$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: p9YN0NQboyeGJpztC0iA7xAtDgOly/dYveXEpnlOJa4= Subject key identifier: AA:1D:A7:07:C3:0D:70:8C:13:FD:98:ED:40:A3:F8:46:10:AB:38:85 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 081A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0814 Signing time: Mon 06 May 2024 21:56:09 +0000 Manifest this update: Mon 06 May 2024 21:56:08 +0000 Manifest next update: Mon 13 May 2024 21:56:08 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: Um0UIKyV3HYIEvb/FmjUgvxaGRPCevH+1I+SveCUvKs=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: 0bgef1HoOJUlJF+Pq5efX6bYiWvNFCdJrO6WEDGbgUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2074 (0x81a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: May 6 21:56:08 2024 GMT Not After : May 13 21:56:08 2024 GMT Subject: CN=663951f9-c676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:25:5b:a3:6d:c4:de:26:5b:8f:0f:3f:c9: 03:05:f7:68:65:50:1a:94:1d:8f:09:6e:45:4f:37: ad:3b:d0:eb:8e:01:5c:9b:25:9b:1a:bb:09:fa:a4: 3c:f9:f8:02:69:36:6e:7e:24:68:a6:71:5b:53:62: 4d:8b:e7:01:54:4a:ab:2a:d3:7d:c2:49:7a:34:65: 5a:6d:4a:89:eb:4c:54:c0:4c:be:fc:c3:4e:4d:59: 95:f6:a9:b8:2e:9c:85:00:54:3f:f0:04:75:ee:f3: 7f:9e:fd:69:f9:0f:04:9b:e7:10:bd:fc:43:53:c5: 0f:25:64:6d:a0:3b:f0:10:66:d3:19:12:30:c0:41: 76:35:3f:e3:43:9b:b9:5f:32:ca:fe:9b:a8:33:a5: 79:41:bd:04:ac:29:71:db:c3:a6:da:52:8b:23:3a: d8:f2:e6:fe:81:18:c5:8d:c4:67:4b:47:d7:75:87: 7e:0e:76:5a:3a:6b:60:9d:08:06:d1:97:a1:e5:96: 93:58:04:e8:d9:f9:be:68:ae:34:3b:16:63:24:de: 73:d0:e9:1d:af:6d:0a:f3:be:38:7d:0b:54:75:37: 5a:ee:4f:49:14:66:f4:89:26:73:cd:ff:3a:be:64: 22:3e:ff:18:93:8d:bd:20:51:1e:14:0a:5e:0a:34: 04:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:1D:A7:07:C3:0D:70:8C:13:FD:98:ED:40:A3:F8:46:10:AB:38:85 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:46:ee:1f:1d:85:28:c9:aa:82:a6:4a:4c:19:a5:02:85:b4: 79:f7:8f:d2:d4:95:3b:05:c3:b4:ba:a1:5a:e7:4e:16:44:2c: ad:82:81:52:c5:e7:23:6c:06:26:fe:0a:6b:a2:cf:3d:a5:3e: 12:04:6a:4b:d3:d9:93:a5:57:62:d1:5d:9f:79:3d:d2:e0:fe: a5:2b:fc:44:c0:1f:ab:b6:27:d8:f8:e9:6f:b2:8f:0c:42:15: 73:c9:d5:7a:76:4e:cd:aa:df:c7:74:b4:5f:1f:37:53:18:b9: 8b:7a:f7:66:a7:0d:0d:ff:40:77:78:29:c6:be:9d:74:41:42: d5:f6:c2:85:30:9c:8c:63:91:89:23:d5:1f:2e:9e:4f:13:31: f1:c3:28:54:ae:c0:a7:24:12:7d:52:ba:20:27:29:85:02:83: 07:53:ad:79:42:07:ad:f0:3a:e3:03:ae:b3:04:29:15:f6:70: f4:df:6d:35:b3:89:57:77:50:6a:d7:d3:49:54:7a:98:66:57: b3:4d:5d:97:fa:59:f7:e8:fc:dd:32:6d:e3:c7:42:16:00:bb: 22:14:6c:9e:c6:0f:be:26:aa:52:d6:e5:c5:ee:bf:75:99:8e: 52:f6:5f:09:fe:e5:0c:dd:a3:ff:eb:81:1e:e9:96:97:96:20: f4:64:49:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjQwNTA2MjE1NjA4WhcNMjQwNTEzMjE1NjA4WjAYMRYwFAYD VQQDEw02NjM5NTFmOS1jNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ0lW6NtxN4mW48PP8kDBfdoZVAalB2PCW5FTzetO9DrjgFcmyWbGrsJ+qQ8 +fgCaTZufiRopnFbU2JNi+cBVEqrKtN9wkl6NGVabUqJ60xUwEy+/MNOTVmV9qm4 LpyFAFQ/8AR17vN/nv1p+Q8Em+cQvfxDU8UPJWRtoDvwEGbTGRIwwEF2NT/jQ5u5 XzLK/puoM6V5Qb0ErClx28Om2lKLIzrY8ub+gRjFjcRnS0fXdYd+DnZaOmtgnQgG 0Zeh5ZaTWATo2fm+aK40OxZjJN5z0Okdr20K8744fQtUdTda7k9JFGb0iSZzzf86 vmQiPv8Yk429IFEeFApeCjQEQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKodpwfD DXCME/2Y7UCj+EYQqziFMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+Ru4fHYUoyaqCpkpMGaUChbR594/S1JU7BcO0uqFa504WRCytgoFS xecjbAYm/gpros89pT4SBGpL09mTpVdi0V2feT3S4P6lK/xEwB+rtifY+Olvso8M QhVzydV6dk7Nqt/HdLRfHzdTGLmLevdmpw0N/0B3eCnGvp10QULV9sKFMJyMY5GJ I9UfLp5PEzHxwyhUrsCnJBJ9UrogJymFAoMHU615Qget8DrjA66zBCkV9nD03201 s4lXd1Bq19NJVHqYZlezTV2X+ln36PzdMm3jx0IWALsiFGyexg++JqpS1uXF7r91 mY5S9l8J/uUM3aP/64Ee6ZaXliD0ZEmy -----END CERTIFICATE-----Generated at Mon May 6 22:41:03 2024 by rpki-client on console-ams.rpki-client.org