$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft File: HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft (raw, json) Hash identifier: cYZTZJF26TqVDpzOD3EKJi2MQHK769W9M0xQ3rZqvew= Subject key identifier: 5C:E7:A0:97:15:CD:54:C7:D2:90:4B:26:C8:FF:90:45:C7:C7:2F:F8 Authority key identifier: 1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 Certificate issuer: /CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Certificate serial: 0271 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft Manifest number: 026E Signing time: Sat 23 Nov 2024 01:13:00 +0000 Manifest this update: Sat 23 Nov 2024 01:12:59 +0000 Manifest next update: Sat 30 Nov 2024 01:12:59 +0000 Files and hashes: 1: HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl (hash: uYxr8UH2BoqLiKWAtPcOjVztm3vU81Zykfd20c5dfLs=) 2: 830C9F90EBCA11ECA2A1747EC4F9AE02.roa (hash: LJB886NUTljPvfWlokxnMW+kRUtkV7Ec61N0MHSXzHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF2B/serialNumber=1CBA8D3DAA80488930A9928B196EDEE075F409A4 Validity Not Before: Nov 23 01:12:59 2024 GMT Not After : Nov 30 01:12:59 2024 GMT Subject: CN=67412c1b-1745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cb:41:9e:3a:2f:96:78:fd:43:b7:c0:5a:67: 30:64:87:66:9d:39:7a:3c:aa:01:08:be:3f:3d:d3: fd:34:02:79:db:fb:10:57:65:09:25:c2:b4:d7:f2: 6e:1b:47:59:29:a9:f6:d5:35:3f:7f:4d:2a:7a:6b: df:8b:1a:1d:fd:41:e0:ce:bf:ee:24:0a:09:b6:d5: 83:1c:76:96:31:0f:42:01:e4:5e:1b:a5:1a:6e:26: 39:ac:87:74:0e:54:e1:d2:6a:0b:53:0f:56:d4:cb: 0b:da:f4:d6:8a:2b:fc:cc:14:da:43:7d:68:25:c7: b2:ab:78:61:37:78:77:93:42:e4:a6:ec:87:f1:89: fb:f0:85:d9:10:5d:ce:b3:a9:30:fe:72:83:47:ec: 8d:1d:c2:0a:97:c9:6c:2a:57:60:97:d1:2f:51:f2: 00:fd:a4:72:72:de:54:22:88:c2:3c:e4:85:d3:f0: 75:57:fd:94:46:5e:4e:0c:4a:90:74:2a:65:39:cd: 7b:66:02:7c:8b:68:89:1f:ad:e8:03:1b:77:c8:0f: f8:d2:8f:eb:48:26:c3:e1:45:b8:91:ac:32:40:d7: 58:89:20:f2:48:af:d3:52:d1:b7:5b:2b:34:41:34: be:ff:37:2f:10:d1:d4:6c:cd:97:18:ac:4d:10:cb: 08:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E7:A0:97:15:CD:54:C7:D2:90:4B:26:C8:FF:90:45:C7:C7:2F:F8 X509v3 Authority Key Identifier: keyid:1C:BA:8D:3D:AA:80:48:89:30:A9:92:8B:19:6E:DE:E0:75:F4:09:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLqNPaqASIkwqZKLGW7e4HX0CaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF2B/537322FAEBC411EC9385EC62C4F9AE02/HLqNPaqASIkwqZKLGW7e4HX0CaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:5d:37:d7:8b:d8:a8:96:d8:3d:72:dd:45:bf:8d:c2:31:9f: e2:c6:99:65:78:53:59:49:e8:11:7a:29:b3:57:4a:26:ac:da: 3b:cf:4c:5f:b7:1f:cb:da:1f:a0:25:9b:6b:e0:61:93:07:18: 6f:d3:32:d9:2c:39:7b:4f:c6:51:21:75:8c:bb:d2:6e:0f:1f: 0b:76:61:f2:2b:46:cd:9c:95:ce:0f:d8:c3:71:0d:a0:8e:60: 1c:6b:fa:a2:7b:92:f8:b5:97:ed:4e:40:b8:bf:3c:0b:d4:7b: 55:3e:b7:26:4c:26:db:b7:2b:a6:c3:4e:4a:2a:0e:fa:e2:8b: 8a:51:57:8c:dc:48:03:69:e0:dd:5a:47:c3:0c:16:ae:20:f5: 7e:2b:62:42:c6:6a:d1:28:d7:69:f8:5c:ad:30:92:39:19:a8: 63:33:a0:81:0c:4e:e3:1f:59:d7:0b:5a:94:fd:b4:54:b7:c4: 82:51:0c:0f:53:9d:35:b4:60:4c:49:31:a8:ea:57:95:86:fc: 19:66:0f:b5:e3:19:d1:78:2e:b9:cf:86:74:b1:cf:0f:08:d7: 0b:ca:22:20:dd:cf:6a:3a:0d:4b:44:cb:0e:6e:43:b2:e9:63: 4d:b0:54:50:49:fc:27:02:f5:6a:8b:c3:fd:34:c0:3c:09:b3: d9:f9:7e:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGMkIxMTAvBgNVBAUTKDFDQkE4RDNEQUE4MDQ4ODkzMEE5OTI4QjE5NkVERUUw NzVGNDA5QTQwHhcNMjQxMTIzMDExMjU5WhcNMjQxMTMwMDExMjU5WjAYMRYwFAYD VQQDEw02NzQxMmMxYi0xNzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ctBnjovlnj9Q7fAWmcwZIdmnTl6PKoBCL4/PdP9NAJ52/sQV2UJJcK01/Ju G0dZKan21TU/f00qemvfixod/UHgzr/uJAoJttWDHHaWMQ9CAeReG6UabiY5rId0 DlTh0moLUw9W1MsL2vTWiiv8zBTaQ31oJceyq3hhN3h3k0LkpuyH8Yn78IXZEF3O s6kw/nKDR+yNHcIKl8lsKldgl9EvUfIA/aRyct5UIojCPOSF0/B1V/2URl5ODEqQ dCplOc17ZgJ8i2iJH63oAxt3yA/40o/rSCbD4UW4kawyQNdYiSDySK/TUtG3Wys0 QTS+/zcvENHUbM2XGKxNEMsIAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFznoJcV zVTH0pBLJsj/kEXHxy/4MB8GA1UdIwQYMBaAFBy6jT2qgEiJMKmSixlu3uB19Amk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUYyQi81MzczMjJGQUVC QzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJa3dxWktMR1c3ZTRIWDBD YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hMcU5QYXFBU0lrd3FaS0xHVzdlNEhYMENhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUYyQi81MzczMjJGQUVCQzQxMUVDOTM4NUVDNjJDNEY5QUUwMi9ITHFOUGFxQVNJ a3dxWktMR1c3ZTRIWDBDYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6XTfXi9ioltg9ct1Fv43CMZ/ixplleFNZSegReimzV0omrNo7z0xf tx/L2h+gJZtr4GGTBxhv0zLZLDl7T8ZRIXWMu9JuDx8LdmHyK0bNnJXOD9jDcQ2g jmAca/qie5L4tZftTkC4vzwL1HtVPrcmTCbbtyumw05KKg764ouKUVeM3EgDaeDd WkfDDBauIPV+K2JCxmrRKNdp+FytMJI5GahjM6CBDE7jH1nXC1qU/bRUt8SCUQwP U501tGBMSTGo6leVhvwZZg+14xnReC65z4Z0sc8PCNcLyiIg3c9qOg1LRMsObkOy 6WNNsFRQSfwnAvVqi8P9NMA8CbPZ+X78 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org