$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: 9bvwp11FTJh4zt8IsG+e78PJIFbLGvkas3wmukLO5rQ= Subject key identifier: 97:02:20:80:1B:C8:C9:24:4C:95:C4:82:2A:25:ED:BF:43:B5:BF:B9 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 02AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 02A7 Signing time: Sat 23 Nov 2024 01:24:18 +0000 Manifest this update: Sat 23 Nov 2024 01:24:18 +0000 Manifest next update: Sat 30 Nov 2024 01:24:18 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: jLgiMXT0i7o9iyfSt++JOLQEV8sBCS/DpF9cI7DkfWI=) 2: 7704C7B0D65111EC8F5E2576C4F9AE02.roa (hash: tyU81tqa4w/chmwWDtJ/kbfsyW9fGaL62+VlH2ZbK30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Nov 23 01:24:18 2024 GMT Not After : Nov 30 01:24:18 2024 GMT Subject: CN=67412ec2-3276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b5:f0:bb:2c:65:af:e8:22:64:6d:94:87:df: 22:f4:ad:ec:8c:b4:73:b5:4f:d1:4f:b0:a8:61:47: 55:ed:99:f9:f0:4c:df:fc:09:1d:bb:13:f3:ec:76: d5:ca:20:f3:40:c1:fc:70:87:cf:95:d4:1d:88:1a: 2d:3f:af:61:83:33:9a:1d:d1:50:96:e8:24:64:cd: 9a:fc:02:82:f7:0a:25:a7:64:2f:3e:96:8c:7c:5b: 66:5b:cc:1a:a2:68:2b:7c:62:15:07:59:dd:d4:5b: dd:71:bd:e6:78:bf:40:c8:16:5d:f1:4d:9f:be:b2: b6:6f:96:ed:e3:95:85:9b:3b:81:55:4c:92:68:04: 03:89:46:96:80:b7:a1:73:29:e1:a7:62:7f:7f:7d: 9a:91:5e:ff:1a:63:d3:d9:12:5a:35:17:20:b0:4d: 29:90:53:49:36:fb:51:23:b9:58:af:e1:a8:ca:88: f5:43:c8:38:a7:60:43:06:2e:20:e1:d1:aa:d0:74: b7:c8:e2:14:6f:89:ea:27:6b:df:10:f7:67:d1:f0: 30:fa:21:b6:02:44:7d:56:46:46:82:4f:f5:36:4e: 02:01:c3:1a:5b:e9:70:7a:93:fa:a9:8b:80:bd:45: c4:62:a7:65:50:03:20:95:6e:10:90:d8:bc:c2:a4: 0f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:02:20:80:1B:C8:C9:24:4C:95:C4:82:2A:25:ED:BF:43:B5:BF:B9 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:3e:5f:c9:c0:36:ee:c9:a8:9f:00:80:a5:db:e5:46:ae:53: 8d:14:00:63:67:d9:c8:c1:3e:03:99:fb:2c:51:f2:6a:e3:d9: 10:a0:bd:72:2b:11:e4:c0:3b:02:ec:f4:ba:4f:dc:c1:c7:a4: 55:0f:39:e1:7d:ba:7c:6c:24:59:c0:98:e7:c7:d4:06:9a:cf: 78:2b:77:a0:df:3d:52:b1:ff:40:9d:78:5a:64:0a:0c:ed:32: 6c:16:e9:48:73:a9:40:a2:7e:bc:0c:19:a3:40:a2:aa:c2:c2: 16:72:55:50:b8:98:20:97:ac:80:bd:49:4e:c6:91:c7:21:6f: 94:54:d3:91:98:a7:0a:41:2c:10:b2:cb:6a:bb:0b:0f:3b:e4: 1b:3f:de:20:fc:c5:e8:8f:50:c9:e7:5d:d6:04:5d:ad:d6:7a: b6:17:e0:9d:21:15:74:ae:12:fc:54:4c:8e:57:a5:f7:42:98: df:9f:f2:92:49:91:55:c7:60:b1:f3:31:73:8d:b8:ad:ee:fb: 23:e9:16:07:8c:eb:63:b6:a3:04:94:9c:97:9f:8f:bb:fa:31: 2f:4e:ff:43:94:8e:07:8a:e8:6d:f3:af:6d:ac:b0:9c:57:02: db:7a:60:1c:0a:dc:4a:04:40:9d:7b:bf:2b:15:55:c8:1a:08: 55:30:a9:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjQxMTIzMDEyNDE4WhcNMjQxMTMwMDEyNDE4WjAYMRYwFAYD VQQDEw02NzQxMmVjMi0zMjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrXwuyxlr+giZG2Uh98i9K3sjLRztU/RT7CoYUdV7Zn58Ezf/AkduxPz7HbV yiDzQMH8cIfPldQdiBotP69hgzOaHdFQlugkZM2a/AKC9wolp2QvPpaMfFtmW8wa omgrfGIVB1nd1Fvdcb3meL9AyBZd8U2fvrK2b5bt45WFmzuBVUySaAQDiUaWgLeh cynhp2J/f32akV7/GmPT2RJaNRcgsE0pkFNJNvtRI7lYr+Goyoj1Q8g4p2BDBi4g 4dGq0HS3yOIUb4nqJ2vfEPdn0fAw+iG2AkR9VkZGgk/1Nk4CAcMaW+lwepP6qYuA vUXEYqdlUAMglW4QkNi8wqQPqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcCIIAb yMkkTJXEgiol7b9Dtb+5MB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApPl/JwDbuyaifAICl2+VGrlONFABjZ9nIwT4DmfssUfJq49kQoL1y KxHkwDsC7PS6T9zBx6RVDznhfbp8bCRZwJjnx9QGms94K3eg3z1Ssf9AnXhaZAoM 7TJsFulIc6lAon68DBmjQKKqwsIWclVQuJggl6yAvUlOxpHHIW+UVNORmKcKQSwQ sstquwsPO+QbP94g/MXoj1DJ513WBF2t1nq2F+CdIRV0rhL8VEyOV6X3Qpjfn/KS SZFVx2Cx8zFzjbit7vsj6RYHjOtjtqMElJyXn4+7+jEvTv9DlI4Hiuht869trLCc VwLbemAcCtxKBECde78rFVXIGghVMKmE -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org