$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: BfdHJO+jTMSNY+Nbh9O7/aFp8rvwluN1MT7lZGKsQNs= Subject key identifier: 49:D6:99:65:B6:81:6F:74:72:57:90:78:CB:29:E3:81:1F:30:21:83 Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: DD Signing time: Sat 23 Nov 2024 03:38:32 +0000 Manifest this update: Sat 23 Nov 2024 03:38:32 +0000 Manifest next update: Sat 30 Nov 2024 03:38:31 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: TghFV17JDK3Wyu04t8tSPgXmriO2bm4CbzP5KU6ZTbQ=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: 1dpcwbxbOmSptn78t7IKa9RvI5w/WLT63SPq7v5q1Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Nov 23 03:38:32 2024 GMT Not After : Nov 30 03:38:31 2024 GMT Subject: CN=67414e38-8f5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:24:2f:03:f5:30:f7:f7:7c:a4:ff:84:88:a9: 6a:24:5e:71:75:0a:4e:fd:56:d4:ee:a1:cd:a1:6e: 8a:eb:91:bf:61:f1:d8:2e:e7:ec:46:ca:7b:af:64: ad:10:c6:2a:67:99:3d:b9:1e:72:02:3b:9e:7a:6f: 73:c9:11:63:58:aa:fb:ff:e8:3a:84:9b:87:5a:94: 3b:1a:a9:ad:5a:22:18:aa:d9:76:04:c1:a4:20:57: d0:3b:3d:48:ac:99:e0:7f:a7:e7:73:a4:1d:34:9b: 1c:c6:78:2c:8b:bb:e2:cc:db:1e:15:d4:28:57:4e: a1:f1:11:67:9e:56:94:a0:f0:9c:44:fe:c2:60:b9: be:fa:c6:40:56:d2:4c:02:f9:20:97:9e:74:b5:33: 38:d3:c5:d2:da:dc:7a:b4:74:63:68:f3:0c:ba:2a: 45:c0:36:97:2b:58:6f:5f:24:16:34:2e:d6:82:1e: 60:68:6b:d9:b8:3b:74:36:af:06:70:a8:21:bc:65: d0:11:9b:a7:26:df:38:bd:c5:f9:21:b2:11:7a:19: f9:af:7e:59:f2:d0:7e:dd:8b:e4:27:08:f5:58:50: 46:0b:61:cd:f6:10:da:c5:eb:98:5e:f4:ba:a1:32: 82:91:20:ad:12:d1:83:66:09:6e:30:73:9a:01:fb: 74:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D6:99:65:B6:81:6F:74:72:57:90:78:CB:29:E3:81:1F:30:21:83 X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a7:25:be:b7:28:01:61:2b:f7:cf:c5:0a:3e:13:91:3c:46: c8:9e:57:5c:c4:fb:a6:db:b5:1d:64:23:5b:78:34:d6:08:71: 1c:c2:36:7f:0e:35:01:49:3e:d2:d9:59:2d:cf:19:12:04:3e: 5a:a4:9c:66:42:21:23:9a:6c:98:e9:fe:4c:f7:fa:a1:32:c8: 54:92:aa:f8:b3:e6:2c:78:77:8b:aa:6e:03:23:82:95:ac:cd: ce:50:e8:53:22:56:27:61:d1:01:f8:1f:a1:5f:2f:85:4a:af: 08:55:c6:49:39:f1:57:2b:19:6e:a7:bb:68:b0:45:c2:d5:ba: 6c:c6:2b:b3:d0:b0:72:f7:b0:ab:d1:bb:91:f9:ef:58:3b:92: 88:33:a7:bc:eb:1c:07:d9:b2:2c:f8:53:74:5e:47:0d:96:c3: 73:5a:0d:ff:b0:3c:1b:da:ac:18:2a:8e:3a:36:36:c7:a3:84: 7c:ca:c5:e7:ee:60:1e:6a:8d:79:8b:5a:aa:e7:29:26:8c:fe: ba:d2:89:c8:bc:f6:41:1e:98:dd:c1:b3:2c:b2:4b:8a:0c:da: fc:dc:db:33:91:ef:b0:39:82:14:76:21:f1:f4:d4:8a:0a:9f: ba:a5:54:35:f3:a2:9b:80:53:ff:b1:df:b3:ae:9a:72:d3:a0: 09:dd:db:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjQxMTIzMDMzODMyWhcNMjQxMTMwMDMzODMxWjAYMRYwFAYD VQQDEw02NzQxNGUzOC04ZjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnyQvA/Uw9/d8pP+EiKlqJF5xdQpO/VbU7qHNoW6K65G/YfHYLufsRsp7r2St EMYqZ5k9uR5yAjueem9zyRFjWKr7/+g6hJuHWpQ7GqmtWiIYqtl2BMGkIFfQOz1I rJngf6fnc6QdNJscxngsi7vizNseFdQoV06h8RFnnlaUoPCcRP7CYLm++sZAVtJM Avkgl550tTM408XS2tx6tHRjaPMMuipFwDaXK1hvXyQWNC7Wgh5gaGvZuDt0Nq8G cKghvGXQEZunJt84vcX5IbIRehn5r35Z8tB+3YvkJwj1WFBGC2HN9hDaxeuYXvS6 oTKCkSCtEtGDZgluMHOaAft0sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnWmWW2 gW90cleQeMsp44EfMCGDMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBppyW+tygBYSv3z8UKPhORPEbInldcxPum27UdZCNbeDTWCHEcwjZ/ DjUBST7S2VktzxkSBD5apJxmQiEjmmyY6f5M9/qhMshUkqr4s+YseHeLqm4DI4KV rM3OUOhTIlYnYdEB+B+hXy+FSq8IVcZJOfFXKxlup7tosEXC1bpsxiuz0LBy97Cr 0buR+e9YO5KIM6e86xwH2bIs+FN0XkcNlsNzWg3/sDwb2qwYKo46NjbHo4R8ysXn 7mAeao15i1qq5ykmjP660onIvPZBHpjdwbMsskuKDNr83Nszke+wOYIUdiHx9NSK Cp+6pVQ186KbgFP/sd+zrppy06AJ3dvd -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org