$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft File: hNKQTEi_9V2argiHuCwzDxubKaw.mft (raw, json) Hash identifier: W3r9vdJgQMn7NMv9uCu49UbgBeaIP3gjrtD7lZt/sQ4= Subject key identifier: 43:0A:23:AB:1E:78:CE:35:51:A4:7A:24:E6:86:95:7D:DD:65:85:78 Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 1622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft Manifest number: 1618 Signing time: Fri 22 Nov 2024 16:44:21 +0000 Manifest this update: Fri 22 Nov 2024 16:44:21 +0000 Manifest next update: Fri 29 Nov 2024 16:44:21 +0000 Files and hashes: 1: hNKQTEi_9V2argiHuCwzDxubKaw.crl (hash: P/KxEpJhox42TEwfGnKRVu/HFdsLie2f/GrniQO3WOw=) 2: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (hash: l/QXhkP0PiImWOQFu3VwXh2hTS7h1F0aUkdMN0JWiZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5666 (0x1622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Nov 22 16:44:21 2024 GMT Not After : Nov 29 16:44:21 2024 GMT Subject: CN=6740b4e5-5ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0e:e8:3d:e3:0a:3e:f7:68:41:f3:ad:ca:ef: cd:94:de:26:32:4b:a4:e3:ed:22:50:de:7d:67:6f: bc:31:d7:98:ec:ab:9c:8e:d0:53:f0:e4:09:81:a6: 59:7d:90:2c:c2:76:01:f7:07:8e:59:d5:96:60:ef: 5b:11:7b:98:19:c8:c1:45:7e:41:53:33:9c:48:57: 63:78:8d:92:7b:49:8a:ab:6b:cc:59:95:eb:e0:77: 55:09:fe:ce:aa:b5:85:0a:24:30:b1:7f:c2:70:94: bc:13:82:e7:a6:c6:56:5a:7a:0e:34:10:a1:81:1f: 07:bf:07:88:ee:9c:ee:03:bf:d1:8b:79:53:8c:2f: 6a:1d:2e:d5:e6:79:f0:39:76:b5:89:20:c4:56:5f: f5:64:44:57:d6:46:bf:98:a2:c2:80:7e:4f:f9:57: 85:8b:a2:d1:33:08:1a:5e:87:15:7d:9e:bd:62:29: 51:da:4f:7d:30:df:e2:92:ed:1a:de:d3:cc:e2:a3: 9e:af:45:90:a5:c2:af:d8:56:dc:81:e1:7d:20:f5: 03:44:7b:42:4e:aa:97:0d:0a:26:5d:4c:05:9e:c7: a0:5b:20:b1:86:82:a4:a4:f8:61:74:38:81:75:eb: 0b:f3:f3:1f:39:1b:ff:1c:ca:b8:0c:84:18:05:04: ca:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:0A:23:AB:1E:78:CE:35:51:A4:7A:24:E6:86:95:7D:DD:65:85:78 X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:ab:7a:fa:a4:c2:bd:87:e9:5a:96:97:3a:42:5b:06:00:4d: bc:d5:3e:ef:1f:9f:a4:2c:36:e1:e4:b3:71:38:00:35:78:e9: 12:18:00:76:e8:1c:6a:8e:3d:f9:23:57:74:e6:d5:aa:d5:2b: dd:77:e3:4d:a9:73:01:81:d5:89:71:5e:cf:79:37:0e:e4:61: 72:f5:b6:80:11:e2:7a:b6:32:39:24:0e:a9:47:28:4a:b8:0a: 96:0e:7a:c3:e9:5f:20:34:1e:91:94:a5:e6:23:10:08:87:a1: 4b:2e:15:69:9a:c3:66:54:72:53:ce:9f:5c:48:5f:80:d8:56: c9:6e:2a:b1:9c:ff:6b:d9:ad:f2:1c:9f:b1:04:ed:77:12:b8: 81:97:f9:aa:5a:6b:82:a7:e8:25:e5:02:0e:97:c3:6b:35:3c: 2c:97:c5:d8:10:06:63:c4:a4:1d:61:ca:d9:c2:97:cd:59:2b: 8f:bd:6e:a4:d0:ff:05:31:2b:50:3b:f4:4c:d0:2e:26:76:06: fb:48:68:90:a6:80:2a:42:00:18:1c:ed:6f:85:3e:c6:2e:f3: 06:87:31:11:87:ea:63:b0:cc:1c:ae:4d:d0:50:ec:06:f5:a3: 9c:e1:e7:40:00:40:ef:39:82:03:a3:69:2b:e4:b6:9e:e4:12: 07:d1:d6:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjQxMTIyMTY0NDIxWhcNMjQxMTI5MTY0NDIxWjAYMRYwFAYD VQQDEw02NzQwYjRlNS01Y2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4w7oPeMKPvdoQfOtyu/NlN4mMkuk4+0iUN59Z2+8MdeY7KucjtBT8OQJgaZZ fZAswnYB9weOWdWWYO9bEXuYGcjBRX5BUzOcSFdjeI2Se0mKq2vMWZXr4HdVCf7O qrWFCiQwsX/CcJS8E4LnpsZWWnoONBChgR8HvweI7pzuA7/Ri3lTjC9qHS7V5nnw OXa1iSDEVl/1ZERX1ka/mKLCgH5P+VeFi6LRMwgaXocVfZ69YilR2k99MN/iku0a 3tPM4qOer0WQpcKv2FbcgeF9IPUDRHtCTqqXDQomXUwFnsegWyCxhoKkpPhhdDiB desL8/MfORv/HMq4DIQYBQTKQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMKI6se eM41UaR6JOaGlX3dZYV4MB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTBGMy80MTcxQjcwNDA0QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlW MmFyZ2lIdUN3ekR4dWJLYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFq3r6pMK9h+lalpc6QlsGAE281T7vH5+kLDbh5LNxOAA1eOkSGAB2 6Bxqjj35I1d05tWq1Svdd+NNqXMBgdWJcV7PeTcO5GFy9baAEeJ6tjI5JA6pRyhK uAqWDnrD6V8gNB6RlKXmIxAIh6FLLhVpmsNmVHJTzp9cSF+A2FbJbiqxnP9r2a3y HJ+xBO13EriBl/mqWmuCp+gl5QIOl8NrNTwsl8XYEAZjxKQdYcrZwpfNWSuPvW6k 0P8FMStQO/RM0C4mdgb7SGiQpoAqQgAYHO1vhT7GLvMGhzERh+pjsMwcrk3QUOwG 9aOc4edAAEDvOYIDo2kr5Lae5BIH0dZy -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:41 2024 by rpki-client on console-fra.rpki-client.org