$ rpki-client -vvf rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft File: hy5atTm-Q4V0A9T11FpUcrsgem0.mft (raw, json) Hash identifier: dd8g2P7r2XRmOD9mrzp8nSMAQHbi/COq6dFDI8mqLp0= Subject key identifier: E2:2F:83:32:88:39:A2:E1:C7:75:38:B6:22:47:E8:FD:A3:27:43:DB Authority key identifier: 87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D Certificate issuer: /CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Certificate serial: 030C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft Manifest number: 0300 Signing time: Sat 23 Nov 2024 00:48:35 +0000 Manifest this update: Sat 23 Nov 2024 00:48:35 +0000 Manifest next update: Sat 30 Nov 2024 00:48:35 +0000 Files and hashes: 1: hy5atTm-Q4V0A9T11FpUcrsgem0.crl (hash: t0Gs5YVrDA7XWDu+cFZ5o855Uudi9zeuRXSmNSZZrUM=) 2: A445EAA0B5B911EC8AADD413C4F9AE02.roa (hash: Y2n2BjZK7YcDbJf+OeJwUoZderld4t4C424W9hVCQCo=) 3: 1D171A58C76211EC95B63648C4F9AE02.roa (hash: gSJIRhvkvsqzVWI/PIM9ZJldSrE3+tHguZhTA6U0IhA=) 4: 2FCAC3ACC48311ECAAAACC0CC4F9AE02.roa (hash: E8TF17FZ+hElw8daIlNLJu6deo+xubevfbPk03QKuzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193339/serialNumber=872E5AB539BE43857403D4F5D45A5472BB207A6D Validity Not Before: Nov 23 00:48:35 2024 GMT Not After : Nov 30 00:48:35 2024 GMT Subject: CN=67412663-b36c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b2:c0:86:ec:c1:28:85:08:42:25:63:3f:fe: a5:7a:a5:f8:b3:a3:a2:fb:2f:9b:02:8b:df:81:3c: d0:51:60:49:60:54:1a:88:f4:3f:60:72:92:b2:f9: 6e:2b:32:67:0b:93:73:e7:6f:c7:73:37:8e:8e:0b: 0c:4c:05:50:92:01:43:92:87:b6:b7:a4:db:83:19: b4:9d:29:33:e6:a9:0d:18:9f:53:bd:eb:cf:6f:73: 25:77:2a:23:7c:75:a7:a3:f7:28:b0:e6:98:f2:be: aa:1b:94:86:d2:1a:1c:b8:45:b6:49:73:4f:34:5f: 15:e3:8e:3a:3e:7b:2b:bc:33:d0:6f:30:60:33:dc: 5f:61:f3:bf:6d:44:a3:c2:c5:04:b2:4d:12:b0:8f: cc:8b:90:9e:a7:1d:3c:0b:3e:5b:36:5d:fe:73:fb: 0b:e3:47:61:6d:e6:20:6d:e0:ba:7e:82:96:ab:49: 9a:7c:2c:17:5b:8d:9f:df:e2:64:89:01:7c:9c:ce: 2c:34:a0:78:cc:d2:99:e2:42:90:8e:a8:f1:a2:19: b6:3c:28:c7:80:e6:38:d2:2c:af:e3:5b:76:25:6c: 96:ad:b7:ce:e0:19:78:7c:25:95:74:19:03:07:7f: e0:75:80:e7:7c:13:c5:7e:27:a6:df:df:44:ec:e6: 8b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2F:83:32:88:39:A2:E1:C7:75:38:B6:22:47:E8:FD:A3:27:43:DB X509v3 Authority Key Identifier: keyid:87:2E:5A:B5:39:BE:43:85:74:03:D4:F5:D4:5A:54:72:BB:20:7A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hy5atTm-Q4V0A9T11FpUcrsgem0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193339/45267970B2FA11ECB574CE7FC4F9AE02/hy5atTm-Q4V0A9T11FpUcrsgem0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:0c:e6:7b:3c:39:72:d2:f0:6d:c6:62:a1:b1:e2:43:6c:2c: 03:41:d1:24:c0:f1:ba:04:3a:d6:8a:31:42:95:16:fd:a3:f6: e0:90:2a:41:c2:69:22:a5:6a:16:6e:f2:26:f2:d5:e1:8b:f5: 84:b9:e5:ec:b3:33:1d:c5:ef:e6:b4:7b:08:34:a1:5f:bc:e5: e1:e3:e1:e1:3a:89:4e:d6:57:78:0d:27:d1:43:66:79:ca:f4: 76:4a:a8:a5:24:6e:b6:fd:4f:fa:b3:5e:62:e0:67:68:68:f8: 3b:ba:df:59:70:0c:4c:b5:0a:28:ec:b1:93:e5:9f:cb:50:10: d0:7c:6a:3d:85:62:15:c8:0f:68:77:cb:56:45:ec:d0:34:dd: f4:2e:8a:1d:52:e1:e5:72:d8:a0:aa:b5:0f:a5:35:70:a7:9a: 98:ea:23:36:80:1b:46:c1:c6:3c:13:fd:5b:ae:8f:ce:f9:59: a6:0a:c2:9f:6f:e7:65:5c:d5:55:c6:c0:ff:b0:a1:54:00:26: 9a:03:ef:b5:e3:08:39:4e:4a:ce:e2:5b:16:bb:72:cb:e5:6f: 6a:26:3a:83:d4:f2:00:f3:96:c3:cb:32:2d:48:5c:e3:f1:ca: 75:a8:76:3c:25:2c:ef:74:f7:d2:b4:34:7e:05:8b:64:e4:66: f3:9f:0c:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzMzkxMTAvBgNVBAUTKDg3MkU1QUI1MzlCRTQzODU3NDAzRDRGNUQ0NUE1NDcy QkIyMDdBNkQwHhcNMjQxMTIzMDA0ODM1WhcNMjQxMTMwMDA0ODM1WjAYMRYwFAYD VQQDEw02NzQxMjY2My1iMzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rLAhuzBKIUIQiVjP/6leqX4s6Oi+y+bAovfgTzQUWBJYFQaiPQ/YHKSsvlu KzJnC5Nz52/HczeOjgsMTAVQkgFDkoe2t6Tbgxm0nSkz5qkNGJ9TvevPb3Mldyoj fHWno/cosOaY8r6qG5SG0hocuEW2SXNPNF8V4446PnsrvDPQbzBgM9xfYfO/bUSj wsUEsk0SsI/Mi5Cepx08Cz5bNl3+c/sL40dhbeYgbeC6foKWq0mafCwXW42f3+Jk iQF8nM4sNKB4zNKZ4kKQjqjxohm2PCjHgOY40iyv41t2JWyWrbfO4Bl4fCWVdBkD B3/gdYDnfBPFfiem399E7OaLZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIvgzKI OaLhx3U4tiJH6P2jJ0PbMB8GA1UdIwQYMBaAFIcuWrU5vkOFdAPU9dRaVHK7IHpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzMzOS80NTI2Nzk3MEIy RkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0VjBBOVQxMUZwVWNyc2dl bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5NWF0VG0tUTRWMEE5VDExRnBVY3JzZ2VtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzMzOS80NTI2Nzk3MEIyRkExMUVDQjU3NENFN0ZDNEY5QUUwMi9oeTVhdFRtLVE0 VjBBOVQxMUZwVWNyc2dlbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoDOZ7PDly0vBtxmKhseJDbCwDQdEkwPG6BDrWijFClRb9o/bgkCpB wmkipWoWbvIm8tXhi/WEueXsszMdxe/mtHsINKFfvOXh4+HhOolO1ld4DSfRQ2Z5 yvR2SqilJG62/U/6s15i4GdoaPg7ut9ZcAxMtQoo7LGT5Z/LUBDQfGo9hWIVyA9o d8tWRezQNN30LoodUuHlctigqrUPpTVwp5qY6iM2gBtGwcY8E/1bro/O+VmmCsKf b+dlXNVVxsD/sKFUACaaA++14wg5TkrO4lsWu3LL5W9qJjqD1PIA85bDyzItSFzj 8cp1qHY8JSzvdPfStDR+BYtk5GbznwzR -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org