$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: EhE42h7bUcp/RZUr5b16F0KjTNSc1XWhR0aS5TtbYJo= Subject key identifier: 1B:35:31:A4:BA:13:33:4B:A9:8C:BC:B6:3E:75:57:72:33:EF:B6:BD Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 02AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 02A1 Signing time: Fri 22 Nov 2024 01:49:29 +0000 Manifest this update: Fri 22 Nov 2024 01:49:29 +0000 Manifest next update: Fri 29 Nov 2024 01:49:29 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: MvZop0OAcysNhU3dSrU4/8zfTtXma1dpSNaXVbrO11A=) 2: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: 4aOmdIiBIBTvtytMx9F80hnUu5xyycNyp3dSZvfw2H4=) 3: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: H4uvOPnOQR7kaTV0mxINyaPGqrlb9ZsfEdxZE+ZhLPI=) 4: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: sGJBxLCH9iu9CcWMb6plXCanRkikajpBvxJ9Q78R1qo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 01:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Nov 22 01:49:29 2024 GMT Not After : Nov 29 01:49:29 2024 GMT Subject: CN=673fe329-3f88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:53:be:47:ac:5d:cf:de:6f:b3:03:86:c3:ee: 67:1f:45:3b:e6:f9:ac:2c:86:c1:63:27:f3:ef:78: 90:0e:75:d8:f6:67:c1:66:c3:1d:db:c3:c2:d9:f7: b1:07:c7:07:35:c8:0f:88:7d:91:50:f7:9e:1d:40: db:36:bd:ba:83:ff:ef:c1:3c:29:a4:f4:6d:ee:4a: 7f:09:28:e9:1a:4b:2d:ca:11:f7:00:61:65:7a:5b: b3:3b:48:5f:1d:01:21:30:13:e3:b1:c1:af:b8:b9: df:3b:7b:7d:a8:03:63:8f:37:f1:1c:4c:d7:9b:63: 9d:f9:d5:4d:5b:8e:88:b8:b7:7f:5d:a2:58:7c:64: 17:66:d5:1b:f1:3b:52:a1:c0:6e:aa:83:18:bf:01: a0:0e:aa:3a:fc:12:2a:91:3b:70:d6:0d:27:39:f8: 4a:4c:47:05:8f:94:a2:f3:68:b5:6c:ba:5b:1c:5f: d1:83:53:28:09:59:84:d8:e5:ba:1e:dd:0d:ec:43: 35:db:46:9b:c5:bd:48:6e:1f:8e:29:ee:96:33:9b: 29:27:84:03:a4:f7:0e:44:c9:cf:47:71:1a:dd:63: 7f:53:fa:94:06:cd:a8:bd:cb:6e:80:66:57:71:f0: 9d:3a:64:58:05:c0:f4:a8:78:5d:91:11:10:5a:a3: 73:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:35:31:A4:BA:13:33:4B:A9:8C:BC:B6:3E:75:57:72:33:EF:B6:BD X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:14:34:0b:c7:32:66:62:e8:5e:fb:60:be:74:4a:48:2b:b0: 8a:3f:86:97:44:4c:70:4c:9f:0c:cc:e6:0f:a9:84:17:71:29: b1:e4:fb:e4:47:f0:44:b6:9e:f6:62:1a:fa:02:01:bf:ea:3a: a3:63:59:b1:ce:b6:71:6e:04:81:23:2a:04:e7:2b:1e:fc:4c: 6d:c5:e4:2e:ef:0d:60:08:b3:36:bb:78:c6:d4:94:61:21:be: 3b:70:2a:e7:19:85:ad:3a:fd:8e:3c:c5:0d:b1:61:28:0d:9a: 36:a8:73:e5:f8:d9:4a:6b:05:7a:e7:05:9d:d1:cc:84:a6:32: 23:79:17:5f:34:cc:a0:fe:52:2f:dd:9e:06:ab:26:20:f2:cf: d9:f8:4f:a3:5c:20:a0:66:18:06:45:d5:47:18:08:76:1e:10: 60:83:48:aa:cd:22:3f:22:0b:5c:57:be:b5:1d:fd:fd:aa:99: 1c:99:4f:7a:c2:0a:5f:26:24:0d:e1:3a:78:da:0c:de:0a:a5: 9f:c6:1f:fd:2c:f8:5a:dd:92:23:56:7b:b2:19:8e:17:78:49: cc:b8:03:77:b5:ba:59:8d:09:2b:a1:31:dc:f1:6b:9e:a6:df: 77:84:1e:c3:c9:6c:15:0e:44:35:fe:33:10:a3:6c:ea:7b:a6: 17:6f:35:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjQxMTIyMDE0OTI5WhcNMjQxMTI5MDE0OTI5WjAYMRYwFAYD VQQDEw02NzNmZTMyOS0zZjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslO+R6xdz95vswOGw+5nH0U75vmsLIbBYyfz73iQDnXY9mfBZsMd28PC2fex B8cHNcgPiH2RUPeeHUDbNr26g//vwTwppPRt7kp/CSjpGkstyhH3AGFleluzO0hf HQEhMBPjscGvuLnfO3t9qANjjzfxHEzXm2Od+dVNW46IuLd/XaJYfGQXZtUb8TtS ocBuqoMYvwGgDqo6/BIqkTtw1g0nOfhKTEcFj5Si82i1bLpbHF/Rg1MoCVmE2OW6 Ht0N7EM120abxb1Ibh+OKe6WM5spJ4QDpPcORMnPR3Ea3WN/U/qUBs2ovctugGZX cfCdOmRYBcD0qHhdkREQWqNzeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBs1MaS6 EzNLqYy8tj51V3Iz77a9MB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVFDQLxzJmYuhe+2C+dEpIK7CKP4aXRExwTJ8MzOYPqYQXcSmx5Pvk R/BEtp72Yhr6AgG/6jqjY1mxzrZxbgSBIyoE5yse/ExtxeQu7w1gCLM2u3jG1JRh Ib47cCrnGYWtOv2OPMUNsWEoDZo2qHPl+NlKawV65wWd0cyEpjIjeRdfNMyg/lIv 3Z4GqyYg8s/Z+E+jXCCgZhgGRdVHGAh2HhBgg0iqzSI/IgtcV761Hf39qpkcmU96 wgpfJiQN4Tp42gzeCqWfxh/9LPha3ZIjVnuyGY4XeEnMuAN3tbpZjQkroTHc8Wue pt93hB7DyWwVDkQ1/jMQo2zqe6YXbzWg -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:35 2024 by rpki-client on console-ams.rpki-client.org