$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft File: HaAa_AiIyqYXHgoOdBz8kE7S328.mft (raw, json) Hash identifier: EFq8qzAIu79k5n1MYtfFsn6vkuovrcS7reroM/o5bqY= Subject key identifier: DD:8F:A2:3F:A2:53:89:6C:8D:FA:E7:4A:43:3C:EE:D0:C3:E2:A2:17 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 086E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft Manifest number: 0869 Signing time: Fri 22 Nov 2024 20:23:34 +0000 Manifest this update: Fri 22 Nov 2024 20:23:33 +0000 Manifest next update: Fri 29 Nov 2024 20:23:33 +0000 Files and hashes: 1: HaAa_AiIyqYXHgoOdBz8kE7S328.crl (hash: 96Bl1ekidcpXo+MDrsYSp3iHT2OrVNjbPW+dlOtmU1Y=) 2: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (hash: 2AnHzJwonUE0Oio1jBjuypmq05cqTxtCSZ5dai/xpII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2158 (0x86e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Nov 22 20:23:33 2024 GMT Not After : Nov 29 20:23:33 2024 GMT Subject: CN=6740e846-4c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c4:a0:f6:f2:a0:37:56:c8:ff:25:26:ef:db: 62:a7:89:23:86:78:41:92:be:0d:57:54:06:cb:e5: 3d:e4:cb:72:4f:83:91:00:71:f4:4f:0e:15:9d:f3: 38:6e:44:9f:92:4b:7d:ad:42:c9:22:f9:6a:5c:8e: 3e:72:11:c4:de:9f:20:3a:49:84:bc:3d:9c:b8:f8: d5:1b:eb:0f:2f:30:96:93:82:60:16:a5:7a:09:22: dc:32:4c:e5:21:37:1a:d1:23:a4:90:8d:8d:52:5a: 98:d5:b1:08:a9:45:8e:8f:af:db:06:e8:7e:a8:49: 80:95:80:83:16:1f:91:55:bf:e7:b0:6c:b3:8b:61: c2:38:8e:58:fa:f6:f1:47:fb:7f:c5:0f:65:5a:b2: e6:48:65:98:65:f0:ce:4c:18:95:cd:3b:94:c6:11: 42:27:be:82:63:0c:13:bc:73:f3:e9:30:fb:10:53: 42:44:6e:bc:39:d4:49:bd:a7:a3:c0:8f:a4:26:c8: 9e:b2:1c:16:b1:19:ef:9f:5c:33:cc:f8:60:df:e0: 8a:c6:a8:0d:6e:54:3f:d2:0e:b0:a9:e5:5e:7a:f8: 16:49:05:bc:70:d9:db:b9:61:a1:c1:d6:31:e0:76: 2a:82:c7:e3:d2:6e:9a:9d:61:e5:83:5a:af:f7:be: 7c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:8F:A2:3F:A2:53:89:6C:8D:FA:E7:4A:43:3C:EE:D0:C3:E2:A2:17 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:2c:86:a0:74:37:44:39:59:32:3f:b2:65:c8:ac:b8:1d:28: 69:ed:5d:9c:c9:43:7f:f2:55:55:1a:f3:9f:12:08:14:91:10: 99:f9:8d:84:22:8d:82:ff:89:8c:7f:46:ec:e9:07:39:0d:51: e6:fa:c7:8c:d2:f9:93:e6:8e:38:b0:60:41:5a:10:f5:3b:1f: 69:63:e8:d5:30:aa:7e:a4:75:5e:eb:39:3e:e8:c9:0e:27:6e: 84:f8:2f:0e:89:ff:b0:c8:09:6c:1d:b7:37:5a:27:85:7c:9f: db:01:42:0c:ab:c6:ba:25:4e:f8:fc:37:c6:15:04:c9:56:d7: a0:53:fa:47:eb:13:37:de:0b:0a:a2:10:20:02:c6:51:e0:9e: 3f:f6:77:d3:7e:21:db:be:85:b1:4a:e9:39:2f:8e:66:17:8d: f0:2c:ca:b5:c9:14:06:4a:6f:90:41:a8:e4:4a:48:9e:a8:f3: e2:ed:33:c2:47:69:ce:ec:c8:11:42:29:58:9c:19:ba:50:4b: 30:2c:7e:a8:7e:26:9f:da:55:70:d9:de:1b:ed:f6:58:1c:14: 92:5e:d1:c2:35:c8:3a:12:d5:1c:4f:ba:3a:68:d5:a5:7c:b8: 41:7b:4d:30:80:10:56:cc:4d:62:25:5d:7a:37:a7:aa:55:b9: 5f:bc:13:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjQxMTIyMjAyMzMzWhcNMjQxMTI5MjAyMzMzWjAYMRYwFAYD VQQDEw02NzQwZTg0Ni00YzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8Sg9vKgN1bI/yUm79tip4kjhnhBkr4NV1QGy+U95MtyT4ORAHH0Tw4VnfM4 bkSfkkt9rULJIvlqXI4+chHE3p8gOkmEvD2cuPjVG+sPLzCWk4JgFqV6CSLcMkzl ITca0SOkkI2NUlqY1bEIqUWOj6/bBuh+qEmAlYCDFh+RVb/nsGyzi2HCOI5Y+vbx R/t/xQ9lWrLmSGWYZfDOTBiVzTuUxhFCJ76CYwwTvHPz6TD7EFNCRG68OdRJvaej wI+kJsieshwWsRnvn1wzzPhg3+CKxqgNblQ/0g6wqeVeevgWSQW8cNnbuWGhwdYx 4HYqgsfj0m6anWHlg1qv9758FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2Poj+i U4lsjfrnSkM87tDD4qIXMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlx WVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeLIagdDdEOVkyP7JlyKy4HShp7V2cyUN/8lVVGvOfEggUkRCZ+Y2E Io2C/4mMf0bs6Qc5DVHm+seM0vmT5o44sGBBWhD1Ox9pY+jVMKp+pHVe6zk+6MkO J26E+C8Oif+wyAlsHbc3WieFfJ/bAUIMq8a6JU74/DfGFQTJVtegU/pH6xM33gsK ohAgAsZR4J4/9nfTfiHbvoWxSuk5L45mF43wLMq1yRQGSm+QQajkSkieqPPi7TPC R2nO7MgRQilYnBm6UEswLH6ofiaf2lVw2d4b7fZYHBSSXtHCNcg6EtUcT7o6aNWl fLhBe00wgBBWzE1iJV16N6eqVblfvBPW -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:24 2024 by rpki-client on console-ams.rpki-client.org