$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: J5fgcxFFAgVVRW7PGpUIS13OoCFJOU24ofEcea5/o20= Subject key identifier: 34:11:69:E2:71:DE:67:F1:00:63:8E:1A:35:04:39:6D:B9:16:97:4E Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 343A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 3432 Signing time: Sun 24 Nov 2024 14:49:10 +0000 Manifest this update: Sun 24 Nov 2024 14:49:10 +0000 Manifest next update: Sun 01 Dec 2024 14:49:10 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: gIe3sbvJO9qXpu53Ah/NXeO83gmv5Jx5L17xJzjQMYk=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: +OwFewk9ymglfVJ+smaviULwYCdFbGXjXh7fZzykIh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13370 (0x343a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Nov 24 14:49:10 2024 GMT Not After : Dec 1 14:49:10 2024 GMT Subject: CN=67433ce6-d9e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c0:8c:3a:f9:91:58:47:37:8f:3e:a8:fd:f8: bc:b7:3d:e4:a8:38:71:bc:21:47:3a:42:5d:1e:7f: b1:16:a2:02:32:b8:d3:f1:08:31:c6:26:75:04:63: b8:d3:9f:25:50:4a:fe:db:5d:46:3b:51:58:4b:72: f2:9c:28:2c:c3:c8:86:f6:92:50:ea:30:22:25:72: 2a:b6:76:78:84:ae:71:63:25:a5:4c:b3:55:fa:4c: fc:58:85:9e:f1:49:cf:8d:dd:88:37:14:29:a6:7f: 47:f5:8c:c9:5f:a8:c6:08:1e:4e:0e:de:8d:64:de: 69:83:c0:70:92:b0:c9:99:0a:bf:88:64:71:a4:13: db:9f:dc:1e:68:9d:6c:d9:ec:94:57:40:f4:1a:b3: a9:d5:d6:99:da:1f:fe:c8:03:e4:b9:e3:a3:1b:be: d2:c7:bb:47:05:5c:01:47:53:4f:59:95:5f:83:9e: e9:81:8f:bf:36:d0:5e:dd:f1:66:f5:0d:be:69:98: ed:fe:73:06:ee:8f:ef:50:0f:43:93:7d:df:f4:19: 0a:80:ae:ed:45:2c:99:a8:21:8a:51:23:2e:7d:b7: 6e:a2:9d:02:ed:63:eb:ec:33:11:6c:5c:32:0a:1b: cb:93:94:a1:56:d3:98:09:a3:65:77:4d:2c:ed:36: ce:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:11:69:E2:71:DE:67:F1:00:63:8E:1A:35:04:39:6D:B9:16:97:4E X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:4a:b4:d3:90:e3:86:47:ce:17:08:f6:0a:c4:4d:d3:1f:16: 16:74:0f:94:85:58:bf:a4:d8:cd:08:6f:38:7e:8c:a8:87:84: 40:1d:80:49:bd:48:63:c0:f6:72:bc:a9:fb:d9:4a:a9:0f:05: 28:1d:3d:22:e9:9e:ab:2b:3e:32:53:40:55:6f:dc:a4:2a:11: 33:2d:fa:e1:58:5f:40:0e:fa:b8:7f:a7:8a:48:a4:03:84:42: c7:6f:8e:ed:8a:6e:2a:81:63:94:bc:d2:cc:c5:d6:7c:d5:6d: 5d:fd:e2:de:02:67:a9:38:2d:ab:25:e8:de:12:b0:13:cb:94: 00:5d:f4:40:22:fa:14:06:09:d6:18:9f:dd:74:12:91:2f:88: 6f:61:48:f2:fb:e6:44:3e:85:eb:ed:0a:f6:54:32:92:cd:67: 58:2f:c1:ea:80:5b:79:03:e0:7c:fd:18:b8:57:05:1e:1c:b5: bb:3d:a0:d8:1b:41:c1:96:17:ab:a0:1b:0a:78:1a:ae:c8:e4: ce:11:32:9a:eb:54:1f:14:d9:e1:c1:f9:53:8b:87:0d:e4:53: bd:4e:ba:cc:22:b0:7e:ac:29:78:df:8e:5d:50:4b:29:b5:59: e9:91:d8:be:96:26:0d:c4:d0:0a:ca:b9:6d:7e:b7:5d:55:81: 0d:d3:56:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjQxMTI0MTQ0OTEwWhcNMjQxMjAxMTQ0OTEwWjAYMRYwFAYD VQQDEw02NzQzM2NlNi1kOWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8CMOvmRWEc3jz6o/fi8tz3kqDhxvCFHOkJdHn+xFqICMrjT8QgxxiZ1BGO4 058lUEr+211GO1FYS3LynCgsw8iG9pJQ6jAiJXIqtnZ4hK5xYyWlTLNV+kz8WIWe 8UnPjd2INxQppn9H9YzJX6jGCB5ODt6NZN5pg8BwkrDJmQq/iGRxpBPbn9weaJ1s 2eyUV0D0GrOp1daZ2h/+yAPkueOjG77Sx7tHBVwBR1NPWZVfg57pgY+/NtBe3fFm 9Q2+aZjt/nMG7o/vUA9Dk33f9BkKgK7tRSyZqCGKUSMufbduop0C7WPr7DMRbFwy ChvLk5ShVtOYCaNld00s7TbO4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQRaeJx 3mfxAGOOGjUEOW25FpdOMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBSrTTkOOGR84XCPYKxE3THxYWdA+UhVi/pNjNCG84foyoh4RAHYBJ vUhjwPZyvKn72UqpDwUoHT0i6Z6rKz4yU0BVb9ykKhEzLfrhWF9ADvq4f6eKSKQD hELHb47tim4qgWOUvNLMxdZ81W1d/eLeAmepOC2rJejeErATy5QAXfRAIvoUBgnW GJ/ddBKRL4hvYUjy++ZEPoXr7Qr2VDKSzWdYL8HqgFt5A+B8/Ri4VwUeHLW7PaDY G0HBlheroBsKeBquyOTOETKa61QfFNnhwflTi4cN5FO9TrrMIrB+rCl4345dUEsp tVnpkdi+liYNxNAKyrltfrddVYEN01Zg -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:47 2024 by rpki-client on console-fra.rpki-client.org