$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft File: HSpVFaipmzCyHRhxvPr9J-saEyo.mft (raw, json) Hash identifier: XW20eb4ph68M/aTYgaghr21Vl9ZdAAFreG3DkR7gMYk= Subject key identifier: 6B:51:F3:9B:18:06:D9:1F:3B:4D:AB:3E:38:BF:C2:35:56:E7:0D:3C Authority key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A Certificate issuer: /CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft Manifest number: 01FA Signing time: Sat 23 Nov 2024 01:38:14 +0000 Manifest this update: Sat 23 Nov 2024 01:38:14 +0000 Manifest next update: Sat 30 Nov 2024 01:38:14 +0000 Files and hashes: 1: HSpVFaipmzCyHRhxvPr9J-saEyo.crl (hash: gcxIP3gwsda+ijUj7C90yG672x6SXYQDOx5BCLlJ7/o=) 2: D6E7D65C192E11ED927BF512C4F9AE02.roa (hash: /55pyDRuC0ryewlHl9M4i4PAiQ+McbMrbeJDHVMTz04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B30/serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A Validity Not Before: Nov 23 01:38:14 2024 GMT Not After : Nov 30 01:38:14 2024 GMT Subject: CN=67413206-73f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b6:d1:91:44:8d:ea:72:1a:22:6c:a3:2f:e6: de:fd:11:3a:80:36:a7:4c:26:b1:25:ba:ff:92:94: 23:0e:23:16:1f:e3:1c:0c:6d:96:1f:c6:32:b5:27: a9:48:97:94:5e:27:48:76:55:88:f6:cf:a3:a0:08: de:d8:36:0f:37:61:48:fc:a4:c4:5d:5a:e4:0e:37: 9d:8b:fd:22:a8:48:de:6d:37:1c:15:4e:d4:8d:2b: 0c:3e:a6:c7:6c:b9:cf:fe:b8:d5:dd:d9:ac:aa:ab: 49:36:da:90:30:7e:0e:2e:dd:22:ff:86:b1:ef:f8: ea:f0:e4:38:42:49:7d:53:02:84:89:e9:05:a0:c6: e1:3a:2e:3d:57:9c:fb:dc:db:d7:b9:c2:b2:56:7b: 78:5c:c6:75:a4:8c:da:9e:a4:69:e8:6b:0c:e2:e4: a5:47:97:5c:38:c5:2c:2f:b4:6d:93:6f:3e:29:ad: 33:99:fe:1b:ee:a4:27:94:98:e7:86:fe:2a:a1:28: 08:79:83:7c:24:4b:38:24:c1:fd:99:b9:32:45:44: 57:a7:a8:e4:6d:ea:47:58:ed:e0:8c:90:c6:fd:29: 32:73:85:1c:91:42:27:0f:95:29:b8:60:28:3f:f0: 9f:98:1b:f6:b4:e3:d2:41:9e:d1:08:3d:51:9a:2b: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:51:F3:9B:18:06:D9:1F:3B:4D:AB:3E:38:BF:C2:35:56:E7:0D:3C X509v3 Authority Key Identifier: keyid:1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:eb:d5:2c:2c:fa:4d:b1:76:36:3a:1a:8f:cb:90:83:7f:e1: 9a:db:4e:d4:0b:98:9f:41:af:18:5d:8b:6e:86:f9:8d:bf:29: 9d:98:8f:4b:ae:6c:f9:81:93:91:75:04:61:26:1e:94:bb:92: 46:91:23:1f:04:42:f1:d6:32:69:38:d8:4c:00:fc:e1:34:b7: 1f:d0:f9:27:36:3d:d9:4b:dd:76:95:4d:de:eb:26:0c:e2:d5: 5c:ef:db:85:36:06:57:57:d6:fd:58:e2:a1:eb:bd:4f:be:04: a3:de:1b:24:d7:82:3d:0f:39:48:0e:dd:24:37:f2:44:4a:24: 69:a3:00:17:cc:f0:42:6f:f9:29:f0:4e:34:dc:e0:2b:cf:c5: 51:c4:f8:cc:b7:d4:64:af:4f:6c:7d:f6:d8:1c:73:02:2a:29: 5b:2f:10:b8:c7:e9:80:a9:29:ba:06:75:57:41:01:64:60:13: 73:3f:4e:28:73:37:24:6c:d2:e4:7f:5b:d2:ef:78:0e:5c:14: 5e:bb:ba:bd:e3:d9:3b:c6:fe:fb:cc:c2:07:30:9d:55:65:aa: a0:3a:06:5f:21:a5:4e:5d:d7:0a:1e:2d:84:f9:70:27:a9:ba: 32:cc:4d:28:ab:3e:ae:bb:60:a5:92:2d:3f:64:cc:a5:a0:e4: 92:de:9d:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMzAxMTAvBgNVBAUTKDFEMkE1NTE1QThBOTlCMzBCMjFEMTg3MUJDRkFGRDI3 RUIxQTEzMkEwHhcNMjQxMTIzMDEzODE0WhcNMjQxMTMwMDEzODE0WjAYMRYwFAYD VQQDEw02NzQxMzIwNi03M2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprbRkUSN6nIaImyjL+be/RE6gDanTCaxJbr/kpQjDiMWH+McDG2WH8YytSep SJeUXidIdlWI9s+joAje2DYPN2FI/KTEXVrkDjedi/0iqEjebTccFU7UjSsMPqbH bLnP/rjV3dmsqqtJNtqQMH4OLt0i/4ax7/jq8OQ4Qkl9UwKEiekFoMbhOi49V5z7 3NvXucKyVnt4XMZ1pIzanqRp6GsM4uSlR5dcOMUsL7Rtk28+Ka0zmf4b7qQnlJjn hv4qoSgIeYN8JEs4JMH9mbkyRURXp6jkbepHWO3gjJDG/Skyc4UckUInD5UpuGAo P/CfmBv2tOPSQZ7RCD1RmivQmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtR85sY BtkfO02rPji/wjVW5w08MB8GA1UdIwQYMBaAFB0qVRWoqZswsh0Ycbz6/SfrGhMq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIzMC84OTc3QzY3NDE5 MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16Q3lIUmh4dlByOUotc2FF eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hTcFZGYWlwbXpDeUhSaHh2UHI5Si1zYUV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIzMC84OTc3QzY3NDE5MkExMUVEODE1RkEzNUZDNEY5QUUwMi9IU3BWRmFpcG16 Q3lIUmh4dlByOUotc2FFeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY69UsLPpNsXY2OhqPy5CDf+Ga207UC5ifQa8YXYtuhvmNvymdmI9L rmz5gZORdQRhJh6Uu5JGkSMfBELx1jJpONhMAPzhNLcf0PknNj3ZS912lU3e6yYM 4tVc79uFNgZXV9b9WOKh671PvgSj3hsk14I9DzlIDt0kN/JESiRpowAXzPBCb/kp 8E403OArz8VRxPjMt9Rkr09sffbYHHMCKilbLxC4x+mAqSm6BnVXQQFkYBNzP04o czckbNLkf1vS73gOXBReu7q949k7xv77zMIHMJ1VZaqgOgZfIaVOXdcKHi2E+XAn qboyzE0oqz6uu2Clki0/ZMyloOSS3p00 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org