$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json) Hash identifier: KModLiC15HGQrl6mE6g2kAJjjzBSuqTDWAMWsT16IAk= Subject key identifier: 1D:7A:B7:43:6A:CB:5D:85:DC:BE:5C:A9:B8:DC:F3:67:52:0A:80:63 Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Certificate serial: 148B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft Manifest number: 146D Signing time: Wed 20 Nov 2024 16:54:14 +0000 Manifest this update: Wed 20 Nov 2024 16:54:13 +0000 Manifest next update: Wed 27 Nov 2024 16:54:13 +0000 Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: w5tMEIowH88Wab/mnNyKFS769ybOzHiSbmhtBDhjcAg=) 2: 1E7AFF46066811ED8098BF45C4F9AE02.roa (hash: XLYYPV2+GfUItb2XTPmy56mqwEEOcWm0XjBG4n+9Fbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5259 (0x148b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10 Validity Not Before: Nov 20 16:54:13 2024 GMT Not After : Nov 27 16:54:13 2024 GMT Subject: CN=673e1436-167d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fc:86:1c:7d:a7:bf:fc:62:27:c7:1a:ec:51: 8b:ba:d5:9d:24:05:05:88:88:32:f6:e4:25:11:37: fc:8c:7f:99:b0:6b:76:ef:3c:18:98:6b:0f:b6:d4: 49:a0:61:f5:39:e7:b9:c9:7c:b4:47:b2:8c:ce:40: 88:b5:a6:bd:81:88:ed:3b:3c:fa:f1:e9:ca:cc:14: d3:9b:4a:27:37:e1:23:85:74:0b:17:65:ad:47:15: 19:60:2b:48:02:29:06:d3:33:e4:ad:1a:7f:ef:8e: 4a:ee:cd:47:fd:ba:15:e4:4f:48:29:a0:64:fc:89: c0:8f:cf:8e:e9:c3:1e:66:68:09:b2:9a:92:4e:0e: 6d:a8:3d:10:11:df:33:f0:5d:4b:bd:a9:c0:96:52: 82:50:70:69:57:1e:88:f5:93:a3:aa:dc:83:c1:b5: 5e:a5:58:61:3f:56:00:ef:f5:a3:30:25:7e:2d:d4: 8c:44:0c:d6:e5:da:58:cc:9b:36:8a:82:fb:f5:87: a9:85:de:b2:85:f6:e8:75:cf:50:5e:56:9f:b9:a4: 1f:08:83:b4:00:0d:37:54:1c:34:30:eb:61:c4:0d: c4:39:48:d1:50:98:0b:d4:d6:f1:9c:d4:c8:77:09: 65:7d:ab:54:66:88:6a:c2:bd:4f:78:ad:6f:0f:81: 3c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7A:B7:43:6A:CB:5D:85:DC:BE:5C:A9:B8:DC:F3:67:52:0A:80:63 X509v3 Authority Key Identifier: keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:ae:f7:3f:47:2d:29:09:e7:8a:1e:26:df:50:c2:b4:11:be: e9:b7:cb:65:bf:0a:28:59:53:72:44:0b:88:3d:4e:69:1f:de: 2f:3b:1c:0b:ad:e6:53:ea:0f:3c:b1:ce:91:88:b3:f5:12:3e: 41:d4:1d:bd:09:92:a6:3b:56:8b:29:98:25:8d:30:a4:3c:62: 0e:6d:77:cf:ea:12:18:dd:3a:2f:9e:2b:e8:f0:d1:fb:f4:20: 71:ed:6c:3a:80:6c:fd:41:8e:f3:30:22:04:14:e8:fb:44:fe: 70:c5:84:fe:43:ca:be:ea:c6:1b:7d:03:c8:4a:01:ad:11:18: 18:3c:b6:f6:7c:bc:4d:a3:42:f2:0a:ba:ff:cb:d2:ec:c7:a3: f9:e3:66:95:36:85:6a:50:8f:2f:aa:27:eb:48:c7:7f:7c:3e: 82:6d:14:25:06:60:b0:27:e8:45:a2:94:65:dc:cd:37:fd:f7: b4:ff:8c:70:6c:d0:4a:3b:19:4b:ff:f1:02:77:8b:80:17:47: 40:7a:0e:b2:65:15:4d:99:71:2f:1e:78:2c:45:ed:7f:d7:d0: c9:5e:cb:7d:65:b4:b1:c0:99:58:af:9b:af:40:16:a4:48:27: a0:6f:4e:7d:bc:b1:fc:a8:e7:05:94:0b:93:21:ff:81:ef:b8: 13:10:78:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDFFMTIzODQ1NjM3MUU3NDQ4OTQ2MjJFOThBQzFFRTU1 QjQxNDVFMTAwHhcNMjQxMTIwMTY1NDEzWhcNMjQxMTI3MTY1NDEzWjAYMRYwFAYD VQQDEw02NzNlMTQzNi0xNjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fyGHH2nv/xiJ8ca7FGLutWdJAUFiIgy9uQlETf8jH+ZsGt27zwYmGsPttRJ oGH1Oee5yXy0R7KMzkCItaa9gYjtOzz68enKzBTTm0onN+EjhXQLF2WtRxUZYCtI AikG0zPkrRp/745K7s1H/boV5E9IKaBk/InAj8+O6cMeZmgJspqSTg5tqD0QEd8z 8F1LvanAllKCUHBpVx6I9ZOjqtyDwbVepVhhP1YA7/WjMCV+LdSMRAzW5dpYzJs2 ioL79Yephd6yhfbodc9QXlafuaQfCIO0AA03VBw0MOthxA3EOUjRUJgL1NbxnNTI dwllfatUZohqwr1PeK1vD4E88wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB16t0Nq y12F3L5cqbjc82dSCoBjMB8GA1UdIwQYMBaAFB4SOEVjcedEiUYi6YrB7lW0FF4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC82OTdFMzU2QTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUwU0pSaUxwaXNIdVZiUVVY aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hoSTRSV054NTBTSlJpTHBpc0h1VmJRVVhoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC82OTdFMzU2QTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9IaEk0UldOeDUw U0pSaUxwaXNIdVZiUVVYaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnrvc/Ry0pCeeKHibfUMK0Eb7pt8tlvwooWVNyRAuIPU5pH94vOxwL reZT6g88sc6RiLP1Ej5B1B29CZKmO1aLKZgljTCkPGIObXfP6hIY3Tovnivo8NH7 9CBx7Ww6gGz9QY7zMCIEFOj7RP5wxYT+Q8q+6sYbfQPISgGtERgYPLb2fLxNo0Ly Crr/y9Lsx6P542aVNoVqUI8vqifrSMd/fD6CbRQlBmCwJ+hFopRl3M03/fe0/4xw bNBKOxlL//ECd4uAF0dAeg6yZRVNmXEvHngsRe1/19DJXst9ZbSxwJlYr5uvQBak SCegb059vLH8qOcFlAuTIf+B77gTEHgR -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:00 2024 by rpki-client on console-fra.rpki-client.org