$ rpki-client -vvf rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft File: HJuixf6owDTaVR_a3GKlOnoC5ds.mft (raw, json) Hash identifier: 7rG42o1OxcJaMQ5yO7oaEY2Xk8V4Zu2mkVdazbOpnz4= Subject key identifier: 3E:AA:C0:D3:93:11:0A:26:08:C5:7F:20:98:81:D5:0A:3B:7E:03:42 Authority key identifier: 1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB Certificate issuer: /CN=A9193D86/serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Certificate serial: 0905 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft Manifest number: 08EC Signing time: Wed 20 Nov 2024 20:07:15 +0000 Manifest this update: Wed 20 Nov 2024 20:07:14 +0000 Manifest next update: Wed 27 Nov 2024 20:07:14 +0000 Files and hashes: 1: HJuixf6owDTaVR_a3GKlOnoC5ds.crl (hash: Tdj4JCWG8b0qsZ+kxrkXtgZBcMGKtxN/EpZdXqajmHw=) 2: 52FC6006A19911EA96035C38C4F9AE02.roa (hash: wci0Xfqzo59Y8jWuwf9OlzNgtFeflA2lDlymuLqWFus=) 3: 7B136C42CC8511EC8D238672C4F9AE02.roa (hash: vQbCuWQwTDhbmdI3t8jm44MzJ+6k3uWJJXIQLGrnQxI=) 4: 79C02FB0CC8511EC8D238672C4F9AE02.roa (hash: dKpKNCrURAsBv07U8aimKZSBpZKUHuEP819khAXBuFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2309 (0x905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193D86/serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB Validity Not Before: Nov 20 20:07:14 2024 GMT Not After : Nov 27 20:07:14 2024 GMT Subject: CN=673e4173-a658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:b5:0a:c3:af:c0:f4:e3:e4:e0:da:d0:fd: bf:be:50:b1:e0:41:e2:25:92:34:df:ff:e8:8b:85: 8e:54:f9:b6:4a:d9:f6:06:42:d4:c9:fd:89:ab:bc: 4d:66:e0:63:c2:ab:6e:f2:35:05:dd:ed:13:31:d2: 4e:99:c7:08:b6:bf:3b:7b:6b:80:e5:ca:a5:db:e0: f7:5e:58:d8:bb:ed:1b:f9:bd:49:eb:15:66:e4:5c: 73:38:31:cc:95:df:17:a3:fe:67:ba:ff:39:0a:48: c5:59:80:99:e5:21:ca:bc:94:7e:63:1d:6d:54:1f: 32:15:ab:d1:6b:1e:15:d3:30:5f:a9:42:4e:d2:bd: 63:ff:7e:a9:a6:a8:08:61:6f:1d:fa:fd:26:3a:59: 62:9f:9f:0e:84:4a:20:46:32:e3:78:64:f9:10:51: da:f3:15:ad:bd:31:36:57:a8:f4:ac:0d:72:4a:3d: e1:a5:86:a6:4c:87:63:c4:ce:fa:78:5f:b7:be:f5: 55:c9:50:9a:fa:5a:2a:a8:53:ae:ee:5b:dd:f1:8d: d0:1e:95:60:ed:d5:7b:4a:3d:9f:2e:ea:a3:21:a9: 61:29:1f:f9:58:00:80:bf:05:85:d9:c1:be:03:eb: 28:52:8f:5a:3c:83:36:b1:8e:f0:ad:c7:c3:b2:8c: dc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:AA:C0:D3:93:11:0A:26:08:C5:7F:20:98:81:D5:0A:3B:7E:03:42 X509v3 Authority Key Identifier: keyid:1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:7a:5e:01:2d:3b:b4:0a:43:06:49:0d:8d:d8:70:6c:65:df: 2a:47:25:2f:5f:a3:6d:f6:52:5e:30:1d:03:9b:62:a1:db:6c: 44:e7:55:16:c5:37:3c:b9:6c:a7:ef:7f:44:53:13:7f:42:85: 02:51:50:14:c8:bb:6c:82:9f:cf:b0:36:38:bf:97:f1:b4:c0: f2:e6:e1:67:b8:a5:05:f0:db:8e:ad:a2:cd:07:f0:32:03:95: 0a:11:4c:17:65:5c:fb:3f:22:dc:32:cd:dd:25:af:0b:ff:0a: 54:fc:4c:d0:58:8e:3e:45:99:2a:e4:63:0a:c1:e8:e9:05:5a: 13:c9:93:90:69:6d:a4:fe:6c:2c:22:12:ae:1a:42:ee:01:6f: 9a:60:22:5a:a7:23:4f:49:db:e8:ed:c6:09:f5:11:5e:42:25: 56:f1:a4:c5:ab:4b:7e:65:22:9b:93:80:4a:50:50:e9:35:93: 97:40:be:fd:e9:44:2e:3b:45:2f:b4:42:3c:21:ef:10:6e:9e: ee:c5:ec:06:17:32:44:1b:ff:e4:4f:2f:2c:50:85:5c:d6:39: 27:a8:24:bb:ee:66:cc:b2:c2:46:1b:c1:8e:db:48:21:1f:fb: 69:c5:92:7a:d6:05:0e:40:6b:e1:a7:ee:f7:b8:51:65:dc:7a: 80:f0:a7:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNEODYxMTAvBgNVBAUTKDFDOUJBMkM1RkVBOEMwMzREQTU1MUZEQURDNjJBNTNB N0EwMkU1REIwHhcNMjQxMTIwMjAwNzE0WhcNMjQxMTI3MjAwNzE0WjAYMRYwFAYD VQQDEw02NzNlNDE3My1hNjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9O1CsOvwPTj5ODa0P2/vlCx4EHiJZI03//oi4WOVPm2Stn2BkLUyf2Jq7xN ZuBjwqtu8jUF3e0TMdJOmccItr87e2uA5cql2+D3XljYu+0b+b1J6xVm5FxzODHM ld8Xo/5nuv85CkjFWYCZ5SHKvJR+Yx1tVB8yFavRax4V0zBfqUJO0r1j/36ppqgI YW8d+v0mOllin58OhEogRjLjeGT5EFHa8xWtvTE2V6j0rA1ySj3hpYamTIdjxM76 eF+3vvVVyVCa+loqqFOu7lvd8Y3QHpVg7dV7Sj2fLuqjIalhKR/5WACAvwWF2cG+ A+soUo9aPIM2sY7wrcfDsozc7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6qwNOT EQomCMV/IJiB1Qo7fgNCMB8GA1UdIwQYMBaAFBybosX+qMA02lUf2txipTp6AuXb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0Q4Ni9DNjdEMTc2RTlB NUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dEVGFWUl9hM0dLbE9ub0M1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hKdWl4ZjZvd0RUYVZSX2EzR0tsT25vQzVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0Q4Ni9DNjdEMTc2RTlBNUYxMUVBOUY2MjZCNUVDNEY5QUUwMi9ISnVpeGY2b3dE VGFWUl9hM0dLbE9ub0M1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANel4BLTu0CkMGSQ2N2HBsZd8qRyUvX6Nt9lJeMB0Dm2Kh22xE51UW xTc8uWyn739EUxN/QoUCUVAUyLtsgp/PsDY4v5fxtMDy5uFnuKUF8NuOraLNB/Ay A5UKEUwXZVz7PyLcMs3dJa8L/wpU/EzQWI4+RZkq5GMKwejpBVoTyZOQaW2k/mws IhKuGkLuAW+aYCJapyNPSdvo7cYJ9RFeQiVW8aTFq0t+ZSKbk4BKUFDpNZOXQL79 6UQuO0UvtEI8Ie8Qbp7uxewGFzJEG//kTy8sUIVc1jknqCS77mbMssJGG8GO20gh H/tpxZJ61gUOQGvhp+73uFFl3HqA8Kc2 -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:43 2024 by rpki-client on console-fra.rpki-client.org