$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft File: HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft (raw, json) Hash identifier: NAGMD6q/Bxe98G64dIN4KHCKfFXjUtd5yrTSFjSwiqc= Subject key identifier: 79:AC:01:D2:52:96:C4:4C:6B:02:66:2E:DF:63:03:43:D4:5C:03:8C Authority key identifier: 1F:12:EC:2D:43:95:F9:5A:AC:C6:0C:62:EC:DD:82:85:7E:D3:04:12 Certificate issuer: /CN=A91FDD2C/serialNumber=1F12EC2D4395F95AACC60C62ECDD82857ED30412 Certificate serial: 06FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft Manifest number: 06F6 Signing time: Fri 22 Nov 2024 21:30:56 +0000 Manifest this update: Fri 22 Nov 2024 21:30:55 +0000 Manifest next update: Fri 29 Nov 2024 21:30:55 +0000 Files and hashes: 1: HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl (hash: vHShpLRN2cdIY6Gbcq2Z8QhPlFIBWE/Oc5Y1V1DTh20=) 2: D9BD904224B611EBAE734152C4F9AE02.roa (hash: EIvVWhXpTV92JNqqWKYnTXhH+34eBMjWnJ8xmQjKyLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD2C/serialNumber=1F12EC2D4395F95AACC60C62ECDD82857ED30412 Validity Not Before: Nov 22 21:30:55 2024 GMT Not After : Nov 29 21:30:55 2024 GMT Subject: CN=6740f80f-757c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:05:18:cd:fe:6b:27:21:25:85:b7:71:98:31: df:83:d6:8c:e3:ae:fd:01:04:0f:0f:df:a8:66:dd: 2b:a1:23:f5:70:4c:cc:50:e9:37:1e:ee:af:75:64: 62:99:37:20:16:86:fa:c9:84:b6:32:db:9f:1c:48: 6c:d2:68:9c:21:84:41:50:5f:cd:be:49:fc:5a:01: db:07:13:4e:ce:82:73:83:c5:f6:38:30:ee:32:30: f6:1b:0a:23:89:4a:3b:72:32:2f:bc:29:66:7d:f4: d2:b7:57:29:11:85:3f:8c:52:13:8a:61:a8:91:85: 26:04:03:4f:00:32:b4:30:01:42:79:b7:fd:a5:77: b8:a6:4e:de:ac:2d:d0:b9:1b:b8:96:71:04:7e:b1: 82:cb:13:a9:e8:68:c2:af:a9:9c:fe:89:34:d1:b9: 52:25:4e:32:3e:2c:eb:b9:94:de:44:bc:f5:dd:2f: db:a4:98:c6:f3:ef:a8:62:ac:2b:09:87:0f:ac:0a: 9f:f4:8c:6f:11:70:a8:f9:02:ca:a4:4b:de:a0:3d: ba:24:cd:59:35:dc:5d:11:3d:92:b6:be:b8:0f:5c: 07:33:f0:3c:9f:5a:aa:c2:4e:44:5f:f9:5a:da:56: 1b:2f:cd:d4:89:d3:bf:1b:c0:76:49:ba:3b:35:87: 1e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:AC:01:D2:52:96:C4:4C:6B:02:66:2E:DF:63:03:43:D4:5C:03:8C X509v3 Authority Key Identifier: keyid:1F:12:EC:2D:43:95:F9:5A:AC:C6:0C:62:EC:DD:82:85:7E:D3:04:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD2C/48CE516224B511EBA2878F50C4F9AE02/HxLsLUOV-Vqsxgxi7N2ChX7TBBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:5d:17:9c:93:43:57:83:67:0c:c8:c5:87:42:22:e0:b0:44: b6:23:d1:bd:0d:1d:80:e4:34:fe:3c:4b:66:e1:0c:b4:99:cc: 23:a1:41:07:57:4c:52:cc:89:d6:d9:a5:2f:f3:39:11:ed:02: 7f:25:80:87:95:df:aa:bf:d3:de:d6:4c:0f:5f:19:42:d0:e4: a6:87:1a:41:9f:9b:70:a6:40:7d:4e:83:e6:02:e5:94:6a:d8: 59:7f:69:ff:d8:fe:8c:1c:7f:95:26:17:26:db:59:15:ce:34: 48:ec:3a:54:fe:5c:b0:d0:eb:ba:36:67:31:a9:e0:0e:c2:63: 9a:07:51:97:f1:8e:ef:79:9e:03:62:1a:74:6b:e7:12:88:31: 82:3d:86:c0:14:91:8e:bd:de:bd:16:62:e5:e7:56:7c:ef:16: 48:68:f4:5a:7a:07:49:c9:14:44:93:19:e8:97:8e:0c:fd:95: ee:97:a0:be:1c:85:2a:8b:ed:ad:5a:cc:72:4a:29:7c:db:c4: 3e:73:41:a8:28:76:e5:1c:9a:55:69:16:51:88:ba:eb:08:bd: ee:22:fe:3f:85:00:04:16:07:e8:a7:1b:68:82:0e:74:2b:1f: 9f:bd:fe:0b:45:fb:26:65:ff:8d:20:e1:0f:97:14:df:f5:eb: f8:4e:f1:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkREMkMxMTAvBgNVBAUTKDFGMTJFQzJENDM5NUY5NUFBQ0M2MEM2MkVDREQ4Mjg1 N0VEMzA0MTIwHhcNMjQxMTIyMjEzMDU1WhcNMjQxMTI5MjEzMDU1WjAYMRYwFAYD VQQDEw02NzQwZjgwZi03NTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gUYzf5rJyElhbdxmDHfg9aM4679AQQPD9+oZt0roSP1cEzMUOk3Hu6vdWRi mTcgFob6yYS2MtufHEhs0micIYRBUF/Nvkn8WgHbBxNOzoJzg8X2ODDuMjD2Gwoj iUo7cjIvvClmffTSt1cpEYU/jFITimGokYUmBANPADK0MAFCebf9pXe4pk7erC3Q uRu4lnEEfrGCyxOp6GjCr6mc/ok00blSJU4yPizruZTeRLz13S/bpJjG8++oYqwr CYcPrAqf9IxvEXCo+QLKpEveoD26JM1ZNdxdET2Str64D1wHM/A8n1qqwk5EX/la 2lYbL83UidO/G8B2Sbo7NYce1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmsAdJS lsRMawJmLt9jA0PUXAOMMB8GA1UdIwQYMBaAFB8S7C1DlflarMYMYuzdgoV+0wQS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQyQy80OENFNTE2MjI0 QjUxMUVCQTI4NzhGNTBDNEY5QUUwMi9IeExzTFVPVi1WcXN4Z3hpN04yQ2hYN1RC QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h4THNMVU9WLVZxc3hneGk3TjJDaFg3VEJCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQyQy80OENFNTE2MjI0QjUxMUVCQTI4NzhGNTBDNEY5QUUwMi9IeExzTFVPVi1W cXN4Z3hpN04yQ2hYN1RCQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3XReck0NXg2cMyMWHQiLgsES2I9G9DR2A5DT+PEtm4Qy0mcwjoUEH V0xSzInW2aUv8zkR7QJ/JYCHld+qv9Pe1kwPXxlC0OSmhxpBn5twpkB9ToPmAuWU athZf2n/2P6MHH+VJhcm21kVzjRI7DpU/lyw0Ou6NmcxqeAOwmOaB1GX8Y7veZ4D Yhp0a+cSiDGCPYbAFJGOvd69FmLl51Z87xZIaPRaegdJyRREkxnol44M/ZXul6C+ HIUqi+2tWsxySil828Q+c0GoKHblHJpVaRZRiLrrCL3uIv4/hQAEFgfopxtogg50 Kx+fvf4LRfsmZf+NIOEPlxTf9ev4TvF1 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:15 2024 by rpki-client on console-fra.rpki-client.org