$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: eCO//eMBIcEwbeY60Eb1iZZwPx++QB/5Ag/F7Qv4dRE= Subject key identifier: 42:86:83:67:53:75:67:F5:8F:2F:B9:89:F7:90:C9:F8:57:07:24:D9 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 0788 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 076F Signing time: Fri 22 Nov 2024 21:07:25 +0000 Manifest this update: Fri 22 Nov 2024 21:07:24 +0000 Manifest next update: Fri 29 Nov 2024 21:07:24 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: 0tWEA15J1mPXK4zZx7UygXS806zFpQ98RGXON4YA0R0=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: apZe4MVRPNoFnu0VdCcMOgQQIHarERu0kJz1jLlb1yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1928 (0x788) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Nov 22 21:07:24 2024 GMT Not After : Nov 29 21:07:24 2024 GMT Subject: CN=6740f28c-1ad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a6:06:aa:46:ba:e8:c1:b3:bf:ff:ca:ac:e2: e3:4d:8d:dd:4a:ec:68:7c:9e:de:fb:01:c3:96:9d: 34:9d:e2:d0:f2:90:77:0f:e5:95:c2:d9:f8:d9:f6: ad:b8:c1:9f:86:72:d1:7f:df:1d:29:2e:7c:df:b7: 37:26:54:d6:c7:90:41:cf:aa:20:61:80:2d:1d:17: b3:af:59:c1:65:e8:4f:9a:87:52:f1:bf:d0:4c:f8: 51:30:b8:2d:fe:7a:44:29:59:d0:63:ae:4d:fa:22: fa:52:4a:86:43:4b:c0:a2:66:75:80:31:28:3b:b5: 81:e0:56:43:e9:7e:e7:d3:d2:17:5c:8b:56:5a:61: c1:c8:2e:79:a3:12:c6:93:60:a6:2a:1f:db:69:ce: b9:cd:45:83:52:80:b7:b0:3f:7b:10:71:db:5d:94: b8:98:f1:26:b1:e4:30:f8:cd:36:a7:f2:da:02:23: a3:9b:8f:c7:f1:65:48:28:30:85:0f:ff:87:3b:b0: f3:10:8f:82:f3:8a:c6:57:72:f9:ca:32:2e:7c:34: 5e:81:04:98:a5:54:be:0f:19:92:a6:a3:98:e4:ef: fe:f3:28:46:3d:8a:c5:2f:e6:96:c7:8d:ff:e0:27: 6e:7b:b9:9e:8a:06:0a:da:95:45:ed:b2:e3:46:0e: d9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:86:83:67:53:75:67:F5:8F:2F:B9:89:F7:90:C9:F8:57:07:24:D9 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:70:ea:0c:9b:10:c2:d9:87:09:76:e0:b5:0d:3f:38:1c:df: 64:b2:9d:34:97:7d:ee:26:e3:81:e2:82:b9:34:22:70:35:c8: d6:b3:84:28:88:1b:8a:56:22:fc:07:f1:e5:8d:b7:d1:2f:a4: 7d:11:2f:62:2a:ae:7a:87:a0:9a:7c:51:94:20:fe:ad:4f:ca: 8a:43:ad:0c:91:76:9c:c6:ee:4b:bc:15:c8:32:ab:aa:8c:2f: c1:fb:13:96:d2:cb:15:cf:47:ac:6d:33:22:c9:1d:0f:49:f9: 9f:7c:6a:d9:b3:2c:f8:b8:ce:98:fb:d8:77:8f:30:0a:4c:8c: de:cb:f1:5c:39:df:c5:09:05:74:ca:f3:b1:1d:a4:a8:03:96: 20:07:3b:08:15:58:55:32:84:84:25:fd:51:82:a8:36:e7:fe: e7:93:fb:d3:48:b5:6d:79:9a:51:15:d7:52:cb:81:cb:1d:1b: a3:e8:2f:fe:b5:f4:14:32:8e:7b:64:2c:3e:21:14:14:8d:17: c8:52:05:04:31:af:45:72:90:93:27:03:40:ab:19:9e:0f:1a: 3b:cf:d3:fa:35:b3:49:ba:e8:89:58:58:08:42:39:55:8c:aa: 48:7f:f5:bf:5b:6b:42:19:8f:ed:3c:2f:ba:c4:60:ab:da:9f: 13:9a:93:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjQxMTIyMjEwNzI0WhcNMjQxMTI5MjEwNzI0WjAYMRYwFAYD VQQDEw02NzQwZjI4Yy0xYWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6YGqka66MGzv//KrOLjTY3dSuxofJ7e+wHDlp00neLQ8pB3D+WVwtn42fat uMGfhnLRf98dKS5837c3JlTWx5BBz6ogYYAtHRezr1nBZehPmodS8b/QTPhRMLgt /npEKVnQY65N+iL6UkqGQ0vAomZ1gDEoO7WB4FZD6X7n09IXXItWWmHByC55oxLG k2CmKh/bac65zUWDUoC3sD97EHHbXZS4mPEmseQw+M02p/LaAiOjm4/H8WVIKDCF D/+HO7DzEI+C84rGV3L5yjIufDRegQSYpVS+DxmSpqOY5O/+8yhGPYrFL+aWx43/ 4Cdue7meigYK2pVF7bLjRg7ZDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKGg2dT dWf1jy+5ifeQyfhXByTZMB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXcOoMmxDC2YcJduC1DT84HN9ksp00l33uJuOB4oK5NCJwNcjWs4Qo iBuKViL8B/HljbfRL6R9ES9iKq56h6CafFGUIP6tT8qKQ60MkXacxu5LvBXIMquq jC/B+xOW0ssVz0esbTMiyR0PSfmffGrZsyz4uM6Y+9h3jzAKTIzey/FcOd/FCQV0 yvOxHaSoA5YgBzsIFVhVMoSEJf1Rgqg25/7nk/vTSLVteZpRFddSy4HLHRuj6C/+ tfQUMo57ZCw+IRQUjRfIUgUEMa9FcpCTJwNAqxmeDxo7z9P6NbNJuuiJWFgIQjlV jKpIf/W/W2tCGY/tPC+6xGCr2p8TmpNm -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:14 2024 by rpki-client on console-fra.rpki-client.org