$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft File: HteCvmLXEBdmiyijJonkcO2iAfg.mft (raw, json) Hash identifier: e1PIcKRq1EAHxe3UnrcJ+mSrWWVAPmKY4bHx9Y3ls4o= Subject key identifier: B7:17:A2:6B:2B:00:58:DF:47:93:13:88:94:78:71:AF:02:15:FC:DA Authority key identifier: 1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 Certificate issuer: /CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft Manifest number: 063A Signing time: Sat 04 May 2024 23:53:01 +0000 Manifest this update: Sat 04 May 2024 23:53:00 +0000 Manifest next update: Sat 11 May 2024 23:53:00 +0000 Files and hashes: 1: HteCvmLXEBdmiyijJonkcO2iAfg.crl (hash: qr9ZpORaxTrlWu8V9oukiq49CO0/d2LVFMymI0lD+3w=) 2: D41A1814442211EBBF7D9D65C4F9AE02.roa (hash: AgcKAjaCRKIWP1a9YEXBW6Iro6Lq63Z3c3xlP1bvtXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Validity Not Before: May 4 23:53:00 2024 GMT Not After : May 11 23:53:00 2024 GMT Subject: CN=6636ca5d-d210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4b:28:ff:28:5c:6c:43:30:10:5e:65:a0:0b: d5:bb:ae:cc:c2:f2:dd:ac:70:4e:0e:03:b8:1a:d7: 30:62:c1:12:5a:59:15:22:54:62:74:3c:50:f7:1a: 43:e6:12:f2:50:22:32:6d:70:34:25:0e:dd:9f:64: 29:dc:0c:4f:b1:ab:65:89:b2:7c:cc:74:00:c4:50: c2:f2:29:58:96:ff:1a:10:55:89:01:2d:3f:f4:40: 64:ad:25:d6:6c:97:35:db:0d:38:1c:09:96:cd:a0: 2c:a4:f8:77:3f:52:db:f1:24:4b:80:88:e9:12:a8: 36:fb:fb:28:66:b1:e1:d8:17:f3:58:cd:24:36:ff: 7b:d2:ba:e5:e4:49:3d:42:aa:de:ae:69:b7:b2:3c: 98:4c:b0:1a:0b:1a:3b:62:c1:97:30:04:06:c2:26: c4:f6:2d:01:46:7d:55:4d:9f:f8:06:54:21:b1:57: 65:ba:e4:27:de:63:75:aa:a4:12:dd:c6:e7:a2:44: 39:6e:09:d3:ba:20:78:10:96:f4:75:a7:94:21:eb: 82:57:51:89:9d:4f:80:e4:75:e7:d9:68:51:06:61: 6b:2b:62:f1:5f:e1:66:5d:11:95:90:da:b9:e8:04: 97:b7:55:a8:3d:e0:9b:9c:6c:41:aa:d8:60:77:fe: 2a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:17:A2:6B:2B:00:58:DF:47:93:13:88:94:78:71:AF:02:15:FC:DA X509v3 Authority Key Identifier: keyid:1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:1b:5a:3a:8f:02:5a:68:c6:5c:c7:26:ad:e7:53:45:bd:d1: a0:ae:d5:81:5e:6c:f1:6a:c8:d9:6a:8e:e5:8b:72:bf:93:cc: ea:b7:f4:16:58:f9:69:e5:2b:8a:19:0b:f0:ab:f8:6e:2a:d2: 7d:91:82:6c:2f:db:f9:8a:20:bb:07:98:b8:40:f0:7f:a1:3a: 05:47:89:46:7c:42:69:a1:b0:b4:04:b4:ff:32:3a:0c:5b:37: f4:ad:ec:8b:07:fa:83:2c:26:40:33:2c:c7:b6:45:53:79:b7: 02:57:ba:4b:72:f2:a2:05:db:0a:5c:92:2f:1b:3c:bc:b2:49: 06:6d:f9:4b:08:94:1a:0f:7d:bc:87:ba:a4:c0:2d:48:b5:a1: 4e:65:ec:fc:ac:83:e2:58:e6:9a:ea:08:d4:35:a2:ed:d1:f8: 21:e6:f0:37:c6:43:6a:fb:e4:75:1a:af:92:1b:bd:8f:1b:31: 7c:aa:49:71:5a:9e:0a:0f:bd:95:c4:c1:61:b6:ee:5b:d8:68: 7d:20:d1:32:f9:87:14:55:5d:05:34:aa:13:35:81:6a:ed:57: 4f:f1:50:75:8a:d1:4e:67:10:9a:67:47:81:8f:30:d9:26:a3: f7:9a:28:9a:27:62:b7:51:dc:de:b9:48:b5:b4:48:f2:7f:79: 76:cb:4f:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyNTcxMTAvBgNVBAUTKDFFRDc4MkJFNjJENzEwMTc2NjhCMjhBMzI2ODlFNDcw RURBMjAxRjgwHhcNMjQwNTA0MjM1MzAwWhcNMjQwNTExMjM1MzAwWjAYMRYwFAYD VQQDEw02NjM2Y2E1ZC1kMjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0so/yhcbEMwEF5loAvVu67MwvLdrHBODgO4GtcwYsESWlkVIlRidDxQ9xpD 5hLyUCIybXA0JQ7dn2Qp3AxPsatlibJ8zHQAxFDC8ilYlv8aEFWJAS0/9EBkrSXW bJc12w04HAmWzaAspPh3P1Lb8SRLgIjpEqg2+/soZrHh2BfzWM0kNv970rrl5Ek9 Qqrermm3sjyYTLAaCxo7YsGXMAQGwibE9i0BRn1VTZ/4BlQhsVdluuQn3mN1qqQS 3cbnokQ5bgnTuiB4EJb0daeUIeuCV1GJnU+A5HXn2WhRBmFrK2LxX+FmXRGVkNq5 6ASXt1WoPeCbnGxBqthgd/4qcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcXomsr AFjfR5MTiJR4ca8CFfzaMB8GA1UdIwQYMBaAFB7Xgr5i1xAXZosooyaJ5HDtogH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTI1Ny9BOTBGMUVFNjQ0 MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVCZG1peWlqSm9ua2NPMmlB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZUN2bUxYRUJkbWl5aWpKb25rY08yaUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTI1Ny9BOTBGMUVFNjQ0MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVC ZG1peWlqSm9ua2NPMmlBZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSG1o6jwJaaMZcxyat51NFvdGgrtWBXmzxasjZao7li3K/k8zqt/QW WPlp5SuKGQvwq/huKtJ9kYJsL9v5iiC7B5i4QPB/oToFR4lGfEJpobC0BLT/MjoM Wzf0reyLB/qDLCZAMyzHtkVTebcCV7pLcvKiBdsKXJIvGzy8skkGbflLCJQaD328 h7qkwC1ItaFOZez8rIPiWOaa6gjUNaLt0fgh5vA3xkNq++R1Gq+SG72PGzF8qklx Wp4KD72VxMFhtu5b2Gh9INEy+YcUVV0FNKoTNYFq7VdP8VB1itFOZxCaZ0eBjzDZ JqP3miiaJ2K3UdzeuUi1tEjyf3l2y0/p -----END CERTIFICATE-----Generated at Sun May 5 01:22:25 2024 by rpki-client on console-fra.rpki-client.org