$ rpki-client -vvf rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft File: hm540aRej9EmgIr_fOpPwI59kqg.mft (raw, json) Hash identifier: m5Hw3b4bMxFkf/70lX2uBfz8sGhEenD3uk3uFBibA5w= Subject key identifier: 4A:73:7B:36:7F:FC:B5:7B:F7:4D:7F:33:5B:EB:92:2D:BE:84:DE:72 Authority key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 Certificate issuer: /CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft Manifest number: 72 Signing time: Sat 23 Nov 2024 04:52:26 +0000 Manifest this update: Sat 23 Nov 2024 04:52:25 +0000 Manifest next update: Sat 30 Nov 2024 04:52:25 +0000 Files and hashes: 1: hm540aRej9EmgIr_fOpPwI59kqg.crl (hash: etZC8gpuRroZdWME7ktfFsFeiP57JP7QuJudOfyKJ0k=) 2: 894D6CDE1C3511EFA78E995CC4F9AE02.roa (hash: uii8sBoCCA9oMiaCp6gGjIs44iklY2+Z8HWMoERYSKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8 Validity Not Before: Nov 23 04:52:25 2024 GMT Not After : Nov 30 04:52:25 2024 GMT Subject: CN=67415f8a-2bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e8:f2:b1:b1:a1:49:0b:bd:9a:66:61:76:a6: f7:2e:8a:29:06:d3:a7:07:ab:15:36:32:e9:3b:dc: d9:95:94:a3:2c:85:59:7d:29:e2:57:7c:59:f9:2a: 1e:21:07:90:a9:05:51:b9:2f:72:5e:ec:18:48:f9: 94:d0:df:a7:fa:e5:2b:27:bc:d8:a2:68:6f:09:ea: e7:1d:0f:6e:9b:e0:1f:8f:7d:96:e3:d9:26:cf:cb: e6:67:8e:49:5c:04:7d:d8:37:49:11:75:e6:92:08: df:72:3c:81:e6:f1:83:4d:b2:66:59:77:ed:dc:43: 15:b9:5c:27:3c:19:12:39:5a:d0:a9:10:6b:1e:82: b1:11:e7:88:e2:91:6d:b0:5f:6a:e7:72:04:d0:6c: c0:62:f7:06:8f:02:14:b5:4c:eb:be:da:db:74:90: 3a:8e:a9:dd:8d:5a:98:27:dc:4c:ab:d6:31:0f:a9: f9:62:04:1c:95:bf:b1:57:36:98:80:82:01:dc:72: d4:93:c9:8f:bf:54:76:e9:d0:be:1e:db:ae:bc:94: 41:55:0b:de:99:4d:6d:9f:a9:63:60:9c:5d:67:c7: 0f:2c:14:18:c6:70:0f:75:8e:d2:eb:de:32:45:af: d0:9c:4a:fd:7c:2f:c4:f9:a1:ba:34:6e:d5:e9:8e: 8c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:73:7B:36:7F:FC:B5:7B:F7:4D:7F:33:5B:EB:92:2D:BE:84:DE:72 X509v3 Authority Key Identifier: keyid:86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:73:1f:66:37:19:07:4e:2a:2e:7c:0f:2d:6d:49:a3:29:cf: cd:b3:c5:c1:8c:10:30:40:37:9e:d6:f8:a5:8a:df:81:96:d6: 6f:18:95:44:51:67:21:d8:1a:28:95:d8:c2:3f:38:0e:2d:eb: 26:c0:74:0f:3d:35:fd:b6:ed:42:45:a4:cd:cf:db:2e:9f:09: d7:31:f3:c8:17:1e:d3:f9:f7:95:99:bb:ce:23:a4:52:60:d5: 18:cb:d0:25:2a:f2:0d:87:19:4c:23:99:b5:e5:b6:6f:fe:fe: 42:b1:15:cb:94:c0:24:59:5f:8c:ca:bc:b2:0d:d1:2e:1a:d3: d3:3a:c2:04:cc:d6:f3:85:7c:33:65:2e:f4:74:ce:57:c0:f2: 8b:79:da:7b:21:a3:3d:f7:39:34:16:f5:29:2a:42:e0:90:84: c4:91:54:3f:a3:0d:4b:e6:22:20:ed:3f:83:a3:af:a1:14:4c: a9:ce:8c:61:dd:2a:b7:fc:cf:09:ff:cd:44:31:a1:22:fa:c5: 9d:7a:cb:71:47:1d:db:88:0f:22:e2:50:5d:cc:50:22:59:f8: 90:fe:3c:81:fe:22:f7:f7:92:3c:22:7e:73:e8:ac:28:42:19: fb:9a:9b:79:86:bc:24:1d:95:44:a2:2e:a3:f6:d7:44:e4:d0: 18:42:e4:f5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0ZDRTExMC8GA1UEBRMoODY2RTc4RDFBNDVFOEZEMTI2ODA4QUZGN0NFQTRGQzA4 RTdEOTJBODAeFw0yNDExMjMwNDUyMjVaFw0yNDExMzAwNDUyMjVaMBgxFjAUBgNV BAMTDTY3NDE1ZjhhLTJiZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM6PKxsaFJC72aZmF2pvcuiikG06cHqxU2Muk73NmVlKMshVl9KeJXfFn5Kh4h B5CpBVG5L3Je7BhI+ZTQ36f65SsnvNiiaG8J6ucdD26b4B+PfZbj2SbPy+Znjklc BH3YN0kRdeaSCN9yPIHm8YNNsmZZd+3cQxW5XCc8GRI5WtCpEGsegrER54jikW2w X2rncgTQbMBi9waPAhS1TOu+2tt0kDqOqd2NWpgn3Eyr1jEPqfliBByVv7FXNpiA ggHcctSTyY+/VHbp0L4e2668lEFVC96ZTW2fqWNgnF1nxw8sFBjGcA91jtLr3jJF r9CcSv18L8T5obo0btXpjoxpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSnN7Nn/8 tXv3TX8zW+uSLb6E3nIwHwYDVR0jBBgwFoAUhm540aRej9EmgIr/fOpPwI59kqgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDRkNFL0UwQkUzNkFDMDIz RjExRUY4RTVDMUU1OEM0RjlBRTAyL2htNTQwYVJlajlFbWdJcl9mT3BQd0k1OWtx Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaG01NDBhUmVqOUVtZ0lyX2ZPcFB3STU5a3FnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD RkNFL0UwQkUzNkFDMDIzRjExRUY4RTVDMUU1OEM0RjlBRTAyL2htNTQwYVJlajlF bWdJcl9mT3BQd0k1OWtxZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJpzH2Y3GQdOKi58Dy1tSaMpz82zxcGMEDBAN57W+KWK34GW1m8YlURR ZyHYGiiV2MI/OA4t6ybAdA89Nf227UJFpM3P2y6fCdcx88gXHtP595WZu84jpFJg 1RjL0CUq8g2HGUwjmbXltm/+/kKxFcuUwCRZX4zKvLIN0S4a09M6wgTM1vOFfDNl LvR0zlfA8ot52nshoz33OTQW9SkqQuCQhMSRVD+jDUvmIiDtP4Ojr6EUTKnOjGHd Krf8zwn/zUQxoSL6xZ16y3FHHduIDyLiUF3MUCJZ+JD+PIH+Ivf3kjwifnPorChC Gfuam3mGvCQdlUSiLqP210Tk0BhC5PU= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:22 2024 by rpki-client on console-fra.rpki-client.org