$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: oML2REVr0Uf2PFt34AmyxCvDwMa9lqZ3yq8e1Bie0IY= Subject key identifier: 9B:BC:2A:BE:8D:C1:81:CD:F3:F5:4D:8D:29:71:FD:94:17:F9:2F:94 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 32 Signing time: Tue 21 May 2024 08:16:46 +0000 Manifest this update: Tue 21 May 2024 08:16:45 +0000 Manifest next update: Tue 28 May 2024 08:16:45 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: 2gRp88qyHtyClSEEYvQAjpOcHiMFSofJ9FGdkBLW6mc=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: XaFNne7Xrp7ObyH6kM4Sf6qkLJXEBjVi+NCRmMqlT/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: May 21 08:16:45 2024 GMT Not After : May 28 08:16:45 2024 GMT Subject: CN=664c586d-8e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:57:79:11:4f:9d:19:30:f3:4b:f7:c7:86:0c: 4a:9f:c8:b8:5f:7a:81:0f:da:ae:35:ac:25:2b:41: a2:d0:9c:df:2b:ba:8d:56:29:01:e1:eb:5c:82:6c: 93:58:f5:7e:e5:3f:5d:1b:64:65:06:73:a5:54:50: a9:0d:c3:45:1b:fe:dc:bd:55:90:65:79:0c:f0:4d: 36:6e:87:54:80:4a:59:1d:8a:75:4a:ad:a5:9d:67: 1b:ce:75:2a:20:e5:1c:0e:3f:d8:64:2b:be:bd:0b: 34:c7:75:b9:e1:bc:e2:b8:7e:c8:2b:d6:b2:27:89: e4:b4:30:f4:61:93:65:16:24:8c:1c:36:2f:22:ba: 9d:bb:7a:28:7e:15:3e:37:13:86:af:e9:16:9a:ed: 02:aa:e3:bf:4e:c2:ff:07:32:31:05:42:75:b8:8e: b9:7e:76:a0:cc:cd:e6:5e:ea:5c:55:51:28:f0:ba: 6b:21:43:a4:f4:5b:07:80:a3:4e:1b:a0:4f:e1:18: 00:bd:ea:fb:dc:6f:cb:70:1f:8b:13:78:91:25:19: fa:19:d8:2b:a8:4c:b6:e1:12:36:1d:b3:54:89:d9: ee:f9:74:8c:97:65:00:87:2e:d8:10:91:db:24:14: 45:fb:f8:2d:39:64:d7:0c:34:89:03:d2:71:de:96: 10:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BC:2A:BE:8D:C1:81:CD:F3:F5:4D:8D:29:71:FD:94:17:F9:2F:94 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:58:1f:a2:8a:71:45:3a:02:51:54:c4:2d:bb:38:53:e4:a3: b8:bd:58:d6:33:56:dd:75:e6:99:ed:f8:48:47:69:06:05:83: 40:5d:8e:b9:84:fd:1b:51:5d:a1:69:dc:f7:4b:d6:39:1c:76: 30:5a:2b:e5:e9:c1:b9:79:63:e8:34:49:c5:b4:f1:5e:62:b3: 4a:ab:8c:e1:6a:6a:3d:ca:7e:cc:e4:4a:16:5a:ab:56:a3:47: 6d:3d:ab:f7:66:ab:32:1a:ad:6f:47:d7:5e:9d:ba:3f:ec:9e: 5f:28:98:90:8b:c6:40:fa:64:99:ef:16:f8:9a:89:66:4d:cd: 40:23:fc:4d:2d:45:95:65:8a:84:c6:46:c4:31:7e:51:7e:be: de:f5:7e:d2:1a:c5:fc:af:6a:2b:3e:ba:25:8d:99:6b:ed:a4: 21:28:e5:1d:30:a5:40:40:21:3f:89:fb:02:ac:89:95:ec:b4: f4:44:d1:97:6d:03:80:b3:ea:e1:a7:dc:84:ee:e9:45:d7:4d: 0d:15:c6:4b:fc:9b:74:f9:20:ba:e5:c0:dd:77:d8:a0:19:4d: ab:2e:cd:b9:d7:9d:35:a7:eb:d3:3d:39:16:de:02:e9:23:0a: 9e:5f:2f:87:a1:2c:ed:73:4b:8f:e4:b9:c5:f1:5c:7c:db:5e: 36:90:9a:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTg4NTExMC8GA1UEBRMoODcwMTg2QjY1N0QxMUIyOThBODRCMDI0MjBFRTc0RTFG QkI1QzI4MjAeFw0yNDA1MjEwODE2NDVaFw0yNDA1MjgwODE2NDVaMBgxFjAUBgNV BAMTDTY2NGM1ODZkLThlM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjV3kRT50ZMPNL98eGDEqfyLhfeoEP2q41rCUrQaLQnN8ruo1WKQHh61yCbJNY 9X7lP10bZGUGc6VUUKkNw0Ub/ty9VZBleQzwTTZuh1SASlkdinVKraWdZxvOdSog 5RwOP9hkK769CzTHdbnhvOK4fsgr1rInieS0MPRhk2UWJIwcNi8iup27eih+FT43 E4av6Raa7QKq479Owv8HMjEFQnW4jrl+dqDMzeZe6lxVUSjwumshQ6T0WweAo04b oE/hGAC96vvcb8twH4sTeJElGfoZ2CuoTLbhEjYds1SJ2e75dIyXZQCHLtgQkdsk FEX7+C05ZNcMNIkD0nHelhArAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm7wqvo3B gc3z9U2NKXH9lBf5L5QwHwYDVR0jBBgwFoAUhwGGtlfRGymKhLAkIO504fu1woIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxODg1L0Q1RkVBM0RFQzlG RDExRUVBNjc3NzkzQkM0RjlBRTAyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdv SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHdHR3RsZlJHeW1LaExBa0lPNTA0ZnUxd29JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkx ODg1L0Q1RkVBM0RFQzlGRDExRUVBNjc3NzkzQkM0RjlBRTAyL2h3R0d0bGZSR3lt S2hMQWtJTzUwNGZ1MXdvSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABJYH6KKcUU6AlFUxC27OFPko7i9WNYzVt115pnt+EhHaQYFg0BdjrmE /RtRXaFp3PdL1jkcdjBaK+Xpwbl5Y+g0ScW08V5is0qrjOFqaj3KfszkShZaq1aj R209q/dmqzIarW9H116duj/snl8omJCLxkD6ZJnvFviaiWZNzUAj/E0tRZVlioTG RsQxflF+vt71ftIaxfyvais+uiWNmWvtpCEo5R0wpUBAIT+J+wKsiZXstPRE0Zdt A4Cz6uGn3ITu6UXXTQ0Vxkv8m3T5ILrlwN132KAZTasuzbnXnTWn69M9ORbeAukj Cp5fL4ehLO1zS4/kucXxXHzbXjaQmqg= -----END CERTIFICATE-----Generated at Tue May 21 10:37:09 2024 by rpki-client on console-fra.rpki-client.org