$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft File: hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json) Hash identifier: ksE1bZd1xECF7VuQLSCpoe7VciNH76o4KiF/WJKinlc= Subject key identifier: D1:8B:0F:A6:E8:F5:5C:FB:D1:EF:ED:B8:73:A8:B1:F1:05:BA:3C:21 Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 07CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft Manifest number: 07C7 Signing time: Fri 22 Nov 2024 20:42:38 +0000 Manifest this update: Fri 22 Nov 2024 20:42:38 +0000 Manifest next update: Fri 29 Nov 2024 20:42:38 +0000 Files and hashes: 1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: nQv4y5LqHEHE5iUQgm6ePsT42i1zrCQnK2OXjO0kXJs=) 2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: BTpWw7F/XbdMRveGgpGDkDR4BmkxDYTL8O9GDvpyiEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1996 (0x7cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Nov 22 20:42:38 2024 GMT Not After : Nov 29 20:42:38 2024 GMT Subject: CN=6740ecbe-6d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:99:f3:c8:56:37:d8:45:d1:5e:8c:df:cf:75: 07:0c:98:03:a5:97:7f:dc:25:b8:8c:01:42:d2:bc: 4c:1e:0b:a7:cf:e4:37:b7:38:53:56:6e:87:2e:5b: 6d:1a:9d:08:39:89:74:62:e0:c7:0d:9c:48:1d:4d: 09:ae:79:14:dd:cb:bd:c1:24:4d:a3:6d:c7:82:a8: fe:86:95:c1:d5:e5:ab:20:b3:fb:d2:b5:b1:34:2a: 17:3e:61:91:2c:2c:1c:c6:17:a1:21:fb:13:91:b6: cc:d9:45:f6:52:52:3e:e9:d3:d9:c6:ef:34:0a:f2: 47:df:af:b4:e3:90:27:7d:cb:81:cb:b8:5d:57:77: 71:46:8a:e6:03:43:d6:94:fd:99:6c:1c:8d:84:11: 26:7f:39:c5:32:65:dd:41:13:04:5c:39:f1:da:f3: 03:ac:af:ae:23:f8:2f:65:ee:6c:49:5e:92:d6:16: a9:93:5b:86:1c:1b:4a:f5:00:ef:62:e3:a4:ed:08: e3:a4:f6:13:cc:bf:2c:74:5a:9c:e4:08:97:1f:b3: de:8e:00:de:d2:fc:27:ac:a7:73:30:b7:b9:49:f6: 0c:45:d4:bd:19:17:a9:79:ad:6e:47:ad:9a:57:4d: 74:a8:e9:18:d9:c4:4b:2c:17:02:6c:95:0e:e8:22: 58:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:8B:0F:A6:E8:F5:5C:FB:D1:EF:ED:B8:73:A8:B1:F1:05:BA:3C:21 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:26:ee:46:b9:78:1e:42:31:1d:c0:97:25:61:20:ff:ea:4a: 53:0e:1d:18:e0:41:02:33:a1:bb:fb:28:29:f7:f3:f1:fa:da: e1:df:aa:ab:d7:f0:14:51:31:68:5c:90:84:3d:28:45:66:0e: 94:96:ab:17:88:cf:92:42:c0:06:15:b5:83:35:c6:f5:06:96: d7:04:7a:d8:9a:45:25:88:85:d0:6a:21:db:6b:6b:44:61:24: 5b:85:83:47:7c:5d:dd:93:0c:ac:88:72:56:e2:88:0a:37:48: f9:33:45:fc:1b:82:33:ce:11:16:ad:56:d5:0f:c2:e3:8e:5e: 52:fb:cf:82:80:b1:5c:cd:9c:65:e7:bf:36:92:6a:c5:3a:d8: dd:47:f8:17:11:26:64:e5:07:2e:36:34:45:f2:98:ca:f8:3f: 23:45:91:fe:2f:e6:ab:8f:16:6f:04:23:bd:0b:f5:bb:60:3f: e6:18:00:3b:41:ec:09:f9:92:2f:bc:94:6a:3e:a6:83:48:68: 23:7d:17:47:20:0d:c2:73:6e:a4:0c:e4:37:16:2d:54:ae:e8: 3e:de:ef:72:f8:c5:3c:37:30:6a:d2:d8:63:55:34:c8:d2:b0: 4a:29:10:fc:dd:ee:54:c3:63:39:3a:de:d1:d9:45:89:48:37: 37:29:8d:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjQxMTIyMjA0MjM4WhcNMjQxMTI5MjA0MjM4WjAYMRYwFAYD VQQDEw02NzQwZWNiZS02ZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZnzyFY32EXRXozfz3UHDJgDpZd/3CW4jAFC0rxMHgunz+Q3tzhTVm6HLltt Gp0IOYl0YuDHDZxIHU0JrnkU3cu9wSRNo23Hgqj+hpXB1eWrILP70rWxNCoXPmGR LCwcxhehIfsTkbbM2UX2UlI+6dPZxu80CvJH36+045AnfcuBy7hdV3dxRormA0PW lP2ZbByNhBEmfznFMmXdQRMEXDnx2vMDrK+uI/gvZe5sSV6S1hapk1uGHBtK9QDv YuOk7QjjpPYTzL8sdFqc5AiXH7PejgDe0vwnrKdzMLe5SfYMRdS9GRepea1uR62a V010qOkY2cRLLBcCbJUO6CJYUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGLD6bo 9Vz70e/tuHOosfEFujwhMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhu bnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZJu5GuXgeQjEdwJclYSD/6kpTDh0Y4EECM6G7+ygp9/Px+trh36qr 1/AUUTFoXJCEPShFZg6UlqsXiM+SQsAGFbWDNcb1BpbXBHrYmkUliIXQaiHba2tE YSRbhYNHfF3dkwysiHJW4ogKN0j5M0X8G4IzzhEWrVbVD8Ljjl5S+8+CgLFczZxl 5782kmrFOtjdR/gXESZk5QcuNjRF8pjK+D8jRZH+L+arjxZvBCO9C/W7YD/mGAA7 QewJ+ZIvvJRqPqaDSGgjfRdHIA3Cc26kDOQ3Fi1Urug+3u9y+MU8NzBq0thjVTTI 0rBKKRD83e5Uw2M5Ot7R2UWJSDc3KY3b -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org