$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft File: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft (raw, json) Hash identifier: UzGgUjruYEU3KN578yhEyvszeVaoSoQw0lnGgShNE2Q= Subject key identifier: 0E:D8:7F:5A:3A:7A:2E:3A:74:43:5F:DB:DF:4B:13:24:7C:3D:FE:E1 Authority key identifier: 87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 Certificate issuer: /CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Certificate serial: 1CD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft Manifest number: 1CB9 Signing time: Sun 24 Nov 2024 16:04:35 +0000 Manifest this update: Sun 24 Nov 2024 16:04:35 +0000 Manifest next update: Sun 01 Dec 2024 16:04:35 +0000 Files and hashes: 1: hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl (hash: vkk1UANbk/gazpQ94YxhzSdZYpBLWLcz57EGRINn/WA=) 2: F959A9A0F11011EB8E63FC73C4F9AE02.roa (hash: hUo9fC/hzy17W76vlbeXm/dftwyddFbiGAwqbp53ZVY=) 3: 2C9502D83C4011EA852C097BC4F9AE02.roa (hash: PqWYELxwluX51eG9Uh24A8xMydgivpkrMXOxcA+zOSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7376 (0x1cd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEA8C/serialNumber=870B9CD2E41DAB05BD5527C9150E948959716696 Validity Not Before: Nov 24 16:04:35 2024 GMT Not After : Dec 1 16:04:35 2024 GMT Subject: CN=67434e93-a802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:91:70:9c:74:29:15:53:dd:44:39:93:25:78: c1:fb:73:e7:f8:5e:13:6f:75:f2:2a:ac:bd:57:ad: 51:e4:0f:fb:2e:89:d0:95:2e:e6:6a:34:45:9f:87: 2a:1e:32:fd:e8:ce:6a:aa:02:80:73:f5:af:0c:29: cb:d6:4d:c2:93:2d:0a:b2:48:99:af:c1:2e:07:08: a0:6e:6b:33:9e:b8:5e:73:aa:be:71:e6:08:91:70: 8d:02:92:bd:55:00:16:65:45:95:e1:31:d8:d5:a8: 5f:59:9c:9a:2b:b9:55:1e:51:9f:d1:8a:d3:5a:e2: 91:cc:bd:5c:46:75:94:f0:02:4f:49:68:17:55:1f: a1:10:73:97:af:5d:43:3b:7a:bd:26:03:91:e5:cc: 34:9d:1e:9f:72:8c:b2:51:4b:88:1d:17:e6:04:f3: 38:bc:ad:55:85:da:49:08:05:c6:10:40:31:b4:0a: 99:89:ab:44:9d:eb:83:14:f9:a8:12:b8:8c:e0:81: 20:40:b9:2f:74:d3:61:14:66:fd:19:a5:41:73:6d: 8f:45:e1:97:78:cc:9e:60:98:ca:6b:be:db:59:44: 64:51:7a:98:e6:cd:ac:57:dc:5e:18:b8:8e:01:d9: 0d:c4:01:d5:74:ef:7f:79:20:34:bb:8d:77:d4:b6: 21:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D8:7F:5A:3A:7A:2E:3A:74:43:5F:DB:DF:4B:13:24:7C:3D:FE:E1 X509v3 Authority Key Identifier: keyid:87:0B:9C:D2:E4:1D:AB:05:BD:55:27:C9:15:0E:94:89:59:71:66:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEA8C/F27B9CDEBB8611E68FF50C57C4F9AE02/hwuc0uQdqwW9VSfJFQ6UiVlxZpY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:c8:be:05:d4:1f:bc:d2:4c:0a:a7:90:04:aa:72:ba:f8:0c: 7b:5f:9f:e4:bd:03:b2:00:a6:2d:8b:bd:22:ed:e9:52:cd:7f: ae:f1:68:0a:81:98:13:68:d8:b1:86:da:dd:2d:1d:6a:fe:a6: 7e:46:e1:fd:2b:21:7b:a9:cb:63:1c:79:03:aa:20:37:f2:38: d1:fc:3b:5a:35:20:e8:bb:58:f5:e0:0e:7a:f7:56:4c:85:55: 02:52:9a:6b:9f:0a:29:a8:42:a0:58:82:db:1a:69:54:88:48: f6:4e:1f:ad:1c:31:fe:09:70:fa:fb:b2:9e:05:a1:b1:5c:a8: 7e:65:3e:ef:42:6b:fa:81:39:f4:c5:5d:b6:4b:1f:cf:89:a3: 87:6a:c3:b9:ef:d1:f5:b5:c1:e4:69:99:16:46:46:fc:63:83: 48:78:d3:a1:9c:5f:29:d0:51:13:51:9d:bf:3f:a2:e3:59:f5: e9:97:9a:2b:90:43:25:4b:ae:65:5a:1a:dc:b0:cb:47:f8:7d: de:30:71:14:7b:67:4c:f3:53:1f:26:8c:4b:26:c4:b5:14:01: 28:92:ad:b7:fb:48:4f:fb:04:63:d0:b8:ae:d7:11:f3:12:d2: d2:3a:d7:23:2c:22:a3:e6:9a:c4:2b:7d:8f:f7:f6:e3:99:30: 82:8e:24:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBOEMxMTAvBgNVBAUTKDg3MEI5Q0QyRTQxREFCMDVCRDU1MjdDOTE1MEU5NDg5 NTk3MTY2OTYwHhcNMjQxMTI0MTYwNDM1WhcNMjQxMjAxMTYwNDM1WjAYMRYwFAYD VQQDEw02NzQzNGU5My1hODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJFwnHQpFVPdRDmTJXjB+3Pn+F4Tb3XyKqy9V61R5A/7LonQlS7majRFn4cq HjL96M5qqgKAc/WvDCnL1k3Cky0KskiZr8EuBwigbmsznrhec6q+ceYIkXCNApK9 VQAWZUWV4THY1ahfWZyaK7lVHlGf0YrTWuKRzL1cRnWU8AJPSWgXVR+hEHOXr11D O3q9JgOR5cw0nR6fcoyyUUuIHRfmBPM4vK1VhdpJCAXGEEAxtAqZiatEneuDFPmo EriM4IEgQLkvdNNhFGb9GaVBc22PReGXeMyeYJjKa77bWURkUXqY5s2sV9xeGLiO AdkNxAHVdO9/eSA0u4131LYhmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7Yf1o6 ei46dENf299LEyR8Pf7hMB8GA1UdIwQYMBaAFIcLnNLkHasFvVUnyRUOlIlZcWaW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUE4Qy9GMjdCOUNERUJC ODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3VzlWU2ZKRlE2VWlWbHha cFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h3dWMwdVFkcXdXOVZTZkpGUTZVaVZseFpwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUE4Qy9GMjdCOUNERUJCODYxMUU2OEZGNTBDNTdDNEY5QUUwMi9od3VjMHVRZHF3 VzlWU2ZKRlE2VWlWbHhacFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkyL4F1B+80kwKp5AEqnK6+Ax7X5/kvQOyAKYti70i7elSzX+u8WgK gZgTaNixhtrdLR1q/qZ+RuH9KyF7qctjHHkDqiA38jjR/DtaNSDou1j14A5691ZM hVUCUpprnwopqEKgWILbGmlUiEj2Th+tHDH+CXD6+7KeBaGxXKh+ZT7vQmv6gTn0 xV22Sx/PiaOHasO579H1tcHkaZkWRkb8Y4NIeNOhnF8p0FETUZ2/P6LjWfXpl5or kEMlS65lWhrcsMtH+H3eMHEUe2dM81MfJoxLJsS1FAEokq23+0hP+wRj0Liu1xHz EtLSOtcjLCKj5prEK32P9/bjmTCCjiST -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:50 2024 by rpki-client on console-fra.rpki-client.org