$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: ZfvMADJBR4Pt4HGVA80J5QQRf8+rR4ibFxH/Lj/+K8U= Subject key identifier: 87:20:E0:8F:59:EB:0F:0F:D9:7C:51:00:16:C7:97:D3:74:F7:42:DC Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 3426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 3423 Signing time: Sun 24 Nov 2024 14:25:44 +0000 Manifest this update: Sun 24 Nov 2024 14:25:44 +0000 Manifest next update: Sun 01 Dec 2024 14:25:44 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: vFrzEUhmpwxfEu2wqiwPsNseDcYHPWfmHftq92rXvzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13350 (0x3426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Nov 24 14:25:44 2024 GMT Not After : Dec 1 14:25:44 2024 GMT Subject: CN=67433768-e8e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f2:b7:7c:3e:f7:b1:5b:d7:f0:0a:fc:28:a5: 41:bc:38:0b:be:35:81:16:cf:7a:a8:71:13:f2:24: 10:14:f9:17:c4:e9:6f:e1:94:2d:1c:ef:2c:10:46: 49:4f:60:03:6a:39:84:a6:a3:f1:8a:83:71:47:b7: 31:62:dd:5a:2e:60:68:5e:31:bf:88:70:35:6b:6f: 2c:75:08:ef:22:ac:8f:59:03:bf:f9:54:e8:36:24: 7c:b2:89:b8:36:da:92:62:f8:02:d1:4c:b3:be:c8: 66:c9:90:3a:ae:8b:2d:c8:53:87:ea:27:db:3e:d6: 96:7f:35:d3:44:90:4a:5c:59:f3:a7:a8:77:12:90: 5f:3a:69:c2:d0:54:9d:84:ec:5f:6c:0c:2a:11:62: 7e:0e:42:a2:77:d0:9b:47:1e:5d:87:c8:8f:d3:36: c4:15:40:9c:79:94:b3:a2:98:ea:3b:ed:ae:a8:d7: 2e:10:ce:81:53:e0:c5:cc:8b:56:74:59:72:5c:6d: 9b:a7:fe:be:a7:27:a1:cf:43:d8:25:9c:4f:78:1c: 05:ae:53:67:00:03:12:08:d3:37:0d:f7:88:3e:ba: 5c:c9:d2:de:1d:03:df:02:4f:33:3a:b5:24:27:c4: bb:d1:f3:70:a7:d7:ae:24:7b:60:e7:c5:03:5f:b9: f7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:20:E0:8F:59:EB:0F:0F:D9:7C:51:00:16:C7:97:D3:74:F7:42:DC X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:9c:38:6f:cf:fc:86:4a:6b:2e:b9:f2:9e:ae:32:59:8d:3b: 4f:af:61:c0:69:ea:89:cf:85:f8:7d:7a:10:59:5b:2c:84:27: f3:ba:96:8d:90:9e:bb:68:c7:62:b2:38:a2:ab:07:3f:9f:3b: c6:ff:a2:8c:91:0e:0a:40:b5:4f:9d:64:3a:39:dd:07:61:4f: 9d:b1:6e:fa:ab:52:78:ed:af:4a:ee:c0:6e:25:0a:18:10:5e: 7f:56:c5:97:0c:1b:98:61:f7:ca:6e:1b:74:a7:d5:57:01:3a: 3d:c4:ea:e1:0a:9c:bd:c2:d9:57:4a:0a:9d:e1:e3:ed:be:c6: 69:81:07:3b:ba:e8:3f:76:90:0c:1f:42:12:41:e8:10:bf:dd: f9:24:2d:90:63:22:58:cc:f0:b3:51:c1:4a:70:a8:af:df:5d: c7:c5:41:52:b9:51:90:63:18:9c:8f:87:75:85:43:36:c3:2d: de:41:45:20:f0:97:83:56:5d:84:e8:cf:db:11:d9:19:70:bb: 94:7a:ec:8e:9a:3d:ca:20:bf:82:0d:e2:7c:01:a5:be:9d:7e: bc:9c:6f:51:2f:0d:1b:cf:d1:7f:ea:ed:20:ff:d0:75:d4:c0: c1:0d:9f:68:97:cc:4d:af:db:ee:31:b2:65:16:91:a2:b3:91: 6e:97:7f:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjQxMTI0MTQyNTQ0WhcNMjQxMjAxMTQyNTQ0WjAYMRYwFAYD VQQDEw02NzQzMzc2OC1lOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPK3fD73sVvX8Ar8KKVBvDgLvjWBFs96qHET8iQQFPkXxOlv4ZQtHO8sEEZJ T2ADajmEpqPxioNxR7cxYt1aLmBoXjG/iHA1a28sdQjvIqyPWQO/+VToNiR8som4 NtqSYvgC0UyzvshmyZA6rostyFOH6ifbPtaWfzXTRJBKXFnzp6h3EpBfOmnC0FSd hOxfbAwqEWJ+DkKid9CbRx5dh8iP0zbEFUCceZSzopjqO+2uqNcuEM6BU+DFzItW dFlyXG2bp/6+pyehz0PYJZxPeBwFrlNnAAMSCNM3DfeIPrpcydLeHQPfAk8zOrUk J8S70fNwp9euJHtg58UDX7n3awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcg4I9Z 6w8P2XxRABbHl9N090LcMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjnDhvz/yGSmsuufKerjJZjTtPr2HAaeqJz4X4fXoQWVsshCfzupaN kJ67aMdisjiiqwc/nzvG/6KMkQ4KQLVPnWQ6Od0HYU+dsW76q1J47a9K7sBuJQoY EF5/VsWXDBuYYffKbht0p9VXATo9xOrhCpy9wtlXSgqd4ePtvsZpgQc7uug/dpAM H0ISQegQv935JC2QYyJYzPCzUcFKcKiv313HxUFSuVGQYxicj4d1hUM2wy3eQUUg 8JeDVl2E6M/bEdkZcLuUeuyOmj3KIL+CDeJ8AaW+nX68nG9RLw0bz9F/6u0g/9B1 1MDBDZ9ol8xNr9vuMbJlFpGis5Ful3+G -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:21 2024 by rpki-client on console-ams.rpki-client.org