$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft File: h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft (raw, json) Hash identifier: ze8QSUFo4eLWOAv/fnZIJDIG/dPgEgbzVDxy0VsOaKQ= Subject key identifier: 43:43:D3:CB:E4:5E:2F:AA:5B:4E:0A:ED:42:07:FA:CD:93:5F:B0:F5 Authority key identifier: 87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C Certificate issuer: /CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Certificate serial: 11C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft Manifest number: 11B2 Signing time: Sun 24 Nov 2024 17:03:30 +0000 Manifest this update: Sun 24 Nov 2024 17:03:30 +0000 Manifest next update: Sun 01 Dec 2024 17:03:30 +0000 Files and hashes: 1: h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl (hash: Ol3AL5mBw/LyGeJkqfDgADrFS0egZzvxvxONKy1RiSc=) 2: 698B3FA6986011EE969A225FC4F9AE02.roa (hash: IPMaIsA9uRnd6F5Aml0jreWHK2WPPMV0a6PLoDBBAuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4545 (0x11c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF/serialNumber=87954C0231CAACB2BE2DFDB567C74AF5ECB75B0C Validity Not Before: Nov 24 17:03:30 2024 GMT Not After : Dec 1 17:03:30 2024 GMT Subject: CN=67435c62-2cbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ee:8e:fc:3c:f9:0c:f9:5a:f9:33:ff:5f:1c: 46:aa:57:1a:bd:c1:87:d4:d1:48:79:bc:a2:63:b2: 62:5f:31:56:37:76:91:de:7f:d5:fe:56:e4:f1:1e: 58:dd:ac:50:bd:4d:3a:6d:87:ca:77:df:ee:ee:3c: 0b:0b:47:44:ad:f6:52:6f:03:db:ba:d3:f7:60:a2: 65:2a:0e:66:f0:53:31:30:42:93:b9:84:2b:9b:e4: 3b:6a:21:04:86:88:0b:74:b7:9a:0e:ca:b6:30:11: 00:87:57:e1:e1:bc:78:d9:e3:ff:8f:86:6f:3e:a6: 83:4c:59:65:c9:85:f2:ce:db:af:48:82:52:2c:b9: 63:5f:c0:ca:09:1e:8f:b2:d3:67:50:df:17:2f:d6: e8:b9:f4:2e:36:50:ff:a3:e1:1d:f3:5a:6b:01:a0: ac:82:a6:b8:8c:7f:a0:3d:af:38:d9:bf:56:38:f7: db:04:7c:c7:6f:f8:cd:e0:92:5d:78:d9:2c:84:70: 8c:69:55:ab:28:80:a3:01:34:a7:3f:6e:de:a9:de: 24:23:aa:35:36:88:16:17:84:75:8e:5e:e6:af:0f: fd:86:19:d5:15:24:16:3b:b1:4d:eb:f1:72:20:54: 5e:4f:33:58:35:11:2a:5e:19:8f:3f:aa:36:c4:dc: f9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:43:D3:CB:E4:5E:2F:AA:5B:4E:0A:ED:42:07:FA:CD:93:5F:B0:F5 X509v3 Authority Key Identifier: keyid:87:95:4C:02:31:CA:AC:B2:BE:2D:FD:B5:67:C7:4A:F5:EC:B7:5B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h5VMAjHKrLK-Lf21Z8dK9ey3Www.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/ECE0FBE6E36D11E8956F3516C4F9AE02/h5VMAjHKrLK-Lf21Z8dK9ey3Www.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:6e:27:c4:0c:4e:40:74:63:0c:79:6d:29:6f:3b:96:a3:cc: 3d:38:5f:2b:8f:78:c3:5c:7c:2a:83:91:9f:28:cd:9c:e3:78: f0:78:2f:15:a9:70:d8:9f:ea:bf:37:b3:a8:b0:fc:61:42:01: 5f:55:b6:0b:e2:9a:fd:7c:5d:31:bb:06:e8:ca:3d:76:4e:8d: 25:19:f7:74:80:44:4b:94:12:50:ee:53:69:7c:59:e0:e3:db: c3:11:82:23:fa:ca:a6:22:2c:35:53:d8:81:3d:03:cf:c7:97: 52:5d:66:db:72:61:77:2c:88:49:64:fd:76:30:6c:8e:b1:99: a7:0c:fc:23:40:89:06:c9:5b:09:36:dc:e0:64:8f:19:2e:2c: bf:72:d8:15:93:f8:eb:89:41:94:b5:b0:1c:81:ea:d5:b6:49: 15:49:cd:e4:ae:94:38:dc:c7:ba:91:15:5e:95:cf:ee:37:cf: 96:02:ad:45:70:cd:cf:80:93:e1:ee:95:5b:a4:26:7e:60:c7: a2:1d:79:17:01:bb:39:a8:98:67:ab:38:67:b6:78:8d:ac:5b: 94:4c:30:2b:92:85:3f:38:c8:c3:5c:de:f4:82:87:be:b8:4e: 23:d4:3c:af:ef:03:c2:54:23:32:57:c3:af:94:5a:5b:f5:43: 5b:0c:13:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDg3OTU0QzAyMzFDQUFDQjJCRTJERkRCNTY3Qzc0QUY1 RUNCNzVCMEMwHhcNMjQxMTI0MTcwMzMwWhcNMjQxMjAxMTcwMzMwWjAYMRYwFAYD VQQDEw02NzQzNWM2Mi0yY2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0O6O/Dz5DPla+TP/XxxGqlcavcGH1NFIebyiY7JiXzFWN3aR3n/V/lbk8R5Y 3axQvU06bYfKd9/u7jwLC0dErfZSbwPbutP3YKJlKg5m8FMxMEKTuYQrm+Q7aiEE hogLdLeaDsq2MBEAh1fh4bx42eP/j4ZvPqaDTFllyYXyztuvSIJSLLljX8DKCR6P stNnUN8XL9boufQuNlD/o+Ed81prAaCsgqa4jH+gPa842b9WOPfbBHzHb/jN4JJd eNkshHCMaVWrKICjATSnP27eqd4kI6o1NogWF4R1jl7mrw/9hhnVFSQWO7FN6/Fy IFReTzNYNREqXhmPP6o2xNz5TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEND08vk Xi+qW04K7UIH+s2TX7D1MB8GA1UdIwQYMBaAFIeVTAIxyqyyvi39tWfHSvXst1sM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9FQ0UwRkJFNkUz NkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JMSy1MZjIxWjhkSzlleTNX d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2g1Vk1BakhLckxLLUxmMjFaOGRLOWV5M1d3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9FQ0UwRkJFNkUzNkQxMUU4OTU2RjM1MTZDNEY5QUUwMi9oNVZNQWpIS3JM Sy1MZjIxWjhkSzlleTNXd3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfbifEDE5AdGMMeW0pbzuWo8w9OF8rj3jDXHwqg5GfKM2c43jweC8V qXDYn+q/N7OosPxhQgFfVbYL4pr9fF0xuwboyj12To0lGfd0gERLlBJQ7lNpfFng 49vDEYIj+sqmIiw1U9iBPQPPx5dSXWbbcmF3LIhJZP12MGyOsZmnDPwjQIkGyVsJ NtzgZI8ZLiy/ctgVk/jriUGUtbAcgerVtkkVSc3krpQ43Me6kRVelc/uN8+WAq1F cM3PgJPh7pVbpCZ+YMeiHXkXAbs5qJhnqzhntniNrFuUTDArkoU/OMjDXN70goe+ uE4j1Dyv7wPCVCMyV8OvlFpb9UNbDBND -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:16 2024 by rpki-client on console-ams.rpki-client.org