$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft File: HlpjIbEaoIRvqJvxObzs2604vjc.mft (raw, json) Hash identifier: eVG1wfZFeJKNYeEVORmYcHNmal95k5+zhe/hXpMlv5U= Subject key identifier: C0:71:B2:C3:EE:0D:6C:DA:EB:85:50:65:62:1D:47:05:26:A6:5F:87 Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Certificate serial: 3431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft Manifest number: 33FB Signing time: Thu 02 May 2024 14:16:11 +0000 Manifest this update: Thu 02 May 2024 14:16:11 +0000 Manifest next update: Thu 09 May 2024 14:16:11 +0000 Files and hashes: 1: HlpjIbEaoIRvqJvxObzs2604vjc.crl (hash: vtklqYt5ucMu6sdDOnNtaRuCi7MO9++iUkEMiodszPQ=) 2: 3D6EDF86EDA711ED91155885C4F9AE02.roa (hash: 0mAkwOMjGFc6GZiYmzcNVVzOAFPY5ZoeNwZaUhnabD8=) 3: 0F5C892289B011EE886DD13CC4F9AE02.roa (hash: eSJpcn2qjSZfqcdfPMrWHv5Yecrbb3L9WuvIWFZhl/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13361 (0x3431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37 Validity Not Before: May 2 14:16:11 2024 GMT Not After : May 9 14:16:11 2024 GMT Subject: CN=6633a02b-e843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3e:f5:33:0d:54:04:65:da:3f:1d:48:fc:a0: 2b:44:95:e4:de:13:64:01:f7:fb:a4:61:52:d3:8c: 3b:e5:dd:f8:a1:09:57:3b:84:e7:8f:40:aa:09:22: 96:f3:d6:08:89:af:49:af:20:aa:be:90:0c:8f:7a: 89:3a:82:f8:d9:fb:62:89:27:ec:6e:72:35:90:6a: b7:8d:a8:46:6b:46:a6:27:16:bf:37:be:dc:6b:be: 0f:cc:82:b6:3b:78:ce:11:0f:b2:a1:c1:a3:2e:70: 4c:de:bc:b3:4f:2d:bd:5f:28:6c:80:4d:6e:cc:83: b9:fb:b9:f7:b2:8f:aa:9e:d6:79:3f:91:9f:42:7d: 4a:34:2b:82:fe:57:5c:b4:84:d3:2d:1c:ab:cc:4f: 97:9f:21:83:c0:b2:17:b2:bd:2e:67:94:51:f9:03: 24:c9:d3:fc:74:b8:e7:58:c6:b7:6e:dd:3a:fc:70: 41:57:32:7f:23:f1:a1:d7:ae:f3:f2:a4:c0:4c:0f: a8:c8:9c:da:ae:5f:9e:bc:db:34:50:d6:a5:a7:77: 73:34:2a:f8:9a:fe:e1:9a:da:34:0c:90:b6:6b:0d: 65:bc:2c:71:68:14:5c:bc:be:df:9d:47:f5:02:33: 9e:25:23:81:c0:41:93:f3:d7:7d:74:fc:36:20:0d: f6:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:71:B2:C3:EE:0D:6C:DA:EB:85:50:65:62:1D:47:05:26:A6:5F:87 X509v3 Authority Key Identifier: keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7a:3a:6c:16:78:50:ef:40:ba:e7:0f:71:6a:2a:fc:cd:99: 9e:da:52:54:64:0d:ed:c9:c8:75:ad:02:c8:72:9c:a7:92:32: df:b4:06:91:84:35:7e:0a:cb:fe:61:88:fc:a2:90:a6:6c:a5: 6c:43:35:38:f3:f9:2d:38:76:ec:4d:8d:ab:4b:f1:f3:3f:66: d5:6b:3d:2d:d1:b8:a1:b3:be:91:96:98:a0:d5:e8:80:2a:99: e2:44:b5:f0:1d:a7:f9:2d:98:b2:a2:22:fa:b9:d9:7c:b9:b7: bc:36:a8:be:ca:02:09:61:e8:d4:08:e2:7a:67:80:38:ef:4d: 23:78:9a:28:db:21:a0:af:fa:d9:b9:90:4a:a1:21:b0:af:b0: 53:50:7a:74:93:60:04:9b:f7:b1:7f:38:b4:bb:78:87:20:5c: 6b:90:c8:a2:36:82:db:7f:d0:80:d9:2a:7d:1d:59:88:02:27: 7e:19:e8:1b:38:8b:74:31:a2:7c:95:c1:86:04:af:83:e0:24: 7d:d8:4c:25:f3:f5:1a:c9:19:26:70:2a:93:e9:ba:f9:6b:0b: 8a:f1:d3:56:81:47:fe:d9:00:1f:d3:43:6a:cf:34:a1:71:0f: 73:d8:ef:c6:d4:a1:a6:e8:c1:72:f2:84:0c:d6:07:20:e6:40: bc:73:07:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlENzYxMTAvBgNVBAUTKDFFNUE2MzIxQjExQUEwODQ2RkE4OUJGMTM5QkNFQ0RC QUQzOEJFMzcwHhcNMjQwNTAyMTQxNjExWhcNMjQwNTA5MTQxNjExWjAYMRYwFAYD VQQDEw02NjMzYTAyYi1lODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0j71Mw1UBGXaPx1I/KArRJXk3hNkAff7pGFS04w75d34oQlXO4Tnj0CqCSKW 89YIia9JryCqvpAMj3qJOoL42ftiiSfsbnI1kGq3jahGa0amJxa/N77ca74PzIK2 O3jOEQ+yocGjLnBM3ryzTy29XyhsgE1uzIO5+7n3so+qntZ5P5GfQn1KNCuC/ldc tITTLRyrzE+XnyGDwLIXsr0uZ5RR+QMkydP8dLjnWMa3bt06/HBBVzJ/I/Gh167z 8qTATA+oyJzarl+evNs0UNalp3dzNCr4mv7hmto0DJC2aw1lvCxxaBRcvL7fnUf1 AjOeJSOBwEGT89d9dPw2IA32TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBxssPu DWza64VQZWIdRwUmpl+HMB8GA1UdIwQYMBaAFB5aYyGxGqCEb6ib8Tm87NutOL43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUQ3Ni82Mjg3QTExNDFE NjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9JUnZxSnZ4T2J6czI2MDR2 amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hscGpJYkVhb0lSdnFKdnhPYnpzMjYwNHZqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUQ3Ni82Mjg3QTExNDFENjkxMUUyODhBQkE5QTYwOEIwMkNEMi9IbHBqSWJFYW9J UnZxSnZ4T2J6czI2MDR2amMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOejpsFnhQ70C65w9xair8zZme2lJUZA3tych1rQLIcpynkjLftAaR hDV+Csv+YYj8opCmbKVsQzU48/ktOHbsTY2rS/HzP2bVaz0t0bihs76Rlpig1eiA KpniRLXwHaf5LZiyoiL6udl8ube8Nqi+ygIJYejUCOJ6Z4A4700jeJoo2yGgr/rZ uZBKoSGwr7BTUHp0k2AEm/exfzi0u3iHIFxrkMiiNoLbf9CA2Sp9HVmIAid+Gegb OIt0MaJ8lcGGBK+D4CR92Ewl8/UayRkmcCqT6br5awuK8dNWgUf+2QAf00NqzzSh cQ9z2O/G1KGm6MFy8oQM1gcg5kC8cweU -----END CERTIFICATE-----Generated at Thu May 2 17:43:50 2024 by rpki-client on console-fra.rpki-client.org