$ rpki-client -vvf rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft File: He-yCnpR7hjdetBq2qxJEePi95Q.mft (raw, json) Hash identifier: 3l/oMOQFYYZTR7xnQS1cquR+TQ3NSgLMoWHaumeYor4= Subject key identifier: 62:D7:9B:6C:BF:DF:89:39:E0:65:21:04:9E:78:42:D3:A1:AA:0C:B2 Authority key identifier: 1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 Certificate issuer: /CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft Manifest number: 0175 Signing time: Sat 23 Nov 2024 02:10:23 +0000 Manifest this update: Sat 23 Nov 2024 02:10:22 +0000 Manifest next update: Sat 30 Nov 2024 02:10:22 +0000 Files and hashes: 1: He-yCnpR7hjdetBq2qxJEePi95Q.crl (hash: dMjVt4uhlbw3/pMyHH7kAQMqqXz7PKpjkPLZB1tOBwU=) 2: 54365208708411EDA8B14246C4F9AE02.roa (hash: AAsU3r5wEkF6f9iXxm6/6FcRALPM6e8iuLNdCiCtbqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91285E3/serialNumber=1DEFB20A7A51EE18DD7AD06ADAAC4911E3E2F794 Validity Not Before: Nov 23 02:10:22 2024 GMT Not After : Nov 30 02:10:22 2024 GMT Subject: CN=6741398e-cf0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:85:70:0a:dd:ab:2c:6d:d2:de:e8:c6:5f:dd: 4a:12:58:64:bd:c3:9a:7d:9a:a2:8d:53:66:99:05: 81:8f:eb:00:8a:53:33:76:87:3f:20:ad:a4:95:0f: b0:ec:a7:83:8d:90:3f:f3:2b:8d:ca:3e:41:66:71: 24:df:83:a8:0c:26:d5:e2:71:bd:3b:5a:3c:3c:38: 15:07:f9:20:5c:85:9d:8d:af:7b:6c:40:0e:ed:0b: 2e:08:b9:ea:fc:75:15:23:4b:68:45:c3:4f:40:23: 9e:98:b2:89:c1:c2:3a:df:3d:f7:8c:6a:e1:fa:92: 87:e0:26:1c:03:23:8f:60:64:0f:2c:bb:eb:c0:93: ab:6a:a5:ee:6f:45:50:99:1f:d8:c1:e1:98:9a:d8: 69:5c:07:bc:b0:63:bb:e0:15:37:56:57:5c:49:5e: fd:38:2f:87:be:54:e4:35:7d:91:7d:1c:63:aa:ec: a0:3c:41:2c:15:2c:15:3c:22:8d:cf:8c:c8:9f:d6: c1:c3:9f:2f:2b:d7:bf:8b:db:32:c2:b2:9d:9a:ed: 41:03:e3:44:9a:bc:19:92:b3:db:77:5c:e0:96:b9: 33:b1:d6:e8:38:21:84:40:e5:dc:ae:be:e8:26:07: d9:93:ae:f3:c4:3e:0c:53:a5:47:f2:1a:49:1b:82: 05:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D7:9B:6C:BF:DF:89:39:E0:65:21:04:9E:78:42:D3:A1:AA:0C:B2 X509v3 Authority Key Identifier: keyid:1D:EF:B2:0A:7A:51:EE:18:DD:7A:D0:6A:DA:AC:49:11:E3:E2:F7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He-yCnpR7hjdetBq2qxJEePi95Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91285E3/1B12A824707911EDBAA7CD26C4F9AE02/He-yCnpR7hjdetBq2qxJEePi95Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:28:45:67:64:66:aa:ae:42:df:46:12:ef:2a:14:0c:3b:5f: 4d:1d:e3:6c:be:6f:de:ac:95:8b:ea:dc:92:c8:5a:68:96:82: 35:f7:e0:47:15:13:42:84:3f:52:46:f6:c0:90:8c:69:1c:69: 4a:aa:ea:f6:b7:f1:9d:c8:69:3f:8b:ed:7a:a5:72:d7:fa:2a: ec:9c:96:9d:c9:bd:e6:f1:81:7a:66:87:e2:31:64:fb:7e:9d: 18:c4:42:b4:bc:4d:de:48:47:8d:aa:2f:f4:49:58:d8:a6:b4: 08:7c:f3:e9:68:4e:aa:bc:b4:52:af:3e:09:39:47:94:5f:e7: b3:10:b1:0a:c9:6b:f9:80:fd:0c:ee:92:47:95:36:5b:1f:0a: 97:33:4c:f6:a6:88:a9:67:51:52:5f:1b:93:17:71:35:0f:ad: de:3e:2c:e3:b5:34:27:68:9a:f7:51:af:6e:6a:eb:6f:8e:62: d2:fe:a0:56:b8:78:8b:be:bf:7e:a0:b2:54:2b:3e:cf:31:02: 9b:f5:08:6e:fb:00:6d:c5:11:50:0c:5e:ed:40:a7:9c:73:36: d1:9c:00:90:c2:b2:b4:24:91:82:8f:6c:99:f3:a0:0c:f8:8c: 06:53:50:c2:c2:83:25:6d:a1:62:17:ea:5e:f9:9b:93:38:ea: 20:8f:c3:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1RTMxMTAvBgNVBAUTKDFERUZCMjBBN0E1MUVFMThERDdBRDA2QURBQUM0OTEx RTNFMkY3OTQwHhcNMjQxMTIzMDIxMDIyWhcNMjQxMTMwMDIxMDIyWjAYMRYwFAYD VQQDEw02NzQxMzk4ZS1jZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oVwCt2rLG3S3ujGX91KElhkvcOafZqijVNmmQWBj+sAilMzdoc/IK2klQ+w 7KeDjZA/8yuNyj5BZnEk34OoDCbV4nG9O1o8PDgVB/kgXIWdja97bEAO7QsuCLnq /HUVI0toRcNPQCOemLKJwcI63z33jGrh+pKH4CYcAyOPYGQPLLvrwJOraqXub0VQ mR/YweGYmthpXAe8sGO74BU3VldcSV79OC+HvlTkNX2RfRxjquygPEEsFSwVPCKN z4zIn9bBw58vK9e/i9sywrKdmu1BA+NEmrwZkrPbd1zglrkzsdboOCGEQOXcrr7o JgfZk67zxD4MU6VH8hpJG4IFDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLXm2y/ 34k54GUhBJ54QtOhqgyyMB8GA1UdIwQYMBaAFB3vsgp6Ue4Y3XrQatqsSRHj4veU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODVFMy8xQjEyQTgyNDcw NzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdoamRldEJxMnF4SkVlUGk5 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlLXlDbnBSN2hqZGV0QnEycXhKRWVQaTk1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODVFMy8xQjEyQTgyNDcwNzkxMUVEQkFBN0NEMjZDNEY5QUUwMi9IZS15Q25wUjdo amRldEJxMnF4SkVlUGk5NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASKEVnZGaqrkLfRhLvKhQMO19NHeNsvm/erJWL6tySyFpoloI19+BH FRNChD9SRvbAkIxpHGlKqur2t/GdyGk/i+16pXLX+irsnJadyb3m8YF6ZofiMWT7 fp0YxEK0vE3eSEeNqi/0SVjYprQIfPPpaE6qvLRSrz4JOUeUX+ezELEKyWv5gP0M 7pJHlTZbHwqXM0z2poipZ1FSXxuTF3E1D63ePizjtTQnaJr3Ua9uautvjmLS/qBW uHiLvr9+oLJUKz7PMQKb9Qhu+wBtxRFQDF7tQKecczbRnACQwrK0JJGCj2yZ86AM +IwGU1DCwoMlbaFiF+pe+ZuTOOogj8PI -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:36 2024 by rpki-client on console-ams.rpki-client.org