$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft File: hfK68bffHaqMiKtsXnjB_MP3jQg.mft (raw, json) Hash identifier: Y+DeaDmNI/4hV5e2lWVXvYVOhilrPRLKg00bBlGYJn4= Subject key identifier: AE:C9:CA:74:02:9B:23:02:1F:1C:07:C7:B6:AA:D7:70:97:82:AF:17 Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 0344 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft Manifest number: 0335 Signing time: Thu 21 Nov 2024 00:43:30 +0000 Manifest this update: Thu 21 Nov 2024 00:43:29 +0000 Manifest next update: Thu 28 Nov 2024 00:43:29 +0000 Files and hashes: 1: hfK68bffHaqMiKtsXnjB_MP3jQg.crl (hash: X3+EshZSxFLgm5PVZjYVPaWps4EPPk1daV0o2l9aPe4=) 2: A7FBA00E778811EDAE39280CC4F9AE02.roa (hash: njIHJmxKeV2BVx6lxWDKyEYjZNNc7SzKULaYDH9DiQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 836 (0x344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Nov 21 00:43:29 2024 GMT Not After : Nov 28 00:43:29 2024 GMT Subject: CN=673e8232-e6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d8:4c:4e:bd:c9:a8:c9:1b:e6:16:ed:8a:a9: 5b:94:d3:28:bf:08:c4:a2:68:48:23:18:70:66:dc: ca:b5:77:5c:9c:6a:a1:0c:82:eb:c5:97:25:04:8d: c4:cd:2f:36:d0:52:77:a5:bb:68:52:03:aa:7d:0b: b8:44:20:61:9e:6c:ac:3b:3a:0b:90:b3:4b:46:7b: 9c:68:2f:7a:89:24:af:5b:a8:f2:b1:96:36:e3:74: d5:c9:22:cd:63:c8:50:47:63:16:bd:0e:d4:d9:25: e1:c5:e6:44:db:11:20:95:7d:18:6a:a5:05:e0:bc: 9c:a1:39:c8:1a:f8:0f:8c:11:4e:54:28:e2:eb:b4: 84:46:74:93:b1:7a:82:53:ba:a2:72:90:80:6f:ea: f8:c5:a2:c0:14:90:c2:24:cc:c3:89:4c:02:1f:f9: a1:4f:d2:cf:43:1f:15:8f:42:55:32:51:d8:14:83: d3:a2:8a:68:12:e2:3d:b3:0c:ac:1c:16:43:71:9f: 9d:4e:61:b1:a2:77:8c:73:52:33:e2:72:8f:20:5e: ee:60:28:1e:bf:5a:d6:41:f3:76:a3:db:34:0a:6a: 1a:a0:a8:47:23:d6:4d:75:d4:5b:8d:41:68:e4:c6: 7d:41:68:2c:09:15:3e:93:9a:77:ca:4c:c0:1d:30: 76:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C9:CA:74:02:9B:23:02:1F:1C:07:C7:B6:AA:D7:70:97:82:AF:17 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:35:21:58:c3:00:24:ed:49:45:b5:e5:2c:2d:95:e3:e0:d4: 24:62:01:cc:d5:f1:d5:1f:c7:b5:67:6d:1b:84:2b:97:6d:f7: a3:73:aa:71:66:42:ac:27:41:a8:68:e7:69:39:e2:55:f8:c9: e3:a6:b1:a3:76:0d:3b:db:13:35:b0:b7:08:90:9b:51:d1:fb: df:20:85:c2:74:a7:f7:be:71:f8:61:8c:61:8e:2e:e2:0a:4c: 9a:50:57:16:b7:9f:e8:43:b4:e5:5d:df:ba:95:e6:e5:30:0f: 8c:81:8c:9a:19:66:5a:80:9c:4c:30:6a:f3:61:3c:48:c7:04: 60:25:27:97:fb:55:a2:9d:a5:77:89:31:0f:4d:18:de:19:98: 4c:12:ab:32:86:a8:af:74:ae:e1:00:c0:74:64:49:4c:51:f6: 4e:f9:72:74:f4:1d:e7:fc:44:a3:23:b1:84:b8:74:3a:3f:a6: 6a:5b:04:e8:8a:92:a0:ec:78:de:3d:eb:94:21:87:64:54:9f: 1d:7b:dc:61:ef:fc:d5:c3:a7:ba:0a:97:76:18:8e:ab:35:4e: b6:cc:97:89:62:ae:f3:b7:f0:59:3a:61:b0:c7:78:83:7b:04: 07:74:59:b2:d7:fb:a9:e3:c8:dd:b9:31:ad:c0:60:04:fc:5c: e0:e8:19:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjQxMTIxMDA0MzI5WhcNMjQxMTI4MDA0MzI5WjAYMRYwFAYD VQQDEw02NzNlODIzMi1lNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuthMTr3JqMkb5hbtiqlblNMovwjEomhIIxhwZtzKtXdcnGqhDILrxZclBI3E zS820FJ3pbtoUgOqfQu4RCBhnmysOzoLkLNLRnucaC96iSSvW6jysZY243TVySLN Y8hQR2MWvQ7U2SXhxeZE2xEglX0YaqUF4LycoTnIGvgPjBFOVCji67SERnSTsXqC U7qicpCAb+r4xaLAFJDCJMzDiUwCH/mhT9LPQx8Vj0JVMlHYFIPToopoEuI9swys HBZDcZ+dTmGxoneMc1Iz4nKPIF7uYCgev1rWQfN2o9s0CmoaoKhHI9ZNddRbjUFo 5MZ9QWgsCRU+k5p3ykzAHTB2+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7JynQC myMCHxwHx7aq13CXgq8XMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xRjQwNEUzMEE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhh cU1pS3RzWG5qQl9NUDNqUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJNSFYwwAk7UlFteUsLZXj4NQkYgHM1fHVH8e1Z20bhCuXbfejc6px ZkKsJ0GoaOdpOeJV+MnjprGjdg072xM1sLcIkJtR0fvfIIXCdKf3vnH4YYxhji7i CkyaUFcWt5/oQ7TlXd+6leblMA+MgYyaGWZagJxMMGrzYTxIxwRgJSeX+1WinaV3 iTEPTRjeGZhMEqsyhqivdK7hAMB0ZElMUfZO+XJ09B3n/ESjI7GEuHQ6P6ZqWwTo ipKg7HjePeuUIYdkVJ8de9xh7/zVw6e6Cpd2GI6rNU62zJeJYq7zt/BZOmGwx3iD ewQHdFmy1/up48jduTGtwGAE/Fzg6BkK -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:53 2024 by rpki-client on console-fra.rpki-client.org