$ rpki-client -vvf rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft File: H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft (raw, json) Hash identifier: e5kki+k3MhGNnpRoVd9zHxfkSqpzoPYd6xR6WZD2pMw= Subject key identifier: 92:37:71:38:6D:A8:51:89:80:27:23:61:DF:2B:A6:62:6C:EA:12:D8 Authority key identifier: 1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB Certificate issuer: /CN=A912708C/serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Certificate serial: 055E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft Manifest number: 0559 Signing time: Fri 22 Nov 2024 22:57:31 +0000 Manifest this update: Fri 22 Nov 2024 22:57:31 +0000 Manifest next update: Fri 29 Nov 2024 22:57:31 +0000 Files and hashes: 1: H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl (hash: CFGQlT9biw9ybHGnoQmzsZ4BboJgB9hJU8M6rXfb+vo=) 2: 8AA59866C55511EBA7DB557EC4F9AE02.roa (hash: E/ZSFb0w8l7IP55HohiEiKQ/xTqSgiZ1I0q7vfGX9Y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912708C/serialNumber=1FD5A182D593347570F2D9186D2484C9095C5FFB Validity Not Before: Nov 22 22:57:31 2024 GMT Not After : Nov 29 22:57:31 2024 GMT Subject: CN=67410c5b-ae25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:01:7b:ad:1e:64:a8:31:f5:70:0f:96:c5:31: 9f:e5:21:72:4e:29:a3:db:ae:27:c9:4c:c0:50:6c: f8:55:e6:40:20:3b:12:14:61:33:f2:87:30:ef:4c: 8c:0f:c2:0b:97:8f:58:ca:85:53:7b:63:c6:dd:1e: 60:25:a0:d5:fb:b6:e5:57:c0:57:43:04:70:f8:e6: 6b:e4:48:b1:2e:02:62:a4:e0:28:2d:cd:df:f9:fb: a7:64:6f:1c:56:ae:26:31:3f:ba:e5:fa:87:0f:0a: 24:01:ab:3e:68:20:10:8f:13:6d:d3:f7:a1:7c:54: 90:79:ed:c7:72:60:6a:9d:d2:ef:99:c2:42:ea:a1: 67:8a:bd:ec:7a:26:e7:f3:82:86:30:d5:e2:ef:af: ef:2c:b1:0b:b0:b3:4c:c1:6d:ea:3a:ce:fb:b1:0b: 1e:af:12:0f:45:b3:2d:bc:4d:04:17:41:b6:d5:48: 9f:9b:e6:1c:f2:68:1f:cf:8f:54:db:45:48:da:d6: 6b:cf:10:5b:53:ad:94:04:b2:c1:59:85:4e:92:12: 63:b1:cf:3f:c4:eb:11:a9:61:7c:14:35:15:51:c6: 39:07:40:08:3d:c6:ee:50:ae:80:f2:6d:69:9f:23: bf:9a:9a:64:a4:6a:f8:3d:b8:cc:81:d5:81:3c:df: 25:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:37:71:38:6D:A8:51:89:80:27:23:61:DF:2B:A6:62:6C:EA:12:D8 X509v3 Authority Key Identifier: keyid:1F:D5:A1:82:D5:93:34:75:70:F2:D9:18:6D:24:84:C9:09:5C:5F:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9WhgtWTNHVw8tkYbSSEyQlcX_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912708C/168034FEC55111EBA018BC75C4F9AE02/H9WhgtWTNHVw8tkYbSSEyQlcX_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:d6:82:fd:74:f6:49:b5:d8:b8:f1:80:58:9c:59:85:7d:7a: 52:7d:3f:70:da:d7:70:5c:89:b9:60:d1:0b:b4:60:cd:1e:36: ad:07:e5:74:5d:58:19:54:82:44:da:ab:ec:5f:48:ac:aa:07: c8:7c:57:04:9e:ef:f5:43:1e:54:68:1a:cc:59:49:3f:48:33: cf:c4:26:34:aa:ce:76:36:d9:34:5f:f6:97:4a:93:ec:57:fb: df:f4:1f:e5:72:71:35:f6:c9:14:63:8d:e9:a3:dc:61:12:96: a2:77:44:aa:54:2b:dc:f1:c4:c8:ed:ca:11:23:3c:45:d5:00: 31:91:c8:b6:fd:88:17:30:81:ef:7a:e6:66:7f:63:22:67:ab: 9f:95:05:a6:9f:c8:66:42:bc:59:6f:7a:5d:a9:f0:24:ef:3c: a2:64:d0:67:03:fe:c7:9d:6b:d8:d7:33:d7:dd:3c:0f:f1:28: 69:7d:84:f3:df:15:c0:ec:03:21:9b:29:09:e7:64:6f:c0:1b: 1c:f5:92:21:22:18:5f:d8:8e:61:7c:37:0f:fe:6e:4f:46:ff: 46:1c:a9:a6:2b:14:1d:bb:b0:b4:08:07:24:ee:b5:19:9e:c4: 6c:89:bc:eb:0f:5a:cb:68:74:41:e5:d8:e0:17:7d:ff:0b:8d: 95:ef:49:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcwOEMxMTAvBgNVBAUTKDFGRDVBMTgyRDU5MzM0NzU3MEYyRDkxODZEMjQ4NEM5 MDk1QzVGRkIwHhcNMjQxMTIyMjI1NzMxWhcNMjQxMTI5MjI1NzMxWjAYMRYwFAYD VQQDEw02NzQxMGM1Yi1hZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwF7rR5kqDH1cA+WxTGf5SFyTimj264nyUzAUGz4VeZAIDsSFGEz8ocw70yM D8ILl49YyoVTe2PG3R5gJaDV+7blV8BXQwRw+OZr5EixLgJipOAoLc3f+funZG8c Vq4mMT+65fqHDwokAas+aCAQjxNt0/ehfFSQee3HcmBqndLvmcJC6qFnir3seibn 84KGMNXi76/vLLELsLNMwW3qOs77sQserxIPRbMtvE0EF0G21Uifm+Yc8mgfz49U 20VI2tZrzxBbU62UBLLBWYVOkhJjsc8/xOsRqWF8FDUVUcY5B0AIPcbuUK6A8m1p nyO/mppkpGr4PbjMgdWBPN8lKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJI3cTht qFGJgCcjYd8rpmJs6hLYMB8GA1UdIwQYMBaAFB/VoYLVkzR1cPLZGG0khMkJXF/7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzA4Qy8xNjgwMzRGRUM1 NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5IVnc4dGtZYlNTRXlRbGNY X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5V2hndFdUTkhWdzh0a1liU1NFeVFsY1hfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzA4Qy8xNjgwMzRGRUM1NTExMUVCQTAxOEJDNzVDNEY5QUUwMi9IOVdoZ3RXVE5I Vnc4dGtZYlNTRXlRbGNYX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM1oL9dPZJtdi48YBYnFmFfXpSfT9w2tdwXIm5YNELtGDNHjatB+V0 XVgZVIJE2qvsX0isqgfIfFcEnu/1Qx5UaBrMWUk/SDPPxCY0qs52Ntk0X/aXSpPs V/vf9B/lcnE19skUY43po9xhEpaid0SqVCvc8cTI7coRIzxF1QAxkci2/YgXMIHv euZmf2MiZ6uflQWmn8hmQrxZb3pdqfAk7zyiZNBnA/7HnWvY1zPX3TwP8ShpfYTz 3xXA7AMhmykJ52RvwBsc9ZIhIhhf2I5hfDcP/m5PRv9GHKmmKxQdu7C0CAck7rUZ nsRsibzrD1rLaHRB5djgF33/C42V70kN -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org