$ rpki-client -vvf rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft File: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft (raw, json) Hash identifier: DGCgxXT8TZD6xkkIIg4n7YsydmFwPT/pi5hiWOvtdac= Subject key identifier: AD:08:40:44:60:23:96:CD:3C:B3:11:7C:55:A1:DD:D6:0E:D7:30:4E Authority key identifier: 84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D Certificate issuer: /CN=A911C743/serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Certificate serial: 0DEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft Manifest number: 0DDE Signing time: Fri 22 Nov 2024 17:48:18 +0000 Manifest this update: Fri 22 Nov 2024 17:48:17 +0000 Manifest next update: Fri 29 Nov 2024 17:48:17 +0000 Files and hashes: 1: hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl (hash: K0VYUlr5HpUtWuyoTgYZWQoXiMWKzoUcJrBsLycDw+4=) 2: 2B21EC2EE4E111E981365C17C4F9AE02.roa (hash: jnR4T4XlGdfZ2gOhYWumXwRlSJ7MxpHX0lAGLhkJjWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3563 (0xdeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C743/serialNumber=84E4FFB6927F77F5C3F0A252682F71DDB377B11D Validity Not Before: Nov 22 17:48:17 2024 GMT Not After : Nov 29 17:48:17 2024 GMT Subject: CN=6740c3e2-40d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1d:a4:8e:c5:5c:68:d4:f2:cc:4f:e3:59:15: 3b:a5:87:fb:2d:42:5a:42:1b:4b:de:df:ba:1e:76: 3a:fd:e5:03:15:44:1e:74:5b:5f:61:29:66:0b:ca: 1b:f1:cc:33:44:ff:23:58:84:ef:35:b7:6c:b9:00: 0f:77:1e:04:67:ba:30:ac:cc:b0:40:43:03:aa:93: a4:cc:bb:22:28:27:4c:48:e2:2b:a3:0f:39:b4:c7: 1a:a0:cd:2c:27:48:c6:dc:96:68:4b:e5:d3:61:e4: d1:13:5e:74:21:a3:e6:50:96:4e:69:9d:74:6f:f6: ff:2f:b0:98:46:8d:18:51:e2:15:66:b5:4f:be:c1: d3:9c:5c:21:0b:26:ba:72:4b:cb:47:ec:a3:c6:d3: 93:b8:e7:d6:e8:57:70:4c:a1:63:85:69:34:0f:d8: 42:0a:04:c5:4b:68:23:e9:12:f0:2f:b8:50:60:13: b3:7a:58:e8:e2:da:2e:e1:89:4f:8e:f7:c3:06:ac: b7:28:32:a0:5f:db:a9:01:58:43:f5:5d:44:ac:55: 75:f1:b0:e1:c7:26:e4:5e:71:4b:61:dc:70:fa:59: 53:b7:39:15:96:33:0a:9f:40:b1:50:7a:95:53:cf: 5b:70:dc:19:2d:8b:ae:0e:a5:8c:53:73:e6:82:9c: 00:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:08:40:44:60:23:96:CD:3C:B3:11:7C:55:A1:DD:D6:0E:D7:30:4E X509v3 Authority Key Identifier: keyid:84:E4:FF:B6:92:7F:77:F5:C3:F0:A2:52:68:2F:71:DD:B3:77:B1:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C743/F8AE2880A21D11E98242AD81C4F9AE02/hOT_tpJ_d_XD8KJSaC9x3bN3sR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:41:3c:58:e4:19:4e:e9:2f:f6:ac:11:da:c5:76:58:c1:35: e6:7c:59:5c:66:9e:77:27:3a:8c:79:00:93:17:2d:94:3d:fc: 8a:4b:bf:36:51:7f:a3:48:45:e5:e9:cd:f6:42:23:ce:e7:77: 8f:ce:61:b5:06:fb:ab:19:0a:d1:d7:9a:b3:98:4c:3f:3e:14: 14:39:7c:4c:83:9e:9f:d6:1f:9a:04:4c:00:49:67:c7:b5:ba: a1:c6:10:be:9f:2d:5c:ea:6d:0a:4a:c5:07:d9:87:18:55:fe: c3:9e:cd:b7:a3:5d:78:5c:52:8f:7e:53:98:1e:de:0c:16:7b: 47:a2:b9:b2:08:18:4b:de:40:85:cf:1c:8d:db:ff:30:7f:c9: 15:2a:39:71:af:8b:3c:a2:2e:86:68:ca:8d:7f:b5:20:ab:39: fe:1d:d3:d9:77:a8:72:21:d4:46:2f:3e:e9:ed:0c:74:15:c0: 5b:8b:28:50:a4:cc:be:e9:6c:91:0b:f9:c4:59:4e:e5:db:5d: 8e:3b:e1:36:f7:5a:1a:76:3a:26:2e:8b:31:ff:af:4b:d3:64: f5:e7:04:8f:55:7e:7c:e1:2d:d6:af:80:20:fa:35:c6:b0:a8: 38:e2:74:70:d3:70:74:cc:be:6f:6e:37:40:a4:eb:29:af:3f: e3:33:7c:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM3NDMxMTAvBgNVBAUTKDg0RTRGRkI2OTI3Rjc3RjVDM0YwQTI1MjY4MkY3MURE QjM3N0IxMUQwHhcNMjQxMTIyMTc0ODE3WhcNMjQxMTI5MTc0ODE3WjAYMRYwFAYD VQQDEw02NzQwYzNlMi00MGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6B2kjsVcaNTyzE/jWRU7pYf7LUJaQhtL3t+6HnY6/eUDFUQedFtfYSlmC8ob 8cwzRP8jWITvNbdsuQAPdx4EZ7owrMywQEMDqpOkzLsiKCdMSOIrow85tMcaoM0s J0jG3JZoS+XTYeTRE150IaPmUJZOaZ10b/b/L7CYRo0YUeIVZrVPvsHTnFwhCya6 ckvLR+yjxtOTuOfW6FdwTKFjhWk0D9hCCgTFS2gj6RLwL7hQYBOzeljo4tou4YlP jvfDBqy3KDKgX9upAVhD9V1ErFV18bDhxybkXnFLYdxw+llTtzkVljMKn0CxUHqV U89bcNwZLYuuDqWMU3PmgpwA0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0IQERg I5bNPLMRfFWh3dYO1zBOMB8GA1UdIwQYMBaAFITk/7aSf3f1w/CiUmgvcd2zd7Ed MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzc0My9GOEFFMjg4MEEy MUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2RfWEQ4S0pTYUM5eDNiTjNz UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hPVF90cEpfZF9YRDhLSlNhQzl4M2JOM3NSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qzc0My9GOEFFMjg4MEEyMUQxMUU5ODI0MkFEODFDNEY5QUUwMi9oT1RfdHBKX2Rf WEQ4S0pTYUM5eDNiTjNzUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEQTxY5BlO6S/2rBHaxXZYwTXmfFlcZp53JzqMeQCTFy2UPfyKS782 UX+jSEXl6c32QiPO53ePzmG1BvurGQrR15qzmEw/PhQUOXxMg56f1h+aBEwASWfH tbqhxhC+ny1c6m0KSsUH2YcYVf7Dns23o114XFKPflOYHt4MFntHormyCBhL3kCF zxyN2/8wf8kVKjlxr4s8oi6GaMqNf7Ugqzn+HdPZd6hyIdRGLz7p7Qx0FcBbiyhQ pMy+6WyRC/nEWU7l212OO+E291oadjomLosx/69L02T15wSPVX584S3Wr4Ag+jXG sKg44nRw03B0zL5vbjdApOsprz/jM3w1 -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org