$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft File: HjKemPZ2kum1dgI6L7xVfVfdVWw.mft (raw, json) Hash identifier: +sNhXPdhm/jTScmY8tZbIRdFE0XuP7Ff2RsTnmmTpjY= Subject key identifier: 56:A6:17:94:00:7E:2A:9F:02:A9:11:93:E7:09:AD:6D:3E:DB:0E:35 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0D31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft Manifest number: 0D0D Signing time: Wed 20 Nov 2024 17:56:55 +0000 Manifest this update: Wed 20 Nov 2024 17:56:55 +0000 Manifest next update: Wed 27 Nov 2024 17:56:55 +0000 Files and hashes: 1: HjKemPZ2kum1dgI6L7xVfVfdVWw.crl (hash: x+4sc8AErMyFOan99OK1fU1gxRkDGQVA7D9XjhOrkX8=) 2: 87BB6D70822711ED94C3212CC4F9AE02.roa (hash: fwAHRlN4Uw1i6q04q/JVTmB/uglpgox90dvfugvMuyA=) 3: FD120CC2D94411EDA95E3613C4F9AE02.roa (hash: 7Q1sj7h/kM6xF990j8/QO8w1Qkfx36SwQEh39xIk1I4=) 4: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (hash: QFGP47I0YdoniF040iEHzt2spsQy+KQ0P183ANxKYBw=) 5: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (hash: nKPGiKm/0x5gSVPdolM9Kvr6Qyb+vWukLGBNYOdi6hU=) 6: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (hash: 5Sbcqk2T+f7133+xiA46KTuH8zKP6892tENeVV/50JM=) 7: F2826A504FCF11EB88444467C4F9AE02.roa (hash: fD4ExFVU3zuArt3Xhftg8Dy8YqVccg0NtHG1ZHrBEJ4=) 8: 50063EE8822A11EDB2081A49C4F9AE02.roa (hash: 4WLEo+7utrf3YQ5HW1B5C1Kpj6dVRKES3SiFL4z/3Rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3377 (0xd31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Nov 20 17:56:55 2024 GMT Not After : Nov 27 17:56:55 2024 GMT Subject: CN=673e22e7-9c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ed:f5:1a:75:45:5d:e8:5a:c6:93:4b:fa:95: 0b:e5:3f:6f:bf:77:e4:e0:29:a4:2e:8c:b9:42:91: 47:36:13:0f:62:b3:97:bd:d8:99:ab:7c:5a:f5:dc: bc:ab:15:60:f6:8e:05:03:38:76:5e:e9:68:cf:c9: 80:d6:7e:bb:15:b0:cf:6f:6a:a5:2e:37:97:84:6e: b2:8f:73:37:c3:92:0e:b9:36:86:2f:dc:ef:72:21: 2d:75:df:10:06:35:8d:aa:be:c8:a7:d6:29:59:18: c3:9b:83:c1:2b:72:18:4b:c9:51:ce:0a:f4:91:c7: 89:38:34:ef:30:b8:28:17:7b:33:93:b5:c3:21:4d: a4:bd:bc:8b:bb:e3:fa:ec:a6:f5:d8:40:0b:76:d1: 8c:79:47:7d:91:60:46:7c:06:4b:21:24:b6:0c:f0: 86:aa:e7:ba:21:16:e6:4d:b0:98:bd:a1:6d:f2:7e: 45:11:95:5f:20:79:96:e9:9e:5d:54:c2:74:49:60: 73:3c:40:00:d6:28:38:bb:1e:86:d4:07:e3:ee:70: e6:ca:59:5a:61:75:bc:87:dc:ea:96:ad:58:91:d8: 77:c9:66:f2:d5:58:f7:e0:dc:f9:34:12:31:24:ca: a3:28:11:5d:bd:82:18:c6:1c:d8:3d:37:41:b5:c3: b8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A6:17:94:00:7E:2A:9F:02:A9:11:93:E7:09:AD:6D:3E:DB:0E:35 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:cb:2e:c8:c2:04:5a:c6:ad:ec:8b:a1:c8:ad:15:e6:6a:d1: 1f:bc:b7:7c:61:43:b8:02:f6:9e:01:65:3e:9c:00:95:37:64: ee:38:1a:9c:19:09:dd:7d:b4:b6:a8:b1:51:7b:b5:6c:d8:86: 78:93:59:fb:02:26:6f:c1:dd:bc:3f:c4:e9:48:4a:96:ed:8c: ba:0e:54:a5:07:bb:66:44:dc:50:51:35:b9:1c:8e:45:79:58: 58:0a:af:fc:df:b5:d5:66:46:88:c9:d8:c9:44:77:fa:b0:6c: 48:63:43:b4:7b:ee:a9:81:00:9e:ae:d7:4b:dd:5a:8d:07:ec: 56:71:fc:ad:53:7d:27:e6:47:ed:5b:49:00:3e:e1:22:bd:0f: 0e:58:0a:1e:8f:71:4d:8c:81:15:fd:53:9d:81:0c:76:20:2d: 29:b7:84:07:84:b2:da:14:7e:00:48:cf:39:00:d8:41:c3:9b: 8d:b9:80:7e:bd:10:38:84:41:23:c6:53:51:d0:be:f1:79:34: 78:9c:b1:af:1c:78:02:f3:b3:c8:30:b9:13:e5:bc:df:cd:cb: b9:c9:dd:28:67:1c:c5:64:f0:3c:ac:08:37:3b:d8:08:2e:4d: bc:37:74:30:99:8b:d0:30:d4:ff:5b:ea:19:27:2a:bb:ff:db: 26:50:62:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjQxMTIwMTc1NjU1WhcNMjQxMTI3MTc1NjU1WjAYMRYwFAYD VQQDEw02NzNlMjJlNy05YzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnu31GnVFXehaxpNL+pUL5T9vv3fk4CmkLoy5QpFHNhMPYrOXvdiZq3xa9dy8 qxVg9o4FAzh2Xuloz8mA1n67FbDPb2qlLjeXhG6yj3M3w5IOuTaGL9zvciEtdd8Q BjWNqr7Ip9YpWRjDm4PBK3IYS8lRzgr0kceJODTvMLgoF3szk7XDIU2kvbyLu+P6 7Kb12EALdtGMeUd9kWBGfAZLISS2DPCGque6IRbmTbCYvaFt8n5FEZVfIHmW6Z5d VMJ0SWBzPEAA1ig4ux6G1Afj7nDmyllaYXW8h9zqlq1Ykdh3yWby1Vj34Nz5NBIx JMqjKBFdvYIYxhzYPTdBtcO4yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFamF5QA fiqfAqkRk+cJrW0+2w41MB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhGNi8zN0QwM0RGNkNFMjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1 bTFkZ0k2TDd4VmZWZmRWV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtyy7IwgRaxq3si6HIrRXmatEfvLd8YUO4AvaeAWU+nACVN2TuOBqc GQndfbS2qLFRe7Vs2IZ4k1n7AiZvwd28P8TpSEqW7Yy6DlSlB7tmRNxQUTW5HI5F eVhYCq/837XVZkaIydjJRHf6sGxIY0O0e+6pgQCertdL3VqNB+xWcfytU30n5kft W0kAPuEivQ8OWAoej3FNjIEV/VOdgQx2IC0pt4QHhLLaFH4ASM85ANhBw5uNuYB+ vRA4hEEjxlNR0L7xeTR4nLGvHHgC87PIMLkT5bzfzcu5yd0oZxzFZPA8rAg3O9gI Lk28N3QwmYvQMNT/W+oZJyq7/9smUGIX -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:55 2024 by rpki-client on console-fra.rpki-client.org