$ rpki-client -vvf rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft File: HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft (raw, json) Hash identifier: Dnkc/lzmRewzA1hjbreD5jz1SGK2QUmnTPlrzJg5wUY= Subject key identifier: 9B:23:B0:E8:0C:E7:98:D3:82:74:E7:0B:1B:93:71:8B:E2:21:D0:61 Authority key identifier: 1C:62:DC:1D:80:CB:AB:03:03:53:E1:F5:74:B3:60:01:98:FB:6B:71 Certificate issuer: /CN=A916ED18/serialNumber=1C62DC1D80CBAB030353E1F574B3600198FB6B71 Certificate serial: 18EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft Manifest number: 18D6 Signing time: Sun 24 Nov 2024 16:20:00 +0000 Manifest this update: Sun 24 Nov 2024 16:20:00 +0000 Manifest next update: Sun 01 Dec 2024 16:20:00 +0000 Files and hashes: 1: HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl (hash: Q232Gg1XxC84Z3WVZzZfWSeSqJJ8a5xpJlhJ70RE3Qs=) 2: BE8F165C873111E9AA82EC27C4F9AE02.roa (hash: Xvk9c25qRt1XT1WoQeTZNF8a7ZR5UOWIfJYiBZNp3Lo=) 3: 9C1DF7FC434311ECBE4BAA38C4F9AE02.roa (hash: ZYXynd/2Y7ukYX8bO7tWRLxmXPOwOSzcsRTG+CNcqC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6378 (0x18ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916ED18/serialNumber=1C62DC1D80CBAB030353E1F574B3600198FB6B71 Validity Not Before: Nov 24 16:20:00 2024 GMT Not After : Dec 1 16:20:00 2024 GMT Subject: CN=67435230-1153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ff:c4:db:76:9f:71:d4:45:9d:1f:cc:24:1d: e6:a4:66:fd:17:17:93:23:73:83:ee:a2:01:a4:9c: 70:34:46:19:23:50:da:07:4c:37:91:c3:8f:cc:ca: d2:09:47:0b:98:a4:43:ef:f8:70:93:d7:0c:3d:87: 1c:46:a5:7c:d2:85:dc:7a:58:85:73:e7:33:d4:bb: 94:40:2a:05:3b:14:c3:b8:36:94:e5:ba:76:5f:57: c9:2c:dc:b4:53:62:cc:f4:6c:6d:cc:82:c3:80:63: 5f:61:43:e4:2e:7d:1f:58:bf:38:33:ac:d2:f4:68: d4:ff:8e:fd:81:f5:67:32:f4:cb:be:6c:7a:64:85: d7:ce:67:9a:86:0d:71:e8:eb:e1:50:dd:27:4b:d7: fe:d1:22:37:22:04:8a:be:fd:fb:50:b7:b2:41:1b: e2:5d:b2:24:e6:92:1a:51:0a:57:ad:97:70:4c:da: e7:55:7e:7e:75:12:02:d0:d5:94:2d:2f:6f:7e:d4: d0:96:b2:39:3a:cf:01:a6:30:31:c6:9b:98:65:31: 1b:7b:a5:a9:0d:87:cb:21:01:cc:96:13:6d:a1:88: 3c:b8:9a:e9:72:d2:ba:70:52:2a:d7:ce:10:41:0f: 23:c8:22:b2:74:c4:bd:f7:67:1a:ed:ea:8f:a3:2e: 77:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:23:B0:E8:0C:E7:98:D3:82:74:E7:0B:1B:93:71:8B:E2:21:D0:61 X509v3 Authority Key Identifier: keyid:1C:62:DC:1D:80:CB:AB:03:03:53:E1:F5:74:B3:60:01:98:FB:6B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HGLcHYDLqwMDU-H1dLNgAZj7a3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916ED18/FFFEC11A7AF811E7898A6F2EC4F9AE02/HGLcHYDLqwMDU-H1dLNgAZj7a3E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:2f:60:06:96:cb:69:4b:7b:84:ce:f4:ed:c3:bb:9f:23:42: ea:3a:82:d4:60:ec:98:8b:62:d9:a7:ab:64:ff:96:f2:22:c2: c0:5d:aa:f6:91:75:d6:ce:eb:70:d3:fc:e4:38:69:61:fb:55: fe:12:35:dc:e5:da:47:0f:82:0d:bd:6f:16:fc:53:fa:88:3d: 0d:49:d9:98:cb:36:bf:50:a5:44:c9:be:a5:0c:29:24:23:f8: f0:0a:98:35:6d:03:0b:0d:69:99:43:f0:40:ea:2e:3e:8c:7c: f6:c1:ea:ac:5e:e9:ce:b3:e5:52:f1:b5:66:7d:3d:10:c3:a9: d3:ef:1c:30:53:8f:c5:a1:ca:7e:39:c6:ce:fd:15:c2:50:c6: 57:2d:c8:82:ce:17:b4:6c:ef:b2:53:5f:d2:5b:db:a5:0f:70: 38:14:bc:74:c2:a2:8a:82:96:8d:df:9a:e7:03:71:13:2c:a2: b8:c2:8d:77:8a:92:ba:0e:41:6a:51:be:9a:88:f8:bc:70:5f: 4f:6c:da:12:fc:f4:79:64:61:76:5c:29:f5:cb:da:db:e4:2f: 72:24:dc:12:e5:1a:bd:4a:62:41:f8:3b:a9:28:ee:c3:97:d3: d2:7a:0e:b7:b4:8f:ec:da:ee:23:12:05:93:c1:be:81:f5:b8: 66:08:96:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEMTgxMTAvBgNVBAUTKDFDNjJEQzFEODBDQkFCMDMwMzUzRTFGNTc0QjM2MDAx OThGQjZCNzEwHhcNMjQxMTI0MTYyMDAwWhcNMjQxMjAxMTYyMDAwWjAYMRYwFAYD VQQDEw02NzQzNTIzMC0xMTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3f/E23afcdRFnR/MJB3mpGb9FxeTI3OD7qIBpJxwNEYZI1DaB0w3kcOPzMrS CUcLmKRD7/hwk9cMPYccRqV80oXceliFc+cz1LuUQCoFOxTDuDaU5bp2X1fJLNy0 U2LM9GxtzILDgGNfYUPkLn0fWL84M6zS9GjU/479gfVnMvTLvmx6ZIXXzmeahg1x 6OvhUN0nS9f+0SI3IgSKvv37ULeyQRviXbIk5pIaUQpXrZdwTNrnVX5+dRIC0NWU LS9vftTQlrI5Os8BpjAxxpuYZTEbe6WpDYfLIQHMlhNtoYg8uJrpctK6cFIq184Q QQ8jyCKydMS992ca7eqPoy53jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsjsOgM 55jTgnTnCxuTcYviIdBhMB8GA1UdIwQYMBaAFBxi3B2Ay6sDA1Ph9XSzYAGY+2tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUQxOC9GRkZFQzExQTdB RjgxMUU3ODk4QTZGMkVDNEY5QUUwMi9IR0xjSFlETHF3TURVLUgxZExOZ0Faajdh M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hHTGNIWURMcXdNRFUtSDFkTE5nQVpqN2EzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUQxOC9GRkZFQzExQTdBRjgxMUU3ODk4QTZGMkVDNEY5QUUwMi9IR0xjSFlETHF3 TURVLUgxZExOZ0FaajdhM0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsL2AGlstpS3uEzvTtw7ufI0LqOoLUYOyYi2LZp6tk/5byIsLAXar2 kXXWzutw0/zkOGlh+1X+EjXc5dpHD4INvW8W/FP6iD0NSdmYyza/UKVEyb6lDCkk I/jwCpg1bQMLDWmZQ/BA6i4+jHz2weqsXunOs+VS8bVmfT0Qw6nT7xwwU4/Focp+ OcbO/RXCUMZXLciCzhe0bO+yU1/SW9ulD3A4FLx0wqKKgpaN35rnA3ETLKK4wo13 ipK6DkFqUb6aiPi8cF9PbNoS/PR5ZGF2XCn1y9rb5C9yJNwS5Rq9SmJB+DupKO7D l9PSeg63tI/s2u4jEgWTwb6B9bhmCJau -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:07 2024 by rpki-client on console-fra.rpki-client.org