$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft File: rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft (raw, json) Hash identifier: Q6jee04QhsEnADMQOzg3IdJalVRG0jG2yVeDrOs8wJI= Subject key identifier: CA:CF:C5:B8:EB:DA:71:9D:95:9D:D4:EE:85:1E:F3:DF:73:D7:3B:2F Authority key identifier: AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F Certificate issuer: /CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Certificate serial: 343F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft Manifest number: 3438 Signing time: Fri 22 Nov 2024 14:25:54 +0000 Manifest this update: Fri 22 Nov 2024 14:25:54 +0000 Manifest next update: Fri 29 Nov 2024 14:25:54 +0000 Files and hashes: 1: rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl (hash: Ezmkfe9qhGawqdXh6cn18jloYc2l4Abpvxm9Fer/hgk=) 2: 2FA57B9A97B611EDAE9D4381C4F9AE02.roa (hash: 3o2hy0qLO+z1FC2owvMkW8Mf5B3y4yK7LA6PPJMaRDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13375 (0x343f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D/serialNumber=AE107F3C2977717A1CD3571D183748FD07D9FC5F Validity Not Before: Nov 22 14:25:54 2024 GMT Not After : Nov 29 14:25:54 2024 GMT Subject: CN=67409472-8e14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:85:24:07:69:ce:3c:44:b7:77:94:43:94: d0:53:8d:42:71:52:3d:19:f2:3f:ed:62:cd:a6:45: 2b:ff:97:c5:45:be:f3:be:63:79:67:2b:42:be:89: 39:59:59:f4:d9:10:0b:75:8b:a3:e9:81:bd:ec:64: cb:7e:39:b5:f0:4b:95:26:0a:41:6f:8c:09:eb:74: 64:61:47:a0:9f:d4:93:33:c4:5b:af:78:69:4e:e4: b0:51:58:c9:6b:29:57:f7:94:11:51:43:97:49:12: f0:31:57:b2:bd:c5:cf:a7:9a:38:c1:43:de:01:21: d2:fc:aa:0a:86:b9:29:87:1e:76:c0:9e:89:32:80: 28:83:90:52:79:65:e8:96:70:2b:f1:cb:b0:f7:d4: 12:b1:e8:19:a2:b1:5f:3d:ad:eb:2a:b0:4c:76:67: ce:2a:01:54:ca:c2:32:62:26:49:ba:39:3b:46:34: 1c:c5:8a:20:ed:df:ea:be:fe:f8:86:e0:6a:1c:10: 2a:25:24:67:9d:8b:21:9e:73:af:27:00:50:c7:74: 45:bf:ab:fe:bd:3a:ba:a2:81:84:0b:ce:96:e6:5c: b4:84:1d:3e:76:90:cc:fa:69:ad:a0:3d:bf:3d:ac: 5c:aa:c5:77:fb:26:d3:04:e2:ef:06:32:a6:07:9e: e0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:CF:C5:B8:EB:DA:71:9D:95:9D:D4:EE:85:1E:F3:DF:73:D7:3B:2F X509v3 Authority Key Identifier: keyid:AE:10:7F:3C:29:77:71:7A:1C:D3:57:1D:18:37:48:FD:07:D9:FC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/EA1B1D6A1D8511E2979FE7DC08B02CD2/rhB_PCl3cXoc01cdGDdI_QfZ_F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:5c:2b:bb:a9:12:40:3c:2b:db:3b:47:b4:48:99:87:ec:a2: 43:b4:6d:55:bf:95:55:a9:24:91:b3:db:0f:8b:0f:f8:dc:3d: e0:ec:1c:66:bf:90:03:2a:36:85:ff:6b:c3:3e:7a:cc:0f:0f: 41:5c:9d:a3:5d:0b:63:62:84:4b:78:5c:d0:72:5f:21:d6:e1: 66:44:e6:8f:91:84:47:93:e3:65:fb:e9:76:8d:3c:00:7c:a1: 85:1f:cb:66:ca:d4:3b:ba:00:05:d1:26:1c:82:b8:ba:94:b6: 42:6d:40:8d:4c:30:13:af:0f:7b:fc:d8:cf:05:04:03:c9:53: 5f:3f:23:23:17:7b:3e:59:4d:7e:9f:da:a2:9a:8d:bb:91:91: 3e:f6:15:88:7d:8f:34:83:21:69:97:cc:11:19:27:26:36:9a: 7e:d0:b1:63:9e:70:42:9f:23:a6:2c:ad:95:b3:2f:8c:86:7b: 53:51:7b:0a:03:5f:b9:30:85:0f:4c:40:9d:21:56:7e:5b:85: 43:b4:78:ca:73:62:cf:92:b1:b6:6d:2b:c8:45:5a:61:b0:ed: 26:15:1b:db:eb:bc:f0:8c:36:1f:54:21:7b:2b:92:ca:a4:27: eb:a1:89:4f:69:cb:f0:31:2b:b1:72:37:a5:4c:d0:c1:f9:2d: 76:e9:d1:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICND8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEFFMTA3RjNDMjk3NzcxN0ExQ0QzNTcxRDE4Mzc0OEZE MDdEOUZDNUYwHhcNMjQxMTIyMTQyNTU0WhcNMjQxMTI5MTQyNTU0WjAYMRYwFAYD VQQDEw02NzQwOTQ3Mi04ZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAummFJAdpzjxEt3eUQ5TQU41CcVI9GfI/7WLNpkUr/5fFRb7zvmN5ZytCvok5 WVn02RALdYuj6YG97GTLfjm18EuVJgpBb4wJ63RkYUegn9STM8Rbr3hpTuSwUVjJ aylX95QRUUOXSRLwMVeyvcXPp5o4wUPeASHS/KoKhrkphx52wJ6JMoAog5BSeWXo lnAr8cuw99QSsegZorFfPa3rKrBMdmfOKgFUysIyYiZJujk7RjQcxYog7d/qvv74 huBqHBAqJSRnnYshnnOvJwBQx3RFv6v+vTq6ooGEC86W5ly0hB0+dpDM+mmtoD2/ PaxcqsV3+ybTBOLvBjKmB57gLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrPxbjr 2nGdlZ3U7oUe899z1zsvMB8GA1UdIwQYMBaAFK4Qfzwpd3F6HNNXHRg3SP0H2fxf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9FQTFCMUQ2QTFE ODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NYb2MwMWNkR0RkSV9RZlpf RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoQl9QQ2wzY1hvYzAxY2RHRGRJX1FmWl9GOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9FQTFCMUQ2QTFEODUxMUUyOTc5RkU3REMwOEIwMkNEMi9yaEJfUENsM2NY b2MwMWNkR0RkSV9RZlpfRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWXCu7qRJAPCvbO0e0SJmH7KJDtG1Vv5VVqSSRs9sPiw/43D3g7Bxm v5ADKjaF/2vDPnrMDw9BXJ2jXQtjYoRLeFzQcl8h1uFmROaPkYRHk+Nl++l2jTwA fKGFH8tmytQ7ugAF0SYcgri6lLZCbUCNTDATrw97/NjPBQQDyVNfPyMjF3s+WU1+ n9qimo27kZE+9hWIfY80gyFpl8wRGScmNpp+0LFjnnBCnyOmLK2Vsy+MhntTUXsK A1+5MIUPTECdIVZ+W4VDtHjKc2LPkrG2bSvIRVphsO0mFRvb67zwjDYfVCF7K5LK pCfroYlPacvwMSuxcjelTNDB+S126dEg -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:12 2024 by rpki-client on console-ams.rpki-client.org