$ rpki-client -vvf rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft (raw, json) Hash identifier: VOKBjqrWdj/4wEk5HfrV24E60wYAeBw6GNaDofocMoQ= Subject key identifier: D1:54:18:A6:8D:D1:8A:6F:3E:87:27:6D:B8:E3:E3:DD:D7:2D:FF:84 Authority key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E Certificate issuer: /CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft Manifest number: 11 Signing time: Sat 23 Nov 2024 06:02:38 +0000 Manifest this update: Sat 23 Nov 2024 06:02:37 +0000 Manifest next update: Sat 30 Nov 2024 06:02:37 +0000 Files and hashes: 1: HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl (hash: kDv7unhEvLx4Dqu3Eh/+EXPqTylUMxnz9MsWA8x/TEc=) 2: F0C8DB1CA54E11EF8592FD66C4F9AE02.roa (hash: kWJ+IsPwJ/Oow1IdFhgFWCC31M0VCoce/yV/fhdSoaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D848/serialNumber=1DD1B8687886924C4613116050EE90E9D494269E Validity Not Before: Nov 23 06:02:37 2024 GMT Not After : Nov 30 06:02:37 2024 GMT Subject: CN=67416ffd-818f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:73:7f:74:84:a9:38:08:74:4c:2e:3a:ab:72: 57:04:73:04:8b:41:8b:aa:fc:e2:bf:d8:fb:34:8d: e3:e3:3a:e0:f7:61:71:26:f3:27:d5:ef:6e:09:f6: 87:1f:b7:5d:8a:4d:c7:ff:fe:4e:97:3b:03:10:88: 20:8b:e7:f3:8e:c2:87:d8:02:23:db:92:97:d5:80: 7a:09:f9:b1:18:09:90:bf:4d:95:f2:73:1f:43:2b: a2:1e:d9:19:fa:36:91:7c:71:5a:d2:e0:f2:b8:8a: dd:f4:1d:10:f5:2d:f1:3d:8c:a5:a1:0c:20:ff:44: 37:a2:4f:47:81:6c:4f:66:22:11:75:94:c2:d8:c3: 93:28:90:3b:6f:1e:04:eb:0c:64:85:84:f7:9d:97: a1:a1:f9:38:0d:8e:e9:a2:ad:96:99:9a:eb:d8:6e: 60:1c:0d:ed:50:7e:8e:5b:82:90:ee:09:d9:b6:ca: 78:da:3e:ee:e5:33:ef:5e:df:27:39:49:9b:04:3f: f8:1e:f4:f5:70:50:c0:fb:83:33:dc:8c:1f:a5:4b: a4:25:0f:78:05:82:b9:c3:28:f1:93:d5:c4:bd:7e: 48:cd:2d:2e:40:1d:e2:04:c3:0f:37:36:01:8c:58: fd:23:d4:c5:fc:f1:58:7f:6f:4e:7e:44:4b:7a:d7: 58:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:54:18:A6:8D:D1:8A:6F:3E:87:27:6D:B8:E3:E3:DD:D7:2D:FF:84 X509v3 Authority Key Identifier: keyid:1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:87:81:4e:56:17:cd:c2:3f:fc:a5:04:68:dc:c3:25:06:ee: 00:c6:84:ac:b6:71:03:1d:fb:52:70:c2:df:65:33:61:58:f4: b9:52:45:9c:c8:3a:80:cc:92:69:16:e7:ac:c5:5c:12:9f:b8: 18:45:ad:9e:e9:e6:38:21:2e:ce:03:a3:12:a3:8e:d0:cd:68: 66:62:c7:ff:22:d9:54:d2:c8:1e:07:27:fb:8b:19:74:15:71: d9:d0:a2:21:3a:38:3b:c6:42:45:ef:42:c7:33:f0:a7:52:19: db:43:48:08:db:f9:60:7f:81:08:3e:8a:e9:68:91:4f:3b:25: 2e:c4:0b:59:2c:14:ee:d4:cb:0b:02:64:84:17:f1:de:aa:d2: 03:a5:fb:1f:3d:33:c7:d1:fc:34:00:41:0e:75:ac:27:88:71: a0:5d:8b:ba:11:4a:1f:19:c4:ba:64:ad:21:2d:9a:15:a4:a8: 05:75:18:a1:d9:46:72:40:04:cc:48:45:dd:43:84:95:60:9d: d0:71:19:da:a5:da:c9:79:39:00:d0:17:e8:a1:e7:a2:b8:69: 69:57:ee:f0:6e:e4:55:06:32:7e:c8:17:39:69:d7:42:3f:ea: f6:bb:5c:a7:32:12:45:1c:fc:b6:49:2c:3d:99:30:2e:5e:e3: 89:65:50:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDg0ODExMC8GA1UEBRMoMUREMUI4Njg3ODg2OTI0QzQ2MTMxMTYwNTBFRTkwRTlE NDk0MjY5RTAeFw0yNDExMjMwNjAyMzdaFw0yNDExMzAwNjAyMzdaMBgxFjAUBgNV BAMTDTY3NDE2ZmZkLTgxOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIc390hKk4CHRMLjqrclcEcwSLQYuq/OK/2Ps0jePjOuD3YXEm8yfV724J9ocf t12KTcf//k6XOwMQiCCL5/OOwofYAiPbkpfVgHoJ+bEYCZC/TZXycx9DK6Ie2Rn6 NpF8cVrS4PK4it30HRD1LfE9jKWhDCD/RDeiT0eBbE9mIhF1lMLYw5MokDtvHgTr DGSFhPedl6Gh+TgNjumirZaZmuvYbmAcDe1Qfo5bgpDuCdm2ynjaPu7lM+9e3yc5 SZsEP/ge9PVwUMD7gzPcjB+lS6QlD3gFgrnDKPGT1cS9fkjNLS5AHeIEww83NgGM WP0j1MX88Vh/b05+REt611h5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0VQYpo3R im8+hydtuOPj3dct/4QwHwYDVR0jBBgwFoAUHdG4aHiGkkxGExFgUO6Q6dSUJp4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEODQ4L0MyNTFCNUIyOUIx MDExRUZBNzJCQTAyMEM0RjlBRTAyL0hkRzRhSGlHa2t4R0V4RmdVTzZRNmRTVUpw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGRHNGFIaUdra3hHRXhGZ1VPNlE2ZFNVSnA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE ODQ4L0MyNTFCNUIyOUIxMDExRUZBNzJCQTAyMEM0RjlBRTAyL0hkRzRhSGlHa2t4 R0V4RmdVTzZRNmRTVUpwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABeHgU5WF83CP/ylBGjcwyUG7gDGhKy2cQMd+1Jwwt9lM2FY9LlSRZzI OoDMkmkW56zFXBKfuBhFrZ7p5jghLs4DoxKjjtDNaGZix/8i2VTSyB4HJ/uLGXQV cdnQoiE6ODvGQkXvQscz8KdSGdtDSAjb+WB/gQg+iulokU87JS7EC1ksFO7UywsC ZIQX8d6q0gOl+x89M8fR/DQAQQ51rCeIcaBdi7oRSh8ZxLpkrSEtmhWkqAV1GKHZ RnJABMxIRd1DhJVgndBxGdql2sl5OQDQF+ih56K4aWlX7vBu5FUGMn7IFzlp10I/ 6va7XKcyEkUc/LZJLD2ZMC5e44llUAw= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:30 2024 by rpki-client on console-fra.rpki-client.org