$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json) Hash identifier: uLniU7vsXuYZL9hov8ptj2X7gbJLE18dX80S86FKI5o= Subject key identifier: EC:1B:D8:33:9F:8B:67:EE:AF:D0:D2:1F:06:C5:A1:1D:6D:9A:C0:08 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0781 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft Manifest number: 076E Signing time: Fri 22 Nov 2024 21:00:59 +0000 Manifest this update: Fri 22 Nov 2024 21:00:58 +0000 Manifest next update: Fri 29 Nov 2024 21:00:58 +0000 Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: +CBzZajHj0s8g52hhCJprGu96F9WAemKbACQxjW1FZI=) 2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: xYIcgS1Zp8wD+PJFBZBjfV7mWptLx74W20qrbaZleiE=) 3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: vzmf8XnwJutTzSkLhDDX6poVkZL6XtaY1a0fPCQC+dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1921 (0x781) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Nov 22 21:00:58 2024 GMT Not After : Nov 29 21:00:58 2024 GMT Subject: CN=6740f10a-aeb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:34:0a:51:3b:dd:ed:c2:15:75:a2:09:50:c2: 4c:c8:99:9a:ec:09:08:a5:59:ad:f1:1f:9b:20:58: 30:a8:41:82:ab:9e:d0:6e:51:31:62:1b:40:ba:b8: d1:7e:44:88:41:e2:62:1f:a2:dd:5d:7a:9d:b6:86: f4:26:b4:b6:fc:a8:e9:97:42:08:74:82:67:9e:fa: 9d:94:f8:1f:5c:50:6c:f3:16:b9:b9:58:2b:e6:79: c7:22:4f:1b:5c:99:25:89:4a:10:63:b8:24:50:91: cb:83:38:2b:ee:33:af:00:71:15:7f:30:9f:fa:c1: 23:38:ee:d1:3d:93:71:cf:4e:b2:e1:df:61:71:95: b8:25:84:94:87:a3:59:31:c6:7d:85:23:af:68:6f: c6:28:ce:43:dd:33:2f:41:51:48:99:4a:50:74:10: df:5a:56:8d:9c:e8:dd:44:56:c5:53:8b:f1:dc:d8: 2e:ba:5b:5d:5c:8d:49:bc:c0:eb:83:5c:88:b2:1c: cd:f2:bf:96:c6:85:1a:08:5f:40:46:61:11:07:06: cb:da:cd:82:f7:aa:9b:0e:6a:21:24:eb:1d:50:07: c9:ff:a3:96:ef:7e:ee:8f:39:cc:e3:6c:21:c5:e5: 96:3b:34:eb:4d:c3:9a:1e:cc:ac:a3:94:5c:65:58: 29:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:1B:D8:33:9F:8B:67:EE:AF:D0:D2:1F:06:C5:A1:1D:6D:9A:C0:08 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:33:b6:0c:26:98:7f:ca:ab:12:dc:52:e0:87:07:2b:2f:ca: 10:b6:b9:58:ae:a4:7e:dd:fb:07:3e:9a:c6:60:9d:d0:bf:17: 9b:05:b3:f0:53:a6:41:16:eb:3c:2d:ed:06:e4:3c:f2:7c:4f: 3d:8d:44:b4:ff:7e:b9:03:f9:bf:8d:f2:44:d2:98:5c:2c:6b: 39:da:8c:d1:76:c8:46:62:16:b8:89:25:21:b0:15:e1:ea:fb: 5b:81:a7:aa:57:2b:8d:05:6b:52:be:3e:82:9a:0e:df:e2:df: 07:31:e3:08:b5:84:52:45:78:6a:af:9d:fc:85:b4:14:d5:f2: 79:67:a5:3a:20:f5:79:38:73:73:1f:9a:cd:cc:31:95:c3:b6: 61:83:15:8c:02:a4:01:4a:cb:05:f7:40:70:b8:27:3f:4e:49: 02:21:19:4d:48:a9:72:97:92:03:72:08:54:3a:37:47:6e:e4: 0d:77:9c:aa:c4:89:5e:0c:ed:19:63:79:98:5f:83:aa:29:dc: a2:85:fd:ee:e3:7c:99:d4:d1:2b:ad:6b:ba:8a:9f:70:26:69: 71:71:42:90:cd:8f:5f:a0:39:e5:76:b0:b6:5a:b2:b3:af:71: 5c:e3:76:d2:70:b3:44:d2:6e:20:fc:99:89:da:7b:20:d2:0a: 76:1c:a1:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjQxMTIyMjEwMDU4WhcNMjQxMTI5MjEwMDU4WjAYMRYwFAYD VQQDEw02NzQwZjEwYS1hZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjQKUTvd7cIVdaIJUMJMyJma7AkIpVmt8R+bIFgwqEGCq57QblExYhtAurjR fkSIQeJiH6LdXXqdtob0JrS2/Kjpl0IIdIJnnvqdlPgfXFBs8xa5uVgr5nnHIk8b XJkliUoQY7gkUJHLgzgr7jOvAHEVfzCf+sEjOO7RPZNxz06y4d9hcZW4JYSUh6NZ McZ9hSOvaG/GKM5D3TMvQVFImUpQdBDfWlaNnOjdRFbFU4vx3NguultdXI1JvMDr g1yIshzN8r+WxoUaCF9ARmERBwbL2s2C96qbDmohJOsdUAfJ/6OW737ujznM42wh xeWWOzTrTcOaHsyso5RcZVgpXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwb2DOf i2fur9DSHwbFoR1tmsAIMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEyRC9EQTQ2NjA5QUY3QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcy ckVNZDRhZXE1N2FIYUJ0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHM7YMJph/yqsS3FLghwcrL8oQtrlYrqR+3fsHPprGYJ3QvxebBbPw U6ZBFus8Le0G5DzyfE89jUS0/365A/m/jfJE0phcLGs52ozRdshGYha4iSUhsBXh 6vtbgaeqVyuNBWtSvj6Cmg7f4t8HMeMItYRSRXhqr538hbQU1fJ5Z6U6IPV5OHNz H5rNzDGVw7ZhgxWMAqQBSssF90BwuCc/TkkCIRlNSKlyl5IDcghUOjdHbuQNd5yq xIleDO0ZY3mYX4OqKdyihf3u43yZ1NErrWu6ip9wJmlxcUKQzY9foDnldrC2WrKz r3Fc43bScLNE0m4g/JmJ2nsg0gp2HKGz -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org