$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: OljY1Zdh/3h4tVd3aOF9urxKIEb9kYGFG8xRzLx9nPw= Subject key identifier: 38:8B:A1:5D:55:9B:3C:DD:A9:39:5D:6B:04:40:86:B3:22:81:8C:B9 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 035D Signing time: Sat 23 Nov 2024 00:30:44 +0000 Manifest this update: Sat 23 Nov 2024 00:30:44 +0000 Manifest next update: Sat 30 Nov 2024 00:30:44 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: dEJDXMhb2UsPqn9O3gjWmy+8sD0GqFNLph5nalGDfnc=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: 2v76irvv8YBootZ9ixmNS7BdVolsdY5VCXkGVLqaKlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Nov 23 00:30:44 2024 GMT Not After : Nov 30 00:30:44 2024 GMT Subject: CN=67412234-6b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:5a:43:a2:e4:71:52:31:cd:5f:83:2c:d5: 55:b1:79:35:ca:b0:d6:d6:45:96:05:59:45:75:d0: 55:e9:c1:64:68:a9:25:ee:a4:74:1f:1e:e3:e5:68: b7:46:c8:b6:3e:04:a1:21:ac:7d:eb:06:5e:16:2e: be:21:30:e3:ae:a0:8d:81:97:10:54:11:4c:5f:b7: cc:f2:95:ea:f9:58:c4:58:0e:12:ab:76:ef:9f:15: 21:1c:44:0d:97:38:4d:17:cf:40:d7:e7:2c:97:d4: 29:aa:2f:17:ee:5d:d7:23:66:cc:91:4f:cc:93:d9: 7e:ed:1d:c9:4e:74:65:09:3b:d6:5b:9a:da:e3:cd: 44:a4:0e:ae:05:f9:32:f7:3e:f9:a4:49:f2:1f:bb: cb:cf:96:4f:73:c7:c0:a1:bc:5e:c6:17:29:ae:1a: 7b:6a:b0:04:ca:5c:db:e5:89:5c:7d:7b:87:3a:6b: 48:b1:df:46:25:2f:ae:0f:f1:f1:a2:07:ff:01:b1: 6d:52:7e:44:c2:c3:06:23:84:0f:e4:93:8c:e7:64: 64:8e:63:93:36:39:4f:3f:9e:a3:42:15:cb:4b:94: 7a:07:7e:ae:23:c5:f5:d7:87:74:21:69:88:d9:e1: 0c:bc:72:44:45:b1:d6:74:5a:b1:1f:4a:5e:84:f9: af:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:8B:A1:5D:55:9B:3C:DD:A9:39:5D:6B:04:40:86:B3:22:81:8C:B9 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ad:5e:69:d7:80:20:39:d9:5b:78:55:7b:1d:28:d8:8c:9d: 26:38:51:8a:62:7e:bd:29:a3:d3:c2:f5:3c:8c:b0:2f:d6:18: 54:98:37:eb:de:1d:6b:2d:be:0d:d9:f9:f7:5c:ba:fd:9a:71: e7:ac:e7:18:8a:87:25:33:cf:b6:fc:88:76:cf:da:72:5a:c4: 38:48:0f:30:99:71:58:14:c1:7a:bd:d5:e1:65:11:26:68:c7: 26:7f:91:c0:e7:7d:85:e9:cd:63:38:ab:30:28:92:ce:a6:f1: f9:6f:15:c0:93:a9:7f:98:a1:40:0a:8e:b0:35:d6:e6:ea:4a: df:7d:d2:b1:d8:54:5a:99:6a:46:9c:3b:9a:64:62:22:53:46: 55:5d:1d:c8:ef:10:a3:fd:fb:c0:c5:50:6c:1a:bc:8b:5e:dc: 39:62:10:7f:42:4c:0d:b2:43:a8:7b:a2:07:e8:86:16:b9:54: fd:0b:98:6c:c3:63:8d:cc:93:e3:58:5f:6c:6e:dc:85:0a:0a: e5:30:77:ee:85:f0:45:91:b1:71:c9:ee:40:6d:a7:fa:4c:df: a0:20:f3:e4:83:1a:d5:ba:71:73:09:c6:c0:19:60:b4:d5:0b: 6e:4f:61:75:43:f1:30:61:57:0b:33:ef:02:b3:85:f3:91:94: 66:fa:5f:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjQxMTIzMDAzMDQ0WhcNMjQxMTMwMDAzMDQ0WjAYMRYwFAYD VQQDEw02NzQxMjIzNC02YjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNZaQ6LkcVIxzV+DLNVVsXk1yrDW1kWWBVlFddBV6cFkaKkl7qR0Hx7j5Wi3 Rsi2PgShIax96wZeFi6+ITDjrqCNgZcQVBFMX7fM8pXq+VjEWA4Sq3bvnxUhHEQN lzhNF89A1+csl9Qpqi8X7l3XI2bMkU/Mk9l+7R3JTnRlCTvWW5ra481EpA6uBfky 9z75pEnyH7vLz5ZPc8fAobxexhcprhp7arAEylzb5YlcfXuHOmtIsd9GJS+uD/Hx ogf/AbFtUn5EwsMGI4QP5JOM52RkjmOTNjlPP56jQhXLS5R6B36uI8X114d0IWmI 2eEMvHJERbHWdFqxH0pehPmv0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiLoV1V mzzdqTldawRAhrMigYy5MB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4rV5p14AgOdlbeFV7HSjYjJ0mOFGKYn69KaPTwvU8jLAv1hhUmDfr 3h1rLb4N2fn3XLr9mnHnrOcYioclM8+2/Ih2z9pyWsQ4SA8wmXFYFMF6vdXhZREm aMcmf5HA532F6c1jOKswKJLOpvH5bxXAk6l/mKFACo6wNdbm6krffdKx2FRamWpG nDuaZGIiU0ZVXR3I7xCj/fvAxVBsGryLXtw5YhB/QkwNskOoe6IH6IYWuVT9C5hs w2ONzJPjWF9sbtyFCgrlMHfuhfBFkbFxye5Abaf6TN+gIPPkgxrVunFzCcbAGWC0 1QtuT2F1Q/EwYVcLM+8Cs4XzkZRm+l8O -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:36 2024 by rpki-client on console-fra.rpki-client.org