$ rpki-client -vvf rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft File: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft (raw, json) Hash identifier: yU8/2hJLLSrveCDISLFO8sgcAY5e+SH+wkxM5GK9MTY= Subject key identifier: 54:31:9D:76:60:A2:FD:94:79:66:C0:22:FC:EC:9D:E2:0B:43:51:86 Authority key identifier: 87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 Certificate issuer: /CN=A91982EF/serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft Manifest number: 0F Signing time: Wed 25 Dec 2024 06:13:08 +0000 Manifest this update: Wed 25 Dec 2024 06:13:07 +0000 Manifest next update: Wed 01 Jan 2025 06:13:07 +0000 Files and hashes: 1: hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl (hash: ky+fK0WJZxB61M9eXxQDQVKgj2xkEAnNq8wTUKuMRwQ=) 2: F33309A2B72011EFB3A5D772C4F9AE02.roa (hash: GBnxkeFd5kF/YBnopk97FZtTVwQ6CFwNKcvPbBcM+Z4=) 3: 3A8C7518B72111EFA9A92F26C4F9AE02.roa (hash: MaCtkavFP9h6cbzbI+/48yQalN3EQ9/HSWusPsbFrP0=) 4: 98AEAB84B72111EF8A087D30C4F9AE02.roa (hash: 8ewBwE8XstXeeqmSvgrbIwTd2CEtwyCXsNRMX6ARDE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982EF/serialNumber=87197FD546DC31523111DD9390B1BA3F3D702656 Validity Not Before: Dec 25 06:13:07 2024 GMT Not After : Jan 1 06:13:07 2025 GMT Subject: CN=676ba274-0253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:93:b0:4c:e4:fb:0d:ad:6a:27:4f:7a:d4:6d: c1:cb:46:e6:80:c6:05:97:c5:65:bb:eb:a2:ae:ee: 33:79:9e:02:f8:7d:09:14:54:12:ba:1d:a9:73:ca: 89:dc:84:ef:cb:70:3d:1c:df:85:2a:58:69:a9:f5: 37:57:d8:24:35:24:fa:d0:6b:f6:9d:9c:ed:f1:b5: 5d:a2:3c:e9:89:a6:e3:3d:37:f1:fb:50:6e:13:c7: e8:a8:a7:d7:fe:f3:da:15:5b:4b:7c:95:01:4b:a5: aa:61:d8:0c:2c:9e:4b:43:41:cd:b3:de:b6:ca:a4: e6:b7:09:77:95:b6:36:ed:21:cb:1f:42:d3:5b:d8: 05:27:0e:c7:25:6b:17:30:0a:21:f5:f7:8c:82:1b: 3c:ce:13:12:fa:ac:7f:92:d2:cb:c1:73:6a:16:70: 85:3c:aa:11:7f:fb:24:79:a8:b6:f1:6f:a8:ef:c9: d5:cc:6f:3a:c4:77:ce:7c:2b:e3:50:e6:ec:92:91: ab:b7:88:36:94:07:d9:47:f7:7a:5a:d7:db:be:e7: 8f:a2:98:ec:02:d2:dd:3b:9d:eb:19:5b:d5:f2:e5: 79:af:a3:d2:ac:3b:51:f9:e8:2a:41:ed:f4:97:06: c8:af:12:89:19:28:ff:ab:07:5e:2a:5b:22:66:df: ac:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:31:9D:76:60:A2:FD:94:79:66:C0:22:FC:EC:9D:E2:0B:43:51:86 X509v3 Authority Key Identifier: keyid:87:19:7F:D5:46:DC:31:52:31:11:DD:93:90:B1:BA:3F:3D:70:26:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982EF/FC650B72B71D11EF8982C40CC4F9AE02/hxl_1UbcMVIxEd2TkLG6Pz1wJlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ab:d4:29:01:58:43:95:4f:06:02:e0:dd:ec:58:3b:61:12: 9c:83:c4:ba:2d:cc:ba:b0:cc:79:d3:76:6a:4e:2c:e3:ae:63: 7b:ab:03:7d:db:3b:49:ff:60:a4:40:de:e4:92:83:10:2c:be: 4d:b0:14:ec:ce:93:89:08:9c:e1:55:04:cd:81:b7:5c:af:41: f3:1c:aa:39:ed:a0:7c:3f:6f:eb:ab:1c:b8:0c:f2:82:17:ca: 48:bd:43:c6:2f:86:96:88:14:08:d2:ce:df:ac:03:92:d7:d8: a0:8d:62:1e:4f:92:3f:5b:3d:6b:42:93:50:97:9a:0c:5d:65: bb:8e:c6:ef:52:bf:7b:d8:66:d9:18:22:f8:9f:c6:6a:a5:73: d4:f2:7d:76:07:f6:37:03:bd:fa:7f:9e:2d:e3:25:bb:c7:55: 7c:c2:95:65:e6:3d:f0:00:3a:29:00:08:28:1d:6f:d4:7f:29: 4a:e3:ac:36:1f:74:7e:07:b6:4a:8b:80:c1:e0:d3:3d:a3:df: 29:f7:35:1c:9e:e6:e9:61:08:7a:32:d7:35:1f:95:3a:41:de: 85:93:34:4c:53:ae:85:b2:ec:27:37:d9:01:0a:c9:e5:23:20: d8:c2:58:23:0a:b0:8d:b3:9b:45:48:83:d2:55:6a:8a:40:c9: fd:38:ca:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJFRjExMC8GA1UEBRMoODcxOTdGRDU0NkRDMzE1MjMxMTFERDkzOTBCMUJBM0Yz RDcwMjY1NjAeFw0yNDEyMjUwNjEzMDdaFw0yNTAxMDEwNjEzMDdaMBgxFjAUBgNV BAMTDTY3NmJhMjc0LTAyNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0k7BM5PsNrWonT3rUbcHLRuaAxgWXxWW766Ku7jN5ngL4fQkUVBK6Halzyonc hO/LcD0c34UqWGmp9TdX2CQ1JPrQa/adnO3xtV2iPOmJpuM9N/H7UG4Tx+iop9f+ 89oVW0t8lQFLpaph2AwsnktDQc2z3rbKpOa3CXeVtjbtIcsfQtNb2AUnDsclaxcw CiH194yCGzzOExL6rH+S0svBc2oWcIU8qhF/+yR5qLbxb6jvydXMbzrEd858K+NQ 5uySkau3iDaUB9lH93pa19u+54+imOwC0t07nesZW9Xy5Xmvo9KsO1H56CpB7fSX BsivEokZKP+rB14qWyJm36yvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVDGddmCi /ZR5ZsAi/Oyd4gtDUYYwHwYDVR0jBBgwFoAUhxl/1UbcMVIxEd2TkLG6Pz1wJlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkVGL0ZDNjUwQjcyQjcx RDExRUY4OTgyQzQwQ0M0RjlBRTAyL2h4bF8xVWJjTVZJeEVkMlRrTEc2UHoxd0ps WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHhsXzFVYmNNVkl4RWQyVGtMRzZQejF3SmxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkVGL0ZDNjUwQjcyQjcxRDExRUY4OTgyQzQwQ0M0RjlBRTAyL2h4bF8xVWJjTVZJ eEVkMlRrTEc2UHoxd0psWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHur1CkBWEOVTwYC4N3sWDthEpyDxLotzLqwzHnTdmpOLOOuY3urA33b O0n/YKRA3uSSgxAsvk2wFOzOk4kInOFVBM2Bt1yvQfMcqjntoHw/b+urHLgM8oIX yki9Q8YvhpaIFAjSzt+sA5LX2KCNYh5Pkj9bPWtCk1CXmgxdZbuOxu9Sv3vYZtkY Ivifxmqlc9TyfXYH9jcDvfp/ni3jJbvHVXzClWXmPfAAOikACCgdb9R/KUrjrDYf dH4HtkqLgMHg0z2j3yn3NRye5ulhCHoy1zUflTpB3oWTNExTroWy7Cc32QEKyeUj INjCWCMKsI2zm0VIg9JVaopAyf04yvo= -----END CERTIFICATE-----Generated at Wed Dec 25 08:00:04 2024 by rpki-client on console-ams.rpki-client.org