$ rpki-client -vvf rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft File: hnHJZ--Azj0S3OowSRuUb9cGh8A.mft (raw, json) Hash identifier: 9f0opYF6XIqAA0cs6P8fQ04pPOkpoKYLhNkS1Z2UrKQ= Subject key identifier: A8:11:1E:6E:FF:0A:C7:5B:04:94:41:F7:49:EE:96:D1:66:E1:82:CC Authority key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 Certificate issuer: /CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Certificate serial: 134E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft Manifest number: 131F Signing time: Fri 22 Nov 2024 17:02:42 +0000 Manifest this update: Fri 22 Nov 2024 17:02:42 +0000 Manifest next update: Fri 29 Nov 2024 17:02:42 +0000 Files and hashes: 1: hnHJZ--Azj0S3OowSRuUb9cGh8A.crl (hash: mgWUE7hUVttUjbZkubHGq54ookYGUQ7AgvSrOtLP7nI=) 2: 29FA7FEE4DA711EF87510A26C4F9AE02.roa (hash: vR+jwlNwQhK5PgtcQNrB4z7ddP0crooveNJwbQmAU1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4942 (0x134e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138D0E/serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0 Validity Not Before: Nov 22 17:02:42 2024 GMT Not After : Nov 29 17:02:42 2024 GMT Subject: CN=6740b932-3528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a3:38:88:1f:e2:07:3b:99:5a:b9:b9:ab:e6: 44:13:d6:e3:89:9a:53:b5:1e:97:37:b2:2a:68:bf: 18:87:a5:c9:d2:41:78:56:8e:71:08:ca:24:16:6b: 33:dd:b2:d6:e1:00:07:aa:b3:a7:e9:a9:24:86:9d: a8:10:6c:3b:e1:1b:ba:99:c2:3a:b8:4a:a6:1c:97: 86:05:77:48:de:5e:b6:2f:17:18:64:07:da:d5:3f: 3f:86:75:dc:d5:20:88:94:a4:02:e3:a6:c8:72:d0: 88:38:51:f8:11:8e:97:af:30:5a:2d:65:e4:17:6a: e5:cf:f2:ff:9b:f1:87:d6:64:84:55:f8:93:ca:f4: 6c:32:44:34:9c:1b:ee:d4:ae:cd:cb:51:bc:76:f0: 80:f6:8a:d2:5e:0a:74:ab:da:cc:6c:e7:fb:85:97: 13:67:34:80:29:99:4a:4a:2a:de:9c:2d:90:4d:9c: a0:ab:e8:fa:2d:d6:30:f0:50:81:f1:17:85:fa:aa: 5c:b2:4a:7c:58:45:d0:b3:26:57:48:c3:07:31:af: 4a:c4:f6:51:b0:1e:48:61:18:88:20:03:50:2b:f6: 08:b3:f6:47:40:b3:91:21:8c:1d:d8:6c:7c:85:0f: 1d:0a:3f:3f:58:d9:81:07:6b:b5:fe:8a:60:06:36: ed:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:11:1E:6E:FF:0A:C7:5B:04:94:41:F7:49:EE:96:D1:66:E1:82:CC X509v3 Authority Key Identifier: keyid:86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:be:12:db:54:e1:27:64:af:06:c9:18:4e:2b:d5:93:2e:f5: 1e:ca:9e:60:8f:20:af:4e:7b:3d:d7:aa:31:92:5a:67:b8:5a: b1:5a:53:c7:23:3c:1c:bb:82:65:a7:e9:63:52:90:6a:cf:70: 1f:b6:6d:39:0b:7c:db:a6:96:d5:9a:b3:a6:1b:5d:13:15:d8: d5:d2:2b:e9:a2:2a:a2:d4:2c:ab:00:9f:ce:0b:e2:0b:bb:10: 9b:e7:15:ba:af:df:62:91:5d:25:c7:f9:4c:8d:6b:8c:09:d6: bf:7f:03:8d:62:72:4f:21:b5:04:5c:2c:e1:1c:8d:9e:58:6d: db:ea:57:50:21:02:b3:b1:69:6c:5e:71:f0:db:52:70:5d:50: cc:06:b1:0c:ff:28:20:25:c8:06:0e:5e:98:e7:d8:da:39:a1: 0b:5d:d6:e1:04:29:ec:a7:92:a8:2a:83:92:5e:91:83:b7:1b: 6d:f7:ce:98:c4:5e:77:3a:a3:c8:56:db:18:09:af:51:75:e3: 6e:65:fa:35:5e:07:de:59:a6:38:9c:ce:d4:2e:a7:65:24:71: 2d:e8:2d:d0:a0:ac:7b:aa:63:9a:f4:45:e3:ad:2f:00:9d:03: eb:26:5a:19:7d:8c:c1:ff:47:96:3d:c0:9d:4f:10:46:f5:63: 07:fa:e9:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhEMEUxMTAvBgNVBAUTKDg2NzFDOTY3RUY4MENFM0QxMkRDRUEzMDQ5MUI5NDZG RDcwNjg3QzAwHhcNMjQxMTIyMTcwMjQyWhcNMjQxMTI5MTcwMjQyWjAYMRYwFAYD VQQDEw02NzQwYjkzMi0zNTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaM4iB/iBzuZWrm5q+ZEE9bjiZpTtR6XN7IqaL8Yh6XJ0kF4Vo5xCMokFmsz 3bLW4QAHqrOn6akkhp2oEGw74Ru6mcI6uEqmHJeGBXdI3l62LxcYZAfa1T8/hnXc 1SCIlKQC46bIctCIOFH4EY6XrzBaLWXkF2rlz/L/m/GH1mSEVfiTyvRsMkQ0nBvu 1K7Ny1G8dvCA9orSXgp0q9rMbOf7hZcTZzSAKZlKSirenC2QTZygq+j6LdYw8FCB 8ReF+qpcskp8WEXQsyZXSMMHMa9KxPZRsB5IYRiIIANQK/YIs/ZHQLORIYwd2Gx8 hQ8dCj8/WNmBB2u1/opgBjbtWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgRHm7/ CsdbBJRB90nultFm4YLMMB8GA1UdIwQYMBaAFIZxyWfvgM49EtzqMEkblG/XBofA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEQwRS84RTcxNDk4NEEz NUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpqMFMzT293U1J1VWI5Y0do OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2huSEpaLS1BemowUzNPb3dTUnVVYjljR2g4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEQwRS84RTcxNDk4NEEzNUUxMUU4QjQxQTU4NzhDNEY5QUUwMi9obkhKWi0tQXpq MFMzT293U1J1VWI5Y0doOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTvhLbVOEnZK8GyRhOK9WTLvUeyp5gjyCvTns916oxklpnuFqxWlPH Izwcu4Jlp+ljUpBqz3Aftm05C3zbppbVmrOmG10TFdjV0ivpoiqi1CyrAJ/OC+IL uxCb5xW6r99ikV0lx/lMjWuMCda/fwONYnJPIbUEXCzhHI2eWG3b6ldQIQKzsWls XnHw21JwXVDMBrEM/yggJcgGDl6Y59jaOaELXdbhBCnsp5KoKoOSXpGDtxtt986Y xF53OqPIVtsYCa9RdeNuZfo1XgfeWaY4nM7ULqdlJHEt6C3QoKx7qmOa9EXjrS8A nQPrJloZfYzB/0eWPcCdTxBG9WMH+ulN -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:41 2024 by rpki-client on console-fra.rpki-client.org