$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft File: HWQu0o7OpfKqzzR7Fgl_nZJB120.mft (raw, json) Hash identifier: KfeIMnK5Oq88013IzQf//LLFmeoI+q7SA5i9lSg4EHY= Subject key identifier: DD:9B:B0:62:32:84:6E:10:3B:80:C1:01:7C:85:3A:42:A6:DA:AB:FC Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 02F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft Manifest number: 02EF Signing time: Sat 23 Nov 2024 00:51:13 +0000 Manifest this update: Sat 23 Nov 2024 00:51:13 +0000 Manifest next update: Sat 30 Nov 2024 00:51:13 +0000 Files and hashes: 1: HWQu0o7OpfKqzzR7Fgl_nZJB120.crl (hash: ceA+PDWwnO0ZyChsE0UNWkygM5Uh0M6n7g/gjv1TnXc=) 2: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (hash: BArGwM1bK+rweYsGVKqgC9JYCGyliz8oP72ndcEJbbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 754 (0x2f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Nov 23 00:51:13 2024 GMT Not After : Nov 30 00:51:13 2024 GMT Subject: CN=67412701-c512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d5:a8:5d:b9:fe:9a:1a:a8:f5:84:f8:14:0c: 18:72:ca:76:4a:90:0d:cc:6a:03:55:bb:62:7c:9e: cf:cb:6f:7c:ad:74:3e:46:cc:dd:26:24:0f:9a:e5: 59:5c:7a:51:b3:6b:eb:01:54:0b:1e:43:71:6f:65: 9b:88:10:92:a7:d0:15:8d:65:84:63:f9:be:be:2c: 18:eb:80:81:be:ac:17:6b:6b:43:c9:93:f6:30:39: 2b:58:39:ad:c0:87:31:11:13:ec:e7:14:f1:84:2b: 7c:26:de:6a:ab:07:a2:fa:c8:3e:5c:1d:7d:4d:0a: 9d:12:b7:d2:e1:70:cf:7e:71:60:0b:31:55:d1:c3: ae:c9:f5:22:a3:a0:9e:d7:33:56:b8:df:5e:08:13: ff:59:f1:98:60:1e:68:27:13:a6:5d:31:be:0e:45: b9:5f:40:01:83:0b:08:b9:fc:ac:d7:46:e2:c3:f8: c2:e9:c7:f7:a8:7f:1b:78:ec:d9:38:4d:0d:2b:77: 29:03:bc:a1:e5:43:cd:c5:25:74:e3:15:fb:b7:38: 39:1b:b0:54:fb:a9:6a:b1:16:4e:71:18:3d:9d:6d: 43:4e:04:74:aa:f2:7c:5d:95:f9:4e:e2:a3:61:51: b3:d0:cf:a1:00:92:50:47:e2:72:c8:b5:47:e0:04: f2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:9B:B0:62:32:84:6E:10:3B:80:C1:01:7C:85:3A:42:A6:DA:AB:FC X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:df:aa:8a:fa:83:f9:7e:4e:0f:dd:b8:15:19:6d:bd:bf:d7: f4:83:56:b1:2b:c7:4b:e7:3b:5e:bd:91:1a:1d:ca:4e:01:c3: 7b:67:2c:87:63:42:8b:76:43:ca:8c:8e:c0:81:81:68:bf:9e: 1c:6c:0a:1f:02:8f:71:fe:98:7a:46:1c:d4:a0:39:5c:ba:15: d4:9e:61:ef:ad:d1:ae:85:3e:fb:05:6c:40:ed:b5:90:9e:d4: 3f:6d:c1:d7:3c:b8:96:88:24:4d:5d:20:36:6f:42:a4:cb:53: 03:2b:cb:aa:73:a1:0d:15:2b:eb:27:c8:f6:38:78:bd:be:c1: 79:f1:a9:2f:1c:e4:cb:52:98:ee:b3:51:3e:02:f9:0d:e4:71: 8b:de:b0:ec:51:66:a0:8c:7e:9a:7c:a9:d6:a4:de:d4:b1:81: f7:b0:74:86:bc:89:bd:a6:3c:6e:71:00:87:bc:6d:3d:8f:b6: d0:a9:5f:1a:8a:1c:c3:91:60:ec:cf:f9:5f:25:a8:5f:45:14: 83:c6:64:44:48:4a:ea:78:89:09:61:dc:51:b3:4f:40:7a:54: a0:54:09:a9:22:25:06:61:1f:c7:67:a3:aa:33:33:eb:be:a8: be:43:e9:42:44:a5:4b:b0:c3:e6:61:19:44:6b:b5:64:7b:6e: 27:a5:0a:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjQxMTIzMDA1MTEzWhcNMjQxMTMwMDA1MTEzWjAYMRYwFAYD VQQDEw02NzQxMjcwMS1jNTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NWoXbn+mhqo9YT4FAwYcsp2SpANzGoDVbtifJ7Py298rXQ+RszdJiQPmuVZ XHpRs2vrAVQLHkNxb2WbiBCSp9AVjWWEY/m+viwY64CBvqwXa2tDyZP2MDkrWDmt wIcxERPs5xTxhCt8Jt5qqwei+sg+XB19TQqdErfS4XDPfnFgCzFV0cOuyfUio6Ce 1zNWuN9eCBP/WfGYYB5oJxOmXTG+DkW5X0ABgwsIufys10biw/jC6cf3qH8beOzZ OE0NK3cpA7yh5UPNxSV04xX7tzg5G7BU+6lqsRZOcRg9nW1DTgR0qvJ8XZX5TuKj YVGz0M+hAJJQR+JyyLVH4ATy6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2bsGIy hG4QO4DBAXyFOkKm2qv8MB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEUzQS9BN0FCMEE4QUI5OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3Bm S3F6elI3RmdsX25aSkIxMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF36qK+oP5fk4P3bgVGW29v9f0g1axK8dL5ztevZEaHcpOAcN7ZyyH Y0KLdkPKjI7AgYFov54cbAofAo9x/ph6RhzUoDlcuhXUnmHvrdGuhT77BWxA7bWQ ntQ/bcHXPLiWiCRNXSA2b0Kky1MDK8uqc6ENFSvrJ8j2OHi9vsF58akvHOTLUpju s1E+AvkN5HGL3rDsUWagjH6afKnWpN7UsYH3sHSGvIm9pjxucQCHvG09j7bQqV8a ihzDkWDsz/lfJahfRRSDxmRESErqeIkJYdxRs09AelSgVAmpIiUGYR/HZ6OqMzPr vqi+Q+lCRKVLsMPmYRlEa7Vke24npQoA -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org