$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft File: hdbxhJPYoIzHKxsJHUr1T48KKLM.mft (raw, json) Hash identifier: /25jYgg97zu4tROJPjzKdZR012mEvk68OTUV5HNdnfE= Subject key identifier: 8F:65:72:48:B8:E7:59:90:DE:77:DB:67:08:52:E9:60:C3:4F:32:D9 Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 05FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft Manifest number: 05F4 Signing time: Fri 22 Nov 2024 22:23:36 +0000 Manifest this update: Fri 22 Nov 2024 22:23:36 +0000 Manifest next update: Fri 29 Nov 2024 22:23:36 +0000 Files and hashes: 1: hdbxhJPYoIzHKxsJHUr1T48KKLM.crl (hash: op9BmkKXPbALhCQbF81AwPZx6ZicMZjKYFQ/YlgkKaM=) 2: F66F50628A9C11EB9B2E044BC4F9AE02.roa (hash: iRYRVo5lbaJTFKYyTxWAHiXDjG/PpAWNzoZqTqR4jfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: Nov 22 22:23:36 2024 GMT Not After : Nov 29 22:23:36 2024 GMT Subject: CN=67410468-141f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:03:27:50:d5:78:81:db:d1:99:21:cb:39: 7f:8c:a0:76:70:a6:3b:37:41:63:9b:07:bf:03:05: b2:5a:1a:08:1d:88:65:cb:b9:d2:e0:70:dd:41:12: 25:0a:7f:d9:63:d5:28:4d:e7:03:c9:45:14:1a:f9: 7e:c4:9f:54:f6:2d:8e:b7:45:f0:4a:05:d7:22:60: f3:78:f1:17:f2:5a:6a:d3:d6:bc:91:69:6b:47:7a: ec:92:2a:c9:e8:e5:fc:5e:4b:d2:be:d1:08:5b:06: e8:44:20:95:68:4a:b3:db:d1:8f:d2:34:5c:93:51: b8:d5:74:07:ea:78:4e:85:f7:62:47:59:24:03:2e: fd:1d:59:2f:7f:12:ab:34:6b:0d:66:32:a3:4d:3c: 66:f5:cc:a6:1e:ba:6f:30:0a:6c:f3:b0:50:4a:74: e7:cc:cc:93:1a:e2:39:44:63:49:1c:ff:ca:62:09: 53:f9:3e:f6:61:b5:16:b9:6a:dd:f1:8a:07:63:d6: af:f6:3f:04:06:56:7f:5b:0c:a9:83:a2:dc:7f:20: 64:26:00:a3:9e:b2:0e:31:a4:da:c6:89:55:45:b1: 3e:98:39:a8:90:7b:29:47:e6:53:70:f7:8f:a7:f8: 53:4e:d9:78:43:64:83:10:ee:c2:07:92:b1:af:4e: 34:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:65:72:48:B8:E7:59:90:DE:77:DB:67:08:52:E9:60:C3:4F:32:D9 X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:c4:15:ab:8b:2d:27:6a:0a:2c:fe:63:88:62:75:83:36:93: cd:13:14:77:d5:cf:e8:05:bd:56:37:ea:f1:ed:ef:b9:ea:18: 86:a0:49:30:6c:c3:6b:20:66:44:a2:5e:cd:e2:81:d1:06:e0: cf:79:eb:1b:41:3b:9e:fa:0f:7e:21:be:7c:ad:01:5c:00:11: 3c:f7:17:43:f2:c6:7a:9f:92:74:7a:11:35:ad:84:6b:33:77: 68:ec:cd:57:8b:1b:9e:91:4c:b3:4c:de:ff:7f:a5:c2:90:f4: 72:73:5f:24:6c:40:4c:6a:6c:99:5b:53:53:6d:a6:8a:01:81: 7a:73:2b:f4:79:13:4f:f0:03:fe:9f:85:f8:f2:57:07:78:dd: 82:d4:4b:54:64:d1:0c:cb:e6:c1:b7:7f:6e:27:1b:ed:bf:a0: f4:5e:7f:e9:e9:13:f0:53:fe:ea:d8:45:cb:5d:a9:14:20:bd: da:d7:23:41:c3:2e:a3:da:f3:27:85:91:f6:7b:94:44:35:ac: bd:64:a8:fd:4e:22:a2:ef:ce:ee:90:a1:0b:e6:e4:85:03:83: 0f:01:5e:c5:ea:ac:a5:20:b7:71:97:a0:f3:4e:8c:62:4a:3c: 77:ff:7e:e5:12:10:84:d7:95:44:ff:1b:1c:90:c9:dc:84:2f: 17:e2:39:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjQxMTIyMjIyMzM2WhcNMjQxMTI5MjIyMzM2WjAYMRYwFAYD VQQDEw02NzQxMDQ2OC0xNDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2kDJ1DVeIHb0Zkhyzl/jKB2cKY7N0Fjmwe/AwWyWhoIHYhly7nS4HDdQRIl Cn/ZY9UoTecDyUUUGvl+xJ9U9i2Ot0XwSgXXImDzePEX8lpq09a8kWlrR3rskirJ 6OX8XkvSvtEIWwboRCCVaEqz29GP0jRck1G41XQH6nhOhfdiR1kkAy79HVkvfxKr NGsNZjKjTTxm9cymHrpvMAps87BQSnTnzMyTGuI5RGNJHP/KYglT+T72YbUWuWrd 8YoHY9av9j8EBlZ/Wwypg6LcfyBkJgCjnrIOMaTaxolVRbE+mDmokHspR+ZTcPeP p/hTTtl4Q2SDEO7CB5Kxr040gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9lcki4 51mQ3nfbZwhS6WDDTzLZMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTIyNS9DQTY5MDQ0MjhBOUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9J ekhLeHNKSFVyMVQ0OEtLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRxBWriy0nagos/mOIYnWDNpPNExR31c/oBb1WN+rx7e+56hiGoEkw bMNrIGZEol7N4oHRBuDPeesbQTue+g9+Ib58rQFcABE89xdD8sZ6n5J0ehE1rYRr M3do7M1XixuekUyzTN7/f6XCkPRyc18kbEBMamyZW1NTbaaKAYF6cyv0eRNP8AP+ n4X48lcHeN2C1EtUZNEMy+bBt39uJxvtv6D0Xn/p6RPwU/7q2EXLXakUIL3a1yNB wy6j2vMnhZH2e5RENay9ZKj9TiKi787ukKEL5uSFA4MPAV7F6qylILdxl6DzToxi Sjx3/37lEhCE15VE/xsckMnchC8X4jm4 -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:36 2024 by rpki-client on console-ams.rpki-client.org