$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json) Hash identifier: I/wixwoSRczMiQJ4S1UuOWj1yaq6a0cRDz9OHB+9tYQ= Subject key identifier: C6:89:A3:25:09:D6:12:7D:C9:19:34:18:56:C7:4B:10:49:53:60:1F Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft Manifest number: 0111 Signing time: Sat 23 Nov 2024 04:03:33 +0000 Manifest this update: Sat 23 Nov 2024 04:03:32 +0000 Manifest next update: Sat 30 Nov 2024 04:03:32 +0000 Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: zOLFQzK3Frua/JfTZSZgooCf2E8rKJwEYA/eVdDQzHw=) 2: 6BCEC330344311EFB7DD0D34C4F9AE02.roa (hash: Ew84b4aOPu0Bq7VG724cz8ODigtWKExUYVKnAP4kXU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F Validity Not Before: Nov 23 04:03:32 2024 GMT Not After : Nov 30 04:03:32 2024 GMT Subject: CN=67415414-fde6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9f:41:bb:8a:ec:5e:67:29:47:7d:7a:07:96: 68:6a:be:28:68:d6:37:da:9b:8a:22:4d:ea:60:35: 48:63:73:e4:aa:a5:77:92:2e:f2:82:0e:88:d3:22: 98:af:4b:f2:ac:f5:79:9b:75:dd:ce:89:91:dd:93: 4a:ed:ff:b3:b7:b8:08:f6:9b:b1:43:f2:e5:c9:13: 82:5d:62:4a:15:19:ff:ae:4a:9c:3a:af:1b:66:3a: 3b:cb:dd:a8:58:1d:3a:c5:4a:21:7f:8f:33:be:70: 03:39:b3:86:1a:1b:9e:cc:65:94:2c:75:c8:2d:a8: ca:ee:e3:9c:12:e8:18:71:4d:73:cf:00:34:71:75: ef:db:e1:66:84:a6:f2:66:d8:9f:e4:45:09:3c:85: 09:50:f9:b6:9d:cb:8f:eb:94:4c:91:c1:2d:4d:e5: e3:af:7d:72:4d:09:5c:0e:b0:60:7a:fb:44:92:6f: 16:f9:1e:c8:20:a2:18:4a:de:3a:84:1a:28:72:71: 42:c6:57:e0:2a:f5:87:28:ae:3d:c0:0a:57:97:40: c0:a6:2d:43:28:83:43:84:49:7c:76:df:be:fd:8b: c4:12:ff:3d:0e:d7:04:8d:15:8e:4c:dd:17:b7:5d: 4e:ca:fa:e0:94:92:ef:31:93:38:45:f2:15:18:03: 83:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:89:A3:25:09:D6:12:7D:C9:19:34:18:56:C7:4B:10:49:53:60:1F X509v3 Authority Key Identifier: keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:0c:c7:36:21:8f:f7:e2:c3:1b:40:52:6c:fd:90:f4:cb:db: 72:bb:b0:f7:1e:e1:23:1b:0e:7a:09:10:8b:bf:ba:95:2d:95: 6b:35:9b:e3:b6:b8:69:80:ea:50:1a:65:6a:c2:bc:77:74:58: e7:cd:74:cc:2f:31:d9:ee:00:45:9e:aa:47:83:91:df:95:fc: 47:af:4b:56:8d:eb:dd:54:8d:c7:be:8f:58:a4:a6:98:89:6c: d6:64:a3:89:8d:8d:bd:4f:c2:2d:dd:3e:fc:f1:a7:8a:0e:e3: b0:13:3c:0f:9c:c7:67:8c:bd:87:25:8e:45:1b:dd:c6:f2:07: 15:f7:aa:41:9d:8a:26:bd:e4:50:f2:26:25:40:d7:02:cc:b8: 75:20:a4:71:1e:cc:13:ae:5e:29:26:ea:29:91:df:3b:c3:8f: b0:95:af:e5:4b:e3:44:59:9f:89:5e:12:f6:61:d3:50:9f:35: ae:88:6a:5e:ee:fd:64:46:c7:a8:ab:f1:95:24:d7:76:34:b7: db:98:f0:11:c3:a2:c8:37:55:6e:cc:45:99:10:00:55:88:b0: 91:4f:78:38:81:9e:63:4c:35:cd:dd:ad:2d:b4:bc:7f:6f:d2: 5f:ec:3c:a7:76:52:91:56:5e:55:b5:58:2a:18:08:7b:19:49: 98:a3:f4:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTU0RjExMC8GA1UEBRMoODVGRkJFNThEQzFDRjdGOTFDMkQzODEzNEUyMEI2RUYw QjJDM0E1RjAeFw0yNDExMjMwNDAzMzJaFw0yNDExMzAwNDAzMzJaMBgxFjAUBgNV BAMTDTY3NDE1NDE0LWZkZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCn0G7iuxeZylHfXoHlmhqviho1jfam4oiTepgNUhjc+SqpXeSLvKCDojTIpiv S/Ks9Xmbdd3OiZHdk0rt/7O3uAj2m7FD8uXJE4JdYkoVGf+uSpw6rxtmOjvL3ahY HTrFSiF/jzO+cAM5s4YaG57MZZQsdcgtqMru45wS6BhxTXPPADRxde/b4WaEpvJm 2J/kRQk8hQlQ+bady4/rlEyRwS1N5eOvfXJNCVwOsGB6+0SSbxb5HsggohhK3jqE GihycULGV+Aq9Ycorj3ACleXQMCmLUMog0OESXx23779i8QS/z0O1wSNFY5M3Re3 XU7K+uCUku8xkzhF8hUYA4MBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxomjJQnW En3JGTQYVsdLEElTYB8wHwYDVR0jBBgwFoAUhf++WNwc9/kcLTgTTiC27wssOl8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NTRGLzU5MUEzMjIwOTE0 QTExRUU5NDJDQzg3MUM0RjlBRTAyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09s OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGYtLVdOd2M5X2tjTFRnVFRpQzI3d3NzT2w4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5 NTRGLzU5MUEzMjIwOTE0QTExRUU5NDJDQzg3MUM0RjlBRTAyL2hmLS1XTndjOV9r Y0xUZ1RUaUMyN3dzc09sOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEkMxzYhj/fiwxtAUmz9kPTL23K7sPce4SMbDnoJEIu/upUtlWs1m+O2 uGmA6lAaZWrCvHd0WOfNdMwvMdnuAEWeqkeDkd+V/EevS1aN691Ujce+j1ikppiJ bNZko4mNjb1Pwi3dPvzxp4oO47ATPA+cx2eMvYcljkUb3cbyBxX3qkGdiia95FDy JiVA1wLMuHUgpHEezBOuXikm6imR3zvDj7CVr+VL40RZn4leEvZh01CfNa6Ial7u /WRGx6ir8ZUk13Y0t9uY8BHDosg3VW7MRZkQAFWIsJFPeDiBnmNMNc3drS20vH9v 0l/sPKd2UpFWXlW1WCoYCHsZSZij9Kg= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org