$ rpki-client -vvf rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft File: hhe5_iqn_uIl8uDS3IdkCYE33m0.mft (raw, json) Hash identifier: +lvxIvyp3qB0ngMDZCUwsuHSV4Qr/3RA0myiO6GXlLk= Subject key identifier: 19:56:67:C7:FF:22:5A:89:91:C4:93:1E:5F:8B:71:A3:BB:D6:E8:83 Authority key identifier: 86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D Certificate issuer: /CN=A9117715/serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Certificate serial: 0983 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft Manifest number: 097C Signing time: Fri 22 Nov 2024 19:52:28 +0000 Manifest this update: Fri 22 Nov 2024 19:52:27 +0000 Manifest next update: Fri 29 Nov 2024 19:52:27 +0000 Files and hashes: 1: hhe5_iqn_uIl8uDS3IdkCYE33m0.crl (hash: r+KWfBwQvODHo0QmCVysPRKQ51+RBGVMBVpvTbmLXpQ=) 2: E118A9DA7CB911EABD07CE5EC4F9AE02.roa (hash: 3BzJCKxq6lxeVjXVlpYVRMXqU7zHik0ruN2Ba5iWxOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2435 (0x983) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117715/serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Validity Not Before: Nov 22 19:52:27 2024 GMT Not After : Nov 29 19:52:27 2024 GMT Subject: CN=6740e0fb-90c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cc:b6:56:e2:53:e3:c2:0c:8e:e4:59:4b:94: e4:40:86:61:74:8b:ac:3b:2b:aa:91:ad:0e:5c:80: 84:d3:39:77:0a:26:33:24:af:24:a0:e0:c5:af:fd: 1c:bd:53:07:ec:9f:1e:cd:11:6b:7d:7b:1b:69:a1: 44:4d:9c:62:82:7c:e8:98:52:d7:20:4f:50:68:df: b6:0e:d9:3d:74:35:62:c2:88:f1:b8:3c:b8:18:b9: 95:a8:2c:43:21:a9:f9:dc:8f:98:98:9b:ab:d7:55: 41:75:1d:71:ab:fe:51:73:52:4c:06:d2:34:b9:7a: cf:b2:4b:33:aa:1a:d4:f6:27:fc:e7:68:1c:5e:0e: bb:ce:45:08:ac:4b:57:72:62:b7:c1:26:2e:20:70: 44:9e:cd:e1:4d:81:ee:e6:b7:1f:67:35:b2:d6:91: e3:4e:a5:57:71:c6:96:b7:10:dd:91:25:3c:7a:d8: 8e:67:f3:58:c5:dd:ad:a9:63:ec:a2:24:79:9d:b2: 1c:87:6a:84:45:a3:1b:81:f1:5f:ad:fc:d8:ab:85: 04:26:d7:4d:bc:a5:f9:8e:88:52:9c:5f:43:9e:f7: 0b:18:a4:9a:08:49:a3:1a:f0:90:fe:e7:77:3d:7b: 0d:c2:a7:c6:38:be:41:33:f9:cd:cf:da:e2:f3:91: 64:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:56:67:C7:FF:22:5A:89:91:C4:93:1E:5F:8B:71:A3:BB:D6:E8:83 X509v3 Authority Key Identifier: keyid:86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:33:55:dd:c3:50:c8:5e:c2:4e:b7:93:51:ff:26:8f:e4:69: cf:e3:c4:08:52:b0:e1:d5:42:e4:a4:ef:41:f5:3c:03:b4:17: 2a:87:0f:04:fd:1c:9b:43:ca:8e:64:43:12:2a:e0:57:1f:8a: be:e3:ad:4a:dc:28:f0:72:ba:37:6f:ee:a5:27:bd:11:11:51: 94:2c:c8:81:4e:da:82:61:e6:b3:ca:51:e9:f5:47:59:d6:84: 13:4d:91:14:4f:9f:14:e5:75:4b:de:e3:28:dd:cb:5d:82:c7: b5:9f:97:5b:4f:bb:15:25:19:1d:a8:30:7b:32:84:48:a4:3f: 12:44:c8:23:ac:7c:e9:0d:40:15:bc:35:f0:3d:9e:8d:45:4a: a7:00:a0:3b:c8:c2:d0:ac:a2:1b:73:4b:2f:19:9d:7c:b7:6c: b1:3a:12:0d:42:15:fe:bf:98:d2:2d:3d:fa:93:98:c8:c1:1c: ea:5e:4d:9c:4c:26:84:c8:2d:66:44:10:8b:a4:46:de:ec:97: 6e:19:4b:3e:be:17:0c:c4:88:ee:97:42:29:6a:6b:c3:5a:e5: f7:db:c3:a7:d4:28:46:19:3e:3b:5a:ef:2c:db:89:9f:fd:6c: ed:1d:30:e2:97:e1:e0:af:dc:27:94:57:04:84:f7:9b:cb:6b: ee:4c:7b:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3MTUxMTAvBgNVBAUTKDg2MTdCOUZFMkFBN0ZFRTIyNUYyRTBEMkRDODc2NDA5 ODEzN0RFNkQwHhcNMjQxMTIyMTk1MjI3WhcNMjQxMTI5MTk1MjI3WjAYMRYwFAYD VQQDEw02NzQwZTBmYi05MGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssy2VuJT48IMjuRZS5TkQIZhdIusOyuqka0OXICE0zl3CiYzJK8koODFr/0c vVMH7J8ezRFrfXsbaaFETZxignzomFLXIE9QaN+2Dtk9dDViwojxuDy4GLmVqCxD Ian53I+YmJur11VBdR1xq/5Rc1JMBtI0uXrPskszqhrU9if852gcXg67zkUIrEtX cmK3wSYuIHBEns3hTYHu5rcfZzWy1pHjTqVXccaWtxDdkSU8etiOZ/NYxd2tqWPs oiR5nbIch2qERaMbgfFfrfzYq4UEJtdNvKX5johSnF9DnvcLGKSaCEmjGvCQ/ud3 PXsNwqfGOL5BM/nNz9ri85FkwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlWZ8f/ IlqJkcSTHl+LcaO71uiDMB8GA1UdIwQYMBaAFIYXuf4qp/7iJfLg0tyHZAmBN95t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzcxNS9CQzFDNUYxMDdD QjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91SWw4dURTM0lka0NZRTMz bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hoZTVfaXFuX3VJbDh1RFMzSWRrQ1lFMzNtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzcxNS9CQzFDNUYxMDdDQjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91 SWw4dURTM0lka0NZRTMzbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJM1Xdw1DIXsJOt5NR/yaP5GnP48QIUrDh1ULkpO9B9TwDtBcqhw8E /RybQ8qOZEMSKuBXH4q+461K3Cjwcro3b+6lJ70REVGULMiBTtqCYeazylHp9UdZ 1oQTTZEUT58U5XVL3uMo3ctdgse1n5dbT7sVJRkdqDB7MoRIpD8SRMgjrHzpDUAV vDXwPZ6NRUqnAKA7yMLQrKIbc0svGZ18t2yxOhINQhX+v5jSLT36k5jIwRzqXk2c TCaEyC1mRBCLpEbe7JduGUs+vhcMxIjul0IpamvDWuX328On1ChGGT47Wu8s24mf /WztHTDil+Hgr9wnlFcEhPeby2vuTHtG -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org