$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.mft File: HNyP8SmsVhBgxHINdUk_12hGxhU.mft (raw, json) Hash identifier: w4uHSTeI3rAuEJnfPdY99MdGp1VzMn6kWMSHwk6d5Cs= Subject key identifier: D2:58:E4:B7:CF:67:86:2C:53:87:60:AC:9B:F6:F3:D1:93:63:5F:30 Authority key identifier: 1C:DC:8F:F1:29:AC:56:10:60:C4:72:0D:75:49:3F:D7:68:46:C6:15 Certificate issuer: /CN=A919FE07/serialNumber=1CDC8FF129AC561060C4720D75493FD76846C615 Certificate serial: 0AB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNyP8SmsVhBgxHINdUk_12hGxhU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.mft Manifest number: 0AA8 Signing time: Fri 24 May 2024 20:16:42 +0000 Manifest this update: Fri 24 May 2024 20:16:41 +0000 Manifest next update: Fri 31 May 2024 20:16:41 +0000 Files and hashes: 1: HNyP8SmsVhBgxHINdUk_12hGxhU.crl (hash: mc86QJ7ulzSbDrEFW+WZdSCLXYCWlpJC3Xj/jD7a+Hk=) 2: 2A95F77884D411ED9A812F73C4F9AE02.roa (hash: 1kDbQKV4GphYxcLL5hlFtVU6xBvSnT2DAhpeMo/HqWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.crl rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNyP8SmsVhBgxHINdUk_12hGxhU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 19:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2737 (0xab1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE07/serialNumber=1CDC8FF129AC561060C4720D75493FD76846C615 Validity Not Before: May 24 20:16:41 2024 GMT Not After : May 31 20:16:41 2024 GMT Subject: CN=6650f5aa-e4b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:96:6a:06:f2:7c:ac:bd:cf:12:17:dd:8d:bc: 05:0d:ae:b6:32:f7:b2:11:b3:33:8c:46:42:aa:43: 67:d5:94:bc:14:e9:03:3a:09:65:07:c4:7f:8c:f3: 54:56:2d:e4:77:d4:be:de:8b:20:be:1c:34:a1:1a: 7a:6f:20:82:71:3c:2f:ff:11:eb:7b:13:6e:9c:b4: 93:74:3e:bf:60:fd:80:f8:0a:5b:93:20:91:49:24: dd:f0:5a:be:80:00:85:b5:d9:c5:fc:e3:96:7e:57: 07:c3:ed:8f:85:79:3a:78:0b:02:1e:26:1e:f6:54: f1:8b:1d:b5:47:3b:52:80:8d:10:80:c5:7a:ed:74: 67:46:8e:f8:78:b2:9c:db:f7:45:76:25:b4:b5:5f: 12:b1:69:ed:ec:22:27:19:32:53:b9:d4:14:f7:28: 25:cb:d9:68:83:cd:fa:11:66:6b:12:e7:1e:e9:70: f2:4e:78:f3:3f:dd:a7:b0:43:42:6a:4b:bf:22:47: 4b:43:45:45:55:f9:10:9c:d6:a9:81:cf:fd:6c:4f: 32:9a:51:12:31:ab:81:7a:00:98:2b:d8:c6:09:85: 6d:8b:fb:e5:ac:47:da:3a:26:7c:09:bc:53:64:a3: 91:3e:9e:8c:7c:d6:a3:4c:9d:d7:a7:a4:6a:f5:e2: e1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:58:E4:B7:CF:67:86:2C:53:87:60:AC:9B:F6:F3:D1:93:63:5F:30 X509v3 Authority Key Identifier: keyid:1C:DC:8F:F1:29:AC:56:10:60:C4:72:0D:75:49:3F:D7:68:46:C6:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNyP8SmsVhBgxHINdUk_12hGxhU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:76:cf:3a:7a:a6:ea:2a:5f:f9:b0:fa:fd:db:72:79:1c:cd: d0:bc:07:3d:f5:67:46:02:9a:ed:83:d2:a5:20:f0:44:57:a1: e8:ef:2c:f1:86:ee:9e:a2:52:b7:03:77:14:d3:03:25:ab:2d: fd:e5:e6:1d:82:c7:e5:1d:9f:55:92:7c:75:f9:4b:01:aa:b9: ec:06:c7:e2:84:5b:89:fe:81:f2:32:e9:d0:dc:f2:1e:0c:d1: ec:a8:09:74:eb:fd:f8:2e:06:f6:a8:ee:92:1b:78:2d:2e:5b: 9a:05:03:5d:44:66:6f:58:43:ae:26:76:29:3c:f6:d2:b5:9d: e5:b6:34:9f:f8:ce:43:c9:10:c0:c9:69:de:f4:75:86:0d:99: e3:e2:37:a4:ab:3f:29:14:f2:20:22:9f:29:7d:d6:24:8f:d7: 3d:12:23:e4:e5:54:89:26:06:ee:03:7f:0a:33:65:25:7f:dd: 01:55:77:cf:30:be:61:a5:4f:f1:13:59:71:24:f0:63:14:25: 96:c1:4a:2c:db:b5:04:43:ac:19:83:22:69:32:40:9b:ea:cd: b7:e4:78:39:94:64:3a:85:ae:47:19:3b:c4:58:dd:e9:fe:75: 2e:9b:0a:df:ea:49:87:5f:dc:dc:14:f9:b0:ef:f0:4b:54:5c: ea:ad:d0:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFMDcxMTAvBgNVBAUTKDFDREM4RkYxMjlBQzU2MTA2MEM0NzIwRDc1NDkzRkQ3 Njg0NkM2MTUwHhcNMjQwNTI0MjAxNjQxWhcNMjQwNTMxMjAxNjQxWjAYMRYwFAYD VQQDEw02NjUwZjVhYS1lNGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJZqBvJ8rL3PEhfdjbwFDa62MveyEbMzjEZCqkNn1ZS8FOkDOgllB8R/jPNU Vi3kd9S+3osgvhw0oRp6byCCcTwv/xHrexNunLSTdD6/YP2A+ApbkyCRSSTd8Fq+ gACFtdnF/OOWflcHw+2PhXk6eAsCHiYe9lTxix21RztSgI0QgMV67XRnRo74eLKc 2/dFdiW0tV8SsWnt7CInGTJTudQU9ygly9log836EWZrEuce6XDyTnjzP92nsENC aku/IkdLQ0VFVfkQnNapgc/9bE8ymlESMauBegCYK9jGCYVti/vlrEfaOiZ8CbxT ZKORPp6MfNajTJ3Xp6Rq9eLhUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJY5LfP Z4YsU4dgrJv289GTY18wMB8GA1UdIwQYMBaAFBzcj/EprFYQYMRyDXVJP9doRsYV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkUwNy9BMTZBODhEQTMw NkExMUVBOTk4QzhGMzBDNEY5QUUwMi9ITnlQOFNtc1ZoQmd4SElOZFVrXzEyaEd4 aFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOeVA4U21zVmhCZ3hISU5kVWtfMTJoR3hoVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkUwNy9BMTZBODhEQTMwNkExMUVBOTk4QzhGMzBDNEY5QUUwMi9ITnlQOFNtc1Zo Qmd4SElOZFVrXzEyaEd4aFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDds86eqbqKl/5sPr923J5HM3QvAc99WdGAprtg9KlIPBEV6Ho7yzx hu6eolK3A3cU0wMlqy395eYdgsflHZ9Vknx1+UsBqrnsBsfihFuJ/oHyMunQ3PIe DNHsqAl06/34Lgb2qO6SG3gtLluaBQNdRGZvWEOuJnYpPPbStZ3ltjSf+M5DyRDA yWne9HWGDZnj4jekqz8pFPIgIp8pfdYkj9c9EiPk5VSJJgbuA38KM2Ulf90BVXfP ML5hpU/xE1lxJPBjFCWWwUos27UEQ6wZgyJpMkCb6s235Hg5lGQ6ha5HGTvEWN3p /nUumwrf6kmHX9zcFPmw7/BLVFzqrdDv -----END CERTIFICATE-----Generated at Fri May 24 20:48:04 2024 by rpki-client on console-fra.rpki-client.org