$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: 2P6ozvKW575aBnGCd8sWKR4RM4IE7Vrj6jx4+eSBuGA= Subject key identifier: B7:89:0E:63:BD:CB:8F:35:E3:8E:2D:33:F0:0B:7A:FA:F2:94:C1:AF Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 13F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 13E9 Signing time: Tue 30 Apr 2024 17:42:39 +0000 Manifest this update: Tue 30 Apr 2024 17:42:39 +0000 Manifest next update: Tue 07 May 2024 17:42:39 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: 8bCztljRnHz/sRWqU4CpFptgBWevuPIbnLUNfWybiio=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: CIGlpvkFxQBpTdIiM2OJXd45dg87sgYC6+6uY0OF7Tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5109 (0x13f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Apr 30 17:42:39 2024 GMT Not After : May 7 17:42:39 2024 GMT Subject: CN=66312d8f-d82e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6a:f6:01:c3:4d:b9:a5:ee:8e:26:f0:b5:c5: 9a:dc:fe:0f:62:30:3c:0e:1a:84:78:f5:48:55:f2: a8:82:92:c3:1e:08:c1:ab:0c:7d:cd:d6:42:57:a9: 37:e0:ea:cd:0c:6d:74:22:da:e5:53:95:d9:c2:d9: 85:4e:ec:30:79:02:ae:3d:e2:05:e5:12:72:3b:ef: fa:bb:51:f1:88:70:e7:ac:c2:92:b8:37:60:2d:ea: cb:fd:96:ec:6b:77:cc:66:e9:0d:c1:eb:3d:56:75: 3a:7a:de:87:36:fe:4c:90:61:93:0d:af:08:f6:0d: 55:60:d7:ea:79:4e:9c:e1:6a:0c:13:e5:97:af:04: 79:48:7c:07:b7:8e:4a:49:0d:b1:db:58:d3:f9:ea: 89:db:7d:0c:7f:92:91:bb:4d:6b:0f:f5:a8:33:12: c7:be:c3:a4:65:5a:da:a7:06:5d:f1:a7:9f:0b:fc: 2d:f7:ed:aa:a8:29:e9:f0:99:fd:9a:65:8e:1e:18: b3:40:12:d6:8a:31:1f:12:7c:9c:ec:10:bb:33:85: 5f:70:77:03:b2:4f:1a:e6:7e:47:67:0f:96:e8:1f: c0:ec:1f:ed:d1:b2:4d:84:89:5b:22:77:f2:d9:3f: d8:02:e1:cc:16:94:e5:c1:98:c0:69:9e:6f:94:47: e1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:89:0E:63:BD:CB:8F:35:E3:8E:2D:33:F0:0B:7A:FA:F2:94:C1:AF X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:fd:3a:36:d9:32:bf:3a:34:7c:5b:de:1c:0a:4f:e3:c7:38: 80:3d:7e:6a:9c:3e:03:0c:93:a5:4b:b2:28:38:c4:b6:bc:8b: fb:05:9e:69:3f:12:13:83:42:2f:4e:6e:ba:14:f5:50:39:bc: b5:18:3b:b6:8e:5e:3f:17:bb:a2:1c:84:68:39:cf:88:b3:27: 9b:d5:da:45:35:41:a2:bb:b7:8c:70:87:3f:dc:9d:4b:4f:dc: 68:e1:3f:e7:bb:fc:c7:63:3e:dd:ff:3f:c6:f1:ac:9e:31:68: a4:52:1f:bd:9b:6f:4a:50:9b:d7:bb:73:f0:aa:00:b0:51:b4: 08:ad:8f:17:f8:a6:59:76:a3:59:9f:57:18:97:93:6c:d4:a8: b9:42:15:5a:73:8a:d4:4c:1b:71:c4:41:a0:61:14:96:33:58: 0a:61:0f:00:e9:ee:d9:da:79:f1:4d:56:4b:42:57:60:28:49: 38:13:5e:2a:69:f5:ec:d7:c1:05:d0:dd:04:e8:fb:03:87:6c: 46:4a:61:ff:fb:5f:b1:1c:9f:7f:04:b9:9d:78:4a:d1:43:35: bb:af:df:f3:ca:b2:a7:bb:24:f8:1f:a6:e4:ed:40:0d:2a:16: 4c:c3:fe:35:0b:54:47:42:48:6d:39:c5:1e:58:b5:bb:e8:c1: 13:ec:ea:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjQwNDMwMTc0MjM5WhcNMjQwNTA3MTc0MjM5WjAYMRYwFAYD VQQDEw02NjMxMmQ4Zi1kODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2r2AcNNuaXujibwtcWa3P4PYjA8DhqEePVIVfKogpLDHgjBqwx9zdZCV6k3 4OrNDG10ItrlU5XZwtmFTuwweQKuPeIF5RJyO+/6u1HxiHDnrMKSuDdgLerL/Zbs a3fMZukNwes9VnU6et6HNv5MkGGTDa8I9g1VYNfqeU6c4WoME+WXrwR5SHwHt45K SQ2x21jT+eqJ230Mf5KRu01rD/WoMxLHvsOkZVrapwZd8aefC/wt9+2qqCnp8Jn9 mmWOHhizQBLWijEfEnyc7BC7M4VfcHcDsk8a5n5HZw+W6B/A7B/t0bJNhIlbInfy 2T/YAuHMFpTlwZjAaZ5vlEfhlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeJDmO9 y481444tM/ALevrylMGvMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY/To22TK/OjR8W94cCk/jxziAPX5qnD4DDJOlS7IoOMS2vIv7BZ5p PxITg0IvTm66FPVQOby1GDu2jl4/F7uiHIRoOc+Isyeb1dpFNUGiu7eMcIc/3J1L T9xo4T/nu/zHYz7d/z/G8ayeMWikUh+9m29KUJvXu3PwqgCwUbQIrY8X+KZZdqNZ n1cYl5Ns1Ki5QhVac4rUTBtxxEGgYRSWM1gKYQ8A6e7Z2nnxTVZLQldgKEk4E14q afXs18EF0N0E6PsDh2xGSmH/+1+xHJ9/BLmdeErRQzW7r9/zyrKnuyT4H6bk7UAN KhZMw/41C1RHQkhtOcUeWLW76MET7Oq8 -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:03 2024 by rpki-client on console-fra.rpki-client.org