$ rpki-client -vvf rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft File: HA69woHQL52iTsEXS6nPGEWbk-A.mft (raw, json) Hash identifier: 1QQ4yOs/Ae4Mkj0bEjvC1UmtOgYAonOI826TOJ14Nv4= Subject key identifier: DB:E6:64:A3:1E:62:5D:F3:7F:77:09:D5:9F:81:62:3A:17:3F:51:5A Authority key identifier: 1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 Certificate issuer: /CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Certificate serial: 034B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft Manifest number: 0348 Signing time: Sat 23 Nov 2024 00:34:39 +0000 Manifest this update: Sat 23 Nov 2024 00:34:38 +0000 Manifest next update: Sat 30 Nov 2024 00:34:38 +0000 Files and hashes: 1: HA69woHQL52iTsEXS6nPGEWbk-A.crl (hash: 4kroxRgWQ3exF8H8CcVS4qVzuS9fH5TywfHkU/gcYeg=) 2: ED816DEC95DA11EC993BD050C4F9AE02.roa (hash: CgaWA8a/wuecTSl+u+exVi4DRvR997DWrMlH+6UD+S8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 843 (0x34b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0 Validity Not Before: Nov 23 00:34:38 2024 GMT Not After : Nov 30 00:34:38 2024 GMT Subject: CN=6741231f-7685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:55:35:05:0c:ed:1b:0d:a9:6a:ab:a8:2a:06: 3d:11:72:ef:fe:ae:42:4d:cf:e3:42:3b:4e:7a:fc: 5a:60:1a:f5:4c:05:ea:be:d1:50:aa:34:cc:c8:b5: 25:c7:38:04:7d:67:85:84:38:1a:60:51:20:1b:42: 65:fd:ba:8c:cf:d4:30:f2:ac:bf:9f:36:21:b5:89: 66:d0:a4:f3:a2:ee:b2:1e:6f:b5:72:26:9f:af:9f: 7d:a5:6e:8c:aa:7f:f4:0a:60:81:85:b8:bc:0a:0a: 75:81:f2:43:01:7d:3d:0e:82:1a:b5:2d:f0:a1:4e: f5:60:9e:7a:c5:29:93:99:a0:91:3c:9a:8b:df:b1: b6:5b:d1:52:ae:72:b4:b4:71:ad:ab:ae:2c:70:41: 83:98:ac:9b:f2:57:bf:4f:69:68:38:36:39:9f:99: ad:02:4f:7d:8f:28:dd:8b:f3:97:34:cd:97:07:68: 1f:36:bf:4d:67:12:f3:f7:ad:9f:41:4f:de:83:8f: 15:b3:c4:3f:27:8f:df:69:91:b2:e8:e1:05:52:fb: f5:30:d5:65:4e:29:38:14:6e:79:8a:8c:e5:1a:4b: b6:5e:6f:d0:5f:c3:58:65:1b:15:58:3c:8f:d1:9c: 2a:a1:09:05:4a:8b:d2:82:34:13:22:75:8f:5a:08: bf:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E6:64:A3:1E:62:5D:F3:7F:77:09:D5:9F:81:62:3A:17:3F:51:5A X509v3 Authority Key Identifier: keyid:1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:05:46:02:d1:77:7d:8c:87:0f:79:33:a9:bc:86:cb:27:4f: d7:56:b6:9b:2f:67:3a:44:a7:e8:0d:63:ed:b0:06:18:85:57: 11:60:92:1f:a4:5f:3e:0e:7a:63:85:d1:a1:56:9c:77:8c:d1: 8b:c4:5c:3b:59:4d:7c:49:5c:19:0a:c1:4d:d8:29:45:61:04: c4:3e:23:7e:91:2e:7e:de:3a:bf:33:d5:05:6c:50:b0:7a:d8: 72:d8:35:14:07:40:5a:d3:09:ee:64:b8:39:e7:3f:5d:d2:e0: 23:4f:10:f9:a5:56:eb:67:c9:28:14:78:2b:68:9d:f3:a0:ba: e4:34:bd:51:79:00:e5:1c:68:42:d4:2c:72:67:49:ea:ac:0e: a6:42:9b:58:98:db:aa:dd:0c:09:72:29:42:0a:d4:da:0e:6c: f5:69:b5:c2:bd:88:ad:6a:12:b3:4f:5a:e3:e8:cf:42:e9:f6: 35:ae:ec:fd:1a:4d:fe:a8:7f:e9:46:72:9e:8c:43:2d:37:90: e0:8c:6b:30:1e:28:20:29:12:ae:79:fa:87:1e:44:c7:5d:62: 6b:1e:9a:a2:f0:81:01:f0:ac:14:64:e2:af:4e:16:8d:9b:74: ca:9f:25:a2:c6:d9:c8:dc:2f:83:f6:d6:83:2f:79:6a:a4:5e: ff:ee:40:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlEMUYxMTAvBgNVBAUTKDFDMEVCREMyODFEMDJGOURBMjRFQzExNzRCQTlDRjE4 NDU5QjkzRTAwHhcNMjQxMTIzMDAzNDM4WhcNMjQxMTMwMDAzNDM4WjAYMRYwFAYD VQQDEw02NzQxMjMxZi03Njg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFU1BQztGw2paquoKgY9EXLv/q5CTc/jQjtOevxaYBr1TAXqvtFQqjTMyLUl xzgEfWeFhDgaYFEgG0Jl/bqMz9Qw8qy/nzYhtYlm0KTzou6yHm+1ciafr599pW6M qn/0CmCBhbi8Cgp1gfJDAX09DoIatS3woU71YJ56xSmTmaCRPJqL37G2W9FSrnK0 tHGtq64scEGDmKyb8le/T2loODY5n5mtAk99jyjdi/OXNM2XB2gfNr9NZxLz962f QU/eg48Vs8Q/J4/faZGy6OEFUvv1MNVlTik4FG55iozlGku2Xm/QX8NYZRsVWDyP 0ZwqoQkFSovSgjQTInWPWgi/IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvmZKMe Yl3zf3cJ1Z+BYjoXP1FaMB8GA1UdIwQYMBaAFBwOvcKB0C+dok7BF0upzxhFm5Pg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUQxRi9EOTgyQ0I1RTk1 RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1MmlUc0VYUzZuUEdFV2Jr LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBNjl3b0hRTDUyaVRzRVhTNm5QR0VXYmstQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUQxRi9EOTgyQ0I1RTk1RDcxMUVDOTUzRjk1NERDNEY5QUUwMi9IQTY5d29IUUw1 MmlUc0VYUzZuUEdFV2JrLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOBUYC0Xd9jIcPeTOpvIbLJ0/XVrabL2c6RKfoDWPtsAYYhVcRYJIf pF8+DnpjhdGhVpx3jNGLxFw7WU18SVwZCsFN2ClFYQTEPiN+kS5+3jq/M9UFbFCw ethy2DUUB0Ba0wnuZLg55z9d0uAjTxD5pVbrZ8koFHgraJ3zoLrkNL1ReQDlHGhC 1CxyZ0nqrA6mQptYmNuq3QwJcilCCtTaDmz1abXCvYitahKzT1rj6M9C6fY1ruz9 Gk3+qH/pRnKejEMtN5DgjGswHiggKRKuefqHHkTHXWJrHpqi8IEB8KwUZOKvThaN m3TKnyWixtnI3C+D9taDL3lqpF7/7kCJ -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org