$ rpki-client -vvf rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft File: HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft (raw, json) Hash identifier: v/DBt8zfK6pha/dCB7rsCArR1oCBOoxAiuqYP8yzbWc= Subject key identifier: B9:AE:B2:38:01:03:52:FE:6A:AC:A8:25:7D:06:5D:80:97:EF:C6:C1 Authority key identifier: 1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 Certificate issuer: /CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft Manifest number: 013B Signing time: Sat 23 Nov 2024 02:42:57 +0000 Manifest this update: Sat 23 Nov 2024 02:42:56 +0000 Manifest next update: Sat 30 Nov 2024 02:42:56 +0000 Files and hashes: 1: HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl (hash: TSQyZ7NplnwSu9nYukgdeTy1rsWfZL9LaRA+pH6LWS0=) 2: 1EF2D862C9F511ED8771C865C4F9AE02.roa (hash: EksXJqRj0KH07WsHueUwybeZ3O7OwOE6F+VFPhINzRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Validity Not Before: Nov 23 02:42:56 2024 GMT Not After : Nov 30 02:42:56 2024 GMT Subject: CN=67414131-4eef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:10:8d:ab:40:28:8e:9c:97:25:eb:97:c7:79: d0:be:e5:10:be:7f:96:5e:0e:39:92:a7:9e:03:b3: 83:75:3b:53:04:da:7c:b5:3c:ed:7f:32:ff:f0:53: 23:c4:49:24:b4:9e:08:a6:a0:55:2e:03:98:b0:f2: c1:5f:d6:c3:7f:a4:76:ed:e3:85:b8:6f:69:57:57: 82:8b:20:c3:f2:c3:a5:f4:41:c0:e2:ce:5d:19:40: c6:09:97:d3:e8:c9:b2:00:b8:36:3c:50:1a:ae:ce: d0:d8:54:56:da:b9:30:c1:db:3e:a1:98:b1:c4:64: 05:c0:36:fe:8b:d0:49:29:17:8b:02:b2:5e:24:23: 48:40:94:07:2e:bc:50:5b:e1:b5:29:2b:58:6f:c9: e2:08:d4:13:a1:4a:d4:bc:19:59:b4:98:3f:19:ad: cc:6d:f5:19:f6:95:1f:ec:78:5d:7e:eb:e3:c0:9e: 2c:87:87:96:b6:51:07:9c:9f:88:7d:1d:94:68:26: 02:3a:84:e0:57:25:92:25:1f:c6:d4:55:3f:8d:2c: 7e:ce:48:58:7d:80:85:81:36:9d:e2:4e:4c:d8:64: fe:9f:93:cd:db:8e:26:f6:7f:fa:2d:8f:69:12:09: b2:fc:1e:8d:eb:a2:4b:29:f4:42:99:39:d4:65:43: 78:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:AE:B2:38:01:03:52:FE:6A:AC:A8:25:7D:06:5D:80:97:EF:C6:C1 X509v3 Authority Key Identifier: keyid:1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:63:8c:c0:0f:32:f1:8c:f8:ad:4b:6b:55:75:ef:d0:da:9f: 4a:9d:81:04:d9:b1:25:79:d5:20:94:47:2d:a0:b4:55:5a:07: a7:6a:11:68:c8:fe:36:79:b9:2e:70:0e:ad:c9:55:54:1b:f7: 86:9b:57:79:66:2d:c2:ca:c2:ba:63:91:2e:80:d2:1c:d5:c6: f6:cd:c2:e1:39:e0:d8:07:9e:70:5b:91:95:7a:6b:24:de:51: 38:77:76:b7:d3:b3:9b:3b:0f:9e:5d:67:e1:48:16:f9:cb:de: 85:54:14:45:0d:db:a5:49:30:58:7f:60:9e:02:63:4f:88:fa: cc:7d:c2:7b:1e:4a:54:6f:9c:7a:2e:5b:93:3e:6d:89:6b:33: 99:1b:1c:a9:0e:99:b0:d1:ac:d1:7b:82:4f:95:96:2c:90:5b: 8a:ba:a1:25:c4:1b:1d:a7:45:8d:40:9b:28:34:f7:d4:02:90: 86:54:e0:ec:79:91:70:18:1b:b3:0f:b1:b0:47:37:bc:51:40: 49:b6:4f:28:35:f4:28:55:f9:51:c7:67:dc:67:af:4b:82:21: e3:ec:ac:a3:ab:8d:6d:c7:7b:d9:d9:75:b2:d6:b4:52:07:80: ab:22:6e:b3:d6:4a:50:a7:c1:11:34:ee:16:b8:05:95:36:e8: b3:54:dc:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3N0MxMTAvBgNVBAUTKDFDRDQ5RUZCQzM3RUY0QThDNkM4ODc2NTYyQkQxMTMz NDRCQzdFRDEwHhcNMjQxMTIzMDI0MjU2WhcNMjQxMTMwMDI0MjU2WjAYMRYwFAYD VQQDEw02NzQxNDEzMS00ZWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhCNq0AojpyXJeuXx3nQvuUQvn+WXg45kqeeA7ODdTtTBNp8tTztfzL/8FMj xEkktJ4IpqBVLgOYsPLBX9bDf6R27eOFuG9pV1eCiyDD8sOl9EHA4s5dGUDGCZfT 6MmyALg2PFAars7Q2FRW2rkwwds+oZixxGQFwDb+i9BJKReLArJeJCNIQJQHLrxQ W+G1KStYb8niCNQToUrUvBlZtJg/Ga3MbfUZ9pUf7HhdfuvjwJ4sh4eWtlEHnJ+I fR2UaCYCOoTgVyWSJR/G1FU/jSx+zkhYfYCFgTad4k5M2GT+n5PN244m9n/6LY9p Egmy/B6N66JLKfRCmTnUZUN4FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmusjgB A1L+aqyoJX0GXYCX78bBMB8GA1UdIwQYMBaAFBzUnvvDfvSoxsiHZWK9ETNEvH7R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc3Qy9COTdDNzM5NkM5 RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlLakd5SWRsWXIwUk0wUzhm dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOU2UtOE4tOUtqR3lJZGxZcjBSTTBTOGZ0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc3Qy9COTdDNzM5NkM5RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlL akd5SWRsWXIwUk0wUzhmdEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+Y4zADzLxjPitS2tVde/Q2p9KnYEE2bEledUglEctoLRVWgenahFo yP42ebkucA6tyVVUG/eGm1d5Zi3CysK6Y5EugNIc1cb2zcLhOeDYB55wW5GVemsk 3lE4d3a307ObOw+eXWfhSBb5y96FVBRFDdulSTBYf2CeAmNPiPrMfcJ7HkpUb5x6 LluTPm2JazOZGxypDpmw0azRe4JPlZYskFuKuqElxBsdp0WNQJsoNPfUApCGVODs eZFwGBuzD7GwRze8UUBJtk8oNfQoVflRx2fcZ69LgiHj7Kyjq41tx3vZ2XWy1rRS B4CrIm6z1kpQp8ERNO4WuAWVNuizVNwF -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org