$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: 1cz3VSdg+i2DXHKgfmicVCiKylZe8RKWV4N8tMADmMA= Subject key identifier: 03:E2:FE:B3:21:8B:DE:DE:7E:98:09:98:16:E1:19:6A:CE:2E:AC:0B Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 0514 Signing time: Fri 22 Nov 2024 23:09:41 +0000 Manifest this update: Fri 22 Nov 2024 23:09:40 +0000 Manifest next update: Fri 29 Nov 2024 23:09:40 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: 4hYeY1aMfQQKnRrgeB7v3A1duBpSi079+y3D8vYHFEQ=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1304 (0x518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Nov 22 23:09:40 2024 GMT Not After : Nov 29 23:09:40 2024 GMT Subject: CN=67410f35-5cf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:30:32:2c:d4:ef:c6:de:41:44:51:e3:c7:6d: 3d:c9:cb:29:8c:cd:13:0a:0a:2a:da:e6:fa:d2:7a: 28:19:45:52:77:3f:ba:1b:99:73:fb:a2:be:d3:3e: 5e:ad:6d:8d:39:0a:12:a4:8e:b9:c4:6e:0d:11:c9: 8f:58:51:99:7c:23:10:40:93:91:15:c2:c9:f8:22: 5c:fc:33:68:51:a1:e3:87:fd:33:2f:1e:1d:aa:16: 2f:dc:8a:70:ef:3a:ab:7b:70:8b:fb:a8:97:d9:c1: ea:3c:e0:d3:54:e8:1c:50:ca:ad:fb:66:cf:27:91: 3a:3a:27:79:35:9f:00:5b:36:98:82:88:8c:3c:9b: 52:cd:2a:34:de:ca:9b:2f:a3:d1:d8:c4:63:52:03: 8c:57:2c:79:99:b1:ec:e7:c0:a3:4c:59:b9:6b:2b: 9c:81:76:45:d5:10:91:ae:9f:2d:d1:0a:33:c4:54: f4:a2:dd:41:8f:eb:37:d4:4a:57:78:35:72:8a:9d: 4f:c9:fd:d0:cf:21:b2:77:35:d3:07:6e:ab:2c:78: c1:50:6f:2d:37:36:cf:cb:10:25:de:44:ee:cc:dd: 86:33:7c:23:3d:53:39:07:f8:d9:ed:65:73:3b:c2: 3c:67:91:23:a2:d9:80:7a:57:a9:3e:21:ce:87:75: 1a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E2:FE:B3:21:8B:DE:DE:7E:98:09:98:16:E1:19:6A:CE:2E:AC:0B X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:2d:a2:e6:af:7e:82:f6:f0:49:aa:eb:0c:e1:dc:c3:cc:96: 55:53:d0:c7:f0:4f:c8:44:44:9e:d3:73:e8:f2:62:9c:08:b5: b0:5a:85:f7:f9:5c:f4:3b:eb:f1:fb:c4:22:48:04:fc:b8:3c: c3:ea:8f:17:ed:4a:33:85:cd:f7:6b:0d:34:25:cb:bf:74:46: 9d:51:aa:0a:85:43:3c:7b:63:72:28:9e:e4:4c:8d:be:32:2c: 0e:0d:46:10:ae:97:78:93:a8:ac:ef:1b:3e:98:91:c3:8e:49: f7:7b:a7:cd:81:2b:c1:b0:10:45:d0:10:ef:1d:aa:8b:df:e0: 11:8e:6a:34:69:6e:45:4e:f1:d2:99:e2:ec:23:18:fd:19:f9: 38:18:98:15:ee:03:e7:38:a6:33:b9:13:88:b5:68:05:1a:ed: 20:6b:e6:6c:62:a9:67:72:b6:a2:d6:46:a5:f4:4b:09:5a:19: c6:90:83:7f:08:80:46:48:d3:3a:62:8c:cb:18:86:eb:d6:82: a6:2c:fe:c3:44:00:81:30:7c:93:04:45:3b:9e:f4:82:cb:9f: 7e:9e:e6:e0:15:4e:76:65:55:fa:74:32:32:69:eb:25:3c:ea: 49:4e:5d:6c:75:86:df:61:aa:4e:86:3e:7c:fa:46:ae:0d:8d: c5:8d:6d:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjQxMTIyMjMwOTQwWhcNMjQxMTI5MjMwOTQwWjAYMRYwFAYD VQQDEw02NzQxMGYzNS01Y2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDAyLNTvxt5BRFHjx209ycspjM0TCgoq2ub60nooGUVSdz+6G5lz+6K+0z5e rW2NOQoSpI65xG4NEcmPWFGZfCMQQJORFcLJ+CJc/DNoUaHjh/0zLx4dqhYv3Ipw 7zqre3CL+6iX2cHqPODTVOgcUMqt+2bPJ5E6Oid5NZ8AWzaYgoiMPJtSzSo03sqb L6PR2MRjUgOMVyx5mbHs58CjTFm5ayucgXZF1RCRrp8t0QozxFT0ot1Bj+s31EpX eDVyip1Pyf3QzyGydzXTB26rLHjBUG8tNzbPyxAl3kTuzN2GM3wjPVM5B/jZ7WVz O8I8Z5EjotmAelepPiHOh3UamwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPi/rMh i97efpgJmBbhGWrOLqwLMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWLaLmr36C9vBJqusM4dzDzJZVU9DH8E/IRESe03Po8mKcCLWwWoX3 +Vz0O+vx+8QiSAT8uDzD6o8X7Uozhc33aw00Jcu/dEadUaoKhUM8e2NyKJ7kTI2+ MiwODUYQrpd4k6is7xs+mJHDjkn3e6fNgSvBsBBF0BDvHaqL3+ARjmo0aW5FTvHS meLsIxj9Gfk4GJgV7gPnOKYzuROItWgFGu0ga+ZsYqlncrai1kal9EsJWhnGkIN/ CIBGSNM6YozLGIbr1oKmLP7DRACBMHyTBEU7nvSCy59+nubgFU52ZVX6dDIyaesl POpJTl1sdYbfYapOhj58+kauDY3FjW0P -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:36 2024 by rpki-client on console-fra.rpki-client.org