$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft File: Hy55yPeszIoD-1tKOvzF9pMbN4I.mft (raw, json) Hash identifier: VdFfCyezTji2vWNa1BW1GYYfCPRiH94iuEGtenJFL+M= Subject key identifier: 3F:61:FC:26:59:0D:95:9E:7F:2F:2B:7B:EE:FE:B5:DD:EE:FD:F8:3B Authority key identifier: 1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82 Certificate issuer: /CN=A91BB09C/serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782 Certificate serial: 16D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft Manifest number: 16C9 Signing time: Sun 24 Nov 2024 16:31:45 +0000 Manifest this update: Sun 24 Nov 2024 16:31:44 +0000 Manifest next update: Sun 01 Dec 2024 16:31:44 +0000 Files and hashes: 1: Hy55yPeszIoD-1tKOvzF9pMbN4I.crl (hash: yBp5gEDxUsarqk1+WdLnmxkkKscnpn2JmxrA21U1kY0=) 2: 02181C4CE13511E7B0D71C83C4F9AE02.roa (hash: 0B5XjdTUQe/6kyGZQwflhiLlLmj0ih1n7mLCVY4kiuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5842 (0x16d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB09C/serialNumber=1F2E79C8F7ACCC8A03FB5B4A3AFCC5F6931B3782 Validity Not Before: Nov 24 16:31:44 2024 GMT Not After : Dec 1 16:31:44 2024 GMT Subject: CN=674354f1-ca4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:ed:fa:b5:b9:49:89:83:f8:08:f1:6b:fc: 1e:4a:0b:4c:2e:b5:83:74:1a:71:75:52:22:a2:27: 0f:04:1c:05:33:c9:33:d9:56:2c:be:bb:c8:8d:55: 91:47:94:98:b8:c7:fc:5f:36:21:dc:80:5e:9f:f2: 3d:8d:b9:c5:d2:b0:5e:23:4c:f9:3b:c8:f9:eb:b6: e7:16:ed:c9:31:52:56:c5:88:8f:70:bf:51:29:7e: 63:13:99:76:d3:19:52:93:b9:56:7b:d5:38:d8:2d: e8:7b:9d:37:8e:d0:30:b9:12:2a:97:ed:96:4e:d1: 75:cc:a4:f2:8e:12:69:97:94:87:06:f0:b2:47:15: 05:89:ae:0c:c6:07:f7:07:f9:1b:fe:95:87:d9:c3: 0e:ce:e5:c5:a4:99:14:a5:52:f1:bb:7d:07:6e:ca: df:30:c6:1c:d1:28:6b:9a:ef:53:15:52:5b:a1:e9: 1e:a8:03:4d:90:9c:38:0e:fb:dd:11:75:da:b0:26: cd:b7:25:df:77:cd:9d:c4:73:ec:04:10:00:cd:9e: 00:08:36:bd:18:ac:55:23:34:c1:42:6e:37:a0:e9: e3:72:e2:ef:4d:65:39:35:9f:02:68:03:80:78:c6: 72:5f:b9:07:e9:83:9f:68:2f:f5:53:ab:6e:fc:be: ce:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:61:FC:26:59:0D:95:9E:7F:2F:2B:7B:EE:FE:B5:DD:EE:FD:F8:3B X509v3 Authority Key Identifier: keyid:1F:2E:79:C8:F7:AC:CC:8A:03:FB:5B:4A:3A:FC:C5:F6:93:1B:37:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hy55yPeszIoD-1tKOvzF9pMbN4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB09C/1FCD15E0E13411E782531082C4F9AE02/Hy55yPeszIoD-1tKOvzF9pMbN4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:9c:4f:c2:a5:08:01:3d:2e:06:d3:a7:7f:8a:d0:3b:72:d3: 92:ae:c9:b9:79:b5:df:9f:82:84:8e:63:b6:8b:96:a8:c5:5e: d8:54:24:33:a3:ae:12:16:72:f4:f8:1d:52:32:c7:11:55:82: c3:eb:ed:d6:2f:da:7f:c7:f8:1b:fb:e3:60:11:a2:90:8d:70: 81:7c:81:9b:b4:80:f5:d5:7f:3f:6b:90:9d:f4:df:b3:5b:47: e9:3e:53:f7:8c:97:b0:67:db:d4:63:25:9b:55:07:57:5c:e4: 29:cb:eb:eb:16:f4:82:1b:2d:00:db:ed:5c:0a:69:bb:4f:77: fb:12:9d:b9:d5:99:e5:86:50:c4:ff:a9:21:92:0f:97:cf:d2: 3b:b5:88:62:f7:c3:67:ad:b0:dc:40:f9:2b:d8:d2:08:8f:ec: 14:6d:18:b5:d3:e4:fd:f1:b6:f9:79:65:47:35:d1:6c:59:44: c6:07:24:7c:cd:4f:e1:ba:c1:59:b0:aa:0a:d0:c4:79:49:5e: c0:bf:17:5d:1e:60:ef:86:53:ea:3b:0f:25:13:eb:f1:88:f6: f3:73:9d:1d:9e:1f:99:79:8b:dd:97:bf:81:0a:ee:f3:b4:f6: 4b:9b:2e:85:27:0f:66:52:4b:11:13:49:8d:0c:d5:fe:87:1f: 56:71:10:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIwOUMxMTAvBgNVBAUTKDFGMkU3OUM4RjdBQ0NDOEEwM0ZCNUI0QTNBRkNDNUY2 OTMxQjM3ODIwHhcNMjQxMTI0MTYzMTQ0WhcNMjQxMjAxMTYzMTQ0WjAYMRYwFAYD VQQDEw02NzQzNTRmMS1jYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGjt+rW5SYmD+Ajxa/weSgtMLrWDdBpxdVIioicPBBwFM8kz2VYsvrvIjVWR R5SYuMf8XzYh3IBen/I9jbnF0rBeI0z5O8j567bnFu3JMVJWxYiPcL9RKX5jE5l2 0xlSk7lWe9U42C3oe503jtAwuRIql+2WTtF1zKTyjhJpl5SHBvCyRxUFia4Mxgf3 B/kb/pWH2cMOzuXFpJkUpVLxu30HbsrfMMYc0Shrmu9TFVJboekeqANNkJw4Dvvd EXXasCbNtyXfd82dxHPsBBAAzZ4ACDa9GKxVIzTBQm43oOnjcuLvTWU5NZ8CaAOA eMZyX7kH6YOfaC/1U6tu/L7OfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9h/CZZ DZWefy8re+7+td3u/fg7MB8GA1UdIwQYMBaAFB8uecj3rMyKA/tbSjr8xfaTGzeC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjA5Qy8xRkNEMTVFMEUx MzQxMUU3ODI1MzEwODJDNEY5QUUwMi9IeTU1eVBlc3pJb0QtMXRLT3Z6RjlwTWJO NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h5NTV5UGVzeklvRC0xdEtPdnpGOXBNYk40SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjA5Qy8xRkNEMTVFMEUxMzQxMUU3ODI1MzEwODJDNEY5QUUwMi9IeTU1eVBlc3pJ b0QtMXRLT3Z6RjlwTWJONEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCknE/CpQgBPS4G06d/itA7ctOSrsm5ebXfn4KEjmO2i5aoxV7YVCQz o64SFnL0+B1SMscRVYLD6+3WL9p/x/gb++NgEaKQjXCBfIGbtID11X8/a5Cd9N+z W0fpPlP3jJewZ9vUYyWbVQdXXOQpy+vrFvSCGy0A2+1cCmm7T3f7Ep251ZnlhlDE /6khkg+Xz9I7tYhi98NnrbDcQPkr2NIIj+wUbRi10+T98bb5eWVHNdFsWUTGByR8 zU/husFZsKoK0MR5SV7AvxddHmDvhlPqOw8lE+vxiPbzc50dnh+ZeYvdl7+BCu7z tPZLmy6FJw9mUksRE0mNDNX+hx9WcRDV -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:51 2024 by rpki-client on console-fra.rpki-client.org