$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft File: HVb-TaQriGb-lqKX93LugLUYpAo.mft (raw, json) Hash identifier: bCY9dK6zxUkcPaTMugOZQM5QUWptZCc/Y7b/Nt6GJ28= Subject key identifier: 5B:66:43:0B:00:60:DD:6C:99:8C:65:BB:F2:CF:A4:89:D5:CF:0B:26 Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1BBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft Manifest number: 1B94 Signing time: Wed 20 Nov 2024 16:12:44 +0000 Manifest this update: Wed 20 Nov 2024 16:12:44 +0000 Manifest next update: Wed 27 Nov 2024 16:12:44 +0000 Files and hashes: 1: HVb-TaQriGb-lqKX93LugLUYpAo.crl (hash: YVM9kiQspzKQRXu8tpJELy/KowxvQhhPJmYIqNncmIc=) 2: 9B315A5E46A011E7B9BAF254C4F9AE02.roa (hash: 9EcXEyYQS23lcV2U+HKPELhdNtW+6VqWRslfao0UNEU=) 3: 9933B21049D411E7AA790315C4F9AE02.roa (hash: QoTcLfEkEV4sZtEqMQTgGT13hqif8q7yBrWiFwLEqIo=) 4: 619B0B285AE611E781C33D7CC4F9AE02.roa (hash: ZGC2ZFJHwlq5Ep2j3cd1PYdlRsmipJnSDGQN5BOUcNk=) 5: 486F81CE4B4B11E79F2FF37BC4F9AE02.roa (hash: dgOhhCgJNmqIABfmqn7RZ7HEHVhf8zRLQCOO0zkoj5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7099 (0x1bbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Nov 20 16:12:44 2024 GMT Not After : Nov 27 16:12:44 2024 GMT Subject: CN=673e0a7c-c97a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b0:54:61:92:92:3d:d1:66:b1:79:85:1e:35: 3c:82:00:40:b9:e9:16:ec:3c:ed:e6:03:19:4a:04: 5b:85:25:d8:40:21:9c:96:9b:91:26:41:9d:61:34: 5e:28:cc:e3:61:b1:26:5f:2e:05:e7:86:35:6f:98: 50:15:de:ce:02:21:e2:1e:74:7a:01:19:ca:1f:41: 25:8c:68:11:72:69:e3:0a:17:a0:19:64:32:12:7a: b7:a0:f3:65:96:39:21:84:86:36:83:b0:e1:be:55: d1:6a:7c:3e:42:c3:03:b2:c2:17:2a:b7:82:e2:e8: 18:10:93:3d:9f:27:47:c1:c1:61:b4:3a:7d:36:29: 4d:5c:55:1c:29:a2:81:26:cd:97:2e:12:d9:e9:85: 75:e6:ca:34:1f:f6:12:70:3d:16:74:3e:2b:6d:8a: 0c:9b:ad:08:3d:ca:79:7a:a3:16:1c:67:1e:ca:1f: 07:60:92:20:d9:96:50:cc:bf:10:80:40:31:24:9a: 6c:09:20:eb:b7:42:a9:1c:46:e4:23:1c:1a:cf:70: 6c:fc:85:df:b9:9c:e9:b3:a2:13:47:66:46:af:54: 3a:c8:2c:fc:2f:b9:ef:65:28:8c:82:a8:fb:21:b1: 42:c6:90:94:23:b2:a4:80:6c:e5:a9:44:73:28:d4: bb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:66:43:0B:00:60:DD:6C:99:8C:65:BB:F2:CF:A4:89:D5:CF:0B:26 X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:48:24:78:a6:e4:28:a8:9f:94:bf:01:5b:c9:93:4c:8e:96: 49:da:3c:42:8d:cc:8c:1a:39:75:95:06:a1:32:31:d3:a7:68: 68:6a:7f:97:a3:0f:43:8b:80:85:a3:eb:50:56:76:78:68:b7: 2a:80:a5:af:55:2a:1a:8a:cf:3b:9c:de:0f:d0:8e:e3:b9:7a: ad:e7:14:6a:98:bf:50:27:e5:a9:19:71:f2:0b:dc:bd:b9:38: 6b:e1:95:30:26:99:89:c4:8a:41:43:be:0f:2c:e9:5e:29:7a: 1e:40:5d:65:0d:a4:1a:2b:51:74:ac:82:3d:5a:4f:11:f8:90: 4a:65:c0:41:b4:bc:43:4e:f6:b9:22:0d:b5:54:22:bc:4f:ab: 53:ed:c4:d7:16:1e:05:da:97:78:f2:ab:b0:2e:34:3c:73:f3: 5a:15:03:77:b6:8e:10:e0:5c:79:a2:a2:3d:a2:4b:21:7f:32: b2:44:1c:1d:24:d7:53:cd:e6:d4:89:17:f0:d9:6c:b4:06:6c: 2f:6a:00:ec:a7:1c:3b:34:a8:4f:e6:ce:43:8f:04:f0:75:64: 2f:74:b9:e0:ce:ae:b0:71:96:8d:ef:4d:47:89:d2:c2:be:eb: 0c:84:ec:4f:16:08:25:1c:8d:8c:f2:50:5e:31:e3:c2:79:42: ec:f8:ee:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjQxMTIwMTYxMjQ0WhcNMjQxMTI3MTYxMjQ0WjAYMRYwFAYD VQQDEw02NzNlMGE3Yy1jOTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbBUYZKSPdFmsXmFHjU8ggBAuekW7Dzt5gMZSgRbhSXYQCGclpuRJkGdYTRe KMzjYbEmXy4F54Y1b5hQFd7OAiHiHnR6ARnKH0EljGgRcmnjChegGWQyEnq3oPNl ljkhhIY2g7DhvlXRanw+QsMDssIXKreC4ugYEJM9nydHwcFhtDp9NilNXFUcKaKB Js2XLhLZ6YV15so0H/YScD0WdD4rbYoMm60IPcp5eqMWHGceyh8HYJIg2ZZQzL8Q gEAxJJpsCSDrt0KpHEbkIxwaz3Bs/IXfuZzps6ITR2ZGr1Q6yCz8L7nvZSiMgqj7 IbFCxpCUI7KkgGzlqURzKNS7WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtmQwsA YN1smYxlu/LPpInVzwsmMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0FFOS8wOERBNjBDNkYxQjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlH Yi1scUtYOTNMdWdMVVlwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHSCR4puQoqJ+UvwFbyZNMjpZJ2jxCjcyMGjl1lQahMjHTp2hoan+X ow9Di4CFo+tQVnZ4aLcqgKWvVSoais87nN4P0I7juXqt5xRqmL9QJ+WpGXHyC9y9 uThr4ZUwJpmJxIpBQ74PLOleKXoeQF1lDaQaK1F0rII9Wk8R+JBKZcBBtLxDTva5 Ig21VCK8T6tT7cTXFh4F2pd48quwLjQ8c/NaFQN3to4Q4Fx5oqI9okshfzKyRBwd JNdTzebUiRfw2Wy0BmwvagDspxw7NKhP5s5DjwTwdWQvdLngzq6wcZaN701HidLC vusMhOxPFgglHI2M8lBeMePCeULs+O79 -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:15 2024 by rpki-client on console-ams.rpki-client.org