:c6:f1:68:81:b1:23:9f:9e:43:09:ff:58:d4: 8b:f3:e4:91:a0:28:38:4d:5a:ee:a7:e7:a0:fd:f0: 5e:08:3e:b5:03:f5:ce:45:ea:f0:f5:6e:a4:a0:58: f3:a3:e1:04:7a:b3:d5:f6:02:e2:23:1d:09:5e:fb: 7a:cc:0d:c5:df:e9:a8:e7:af:a2:b7:8a:a7:bc:a3: fb:35:c3:22:5c:1c:d5:8a:13:8f:13:f6:28:ae:e5: cb:65:97:a7:82:8c:dd:1c:1c:36:d6:45:03:c6:ab: 8c:6c:67:53:44:70:fe:86:29:91:ab:e0:4a:22:cd: c8:3f:23:64:64:97:7a:41:e6:5d:71:f4:46:f4:fe: 46:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:60:83:B7:71:0A:1E:17:29:DC:1F:49:BB:ED:5F:0E:10:F7:7E:57 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:80:00:6a:af:35:3a:7f:1a:49:52:a7:98:b9:ff:bd:4f:65: 7e:7d:26:28:99:eb:0b:f8:c3:dd:65:e7:c6:df:2a:30:3b:c8: 40:ac:51:23:29:41:65:b9:75:65:99:38:15:d1:6e:f4:6b:64: 0c:f9:5e:ee:39:c6:e0:06:ee:c3:59:03:04:a1:8a:4c:c9:93: 51:69:32:7d:27:7c:d6:57:bb:85:27:f6:67:bd:c1:8e:50:18: a8:a3:b5:c1:5a:2a:99:de:64:d2:f3:ad:90:05:cd:10:8e:5a: d5:5a:4d:2d:64:79:3a:9b:42:02:c8:67:5f:5f:23:6d:96:df: cf:1d:78:e1:b9:4e:0a:7e:13:34:26:91:d8:f9:94:91:c6:ec: 19:f8:e0:1d:7f:68:46:eb:31:28:73:f1:e0:3c:ab:46:ae:c3: a1:f9:9a:ea:91:7b:9c:a5:76:5c:14:14:2d:27:29:05:fd:5f: 47:18:0e:46:f9:33:1e:15:8a:cf:0b:49:6a:24:c3:e9:09:a6: ba:98:2b:58:60:4f:73:a8:dd:89:b8:2a:56:0b:f6:9c:ab:bb: e7:84:87:94:1d:7e:11:a4:62:51:2c:83:17:8c:40:fe:2c:0b: c1:99:cd:eb:1e:4a:fe:f5:87:1e:81:b4:44:7e:96:cb:a5:08: fb:1c:b4:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OEMxRTExMC8GA1UEBRMoMURGOUMwQ0VGOUE3N0RDRDE1QkI1MUY5M0ZEMzQyOTk5 QkUxMTY1ODAeFw0yNDA1MTUwODMwMjZaFw0yNDA1MjIwODMwMjZaMBgxFjAUBgNV BAMTDTY2NDQ3MmEyLTc0Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW9wtxwRPGosGDDcmcH3kdsqYevI5cUw5+jfG0++g599khWb+k7cLKCFLHwmu/ DhrKpOKVXQJVNng1WSVSS1i0OMDX/UL5XIeur/CEIny8cnsafqQ7RBrUQOHhPntv 6rU7s2OIzrh0RWP/HYV7cy1kwtLYxrHLJTIkxvFogbEjn55DCf9Y1Ivz5JGgKDhN Wu6n56D98F4IPrUD9c5F6vD1bqSgWPOj4QR6s9X2AuIjHQle+3rMDcXf6ajnr6K3 iqe8o/s1wyJcHNWKE48T9iiu5ctll6eCjN0cHDbWRQPGq4xsZ1NEcP6GKZGr4Eoi zcg/I2Rkl3pB5l1x9Eb0/kZpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/2CDt3EK Hhcp3B9Ju+1fDhD3flcwHwYDVR0jBBgwFoAUHfnAzvmnfc0Vu1H5P9NCmZvhFlgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4QzFFL0MyODYwMzJFQzY0 NzExRUU5RDY4RUI3RkM0RjlBRTAyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZs Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGZuQXp2bW5mYzBWdTFINVA5TkNtWnZoRmxnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4 QzFFL0MyODYwMzJFQzY0NzExRUU5RDY4RUI3RkM0RjlBRTAyL0hmbkF6dm1uZmMw VnUxSDVQOU5DbVp2aEZsZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADyAAGqvNTp/GklSp5i5/71PZX59JiiZ6wv4w91l58bfKjA7yECsUSMp QWW5dWWZOBXRbvRrZAz5Xu45xuAG7sNZAwShikzJk1FpMn0nfNZXu4Un9me9wY5Q GKijtcFaKpneZNLzrZAFzRCOWtVaTS1keTqbQgLIZ19fI22W388deOG5Tgp+EzQm kdj5lJHG7Bn44B1/aEbrMShz8eA8q0auw6H5muqRe5yldlwUFC0nKQX9X0cYDkb5 Mx4Vis8LSWokw+kJprqYK1hgT3Oo3Ym4KlYL9pyru+eEh5QdfhGkYlEsgxeMQP4s C8GZzeseSv71hx6BtER+lsulCPsctIY= -----END CERTIFICATE-----Generated at Wed May 15 11:17:42 2024 by rpki-client on console-ams.rpki-client.org