$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: GynO0rfCOvw6ekosufLOW4icAcH6CdPTaFft+kcP8Us= Subject key identifier: 06:26:54:87:3A:63:10:E9:42:F1:CA:3A:55:8A:A5:04:FC:D8:3E:13 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 10AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 1830 Signing time: Fri 22 Nov 2024 17:19:55 +0000 Manifest this update: Fri 22 Nov 2024 17:19:54 +0000 Manifest next update: Fri 29 Nov 2024 17:19:54 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: 1+zDliZt6PK5H/NAmhkQIA3CRhiw6nga6HCxzknQt8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4267 (0x10ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Nov 22 17:19:54 2024 GMT Not After : Nov 29 17:19:54 2024 GMT Subject: CN=6740bd3b-a964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2f:11:76:2d:91:56:6d:3b:80:d4:ce:9a:fa: 22:d8:cb:e2:10:5a:36:88:fe:3e:bb:1f:09:4a:fc: 3a:d8:31:db:3c:66:03:b9:4b:f2:50:73:53:b9:31: dd:41:26:1e:0c:92:c0:34:06:59:c1:85:b5:fa:9f: c8:b9:e0:85:dc:b2:33:1e:f8:61:4d:30:5c:a1:1f: 1f:46:c4:d9:8c:da:55:c2:26:25:7b:51:fd:df:16: 0e:69:5b:e1:7f:cf:17:13:29:ad:88:0f:c6:5a:c9: 37:41:12:86:ce:3d:05:f8:b7:81:68:3b:80:7a:85: ae:58:b0:d2:ed:df:6b:f9:58:ab:e8:b5:cc:33:1f: 6d:81:98:37:9d:e0:87:74:7f:84:a5:89:53:00:fe: bf:0d:db:d3:07:6c:a8:bf:95:0f:d6:13:14:91:81: 35:8e:e1:36:29:e2:c8:fd:b8:14:96:b3:22:bc:36: 57:17:c4:48:1d:cb:eb:39:ad:29:ad:58:f4:8d:5f: d4:88:95:a8:2b:c7:a7:2a:4d:51:41:10:c9:21:17: 0b:7d:e0:6e:65:7e:b1:c4:4c:c7:ce:32:d6:77:54: 84:4b:5c:55:7e:2a:af:82:e3:7c:e6:61:9e:a2:85: 75:79:6e:e1:f6:5c:28:1a:af:eb:70:db:84:44:5d: 3d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:26:54:87:3A:63:10:E9:42:F1:CA:3A:55:8A:A5:04:FC:D8:3E:13 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:33:be:f6:2b:32:e9:c2:db:ff:9a:9a:bb:37:18:f4:bc:05: 20:be:41:9b:e5:d5:9c:2a:14:89:6f:05:26:bc:cb:3f:a1:f9: 10:ef:b1:04:68:a6:ca:a9:95:50:fc:fc:62:d3:b7:a9:ca:4d: 57:bb:87:7f:eb:b7:f7:74:ba:40:e3:0d:b2:d3:a3:21:6d:e6: f0:61:e9:8a:2a:69:b2:c7:8e:75:2f:26:78:de:04:54:96:39: c3:74:36:a8:e5:aa:0f:76:44:70:ba:56:b7:e1:80:f5:bf:54: fe:5c:e2:4b:a4:31:a2:af:c2:32:1e:10:62:fa:d5:43:e2:ca: 25:da:ee:cc:bc:d2:26:22:55:81:a0:e4:59:d1:3d:9d:e6:d5: a3:02:91:46:be:b3:df:f6:a4:23:0d:aa:be:e1:47:d8:c9:9f: 5f:a5:37:14:f9:7f:b7:06:06:70:2f:fd:c8:b0:e6:06:52:85: dc:fa:87:e0:86:a5:38:b3:83:07:e9:fb:db:77:1f:98:e5:67: 51:08:33:da:26:91:c5:f7:01:78:6f:e2:43:99:89:6e:fe:18: 23:47:61:c5:60:8c:2f:de:20:e7:8b:2b:e4:e9:f0:7f:95:72: 6c:36:2a:84:9a:d6:ff:bc:c1:5f:5c:f5:e1:2e:44:b0:4f:79: 3e:a6:84:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjQxMTIyMTcxOTU0WhcNMjQxMTI5MTcxOTU0WjAYMRYwFAYD VQQDEw02NzQwYmQzYi1hOTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6S8Rdi2RVm07gNTOmvoi2MviEFo2iP4+ux8JSvw62DHbPGYDuUvyUHNTuTHd QSYeDJLANAZZwYW1+p/IueCF3LIzHvhhTTBcoR8fRsTZjNpVwiYle1H93xYOaVvh f88XEymtiA/GWsk3QRKGzj0F+LeBaDuAeoWuWLDS7d9r+Vir6LXMMx9tgZg3neCH dH+EpYlTAP6/DdvTB2yov5UP1hMUkYE1juE2KeLI/bgUlrMivDZXF8RIHcvrOa0p rVj0jV/UiJWoK8enKk1RQRDJIRcLfeBuZX6xxEzHzjLWd1SES1xVfiqvguN85mGe ooV1eW7h9lwoGq/rcNuERF09WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYmVIc6 YxDpQvHKOlWKpQT82D4TMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKM772KzLpwtv/mpq7Nxj0vAUgvkGb5dWcKhSJbwUmvMs/ofkQ77EE aKbKqZVQ/Pxi07epyk1Xu4d/67f3dLpA4w2y06MhbebwYemKKmmyx451LyZ43gRU ljnDdDao5aoPdkRwula34YD1v1T+XOJLpDGir8IyHhBi+tVD4sol2u7MvNImIlWB oORZ0T2d5tWjApFGvrPf9qQjDaq+4UfYyZ9fpTcU+X+3BgZwL/3IsOYGUoXc+ofg hqU4s4MH6fvbdx+Y5WdRCDPaJpHF9wF4b+JDmYlu/hgjR2HFYIwv3iDniyvk6fB/ lXJsNiqEmtb/vMFfXPXhLkSwT3k+poRU -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org