$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft File: HRIX74_oS1glUWcbyjXmhEhpJJc.mft (raw, json) Hash identifier: JFr1xTyKo0GRAIgRZDsec1BEwagn4HOfkbNQR0s1E8A= Subject key identifier: 5D:A6:BF:E8:DE:72:A4:38:38:FA:EE:E5:24:45:E8:84:A2:7D:63:3C Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 097D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft Manifest number: 0976 Signing time: Wed 24 Apr 2024 21:01:44 +0000 Manifest this update: Wed 24 Apr 2024 21:01:43 +0000 Manifest next update: Wed 01 May 2024 21:01:43 +0000 Files and hashes: 1: HRIX74_oS1glUWcbyjXmhEhpJJc.crl (hash: +0yhMmH71IRfepOIsawqLzvhJBiDavIz8dSBK6DNf+Q=) 2: 9261E554464611EE84B7C534C4F9AE02.roa (hash: 46K/PdxaAiu2tPx+wYWEAj6YWSYgs7IFdJ9KG+ZJop0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2429 (0x97d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: Apr 24 21:01:43 2024 GMT Not After : May 1 21:01:43 2024 GMT Subject: CN=66297337-f4ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:86:c7:88:95:2e:38:ee:cd:48:a9:54:1f:dc: de:c8:d7:f6:7d:73:14:c9:f7:eb:6a:0e:e9:43:19: 2d:6c:76:2d:d8:f8:12:9b:0e:e8:09:f2:04:95:3a: 89:12:9c:f5:2f:00:d7:3b:53:15:47:a1:e1:24:64: 14:ab:52:42:a0:9a:ea:83:30:87:78:2e:48:66:cd: b6:33:6b:72:a2:5d:7f:f8:df:63:7b:6d:3b:8a:83: 51:a5:1b:3b:96:67:14:e2:bf:36:a8:ab:1f:16:3f: 4d:87:f3:57:cb:18:72:41:d3:d5:64:d1:ad:d1:77: 39:de:37:d5:c5:55:15:6a:b5:05:05:80:63:71:a7: 09:c7:10:0c:08:cd:32:31:d2:4d:e5:7a:cd:c9:06: ac:3b:88:0b:7e:1a:72:55:0c:44:bd:4e:01:0f:b1: 16:00:f5:4a:88:bc:1c:29:79:84:44:24:e5:40:43: e6:20:8f:98:93:ff:da:50:b0:ba:cd:6b:d2:97:d2: 0a:1c:b9:98:b9:46:85:c1:47:5b:dc:0c:22:d5:19: 8a:26:37:66:b2:ec:11:f2:21:df:5d:fc:73:0a:d6: 26:7c:42:7b:c7:d6:19:5b:be:42:30:24:08:de:c7: b0:f4:5d:00:9a:c8:9d:ac:f1:dc:c1:54:4b:7b:18: f2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A6:BF:E8:DE:72:A4:38:38:FA:EE:E5:24:45:E8:84:A2:7D:63:3C X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:b8:ab:c8:cd:f1:d6:92:02:a2:45:6d:51:89:91:ec:ca:db: 14:f6:94:1a:6f:d1:5d:df:ea:da:61:03:0c:fc:f5:70:ad:04: fd:d5:4c:d4:ba:6c:a2:6e:f2:b5:90:5c:7b:50:22:6a:f4:e7: dc:0e:dd:0c:75:f8:62:0d:0f:73:23:d4:7b:e0:e6:be:4e:22: 90:5b:48:d4:30:66:1f:0d:84:1b:73:a1:48:70:0b:ca:73:6c: b3:c2:5b:6c:8e:7a:57:2e:8f:58:01:2f:db:30:05:52:09:16: d4:d3:08:cf:c3:67:b7:58:e7:fb:26:10:07:5c:44:a7:05:cf: 4c:0a:d6:7e:11:86:c9:34:63:08:25:20:ae:21:76:82:7c:3c: 6e:b1:f7:e6:b9:da:79:c0:40:fb:7a:95:ef:6d:6e:f6:2f:3e: 60:09:be:12:da:f1:b4:2b:f8:eb:7b:c4:b7:e2:f2:14:d5:cc: 89:db:d1:11:51:3f:91:cc:6a:32:db:91:c6:08:f6:74:e5:99: 0c:b7:74:98:ce:fc:e0:55:00:67:fe:66:78:db:77:b0:2e:4f: 07:33:cf:dc:e2:39:40:61:61:97:c8:9b:c9:15:e4:be:68:93: fe:99:0b:27:6b:21:80:42:a0:c2:88:90:38:46:69:98:87:51: e6:10:d9:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjQwNDI0MjEwMTQzWhcNMjQwNTAxMjEwMTQzWjAYMRYwFAYD VQQDEw02NjI5NzMzNy1mNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYbHiJUuOO7NSKlUH9zeyNf2fXMUyffrag7pQxktbHYt2PgSmw7oCfIElTqJ Epz1LwDXO1MVR6HhJGQUq1JCoJrqgzCHeC5IZs22M2tyol1/+N9je207ioNRpRs7 lmcU4r82qKsfFj9Nh/NXyxhyQdPVZNGt0Xc53jfVxVUVarUFBYBjcacJxxAMCM0y MdJN5XrNyQasO4gLfhpyVQxEvU4BD7EWAPVKiLwcKXmERCTlQEPmII+Yk//aULC6 zWvSl9IKHLmYuUaFwUdb3Awi1RmKJjdmsuwR8iHfXfxzCtYmfEJ7x9YZW75CMCQI 3sew9F0AmsidrPHcwVRLexjyCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2mv+je cqQ4OPru5SRF6ISifWM8MB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJCNC9EOTU0QkFCRTY5QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1Mx Z2xVV2NieWpYbWhFaHBKSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsuKvIzfHWkgKiRW1RiZHsytsU9pQab9Fd3+raYQMM/PVwrQT91UzU umyibvK1kFx7UCJq9OfcDt0MdfhiDQ9zI9R74Oa+TiKQW0jUMGYfDYQbc6FIcAvK c2yzwltsjnpXLo9YAS/bMAVSCRbU0wjPw2e3WOf7JhAHXESnBc9MCtZ+EYbJNGMI JSCuIXaCfDxusffmudp5wED7epXvbW72Lz5gCb4S2vG0K/jre8S34vIU1cyJ29ER UT+RzGoy25HGCPZ05ZkMt3SYzvzgVQBn/mZ423ewLk8HM8/c4jlAYWGXyJvJFeS+ aJP+mQsnayGAQqDCiJA4RmmYh1HmENnw -----END CERTIFICATE-----Generated at Wed Apr 24 23:34:31 2024 by rpki-client on console-ams.rpki-client.org