$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft File: HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json) Hash identifier: n229TUpGqMc303ZAbrmfSIFpz9blwzWlwi4+zFPrz8Y= Subject key identifier: BD:2D:1B:49:3C:39:0F:B7:74:C2:E6:05:69:17:D0:92:E2:03:8B:60 Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB Certificate issuer: /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Certificate serial: 1340 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft Manifest number: 1338 Signing time: Thu 02 May 2024 17:36:45 +0000 Manifest this update: Thu 02 May 2024 17:36:44 +0000 Manifest next update: Thu 09 May 2024 17:36:44 +0000 Files and hashes: 1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: K18iRVSrfmsRZj5wKKFQSQheHHzl5DUI0EMfbqRfKdE=) 2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: 5pUcv+0LLLp1O/NzGX71FS1/aeQUGa83zSCV7bRjRQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:36:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4928 (0x1340) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB Validity Not Before: May 2 17:36:44 2024 GMT Not After : May 9 17:36:44 2024 GMT Subject: CN=6633cf2d-1a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c0:0c:ed:5e:b9:83:c6:31:be:15:b6:6e:d2: 0f:8c:d2:3e:ec:3e:36:50:09:5c:9e:f0:01:4b:4b: ef:3f:c9:7b:ff:65:ff:aa:68:04:5c:65:91:9a:fb: 0b:fc:4e:61:e3:49:66:bc:dc:fd:e5:74:9b:5b:fb: 94:5e:02:e9:17:ef:5d:95:75:55:cb:1f:95:16:b5: ed:53:b8:b5:92:17:9d:56:4d:c9:6c:88:1e:df:f2: e0:95:57:96:e4:d6:b2:7e:45:98:71:36:78:b1:8e: 30:7d:eb:75:97:eb:8d:19:1d:65:65:19:e9:b6:0a: e1:96:f3:ff:9f:66:ec:4b:c7:b0:96:54:00:77:1f: 1a:ee:a3:1e:54:97:02:02:a0:97:54:4e:d6:51:f4: 06:f7:90:a8:a4:1c:6f:c1:c5:28:b0:9d:0c:1e:51: 45:35:d9:a2:76:96:1f:fc:f3:24:e0:e4:e3:04:b9: 84:2d:c2:a7:1c:23:2f:14:4c:1b:5d:ff:e5:b4:d0: 39:5d:29:e0:69:e6:e6:ed:68:b6:dc:75:02:71:dc: f1:a7:9a:a7:22:67:24:bc:90:7e:26:01:89:54:db: 75:96:82:51:ee:0b:7a:3d:a6:89:7d:e9:84:3d:e0: 45:09:88:ec:84:58:5c:0e:26:91:8a:f3:61:61:62: 0f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2D:1B:49:3C:39:0F:B7:74:C2:E6:05:69:17:D0:92:E2:03:8B:60 X509v3 Authority Key Identifier: keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:62:1a:f2:29:73:6e:28:23:44:7a:6d:3c:63:c1:95:50:cd: 22:e6:76:c9:25:e1:49:27:5d:db:c6:5a:b5:03:f5:a1:59:0e: 6f:f2:62:a7:64:ad:82:13:48:2d:84:09:ab:69:a5:5d:1d:f8: 26:06:9f:9d:48:b4:15:47:fa:d4:02:16:97:86:58:b6:30:6c: b7:6e:60:18:1f:70:71:7e:ed:66:58:a7:d1:4f:a8:2a:d0:b2: 52:cc:a4:3c:bb:c8:7f:fd:db:24:3f:27:08:1b:07:07:36:d8: b6:b4:88:85:b8:d5:e2:d3:c3:d6:aa:04:3b:8a:03:32:a2:a7: 10:5f:b1:fb:22:1f:6f:b5:83:c9:83:f2:94:61:ce:5b:d2:0e: 45:5d:4c:87:3f:fa:3f:45:0c:70:53:4c:a2:bd:c8:50:f4:5d: 52:c9:37:cc:b9:5a:72:6c:4b:b2:a1:04:5f:fe:81:92:f1:00: 84:ca:3f:f8:9a:26:b6:b2:56:39:94:d1:77:a4:a0:5f:68:ff: e4:39:09:81:24:04:56:9d:ea:92:fc:2d:99:33:49:bb:fd:80: 4e:ee:4f:72:cc:69:50:9c:97:90:f6:3d:e8:db:3d:f3:cf:15: 10:a3:e0:39:98:a2:c3:c3:1e:d9:de:ea:25:7e:20:45:d2:a0: f9:24:22:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyODYxMTAvBgNVBAUTKDFDQjQzMDRFRDY2OEM4RjcxNjQxM0VGRDY2MTc0QzM4 NjcwQzg5Q0IwHhcNMjQwNTAyMTczNjQ0WhcNMjQwNTA5MTczNjQ0WjAYMRYwFAYD VQQDEw02NjMzY2YyZC0xYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cAM7V65g8YxvhW2btIPjNI+7D42UAlcnvABS0vvP8l7/2X/qmgEXGWRmvsL /E5h40lmvNz95XSbW/uUXgLpF+9dlXVVyx+VFrXtU7i1khedVk3JbIge3/LglVeW 5NayfkWYcTZ4sY4wfet1l+uNGR1lZRnptgrhlvP/n2bsS8ewllQAdx8a7qMeVJcC AqCXVE7WUfQG95CopBxvwcUosJ0MHlFFNdmidpYf/PMk4OTjBLmELcKnHCMvFEwb Xf/ltNA5XSngaebm7Wi23HUCcdzxp5qnImckvJB+JgGJVNt1loJR7gt6PaaJfemE PeBFCYjshFhcDiaRivNhYWIP/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0tG0k8 OQ+3dMLmBWkX0JLiA4tgMB8GA1UdIwQYMBaAFBy0ME7WaMj3FkE+/WYXTDhnDInL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Ni9CMjFBQTA5NDdG NDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQY1dRVDc5WmhkTU9HY01p Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMUXdUdFpveVBjV1FUNzlaaGRNT0djTWljcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Ni9CMjFBQTA5NDdGNDkxMUU4ODhEMzU2NDJDNEY5QUUwMi9ITFF3VHRab3lQ Y1dRVDc5WmhkTU9HY01pY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMYhryKXNuKCNEem08Y8GVUM0i5nbJJeFJJ13bxlq1A/WhWQ5v8mKn ZK2CE0gthAmraaVdHfgmBp+dSLQVR/rUAhaXhli2MGy3bmAYH3Bxfu1mWKfRT6gq 0LJSzKQ8u8h//dskPycIGwcHNti2tIiFuNXi08PWqgQ7igMyoqcQX7H7Ih9vtYPJ g/KUYc5b0g5FXUyHP/o/RQxwU0yivchQ9F1SyTfMuVpybEuyoQRf/oGS8QCEyj/4 mia2slY5lNF3pKBfaP/kOQmBJARWneqS/C2ZM0m7/YBO7k9yzGlQnJeQ9j3o2z3z zxUQo+A5mKLDwx7Z3uolfiBF0qD5JCLN -----END CERTIFICATE-----Generated at Thu May 2 20:04:53 2024 by rpki-client on console-ams.rpki-client.org