$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft File: HWw-nEchLuSN-fVOZJCpphbUEYk.mft (raw, json) Hash identifier: WVsTjfnKwl1KGi27n2qdarOccBXxnyy2IsiiEqZki48= Subject key identifier: 90:20:5E:B7:86:45:91:77:BD:E6:A0:85:3C:06:B7:60:14:E5:3C:02 Authority key identifier: 1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 Certificate issuer: /CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft Manifest number: 017C Signing time: Sat 23 Nov 2024 02:05:15 +0000 Manifest this update: Sat 23 Nov 2024 02:05:14 +0000 Manifest next update: Sat 30 Nov 2024 02:05:14 +0000 Files and hashes: 1: HWw-nEchLuSN-fVOZJCpphbUEYk.crl (hash: om6THyb7mt74S6PImtr2Y6m+IaAO8NqSPdBk5SdRWro=) 2: 3B7794D2664A11EDB095B812C4F9AE02.roa (hash: ne9O+G9qSru/U2exZgVGXkHzQTflawcam407PNhnI+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Validity Not Before: Nov 23 02:05:14 2024 GMT Not After : Nov 30 02:05:14 2024 GMT Subject: CN=6741385a-161b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cb:4b:dc:b6:1b:58:e1:7f:33:ff:bb:92:08: bc:9a:07:c0:b9:10:98:e5:dc:b4:57:5c:87:55:cc: a0:44:fa:56:3b:6d:03:f1:c0:21:b2:62:1a:9f:a5: 6d:70:bf:6e:1c:bb:82:61:ab:02:9c:9f:e6:2e:8d: 70:85:34:05:57:2c:ad:2e:c1:b8:7a:d3:e7:a9:4b: 06:7c:7e:d6:41:0b:5c:02:29:54:75:6a:c4:c5:ab: 86:df:37:89:41:cb:45:32:f4:98:f9:71:69:8a:a9: 69:cc:f1:b0:3c:ee:4c:60:91:a6:f7:79:c8:37:06: c4:57:ba:58:8a:d9:b6:f1:cb:26:40:e7:d2:85:e2: a9:7e:09:57:9b:ee:df:be:83:b4:5f:71:89:5d:a9: 67:28:08:1b:43:fd:8c:58:17:52:ef:a2:ed:4f:6a: ae:9f:e5:9b:30:7b:82:04:1d:3e:73:da:8b:c0:fe: e8:d5:08:e0:d9:3a:7e:18:2d:e8:6f:22:5a:e3:19: 37:0a:42:62:1d:e2:45:bf:4c:3a:63:83:6e:4a:95: 97:f0:7e:56:0e:90:d1:b0:04:54:43:c8:6e:3f:fa: c6:5c:d4:b6:ee:97:62:65:fa:50:8a:23:11:28:ae: 96:55:b2:0b:f8:f7:5d:77:ea:89:54:30:e8:c7:4a: 34:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:20:5E:B7:86:45:91:77:BD:E6:A0:85:3C:06:B7:60:14:E5:3C:02 X509v3 Authority Key Identifier: keyid:1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:9e:08:3c:39:8d:62:bd:a1:0c:97:d8:7f:92:5c:c0:df:16: fe:86:31:a1:a4:bc:ad:e0:4c:6e:d3:66:94:72:c1:44:29:e7: f7:d2:3a:f9:77:b5:97:13:bb:ea:74:f3:03:da:e6:1d:65:08: 18:35:65:bf:6b:d8:2a:f7:64:9e:50:56:d5:f4:d1:c6:23:7c: 14:52:bc:dd:cb:8a:ca:d9:05:fe:ff:75:86:51:7d:f1:bc:c2: 9c:5b:68:5c:fb:29:5a:35:f7:27:02:c1:d7:d4:f5:dd:43:d4: 54:39:a9:17:eb:be:9d:ec:38:bf:08:cf:75:8f:c5:f4:c1:3a: 9f:ca:0c:31:2d:b1:f3:6b:9d:f9:c4:e8:a9:9f:6d:da:b4:9a: 60:1e:9f:bd:a3:29:fd:03:70:7b:73:58:23:cb:9f:f1:b2:cf: 41:f0:3a:65:b3:83:1c:f3:9f:a2:5f:d7:3e:59:80:2c:2e:35: 9c:0e:01:55:a2:b7:37:89:f3:78:29:1e:f7:d1:0a:08:30:9e: 9d:7b:d5:e4:6c:5b:d7:32:1d:44:69:18:5c:6d:f8:19:39:e5: 21:65:23:df:19:b0:84:31:10:ee:8d:c2:6c:12:60:f0:7c:b9: dc:c6:b4:13:bb:7d:31:22:72:3e:fd:9f:5f:57:7a:be:17:70: 4e:45:02:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZBRUUxMTAvBgNVBAUTKDFENkMzRTlDNDcyMTJFRTQ4REY5RjU0RTY0OTBBOUE2 MTZENDExODkwHhcNMjQxMTIzMDIwNTE0WhcNMjQxMTMwMDIwNTE0WjAYMRYwFAYD VQQDEw02NzQxMzg1YS0xNjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MtL3LYbWOF/M/+7kgi8mgfAuRCY5dy0V1yHVcygRPpWO20D8cAhsmIan6Vt cL9uHLuCYasCnJ/mLo1whTQFVyytLsG4etPnqUsGfH7WQQtcAilUdWrExauG3zeJ QctFMvSY+XFpiqlpzPGwPO5MYJGm93nINwbEV7pYitm28csmQOfSheKpfglXm+7f voO0X3GJXalnKAgbQ/2MWBdS76LtT2qun+WbMHuCBB0+c9qLwP7o1Qjg2Tp+GC3o byJa4xk3CkJiHeJFv0w6Y4NuSpWX8H5WDpDRsARUQ8huP/rGXNS27pdiZfpQiiMR KK6WVbIL+Pddd+qJVDDox0o0XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAgXreG RZF3veaghTwGt2AU5TwCMB8GA1UdIwQYMBaAFB1sPpxHIS7kjfn1TmSQqaYW1BGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkFFRS80RjMzMjg4MjY2 NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1U04tZlZPWkpDcHBoYlVF WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXdy1uRWNoTHVTTi1mVk9aSkNwcGhiVUVZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkFFRS80RjMzMjg4MjY2NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1 U04tZlZPWkpDcHBoYlVFWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhngg8OY1ivaEMl9h/klzA3xb+hjGhpLyt4Exu02aUcsFEKef30jr5 d7WXE7vqdPMD2uYdZQgYNWW/a9gq92SeUFbV9NHGI3wUUrzdy4rK2QX+/3WGUX3x vMKcW2hc+ylaNfcnAsHX1PXdQ9RUOakX676d7Di/CM91j8X0wTqfygwxLbHza535 xOipn23atJpgHp+9oyn9A3B7c1gjy5/xss9B8Dpls4Mc85+iX9c+WYAsLjWcDgFV orc3ifN4KR730QoIMJ6de9XkbFvXMh1EaRhcbfgZOeUhZSPfGbCEMRDujcJsEmDw fLncxrQTu30xInI+/Z9fV3q+F3BORQLa -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org