$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: /hhy5+rtVfCFGEV15DGC2tAw460Bca4n2SnymCIC/iY= Subject key identifier: AD:E2:68:9A:3F:45:13:04:F4:F8:2A:34:D9:68:C9:1F:2D:9D:43:48 Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 1776 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 1762 Signing time: Sun 24 Nov 2024 16:28:53 +0000 Manifest this update: Sun 24 Nov 2024 16:28:53 +0000 Manifest next update: Sun 01 Dec 2024 16:28:53 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: 0PSgyWnEG48LuhnV1l/i7r868RzyzenZ+NMw42rYrWw=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: uqcNE7hB1aYU8Mdf7FTI9SccJkneZiBShVvEYdJ49e8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6006 (0x1776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Nov 24 16:28:53 2024 GMT Not After : Dec 1 16:28:53 2024 GMT Subject: CN=67435445-d722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e6:6e:91:7c:72:74:a9:35:cc:c2:70:b2:c8: d3:2e:e8:23:c0:da:0b:1f:f4:78:7b:b0:c7:6f:19: df:b1:f5:94:c6:55:2f:06:c1:d2:17:d0:3f:11:4a: 8e:c1:3f:c2:68:04:e2:8d:2b:b7:1d:31:a0:31:fa: 4b:c6:d9:90:d4:de:a1:11:d9:0e:78:e4:56:48:31: f0:6b:4b:19:35:37:e2:09:32:5c:c4:47:75:91:b9: 62:4f:fc:3e:87:7b:85:f7:f5:6f:e2:d3:94:33:26: 73:17:63:5b:66:28:aa:95:64:d8:25:7f:76:33:ef: 01:b1:bb:6b:5b:f9:69:c7:53:3a:f3:ae:ac:e0:f2: 2d:2b:52:2a:b7:3a:ac:59:0d:5b:b5:1b:7d:f7:1c: c5:4b:c1:53:54:9f:e2:0a:4a:48:38:9d:5c:de:81: 18:58:b1:86:62:38:af:e5:b5:59:fa:4f:58:a3:1b: 3c:f5:54:b5:c6:93:72:2e:93:78:e8:58:9d:6d:93: 31:2a:0c:b1:f4:25:e5:78:8b:dc:b2:aa:1c:99:fc: cb:3c:e9:5f:d8:d4:bd:fd:53:54:ab:a9:d4:db:0e: 80:e7:a9:cb:a4:aa:47:88:4b:35:a5:5a:46:c3:02: 67:34:13:da:49:ce:eb:92:68:40:00:35:bb:0c:50: bc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:E2:68:9A:3F:45:13:04:F4:F8:2A:34:D9:68:C9:1F:2D:9D:43:48 X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:aa:b9:d3:97:7f:8e:c0:d8:4b:22:19:e0:b1:b9:26:c7:2e: 97:bc:2b:72:5c:a8:f4:ff:88:d0:8f:1e:65:70:0d:99:4a:31: cd:b6:9a:d3:0a:b9:80:02:70:8f:ab:8f:b9:2e:0f:c3:2c:98: 7f:e8:bf:e3:d3:b6:0b:65:62:12:c7:78:c6:3f:fb:75:95:a9: 42:7f:15:4e:e4:4e:69:53:ee:bb:54:93:17:30:29:7c:51:c5: a7:92:fa:41:cb:a7:2e:fa:90:73:09:df:02:fc:15:ab:bf:f5: c1:16:cd:07:0a:4e:80:ad:ee:66:4f:68:55:28:00:85:dd:9c: f1:95:bc:8e:45:a2:4c:89:b5:b0:5a:ce:50:6f:8b:fc:f0:15: 58:ed:79:62:65:a2:e8:54:a2:e9:b0:67:06:30:72:8b:7b:1f: 96:5e:10:b4:0d:e4:89:c9:c1:04:86:78:df:fc:63:c2:2e:81: 2b:fe:05:5e:46:01:76:86:89:6a:fa:ea:88:85:45:ba:1d:50: 94:1a:c9:17:3f:fe:75:98:51:ea:6c:ee:44:37:f0:0d:b8:d0: 85:12:92:0b:63:48:47:aa:50:d9:81:60:a5:61:ca:b2:55:c1: 47:90:e3:e3:cd:bd:07:86:94:9b:12:98:7f:71:d4:8f:90:6b: 07:5a:db:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjQxMTI0MTYyODUzWhcNMjQxMjAxMTYyODUzWjAYMRYwFAYD VQQDEw02NzQzNTQ0NS1kNzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteZukXxydKk1zMJwssjTLugjwNoLH/R4e7DHbxnfsfWUxlUvBsHSF9A/EUqO wT/CaATijSu3HTGgMfpLxtmQ1N6hEdkOeORWSDHwa0sZNTfiCTJcxEd1kbliT/w+ h3uF9/Vv4tOUMyZzF2NbZiiqlWTYJX92M+8BsbtrW/lpx1M6866s4PItK1Iqtzqs WQ1btRt99xzFS8FTVJ/iCkpIOJ1c3oEYWLGGYjiv5bVZ+k9Yoxs89VS1xpNyLpN4 6FidbZMxKgyx9CXleIvcsqocmfzLPOlf2NS9/VNUq6nU2w6A56nLpKpHiEs1pVpG wwJnNBPaSc7rkmhAADW7DFC8LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3iaJo/ RRME9PgqNNloyR8tnUNIMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbqrnTl3+OwNhLIhngsbkmxy6XvCtyXKj0/4jQjx5lcA2ZSjHNtprT CrmAAnCPq4+5Lg/DLJh/6L/j07YLZWISx3jGP/t1lalCfxVO5E5pU+67VJMXMCl8 UcWnkvpBy6cu+pBzCd8C/BWrv/XBFs0HCk6Are5mT2hVKACF3ZzxlbyORaJMibWw Ws5Qb4v88BVY7XliZaLoVKLpsGcGMHKLex+WXhC0DeSJycEEhnjf/GPCLoEr/gVe RgF2holq+uqIhUW6HVCUGskXP/51mFHqbO5EN/ANuNCFEpILY0hHqlDZgWClYcqy VcFHkOPjzb0HhpSbEph/cdSPkGsHWtsB -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:56 2024 by rpki-client on console-fra.rpki-client.org