$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: Vqu+2nbOsSyy6XX7dJIkQvbTtXmFzcrm9FYZqXfZIDc= Subject key identifier: 8E:88:8D:50:B7:71:AE:57:4C:25:F4:F9:49:80:6A:E3:1C:3B:60:F2 Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 0189 Signing time: Sat 23 Nov 2024 01:56:42 +0000 Manifest this update: Sat 23 Nov 2024 01:56:42 +0000 Manifest next update: Sat 30 Nov 2024 01:56:42 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: Ko+yMo/pzG6l8ypqmWZySrNjJ54OMKfXk74Ty+yKvmU=) 2: B8B2C3BC4E9511EDA5AF6A34C4F9AE02.roa (hash: 6C07SnczQrxUqRjTLvDOEAgf1A9IHKpinwyHhMBEGq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Nov 23 01:56:42 2024 GMT Not After : Nov 30 01:56:42 2024 GMT Subject: CN=6741365a-afdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:25:92:73:df:58:df:dc:a0:37:0e:eb:26: a3:96:16:7c:9d:b5:df:33:a7:90:5e:21:25:df:51: 93:d3:74:08:db:6a:2f:66:af:cd:74:78:f7:20:d1: 51:6d:03:24:b8:52:ee:50:5d:a7:93:4b:fa:2e:74: 5a:e2:11:d6:04:88:30:fe:e2:e6:03:fa:37:f6:77: 41:65:db:4d:b3:47:85:21:3c:eb:a6:42:bc:33:9f: ad:8f:ef:60:b1:7a:3b:0e:6b:33:6c:2a:a5:33:84: d3:7c:0e:61:93:b5:f4:45:f6:2c:d6:19:7d:e9:4c: e0:8d:b2:38:33:5d:e1:ab:38:53:2f:d3:20:74:a7: 8c:2d:b7:05:e3:03:41:2f:ff:87:98:f7:6f:a3:c5: e9:b7:02:a8:d4:95:c5:ed:fb:4d:41:be:11:7e:c0: d9:0f:e0:fb:d6:55:d7:5a:6f:ce:42:b7:2f:b2:7e: f3:da:e0:67:cd:fc:82:3d:0f:8f:c4:da:86:57:ae: 6c:e6:41:2c:c4:7a:3f:1e:32:09:39:9b:cf:11:56: b0:ac:d0:16:2e:75:27:f4:84:ec:fd:3d:a3:20:37: 56:08:ff:30:b6:46:ab:07:b2:67:8a:0d:5f:04:7c: 9a:19:d9:d7:c1:0b:35:94:dd:f5:64:cb:75:b0:27: 27:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:88:8D:50:B7:71:AE:57:4C:25:F4:F9:49:80:6A:E3:1C:3B:60:F2 X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d3:70:62:18:f6:27:61:af:c4:4c:e2:df:4e:bd:82:cd:7e: 72:2a:80:87:60:61:8a:78:a0:7f:42:01:f3:b2:cb:c9:ab:ef: 87:38:06:3d:d2:d8:61:4c:99:e7:b4:3c:a0:ce:2c:a7:25:40: 4a:d7:80:2d:9d:ee:5d:1f:18:44:7d:ec:43:be:19:3d:8d:fa: 59:20:00:fe:45:11:92:23:41:06:fe:bc:6c:af:01:bb:8a:1e: 28:70:88:ac:a0:fc:f4:e1:dd:a8:71:05:06:24:03:0c:a8:35: 9a:55:84:37:e0:a4:be:1f:f4:a5:d9:7a:06:91:53:e4:2e:45: 13:b8:2d:08:e3:5e:8b:b6:f4:87:83:ee:a5:65:97:e4:98:54: 65:e9:1c:80:ac:ca:b3:9a:f4:dd:db:13:e8:4f:63:b6:90:c7: ab:8f:a8:1f:eb:4d:89:c5:a3:38:26:af:51:85:95:d6:e7:f2: f3:7b:75:dd:2a:48:36:c4:0a:b2:d1:62:78:ee:67:9b:66:b4: 4f:77:11:72:01:12:95:f0:b8:58:13:85:62:7a:95:f4:b5:6d: 39:c9:59:98:31:11:4a:a2:11:29:05:e5:91:72:88:f9:d3:bb: 63:9a:db:60:fc:57:e5:32:5d:6f:60:0d:f7:d6:07:73:07:e0: bd:09:e2:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjQxMTIzMDE1NjQyWhcNMjQxMTMwMDE1NjQyWjAYMRYwFAYD VQQDEw02NzQxMzY1YS1hZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+8lknPfWN/coDcO6yajlhZ8nbXfM6eQXiEl31GT03QI22ovZq/NdHj3INFR bQMkuFLuUF2nk0v6LnRa4hHWBIgw/uLmA/o39ndBZdtNs0eFITzrpkK8M5+tj+9g sXo7DmszbCqlM4TTfA5hk7X0RfYs1hl96UzgjbI4M13hqzhTL9MgdKeMLbcF4wNB L/+HmPdvo8XptwKo1JXF7ftNQb4RfsDZD+D71lXXWm/OQrcvsn7z2uBnzfyCPQ+P xNqGV65s5kEsxHo/HjIJOZvPEVawrNAWLnUn9ITs/T2jIDdWCP8wtkarB7Jnig1f BHyaGdnXwQs1lN31ZMt1sCcn8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6IjVC3 ca5XTCX0+UmAauMcO2DyMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ03BiGPYnYa/ETOLfTr2CzX5yKoCHYGGKeKB/QgHzssvJq++HOAY9 0thhTJnntDygziynJUBK14Atne5dHxhEfexDvhk9jfpZIAD+RRGSI0EG/rxsrwG7 ih4ocIisoPz04d2ocQUGJAMMqDWaVYQ34KS+H/Sl2XoGkVPkLkUTuC0I416LtvSH g+6lZZfkmFRl6RyArMqzmvTd2xPoT2O2kMerj6gf602JxaM4Jq9RhZXW5/Lze3Xd Kkg2xAqy0WJ47mebZrRPdxFyARKV8LhYE4ViepX0tW05yVmYMRFKohEpBeWRcoj5 07tjmttg/FflMl1vYA331gdzB+C9CeJV -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org