$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft File: HRIX74_oS1glUWcbyjXmhEhpJJc.mft (raw, json) Hash identifier: MMS42Aeo1z6pBgZ1OSMFR1raigDhi2al7AAZj9wzzfI= Subject key identifier: 49:16:62:8F:70:32:60:32:19:FC:CE:C5:B9:51:9D:CE:9A:73:5F:15 Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 09EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft Manifest number: 09E3 Signing time: Fri 22 Nov 2024 19:41:29 +0000 Manifest this update: Fri 22 Nov 2024 19:41:28 +0000 Manifest next update: Fri 29 Nov 2024 19:41:28 +0000 Files and hashes: 1: HRIX74_oS1glUWcbyjXmhEhpJJc.crl (hash: XN+QssbvjfJPLLuU4dfW4a1rp0jTtrL+DbDHix4f0aY=) 2: 9261E554464611EE84B7C534C4F9AE02.roa (hash: lLxl/sSYgP6ZriIWkj+AWN6PJcQcpVbRmAe2Y2lbT3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2539 (0x9eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: Nov 22 19:41:28 2024 GMT Not After : Nov 29 19:41:28 2024 GMT Subject: CN=6740de69-1690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f1:e0:75:6f:d2:56:6d:c8:45:31:f7:1c:9b: 05:05:7f:67:19:92:5f:b3:1b:54:c0:66:58:5d:8e: 29:d9:00:e2:2b:98:d5:f1:64:fc:fb:e2:ba:04:c0: 01:55:d8:fa:a2:e3:df:7a:85:25:db:b6:2d:0b:36: de:a6:1b:c3:eb:de:d2:52:48:23:2a:72:a9:33:e1: 0d:2f:54:cb:20:39:c7:45:95:96:05:48:24:4f:4f: 66:fb:41:e0:94:d2:69:c0:e8:66:a0:bd:cc:86:d0: 22:2f:7f:90:99:a7:db:4b:1d:12:54:f1:cf:58:37: 66:3f:99:c4:5c:77:48:d3:d9:b2:d9:23:ec:77:86: 44:5e:50:26:ba:f7:9c:79:9d:c1:c5:a8:2a:b7:b1: 15:09:c4:91:87:f1:69:f5:d6:72:30:f9:ea:59:5a: cf:fc:7d:55:d9:0a:d1:c6:9f:9b:a3:0b:f2:1f:46: 9f:fc:73:a9:b1:8d:1a:5e:68:36:77:93:d1:84:d9: be:b8:df:1c:f0:9d:fe:33:4f:fc:03:a4:cb:b9:77: af:02:b8:92:37:d3:7f:76:47:00:f4:b3:63:cc:84: e9:d1:85:ea:9b:6f:c1:78:7a:52:64:9b:d6:1e:da: a2:bf:fd:16:ce:46:b8:5b:54:b1:9b:51:fc:b7:68: dd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:16:62:8F:70:32:60:32:19:FC:CE:C5:B9:51:9D:CE:9A:73:5F:15 X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:3e:3f:0b:36:ff:47:63:8e:eb:04:33:27:c4:5d:73:76:9f: a7:1f:1b:c0:07:1d:37:8e:a1:14:56:21:ed:4e:45:ba:3d:96: c2:c0:48:0d:bf:d2:c1:7a:ea:49:62:d1:8f:4b:5d:45:ea:f0: f3:d3:c3:31:bf:e6:6a:07:68:c5:d2:64:42:22:40:d9:e5:8b: c6:61:c7:2b:7a:f7:a5:5f:55:99:cd:0e:84:60:4e:76:ea:f2: 10:ff:82:a9:fb:cb:95:30:60:8f:05:98:6a:15:97:93:cb:45: 61:dd:06:b9:ab:1c:66:b6:17:f1:63:28:e4:1c:77:b9:4c:b8: e2:d1:56:a3:5d:d1:16:89:a3:fc:a3:a4:22:9b:7b:f9:f2:5c: 26:65:15:03:0a:f8:d5:f6:6e:87:f2:77:17:74:07:33:d6:93: b1:2a:78:34:e8:bb:3f:6b:a8:6a:3f:ff:b4:5f:9d:00:12:83: 7c:b6:de:ca:0d:b0:d4:3e:6a:b7:ae:e7:ef:fa:2e:5a:d6:63: a8:7a:99:41:fb:24:e8:69:0a:5b:d5:8f:fe:20:47:0f:4a:c6: eb:e1:d7:ff:e7:82:de:12:08:44:0e:4d:26:be:8d:87:cf:50: 08:ab:36:87:86:7e:39:2c:c4:51:b4:19:01:68:03:d9:2f:c8: 47:6f:e3:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjQxMTIyMTk0MTI4WhcNMjQxMTI5MTk0MTI4WjAYMRYwFAYD VQQDEw02NzQwZGU2OS0xNjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPHgdW/SVm3IRTH3HJsFBX9nGZJfsxtUwGZYXY4p2QDiK5jV8WT8++K6BMAB Vdj6ouPfeoUl27YtCzbephvD697SUkgjKnKpM+ENL1TLIDnHRZWWBUgkT09m+0Hg lNJpwOhmoL3MhtAiL3+QmafbSx0SVPHPWDdmP5nEXHdI09my2SPsd4ZEXlAmuvec eZ3Bxagqt7EVCcSRh/Fp9dZyMPnqWVrP/H1V2QrRxp+bowvyH0af/HOpsY0aXmg2 d5PRhNm+uN8c8J3+M0/8A6TLuXevAriSN9N/dkcA9LNjzITp0YXqm2/BeHpSZJvW Htqiv/0Wzka4W1Sxm1H8t2jdSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkWYo9w MmAyGfzOxblRnc6ac18VMB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJCNC9EOTU0QkFCRTY5QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1Mx Z2xVV2NieWpYbWhFaHBKSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuPj8LNv9HY47rBDMnxF1zdp+nHxvABx03jqEUViHtTkW6PZbCwEgN v9LBeupJYtGPS11F6vDz08Mxv+ZqB2jF0mRCIkDZ5YvGYccrevelX1WZzQ6EYE52 6vIQ/4Kp+8uVMGCPBZhqFZeTy0Vh3Qa5qxxmthfxYyjkHHe5TLji0VajXdEWiaP8 o6Qim3v58lwmZRUDCvjV9m6H8ncXdAcz1pOxKng06Ls/a6hqP/+0X50AEoN8tt7K DbDUPmq3rufv+i5a1mOoeplB+yToaQpb1Y/+IEcPSsbr4df/54LeEghEDk0mvo2H z1AIqzaHhn45LMRRtBkBaAPZL8hHb+Ml -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org