$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: g1G9oyT6fllC3SHN3A/9CrPuje/wcQWVQSwgBKay7AA= Subject key identifier: 66:E1:F8:A1:5F:33:8B:82:A0:61:8E:80:9B:D3:84:17:6D:DA:D9:9C Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 02DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 02D8 Signing time: Sat 23 Nov 2024 00:54:39 +0000 Manifest this update: Sat 23 Nov 2024 00:54:39 +0000 Manifest next update: Sat 30 Nov 2024 00:54:39 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: Z3rCmTdxleTdZlw0gl8WL+5zF0Jkru39yAd7yKJkAAI=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: L9t+DRBbmPVBfDehx/WMt8l2VQJogVd/uUcSz4yUxtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Nov 23 00:54:39 2024 GMT Not After : Nov 30 00:54:39 2024 GMT Subject: CN=674127cf-4d07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9f:5c:1f:d7:c6:42:88:3f:17:10:f0:50:de: 95:7d:4d:20:1c:f1:22:e6:26:97:ee:3a:43:da:10: 70:45:2e:1b:63:ef:7a:74:31:ba:f3:56:d0:07:82: c3:bc:8a:f2:04:a6:4d:1f:ed:8c:9a:2e:73:b4:4a: f9:07:84:0f:60:24:36:41:49:a5:3f:f5:cd:6e:42: 04:f0:8b:1e:ef:26:20:2f:30:63:c7:4a:08:ec:dc: d8:00:84:69:09:34:c7:01:ce:df:01:4f:27:bd:8c: a7:59:57:03:d0:3c:f3:17:d4:3d:2e:14:95:bc:08: 90:0f:98:df:2e:4d:c6:c1:b2:66:44:a7:d2:63:0c: 7d:fd:b6:6a:ca:fb:a3:7a:85:14:7f:9e:ea:de:60: ec:f5:22:b2:ea:e3:16:35:3a:fd:a1:5b:66:73:0f: c8:aa:ae:78:42:3f:2b:04:2b:98:64:2c:c2:f6:c0: 5b:9f:c1:32:0d:37:b8:ca:de:bf:1c:a3:7e:df:38: d3:9f:aa:84:8f:ea:a4:36:67:51:b0:e9:8d:fe:59: 35:0f:47:1c:6c:a0:e0:40:7f:d2:50:66:4d:dd:ea: f3:22:de:d2:31:65:00:be:98:cc:50:db:f9:d0:f7: 8c:88:79:de:fd:a8:a8:bf:8c:fb:c3:26:49:13:88: cc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E1:F8:A1:5F:33:8B:82:A0:61:8E:80:9B:D3:84:17:6D:DA:D9:9C X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:4d:a0:af:e1:83:fd:d6:c8:cf:a5:de:41:d3:0d:a3:d1:4b: 2b:9f:36:9e:1c:47:d6:db:6c:83:b5:2b:69:c8:6e:31:c1:02: e9:e6:e0:f1:82:4c:c8:b8:35:b6:7c:6b:1d:ce:3e:a6:08:97: 3d:63:48:23:09:ea:b8:c9:f4:b2:0d:71:d4:70:d7:0f:f7:30: b1:e4:32:4d:b2:45:a4:b3:70:d5:e5:f9:97:98:50:2d:92:f9: 63:cd:2d:04:e8:5e:82:54:2f:79:4a:44:5f:46:0c:06:c9:ea: 74:6e:3c:40:58:94:07:eb:9b:17:eb:04:37:7d:31:bb:0a:65: c7:91:60:03:35:fc:e1:84:28:48:71:93:4e:48:45:f2:35:5f: 0c:78:73:c6:69:04:4f:f8:b6:30:90:ca:82:22:38:2a:d8:8d: 62:7c:f3:af:76:b4:cf:06:da:f3:7b:28:12:a1:19:66:69:17: 66:80:50:0a:11:34:23:b7:0a:fe:28:3b:20:17:61:b1:5b:77: ab:78:82:09:d3:10:02:05:e6:dc:9a:1c:a3:85:9b:e4:30:aa: c1:21:8a:74:4c:5c:f5:ae:29:a5:81:c3:e3:b7:d2:cd:4e:ee: 00:de:f5:00:4f:bc:8d:a6:41:17:f8:af:68:97:37:c7:73:cc: dc:6e:e1:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjQxMTIzMDA1NDM5WhcNMjQxMTMwMDA1NDM5WjAYMRYwFAYD VQQDEw02NzQxMjdjZi00ZDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2J9cH9fGQog/FxDwUN6VfU0gHPEi5iaX7jpD2hBwRS4bY+96dDG681bQB4LD vIryBKZNH+2Mmi5ztEr5B4QPYCQ2QUmlP/XNbkIE8Ise7yYgLzBjx0oI7NzYAIRp CTTHAc7fAU8nvYynWVcD0DzzF9Q9LhSVvAiQD5jfLk3GwbJmRKfSYwx9/bZqyvuj eoUUf57q3mDs9SKy6uMWNTr9oVtmcw/Iqq54Qj8rBCuYZCzC9sBbn8EyDTe4yt6/ HKN+3zjTn6qEj+qkNmdRsOmN/lk1D0ccbKDgQH/SUGZN3erzIt7SMWUAvpjMUNv5 0PeMiHne/aiov4z7wyZJE4jMswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbh+KFf M4uCoGGOgJvThBdt2tmcMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+TaCv4YP91sjPpd5B0w2j0UsrnzaeHEfW22yDtStpyG4xwQLp5uDx gkzIuDW2fGsdzj6mCJc9Y0gjCeq4yfSyDXHUcNcP9zCx5DJNskWks3DV5fmXmFAt kvljzS0E6F6CVC95SkRfRgwGyep0bjxAWJQH65sX6wQ3fTG7CmXHkWADNfzhhChI cZNOSEXyNV8MeHPGaQRP+LYwkMqCIjgq2I1ifPOvdrTPBtrzeygSoRlmaRdmgFAK ETQjtwr+KDsgF2GxW3ereIIJ0xACBebcmhyjhZvkMKrBIYp0TFz1rimlgcPjt9LN Tu4A3vUAT7yNpkEX+K9olzfHc8zcbuEO -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org