$ rpki-client -vvf rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft File: cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft (raw, json) Hash identifier: lZmfsRkBvuSonu7t+o/HWpydht7sI4DDrugXn88bcIQ= Subject key identifier: 98:85:23:22:6F:31:80:F6:7F:28:DE:4B:16:41:D9:19:51:64:A5:2F Authority key identifier: 70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C Certificate issuer: /CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft Manifest number: 011F Signing time: Thu 21 Nov 2024 03:01:45 +0000 Manifest this update: Thu 21 Nov 2024 03:01:45 +0000 Manifest next update: Thu 28 Nov 2024 03:01:45 +0000 Files and hashes: 1: cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl (hash: P1g2Hc5hBqIQ4S50gtkPrtgV0fxUdp9uUI4+Q8lCpWg=) 2: 1966C856FB9E11ED8309FC1DC4F9AE02.roa (hash: jsmEuKgoeYiJY/PhkO97a7NHRngriTFFOmRBgoLfjbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C Validity Not Before: Nov 21 03:01:45 2024 GMT Not After : Nov 28 03:01:45 2024 GMT Subject: CN=673ea299-ac73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:df:99:7b:fd:41:bd:a1:b5:0b:a3:7a:a5:f2: c7:32:af:2a:0d:2f:6c:d3:bb:6f:cf:78:67:f9:7d: 78:0d:9b:e3:7f:d7:aa:3f:3f:b7:69:46:37:d3:63: ca:0e:1a:e5:af:54:96:da:be:35:cc:18:3a:4a:ed: 51:d1:62:22:18:3a:1e:b5:38:87:14:14:63:1f:b1: 7e:db:b2:49:bb:d1:5a:52:e8:22:cb:fb:9a:68:cd: 28:f7:96:6c:4f:f0:72:03:7d:09:24:21:75:8c:d4: d5:6b:62:5e:06:eb:c4:bc:c1:ce:fc:08:5a:db:b5: 9e:18:ec:42:db:d6:3f:f4:f2:91:b9:72:2d:ab:7f: 7b:2a:e1:44:e0:95:96:f8:5a:3f:96:9f:e9:af:95: 1c:a9:48:d7:87:b1:b9:91:6d:40:dd:e8:38:86:95: 57:f7:bc:17:b4:d1:e4:b2:bb:a7:18:c0:cf:2d:4d: 52:9e:57:32:b9:28:aa:8e:92:90:e3:e8:a1:95:76: 05:3d:41:6f:89:98:ca:3c:b3:d8:1b:79:31:b6:d1: f7:ec:a9:ff:c5:bc:bf:fa:5a:08:eb:49:1b:5b:0b: a7:11:3d:07:11:84:0e:39:b2:e2:9c:fa:b4:7f:53: 79:54:73:02:36:c2:eb:cc:38:c0:f3:77:56:8b:f4: 5d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:85:23:22:6F:31:80:F6:7F:28:DE:4B:16:41:D9:19:51:64:A5:2F X509v3 Authority Key Identifier: keyid:70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ca:52:03:de:33:bd:30:1f:e1:e9:78:9b:df:6c:66:56:f5: 35:1e:d9:69:ff:06:c3:21:31:b6:69:ef:a8:3e:16:a2:29:27: 54:8b:3f:7b:33:ea:7e:0b:4f:17:51:42:58:86:11:d8:3c:c0: 4b:4e:e3:a7:0f:df:b0:10:f8:9b:04:21:7b:d8:61:80:4c:30: 74:68:ce:00:f1:c8:15:f5:5d:37:f7:12:c5:f9:46:d6:56:e9: d2:1a:c7:3b:a6:5f:1e:45:20:ce:83:fa:d2:8c:db:4f:58:8a: c7:26:08:5a:93:a0:5c:4c:9d:92:12:31:5c:dd:a7:f2:59:74: 8b:eb:45:00:68:db:97:64:da:77:39:f1:a7:f0:aa:1e:fe:73: ce:dd:52:43:0d:b0:f0:db:c7:a1:1d:d6:3a:7b:9e:1e:97:76: e7:4b:ff:a7:27:c4:5d:bc:00:b8:21:f4:d2:b7:cb:e2:c4:2d: b2:97:cd:36:da:5c:25:0d:07:76:ab:a5:8a:6e:55:1d:dd:34: 8e:28:73:49:57:20:de:4d:3c:19:52:5c:ed:35:28:a7:6b:22: 07:ba:3f:44:6f:d6:a3:31:af:09:46:30:5f:c4:49:35:f4:99: cf:52:d5:74:86:ce:06:c9:5f:3b:14:e1:09:21:b7:1d:73:d5: 77:a2:77:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1NDAxMTAvBgNVBAUTKDcwMkZBMUFFOTY4MkIyQjIyRUNERDlBNTMwMTJGMEU2 RjFCQTFCOUMwHhcNMjQxMTIxMDMwMTQ1WhcNMjQxMTI4MDMwMTQ1WjAYMRYwFAYD VQQDEw02NzNlYTI5OS1hYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkt+Ze/1BvaG1C6N6pfLHMq8qDS9s07tvz3hn+X14DZvjf9eqPz+3aUY302PK Dhrlr1SW2r41zBg6Su1R0WIiGDoetTiHFBRjH7F+27JJu9FaUugiy/uaaM0o95Zs T/ByA30JJCF1jNTVa2JeBuvEvMHO/Aha27WeGOxC29Y/9PKRuXItq397KuFE4JWW +Fo/lp/pr5UcqUjXh7G5kW1A3eg4hpVX97wXtNHksrunGMDPLU1SnlcyuSiqjpKQ 4+ihlXYFPUFviZjKPLPYG3kxttH37Kn/xby/+loI60kbWwunET0HEYQOObLinPq0 f1N5VHMCNsLrzDjA83dWi/RdfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiFIyJv MYD2fyjeSxZB2RlRZKUvMB8GA1UdIwQYMBaAFHAvoa6WgrKyLs3ZpTAS8Obxuhuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjU0MC9EOTdBOTVCQ0Y4 ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3NySXV6ZG1sTUJMdzV2RzZH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDLWhycGFDc3JJdXpkbWxNQkx3NXZHNkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjU0MC9EOTdBOTVCQ0Y4ODAxMUVEQjlBQkZDNTZDNEY5QUUwMi9jQy1ocnBhQ3Ny SXV6ZG1sTUJMdzV2RzZHNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ylID3jO9MB/h6Xib32xmVvU1Htlp/wbDITG2ae+oPhaiKSdUiz97 M+p+C08XUUJYhhHYPMBLTuOnD9+wEPibBCF72GGATDB0aM4A8cgV9V039xLF+UbW VunSGsc7pl8eRSDOg/rSjNtPWIrHJghak6BcTJ2SEjFc3afyWXSL60UAaNuXZNp3 OfGn8Koe/nPO3VJDDbDw28ehHdY6e54el3bnS/+nJ8RdvAC4IfTSt8vixC2yl802 2lwlDQd2q6WKblUd3TSOKHNJVyDeTTwZUlztNSinayIHuj9Eb9ajMa8JRjBfxEk1 9JnPUtV0hs4GyV87FOEJIbcdc9V3onck -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:59 2024 by rpki-client on console-fra.rpki-client.org