$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: 4jiVwYyc6TJSV7PvTHtApLmKw2KK6CEoa4K7jOuFDso= Subject key identifier: 81:C9:BF:78:07:D2:02:B4:F6:C5:F4:71:EF:74:B4:AD:A0:B4:6B:61 Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: 9A Signing time: Mon 25 Nov 2024 04:24:19 +0000 Manifest this update: Mon 25 Nov 2024 04:24:19 +0000 Manifest next update: Mon 02 Dec 2024 04:24:19 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: BfFeBBLjZt7D9jBpq2PmM9FbV9Qo4F7GK/kX4uHKqg4=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: U2pgcPipddVZ72wsOjIBUQaJaHNGvZhnk8uGYFZu+oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: Nov 25 04:24:19 2024 GMT Not After : Dec 2 04:24:19 2024 GMT Subject: CN=6743fbf3-caf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:44:59:f0:71:7e:7d:b6:95:bf:79:92:3b:be: 7a:f2:f6:fa:d8:d6:ba:0f:fc:e9:f1:29:33:3d:49: 31:98:f8:a4:b5:fc:3b:8e:c9:2b:4b:c0:7c:4e:2f: 20:f6:48:37:8f:e2:ab:c1:b3:d7:4c:bc:78:50:a9: ac:69:17:53:cf:35:21:03:fb:88:b5:9b:fa:0f:b3: 09:18:c7:f0:a8:f8:17:4e:08:ae:09:a4:f7:f9:e2: a5:0c:5b:bd:6c:01:7f:b5:aa:18:c3:08:4f:4e:6f: 1c:ff:9e:93:a6:04:c0:84:b6:4f:76:49:e9:f1:7c: 97:2d:a1:1e:c2:ab:de:cb:46:34:35:ca:dd:86:ae: 16:00:4c:ae:97:ef:a5:c7:af:eb:49:21:f9:26:65: 34:cd:28:8f:47:e6:f0:41:b7:ac:0a:c4:7d:39:0e: c1:bc:db:4d:0e:1f:24:69:e0:83:4c:b3:3d:7c:30: 6c:1b:0e:39:e8:ed:ea:b6:5b:eb:68:5c:0c:a2:02: 43:36:09:5c:56:0c:46:c8:82:81:78:e5:88:c1:d5: 02:58:03:eb:5a:8a:c0:d2:c7:54:d5:66:b0:57:0f: 75:03:ee:8f:82:14:76:df:20:42:74:bb:8d:8b:1c: 85:16:e1:c9:dc:e0:18:37:64:12:eb:f9:43:89:53: 99:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C9:BF:78:07:D2:02:B4:F6:C5:F4:71:EF:74:B4:AD:A0:B4:6B:61 X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:54:e3:7c:1a:43:53:27:37:12:5f:5b:ac:cb:8b:15:51:3b: 46:17:8b:a9:1f:d6:23:c4:04:c8:64:57:33:61:81:53:98:5b: ce:a2:1c:26:06:af:e8:b4:1d:ab:50:c6:02:a7:dc:1f:59:5c: 59:03:87:dc:42:da:dc:4a:0a:27:4c:bf:8c:ed:12:95:51:de: 8b:6e:e8:df:cb:a4:40:06:f1:64:c8:3c:d4:1b:be:70:2f:8e: 0b:c4:83:6d:49:41:16:34:a0:b7:b4:18:ed:7f:9f:fb:6d:46: 78:6b:24:af:99:e4:fa:2a:02:ea:0f:b6:a9:d3:79:f4:0d:98: 35:e6:65:4c:e0:fe:e9:ba:ff:99:28:2f:81:da:30:7e:c1:34: e7:b8:d0:03:59:7a:ab:8b:6e:f9:11:d0:7a:0c:3f:ac:20:a2: ff:98:b5:9d:cd:20:99:59:7a:cb:d1:18:bc:67:08:84:9d:b7: 36:09:cf:66:52:0d:07:af:0a:9c:ce:8b:a7:c6:a1:1c:25:06: 5a:65:37:d8:22:5c:f2:40:bf:3d:1f:7e:9f:ae:1b:96:57:2d: 5c:47:03:86:ca:67:19:ba:ba:d4:21:7c:79:bf:03:a6:4b:b7: d6:fb:9c:a9:39:c8:2c:8a:5c:b0:88:50:fc:aa:4b:0f:d0:42: f5:29:0f:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDMUUxMTAvBgNVBAUTKDFERjlDMENFRjlBNzdEQ0QxNUJCNTFGOTNGRDM0Mjk5 OUJFMTE2NTgwHhcNMjQxMTI1MDQyNDE5WhcNMjQxMjAyMDQyNDE5WjAYMRYwFAYD VQQDEw02NzQzZmJmMy1jYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0RZ8HF+fbaVv3mSO7568vb62Na6D/zp8SkzPUkxmPiktfw7jskrS8B8Ti8g 9kg3j+KrwbPXTLx4UKmsaRdTzzUhA/uItZv6D7MJGMfwqPgXTgiuCaT3+eKlDFu9 bAF/taoYwwhPTm8c/56TpgTAhLZPdknp8XyXLaEewqvey0Y0Ncrdhq4WAEyul++l x6/rSSH5JmU0zSiPR+bwQbesCsR9OQ7BvNtNDh8kaeCDTLM9fDBsGw456O3qtlvr aFwMogJDNglcVgxGyIKBeOWIwdUCWAPrWorA0sdU1WawVw91A+6PghR23yBCdLuN ixyFFuHJ3OAYN2QS6/lDiVOZEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHJv3gH 0gK09sX0ce90tK2gtGthMB8GA1UdIwQYMBaAFB35wM75p33NFbtR+T/TQpmb4RZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEMxRS9DMjg2MDMyRUM2 NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZjMFZ1MUg1UDlOQ21admhG bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9DMjg2MDMyRUM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZj MFZ1MUg1UDlOQ21admhGbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3VON8GkNTJzcSX1usy4sVUTtGF4upH9YjxATIZFczYYFTmFvOohwm Bq/otB2rUMYCp9wfWVxZA4fcQtrcSgonTL+M7RKVUd6Lbujfy6RABvFkyDzUG75w L44LxINtSUEWNKC3tBjtf5/7bUZ4aySvmeT6KgLqD7ap03n0DZg15mVM4P7puv+Z KC+B2jB+wTTnuNADWXqri275EdB6DD+sIKL/mLWdzSCZWXrL0Ri8ZwiEnbc2Cc9m Ug0HrwqczounxqEcJQZaZTfYIlzyQL89H36frhuWVy1cRwOGymcZurrUIXx5vwOm S7fW+5ypOcgsilywiFD8qksP0EL1KQ+6 -----END CERTIFICATE-----Generated at Mon Nov 25 06:05:07 2024 by rpki-client on console-fra.rpki-client.org