$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft File: hqZPKtLd4rfZYk5pInrQmxd4xsE.mft (raw, json) Hash identifier: z00UkUbhySxzy84njpMbHGi6PKQwDP3EKJjL7q6MIYE= Subject key identifier: 34:6B:4C:CB:F2:C7:39:AD:81:CA:99:B0:ED:89:14:F3:51:C2:4E:FD Authority key identifier: 86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 Certificate issuer: /CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft Manifest number: 06 Signing time: Thu 21 Nov 2024 06:15:39 +0000 Manifest this update: Thu 21 Nov 2024 06:15:38 +0000 Manifest next update: Thu 28 Nov 2024 06:15:38 +0000 Files and hashes: 1: hqZPKtLd4rfZYk5pInrQmxd4xsE.crl (hash: bOAeyGN+kpDyrX+F+4n2x1Vvd8ejdiWbmvq2JCe+NX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A3F/serialNumber=86A64F2AD2DDE2B7D9624E69227AD09B1778C6C1 Validity Not Before: Nov 21 06:15:38 2024 GMT Not After : Nov 28 06:15:38 2024 GMT Subject: CN=673ed00b-755e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:79:cd:87:7d:f8:61:47:a9:38:7a:3b:86:94: ad:4d:ac:e2:6a:94:02:bc:cb:3c:e8:fa:f7:cd:f3: 65:fb:85:74:a9:af:73:f2:c4:23:21:72:2a:cb:59: 7e:80:86:68:cc:21:3c:af:a9:72:74:6e:45:e8:3c: 99:f9:00:7b:34:04:5f:80:c5:05:01:bb:f4:66:c8: 65:37:7d:02:28:98:d8:aa:91:79:7e:8a:2b:ab:d2: 1e:f8:06:1d:0f:4a:03:37:72:57:23:d1:fa:d5:43: 14:32:10:fc:83:78:a4:d6:ce:4c:53:96:4a:d6:bb: 2e:3d:09:d0:26:e0:d3:f4:1c:f5:fe:7d:04:46:d7: 77:5e:94:d5:b8:87:c8:5d:34:7e:36:6a:8a:02:4e: 4b:b4:3a:a5:14:75:19:d6:25:38:35:77:9a:62:ca: b5:2c:ad:e0:a8:05:79:63:c1:a1:ab:0c:48:60:42: 9c:98:fb:74:90:5b:4b:fa:04:e8:69:11:48:d8:d9: e2:02:c0:6c:93:73:e4:da:21:17:57:15:f3:1f:bc: cc:1d:8a:9c:c7:20:0c:60:67:0d:d0:fe:44:61:69: 76:6f:39:ff:bf:14:43:1a:c4:94:16:1d:b3:21:ac: 62:ea:c8:f0:32:c8:d6:2d:a0:8e:6d:76:ec:7c:21: ee:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6B:4C:CB:F2:C7:39:AD:81:CA:99:B0:ED:89:14:F3:51:C2:4E:FD X509v3 Authority Key Identifier: keyid:86:A6:4F:2A:D2:DD:E2:B7:D9:62:4E:69:22:7A:D0:9B:17:78:C6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hqZPKtLd4rfZYk5pInrQmxd4xsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A3F/9B2754F6A24F11EFB6B0FF49C4F9AE02/hqZPKtLd4rfZYk5pInrQmxd4xsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:e0:31:d8:21:45:c8:3e:58:4d:c0:fa:33:79:71:69:45:34: fd:f7:fd:c4:ce:95:ec:b6:c9:53:23:22:65:2b:30:35:ca:5b: 54:9b:9e:98:bb:1a:dd:39:40:e3:1f:e4:99:3c:5c:df:5d:e3: c7:99:08:9d:c0:67:5d:de:72:60:33:5a:88:c0:77:bc:b3:f9: fd:e9:d0:d3:a1:e0:a2:da:85:01:1b:99:88:48:e9:08:c8:d7: 7c:a2:5e:3d:02:d1:1b:9d:0f:0a:46:cb:84:ef:ee:66:1e:44: f7:81:b0:00:27:f8:09:9a:da:f3:c9:ab:45:da:6f:24:54:ac: 54:06:c5:7c:c3:4d:e1:12:00:b5:c1:06:be:8e:57:c8:dc:7f: 1f:de:70:b2:fc:e9:8d:29:24:ab:8a:5b:d3:fa:68:1b:03:af: c5:74:32:15:c6:f5:f9:e7:25:2c:01:70:c1:e6:09:42:82:b9: 2a:b3:84:ab:f7:74:c2:3e:89:d3:e3:15:7d:b9:fd:30:cd:50: 7b:d8:ba:fd:3a:0c:00:d4:2e:68:ab:2e:69:88:b6:2f:d2:e6: 1e:33:8b:8e:f2:b5:22:c6:37:06:7f:e6:33:21:c1:9c:2f:e2: 40:9f:6f:1f:39:d2:cf:fd:8e:c5:b0:4d:d3:27:78:5f:f7:4f: fb:eb:0e:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUEzRjExMC8GA1UEBRMoODZBNjRGMkFEMkRERTJCN0Q5NjI0RTY5MjI3QUQwOUIx Nzc4QzZDMTAeFw0yNDExMjEwNjE1MzhaFw0yNDExMjgwNjE1MzhaMBgxFjAUBgNV BAMTDTY3M2VkMDBiLTc1NWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaec2HffhhR6k4ejuGlK1NrOJqlAK8yzzo+vfN82X7hXSpr3PyxCMhcirLWX6A hmjMITyvqXJ0bkXoPJn5AHs0BF+AxQUBu/RmyGU3fQIomNiqkXl+iiur0h74Bh0P SgM3clcj0frVQxQyEPyDeKTWzkxTlkrWuy49CdAm4NP0HPX+fQRG13delNW4h8hd NH42aooCTku0OqUUdRnWJTg1d5piyrUsreCoBXljwaGrDEhgQpyY+3SQW0v6BOhp EUjY2eICwGyTc+TaIRdXFfMfvMwdipzHIAxgZw3Q/kRhaXZvOf+/FEMaxJQWHbMh rGLqyPAyyNYtoI5tdux8Ie5HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNGtMy/LH Oa2Bypmw7YkU81HCTv0wHwYDVR0jBBgwFoAUhqZPKtLd4rfZYk5pInrQmxd4xsEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5QTNGLzlCMjc1NEY2QTI0 RjExRUZCNkIwRkY0OUM0RjlBRTAyL2hxWlBLdExkNHJmWllrNXBJbnJRbXhkNHhz RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHFaUEt0TGQ0cmZaWWs1cEluclFteGQ0eHNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 QTNGLzlCMjc1NEY2QTI0RjExRUZCNkIwRkY0OUM0RjlBRTAyL2hxWlBLdExkNHJm WllrNXBJbnJRbXhkNHhzRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAILgMdghRcg+WE3A+jN5cWlFNP33/cTOley2yVMjImUrMDXKW1Sbnpi7 Gt05QOMf5Jk8XN9d48eZCJ3AZ13ecmAzWojAd7yz+f3p0NOh4KLahQEbmYhI6QjI 13yiXj0C0RudDwpGy4Tv7mYeRPeBsAAn+Ama2vPJq0XabyRUrFQGxXzDTeESALXB Br6OV8jcfx/ecLL86Y0pJKuKW9P6aBsDr8V0MhXG9fnnJSwBcMHmCUKCuSqzhKv3 dMI+idPjFX25/TDNUHvYuv06DADULmirLmmIti/S5h4zi47ytSLGNwZ/5jMhwZwv 4kCfbx850s/9jsWwTdMneF/3T/vrDgk= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org