$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft File: hpk8iGXMBr2Yu5T0pukGEieCgAA.mft (raw, json) Hash identifier: ++euZB1V+vNfwhQL3pINZvA0emxOvBcU805j67U1rWo= Subject key identifier: 32:D5:62:16:E6:03:B5:CA:F2:38:30:D5:2D:01:91:65:34:33:BD:45 Authority key identifier: 86:99:3C:88:65:CC:06:BD:98:BB:94:F4:A6:E9:06:12:27:82:80:00 Certificate issuer: /CN=A91DC6AD/serialNumber=86993C8865CC06BD98BB94F4A6E9061227828000 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft Manifest number: DB Signing time: Sat 23 Nov 2024 03:41:18 +0000 Manifest this update: Sat 23 Nov 2024 03:41:18 +0000 Manifest next update: Sat 30 Nov 2024 03:41:18 +0000 Files and hashes: 1: hpk8iGXMBr2Yu5T0pukGEieCgAA.crl (hash: FWEkBIux+5TfWN6Xt0QveNX/RXBvPAbjtX1Xx1df0T4=) 2: E2ECBFC65DF211EEB46BCB27C4F9AE02.roa (hash: VLTTYVtZCZ689N9IR847Wk29ehkfdaAv1fIzpOf8NmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.crl rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC6AD/serialNumber=86993C8865CC06BD98BB94F4A6E9061227828000 Validity Not Before: Nov 23 03:41:18 2024 GMT Not After : Nov 30 03:41:18 2024 GMT Subject: CN=67414ede-d02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:56:43:cb:79:e0:6f:3b:66:b1:e0:c1:fd:a1: 15:42:3a:bb:f2:77:d6:29:10:94:5d:a3:97:8c:b0: df:48:32:5a:05:83:a9:55:e4:17:40:34:de:b2:0b: d3:e8:b1:1d:24:b3:4a:b3:92:89:10:3c:84:b7:7d: cf:c2:63:53:83:49:05:96:27:8c:ea:80:7d:4a:f9: 63:5e:28:85:65:1a:a3:88:c5:ac:1c:83:8d:3b:2f: aa:a1:15:b1:bd:8e:b1:17:64:81:bb:44:39:b7:7d: a5:36:28:ab:78:38:e7:66:8f:62:03:48:6b:3a:21: 5b:ca:3f:f3:dd:ef:60:3a:a0:92:56:cd:50:0e:54: f6:a7:bf:de:63:cb:d2:1f:d9:ac:52:d9:04:f9:3f: af:73:7d:14:d1:ce:4c:69:10:c1:74:34:4c:d7:91: da:96:28:0a:3a:3a:19:05:51:29:30:bf:55:ca:1f: ec:5e:39:6c:77:8d:42:8c:46:51:e4:5d:29:9e:3a: c1:dc:67:e4:83:29:9a:e3:db:6e:d7:b8:e8:4b:44: f5:7f:f4:36:ce:8f:a9:b2:ed:31:89:01:2f:f2:f2: 88:7a:db:00:9e:42:99:d4:22:3f:5b:ca:aa:4e:7d: da:72:62:5d:14:12:10:a0:25:4b:63:18:00:ce:7b: 34:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D5:62:16:E6:03:B5:CA:F2:38:30:D5:2D:01:91:65:34:33:BD:45 X509v3 Authority Key Identifier: keyid:86:99:3C:88:65:CC:06:BD:98:BB:94:F4:A6:E9:06:12:27:82:80:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hpk8iGXMBr2Yu5T0pukGEieCgAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC6AD/539F23CC5DF211EE9B04430EC4F9AE02/hpk8iGXMBr2Yu5T0pukGEieCgAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:0a:e8:d9:b4:49:b5:a4:65:d8:05:ce:a6:fa:02:ac:69:e2: 53:91:35:ee:43:6a:d8:3b:c8:3e:fc:74:3c:9b:eb:7a:7c:a5: 6a:be:0c:30:af:0c:63:56:60:d4:01:1d:a1:b6:36:e3:c6:76: 93:06:b8:7c:01:de:50:0d:bd:14:44:12:d6:a8:ec:26:c7:cc: a5:88:bb:5d:54:d6:11:2e:a3:7b:20:41:d8:bb:7d:18:17:a0: 8f:81:a6:80:ea:e5:97:80:46:2f:0a:e2:15:79:49:3e:19:45: 23:25:4b:fd:16:45:26:e1:34:f3:86:2f:54:e5:60:8a:42:9e: 98:c6:70:0a:af:51:83:0b:af:55:12:1e:31:6e:0a:d8:42:2c: 92:f0:c4:cb:12:ba:6e:35:e5:cf:b0:c5:20:95:8a:5d:1b:34: 0b:be:08:0b:a2:92:ff:12:41:3e:c3:51:ff:dd:c5:ff:d6:bd: 68:ef:dd:9e:2e:20:2c:26:e6:fe:3e:7f:24:54:a9:d5:ee:0b: f9:86:70:74:d4:79:4d:4b:9b:61:ce:ad:b3:93:2e:ce:25:7a: 95:fe:b9:60:89:36:5d:4c:26:f5:93:ff:0a:b6:ad:88:77:9e: ad:7c:e7:7f:73:81:61:4a:e9:79:38:22:fa:25:61:a5:14:70: 8e:57:a6:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM2QUQxMTAvBgNVBAUTKDg2OTkzQzg4NjVDQzA2QkQ5OEJCOTRGNEE2RTkwNjEy Mjc4MjgwMDAwHhcNMjQxMTIzMDM0MTE4WhcNMjQxMTMwMDM0MTE4WjAYMRYwFAYD VQQDEw02NzQxNGVkZS1kMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lZDy3ngbztmseDB/aEVQjq78nfWKRCUXaOXjLDfSDJaBYOpVeQXQDTesgvT 6LEdJLNKs5KJEDyEt33PwmNTg0kFlieM6oB9SvljXiiFZRqjiMWsHIONOy+qoRWx vY6xF2SBu0Q5t32lNiireDjnZo9iA0hrOiFbyj/z3e9gOqCSVs1QDlT2p7/eY8vS H9msUtkE+T+vc30U0c5MaRDBdDRM15HaligKOjoZBVEpML9Vyh/sXjlsd41CjEZR 5F0pnjrB3Gfkgyma49tu17joS0T1f/Q2zo+psu0xiQEv8vKIetsAnkKZ1CI/W8qq Tn3acmJdFBIQoCVLYxgAzns0qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLVYhbm A7XK8jgw1S0BkWU0M71FMB8GA1UdIwQYMBaAFIaZPIhlzAa9mLuU9KbpBhIngoAA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzZBRC81MzlGMjNDQzVE RjIxMUVFOUIwNDQzMEVDNEY5QUUwMi9ocGs4aUdYTUJyMll1NVQwcHVrR0VpZUNn QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hwazhpR1hNQnIyWXU1VDBwdWtHRWllQ2dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzZBRC81MzlGMjNDQzVERjIxMUVFOUIwNDQzMEVDNEY5QUUwMi9ocGs4aUdYTUJy Mll1NVQwcHVrR0VpZUNnQUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHCujZtEm1pGXYBc6m+gKsaeJTkTXuQ2rYO8g+/HQ8m+t6fKVqvgww rwxjVmDUAR2htjbjxnaTBrh8Ad5QDb0URBLWqOwmx8yliLtdVNYRLqN7IEHYu30Y F6CPgaaA6uWXgEYvCuIVeUk+GUUjJUv9FkUm4TTzhi9U5WCKQp6YxnAKr1GDC69V Eh4xbgrYQiyS8MTLErpuNeXPsMUglYpdGzQLvggLopL/EkE+w1H/3cX/1r1o792e LiAsJub+Pn8kVKnV7gv5hnB01HlNS5thzq2zky7OJXqV/rlgiTZdTCb1k/8Ktq2I d56tfOd/c4FhSul5OCL6JWGlFHCOV6Z0 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org