$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft File: hHBzG4maje6yn-pRuQ3BWNvaKvA.mft (raw, json) Hash identifier: iopBtyaF91+hubObJFSWnQjpX+xUXQJc05UAJCNp22I= Subject key identifier: 00:25:91:04:EB:8B:EE:5B:A2:BA:F8:F5:9C:55:53:95:F4:46:B2:C0 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 1328 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft Manifest number: 1315 Signing time: Fri 22 Nov 2024 17:02:00 +0000 Manifest this update: Fri 22 Nov 2024 17:01:59 +0000 Manifest next update: Fri 29 Nov 2024 17:01:59 +0000 Files and hashes: 1: hHBzG4maje6yn-pRuQ3BWNvaKvA.crl (hash: 2rawrJmsZJCOEqx2Ab/qQW5ExY211bcMvU1qBso5c3o=) 2: 7DB1A01E769511EBBF193769C4F9AE02.roa (hash: 5XbFDEbqdzdfK6bXl6kTUlRCISf9y8xCl7Mg0GE6eCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4904 (0x1328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Nov 22 17:01:59 2024 GMT Not After : Nov 29 17:01:59 2024 GMT Subject: CN=6740b907-5a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:3a:14:84:3b:cb:9d:1a:02:b0:9b:56:ad:86: 6b:75:0c:13:d6:1a:51:f4:83:43:b9:d1:4e:31:5c: 79:e2:1c:4d:39:bd:52:d0:05:3e:d0:ed:67:9b:28: cb:60:f6:73:fc:85:c2:8b:87:9a:e8:d4:80:dd:f4: 5e:82:22:e1:d5:f2:bd:e2:9a:23:e6:4e:0d:cf:60: 64:92:1d:7e:df:a6:d2:84:e6:1e:f8:38:95:6a:8c: 72:06:ea:8d:f7:80:0f:58:75:1f:1c:ab:fa:0d:d6: 4f:92:e6:ce:ab:d1:84:db:a8:be:ee:75:84:53:09: 06:ce:9f:e6:21:df:2c:c5:3a:61:bd:da:b2:ed:33: f6:3b:4e:e4:fe:59:8e:2e:e3:6e:32:5f:45:bf:2f: 14:7a:19:00:dc:58:6f:38:40:f5:06:4e:7e:6f:96: ec:d4:7f:2f:2a:76:7b:d0:27:76:cb:65:ea:48:bb: b6:2d:2e:d9:32:e2:0d:15:a5:20:34:b0:cb:20:15: 9a:be:72:f4:0a:2e:a4:6a:71:6c:55:93:a6:bb:ea: 1d:8d:1c:1a:31:ee:6a:f2:ca:78:20:7a:ae:1a:8f: 60:e8:2b:e9:95:d7:1c:51:53:19:f1:e5:d6:a9:dc: 5c:69:8f:39:c3:8e:c9:a5:dc:9d:51:10:3d:e4:78: 26:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:25:91:04:EB:8B:EE:5B:A2:BA:F8:F5:9C:55:53:95:F4:46:B2:C0 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c9:9b:1d:c0:6a:32:93:c3:39:c7:e0:b4:f7:c3:b4:7a:9b: a2:81:62:1c:06:a3:9d:db:db:a0:e0:a6:80:64:a0:8d:d7:59: 5b:55:b6:99:0f:ce:ff:b8:03:20:7a:08:58:d1:4b:bf:81:d0: a0:4c:8f:5e:0a:80:a8:7f:67:3f:ed:06:56:34:79:0b:82:53: 7d:31:49:16:fc:1a:2f:65:08:c4:f4:05:a4:1f:32:3c:3c:d3: 5e:80:df:1d:58:2f:a2:f9:f1:68:8b:ae:95:ee:0c:4d:bd:d8: 91:f6:6a:3c:1d:26:bf:f6:35:29:c5:93:64:8f:cb:35:77:0c: 43:09:42:46:a3:94:a8:2b:6a:1a:f4:f4:43:af:dd:ed:85:e9: cd:14:36:6c:1d:7d:e0:79:13:ee:e6:ec:5c:b4:27:4b:79:6f: e0:c6:8d:87:a9:93:8d:7e:d0:cf:87:d4:86:c5:3d:0a:71:4e: 44:be:a1:79:8d:03:26:1e:19:0e:ff:aa:cd:59:2a:a5:9d:99: ed:b6:58:db:7b:ce:3b:f5:77:73:82:7b:cb:c1:5c:f0:ca:d9: 2c:f0:89:f2:c3:ed:52:a8:1f:44:3c:07:f3:04:e2:de:37:76: 90:75:c4:0d:ea:d5:22:42:e3:e1:36:c3:81:96:62:41:4f:fd: 14:b1:c1:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjQxMTIyMTcwMTU5WhcNMjQxMTI5MTcwMTU5WjAYMRYwFAYD VQQDEw02NzQwYjkwNy01YTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ToUhDvLnRoCsJtWrYZrdQwT1hpR9INDudFOMVx54hxNOb1S0AU+0O1nmyjL YPZz/IXCi4ea6NSA3fRegiLh1fK94poj5k4Nz2Bkkh1+36bShOYe+DiVaoxyBuqN 94APWHUfHKv6DdZPkubOq9GE26i+7nWEUwkGzp/mId8sxTphvdqy7TP2O07k/lmO LuNuMl9Fvy8UehkA3FhvOED1Bk5+b5bs1H8vKnZ70Cd2y2XqSLu2LS7ZMuINFaUg NLDLIBWavnL0Ci6kanFsVZOmu+odjRwaMe5q8sp4IHquGo9g6CvpldccUVMZ8eXW qdxcaY85w47JpdydURA95HgmHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAlkQTr i+5borr49ZxVU5X0RrLAMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUYzMi85REVDMDc0MDlFNTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWpl NnluLXBSdVEzQldOdmFLdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADyZsdwGoyk8M5x+C098O0epuigWIcBqOd29ug4KaAZKCN11lbVbaZ D87/uAMgeghY0Uu/gdCgTI9eCoCof2c/7QZWNHkLglN9MUkW/BovZQjE9AWkHzI8 PNNegN8dWC+i+fFoi66V7gxNvdiR9mo8HSa/9jUpxZNkj8s1dwxDCUJGo5SoK2oa 9PRDr93thenNFDZsHX3geRPu5uxctCdLeW/gxo2HqZONftDPh9SGxT0KcU5EvqF5 jQMmHhkO/6rNWSqlnZnttljbe8479XdzgnvLwVzwytks8Inyw+1SqB9EPAfzBOLe N3aQdcQN6tUiQuPhNsOBlmJBT/0UscEz -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org