$ rpki-client -vvf rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft File: hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft (raw, json) Hash identifier: Lv44gKiVtgazoAGp0XsSchQJpSraSCid/6/sOkVLESw= Subject key identifier: 26:4A:C9:8A:91:3C:49:8E:91:C1:BE:76:CA:85:A9:59:28:98:CC:0E Authority key identifier: 87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 Certificate issuer: /CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft Manifest number: B0 Signing time: Thu 21 Nov 2024 04:13:56 +0000 Manifest this update: Thu 21 Nov 2024 04:13:55 +0000 Manifest next update: Thu 28 Nov 2024 04:13:55 +0000 Files and hashes: 1: hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl (hash: LDnc7dZa19cciHBUkJ5ovBx7vtExCwYIkpB0hPbjtAc=) 2: F0D7EB5097FA11EE90066875C4F9AE02.roa (hash: tzCx2cpMAr1xDe6bcG5xLFjaHWbUzHdoW0sCdmUCgGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Validity Not Before: Nov 21 04:13:55 2024 GMT Not After : Nov 28 04:13:55 2024 GMT Subject: CN=673eb384-5581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:68:2b:bd:6b:6f:99:14:1c:a7:99:3e:af:49: 7d:18:31:7d:82:41:dc:78:a1:33:62:2a:7a:a2:40: aa:57:77:6f:69:1b:18:5e:cf:4c:f1:e7:24:74:1d: b4:69:2b:91:d8:31:0c:3b:55:18:69:75:da:00:a2: 07:83:75:4b:7c:0b:8a:2a:fe:2d:b0:e0:2f:25:20: 9f:31:c7:ce:04:80:96:75:d9:8e:8c:8a:fe:19:2d: 69:c1:ac:a1:d8:de:52:5c:f9:88:d3:49:3b:6a:a7: 17:f9:c8:e3:94:11:51:51:b8:0b:94:c4:fe:6a:29: 8a:d2:61:db:73:a5:de:9d:3a:5b:1c:47:a5:d6:c4: 5f:76:2e:96:fe:50:14:31:b2:88:dc:92:7b:70:48: 2a:24:aa:d6:d3:b4:d1:c1:ce:74:b8:23:9f:a7:6a: ac:ef:47:a8:66:8a:95:ce:19:17:93:d2:75:44:fe: bd:83:eb:d5:ce:11:fc:ff:0e:a9:fd:df:b4:0e:8d: 39:31:25:36:26:9a:3a:68:51:bd:77:a3:7e:e5:b0: aa:4c:40:fc:ae:59:1e:d2:72:9a:d9:3a:ac:16:2b: 04:1c:7f:0e:16:13:d5:b9:12:ff:27:82:8a:e8:8b: ad:f6:18:83:0c:dd:57:42:e8:c6:25:97:d3:b2:90: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:4A:C9:8A:91:3C:49:8E:91:C1:BE:76:CA:85:A9:59:28:98:CC:0E X509v3 Authority Key Identifier: keyid:87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:16:0a:a6:70:8e:f8:6d:3a:20:5c:b0:80:0e:df:6c:2d:46: ef:0e:21:66:c8:39:70:76:f0:71:e2:25:74:96:e0:c9:79:68: 02:03:04:a4:f0:3d:7e:e1:71:79:90:2c:e6:de:62:4f:0d:72: 44:12:5c:e3:26:02:f2:14:b2:24:d5:5f:f7:8f:7e:e6:1b:75: c3:50:1f:df:23:9e:8b:35:e5:68:98:8a:22:c1:b6:e6:71:41: d3:34:f7:d6:0d:fb:fe:29:e5:ba:a4:3d:f7:85:e3:c9:e1:ba: f0:4b:a9:c0:cd:2c:d5:1a:73:fc:14:e5:40:66:09:22:99:70: c7:06:1e:b4:6b:59:b8:37:d5:69:f3:a8:02:ca:4c:59:46:f9: 2e:bf:e2:48:26:56:ac:35:c0:94:30:b9:24:dd:eb:28:53:f5: 0d:92:3d:e3:de:b7:38:fb:35:5a:12:39:27:6e:ad:7f:1b:01: 43:bb:80:b3:3c:85:47:ff:5d:54:ed:e8:b4:76:1b:25:12:67: a3:64:a8:e7:90:00:e5:b1:5d:13:2d:61:65:4a:40:26:ce:ba: f7:3e:b6:c1:9d:85:ad:a2:9e:aa:d2:5c:6a:82:59:c4:e9:fe: 98:cb:c9:93:79:d9:fd:e5:32:7a:d5:14:72:95:72:b9:ea:62: ca:bc:6f:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDOUExMTAvBgNVBAUTKDg3MjhCODI4RjMxODYwM0U0NDcxMTA3MEMyNEVDQzA4 OEExOTAwNjAwHhcNMjQxMTIxMDQxMzU1WhcNMjQxMTI4MDQxMzU1WjAYMRYwFAYD VQQDEw02NzNlYjM4NC01NTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWgrvWtvmRQcp5k+r0l9GDF9gkHceKEzYip6okCqV3dvaRsYXs9M8eckdB20 aSuR2DEMO1UYaXXaAKIHg3VLfAuKKv4tsOAvJSCfMcfOBICWddmOjIr+GS1pwayh 2N5SXPmI00k7aqcX+cjjlBFRUbgLlMT+aimK0mHbc6XenTpbHEel1sRfdi6W/lAU MbKI3JJ7cEgqJKrW07TRwc50uCOfp2qs70eoZoqVzhkXk9J1RP69g+vVzhH8/w6p /d+0Do05MSU2Jpo6aFG9d6N+5bCqTED8rlke0nKa2TqsFisEHH8OFhPVuRL/J4KK 6Iut9hiDDN1XQujGJZfTspDaYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZKyYqR PEmOkcG+dsqFqVkomMwOMB8GA1UdIwQYMBaAFIcouCjzGGA+RHEQcMJOzAiKGQBg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUM5QS9FMTlBMjU3ODk3 RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlENUVjUkJ3d2s3TUNJb1pB R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5aTRLUE1ZWUQ1RWNSQnd3azdNQ0lvWkFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUM5QS9FMTlBMjU3ODk3RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlE NUVjUkJ3d2s3TUNJb1pBR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBFgqmcI74bTogXLCADt9sLUbvDiFmyDlwdvBx4iV0luDJeWgCAwSk 8D1+4XF5kCzm3mJPDXJEElzjJgLyFLIk1V/3j37mG3XDUB/fI56LNeVomIoiwbbm cUHTNPfWDfv+KeW6pD33hePJ4brwS6nAzSzVGnP8FOVAZgkimXDHBh60a1m4N9Vp 86gCykxZRvkuv+JIJlasNcCUMLkk3esoU/UNkj3j3rc4+zVaEjknbq1/GwFDu4Cz PIVH/11U7ei0dhslEmejZKjnkADlsV0TLWFlSkAmzrr3PrbBnYWtop6q0lxqglnE 6f6Yy8mTedn95TJ61RRylXK56mLKvG+w -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org