$ rpki-client -vvf rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft File: hnoHFJZqnX2LIC37HeIhPALANic.mft (raw, json) Hash identifier: awOfyZDD/tlBWYkpiNf+LoGXATpFLSnj6M6SeOvQ5fs= Subject key identifier: 9A:A3:16:66:0E:54:E1:3B:07:08:B6:5D:14:3E:FF:63:6A:11:32:CD Authority key identifier: 86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 Certificate issuer: /CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft Manifest number: 0B73 Signing time: Fri 22 Nov 2024 18:48:16 +0000 Manifest this update: Fri 22 Nov 2024 18:48:16 +0000 Manifest next update: Fri 29 Nov 2024 18:48:16 +0000 Files and hashes: 1: hnoHFJZqnX2LIC37HeIhPALANic.crl (hash: 0e0CZSkxgS4/53NK838najTriIO+HjrOcT5qbMacgmw=) 2: D1DB990C1A3811EAB6F9C83DC4F9AE02.roa (hash: oAQXKyMN+g/SnVrlvfpXSqSL34IkNi3s4UmcwoA1BBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FD74/serialNumber=867A0714966A9D7D8B202DFB1DE2213C02C03627 Validity Not Before: Nov 22 18:48:16 2024 GMT Not After : Nov 29 18:48:16 2024 GMT Subject: CN=6740d1f0-2859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b7:c2:62:6e:80:35:62:3a:b3:f3:82:08:14: 10:4a:89:f8:9c:72:2c:5c:8a:17:54:dd:31:63:53: 8d:48:7a:de:f6:86:ec:77:72:51:fb:87:78:76:a7: 8f:b8:8f:74:bf:6c:f4:66:db:04:a4:31:6e:ea:f7: 11:97:11:2e:d4:c2:be:79:ce:94:1a:f6:5c:83:9a: 75:4f:1f:b6:da:46:ef:06:18:1e:3d:fe:bc:73:45: c8:35:67:67:ea:bd:e3:22:04:bd:29:e6:68:13:ac: 23:12:c4:7c:58:3d:da:cc:bd:04:7b:65:a3:72:9b: 6d:aa:27:5e:87:14:04:ec:90:47:ca:b6:8e:a0:c9: c2:fd:02:6b:4c:69:6a:56:9c:6f:a3:84:5d:44:92: 80:65:1c:e2:74:9b:10:f6:2a:d5:4e:2a:d0:e9:bf: e7:0d:81:c6:74:3a:fb:7f:1b:01:ac:1c:23:46:fe: 53:99:9c:c7:fa:fa:92:9d:86:ac:d1:77:1a:a0:ab: 79:a7:cc:13:c9:9a:ba:c7:65:1a:ed:9c:28:78:37: 0b:f1:f5:cd:37:b3:fc:a4:05:b5:71:3a:8f:14:d9: 07:f0:6c:10:1b:63:a2:10:84:8e:23:ae:cd:27:96: bb:63:3e:fa:2c:ee:d6:b1:55:91:56:6e:88:a8:e3: a6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A3:16:66:0E:54:E1:3B:07:08:B6:5D:14:3E:FF:63:6A:11:32:CD X509v3 Authority Key Identifier: keyid:86:7A:07:14:96:6A:9D:7D:8B:20:2D:FB:1D:E2:21:3C:02:C0:36:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnoHFJZqnX2LIC37HeIhPALANic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FD74/5367B6BE1A3811EAA0E8A23DC4F9AE02/hnoHFJZqnX2LIC37HeIhPALANic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:bd:54:7b:a9:b7:4f:5e:76:98:87:76:45:6c:f4:f6:fb:c0: 96:e2:50:b5:a7:48:0f:dc:b0:43:65:81:bb:3d:d2:43:2d:3b: ec:f8:3f:2d:87:20:01:db:cf:f9:11:e9:b3:a9:bf:6a:91:46: 17:d8:9d:e0:ab:ab:b2:7d:77:13:f3:b1:d8:67:1f:a6:6d:6a: 31:19:e5:f1:c3:23:c5:51:66:7c:27:95:9c:d5:a4:84:5a:87: 80:1b:0d:08:fe:aa:59:4d:c2:18:11:25:ec:9b:fb:bb:e1:38: 1f:47:40:09:16:91:d5:e8:42:b7:9a:a6:f0:4f:15:ec:96:78: 4b:4f:60:ca:11:54:26:9b:eb:0e:52:a7:47:90:2a:af:da:2e: ed:c1:30:98:26:21:fc:b9:ce:4f:32:90:38:97:53:49:64:fe: f5:0d:95:54:93:02:75:ff:4a:82:63:c1:38:b7:0b:fd:63:18: e4:5a:08:1d:e8:e4:83:28:23:83:0f:a1:ef:45:65:28:ef:ad: 07:b6:8d:97:e6:60:08:64:02:51:39:0f:66:2b:b9:2c:69:e5: c4:04:43:32:b8:a4:d7:3c:5f:f9:28:b1:24:00:3c:e2:a4:7a: cf:6f:ce:e0:b7:95:24:ba:e0:95:d2:c4:81:c1:91:58:ee:b3: 2a:70:b8:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZENzQxMTAvBgNVBAUTKDg2N0EwNzE0OTY2QTlEN0Q4QjIwMkRGQjFERTIyMTND MDJDMDM2MjcwHhcNMjQxMTIyMTg0ODE2WhcNMjQxMTI5MTg0ODE2WjAYMRYwFAYD VQQDEw02NzQwZDFmMC0yODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbfCYm6ANWI6s/OCCBQQSon4nHIsXIoXVN0xY1ONSHre9obsd3JR+4d4dqeP uI90v2z0ZtsEpDFu6vcRlxEu1MK+ec6UGvZcg5p1Tx+22kbvBhgePf68c0XINWdn 6r3jIgS9KeZoE6wjEsR8WD3azL0Ee2WjcpttqidehxQE7JBHyraOoMnC/QJrTGlq Vpxvo4RdRJKAZRzidJsQ9irVTirQ6b/nDYHGdDr7fxsBrBwjRv5TmZzH+vqSnYas 0XcaoKt5p8wTyZq6x2Ua7ZwoeDcL8fXNN7P8pAW1cTqPFNkH8GwQG2OiEISOI67N J5a7Yz76LO7WsVWRVm6IqOOm/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqjFmYO VOE7Bwi2XRQ+/2NqETLNMB8GA1UdIwQYMBaAFIZ6BxSWap19iyAt+x3iITwCwDYn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkQ3NC81MzY3QjZCRTFB MzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5YMkxJQzM3SGVJaFBBTEFO aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hub0hGSlpxblgyTElDMzdIZUloUEFMQU5pYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkQ3NC81MzY3QjZCRTFBMzgxMUVBQTBFOEEyM0RDNEY5QUUwMi9obm9IRkpacW5Y MkxJQzM3SGVJaFBBTEFOaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4vVR7qbdPXnaYh3ZFbPT2+8CW4lC1p0gP3LBDZYG7PdJDLTvs+D8t hyAB28/5Eemzqb9qkUYX2J3gq6uyfXcT87HYZx+mbWoxGeXxwyPFUWZ8J5Wc1aSE WoeAGw0I/qpZTcIYESXsm/u74TgfR0AJFpHV6EK3mqbwTxXslnhLT2DKEVQmm+sO UqdHkCqv2i7twTCYJiH8uc5PMpA4l1NJZP71DZVUkwJ1/0qCY8E4twv9YxjkWggd 6OSDKCODD6HvRWUo760Hto2X5mAIZAJROQ9mK7ksaeXEBEMyuKTXPF/5KLEkADzi pHrPb87gt5UkuuCV0sSBwZFY7rMqcLiw -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org