$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft File: kHuyYrVxYj40suIMYKcYwXOcw70.mft (raw, json) Hash identifier: lZB06WGDYAokXeYsqr35BMZiv7rX9aX5MvKewpsr+Jc= Subject key identifier: AA:05:96:50:12:54:A9:99:E4:42:77:AE:F4:EF:97:19:4F:80:13:F9 Authority key identifier: 90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD Certificate issuer: /CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Certificate serial: 0343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft Manifest number: 033E Signing time: Sat 23 Nov 2024 00:37:20 +0000 Manifest this update: Sat 23 Nov 2024 00:37:19 +0000 Manifest next update: Sat 30 Nov 2024 00:37:19 +0000 Files and hashes: 1: kHuyYrVxYj40suIMYKcYwXOcw70.crl (hash: MuaDMO82j12XsdUm1bCshlc6RCM5lCmX7ekLrCheAwU=) 2: 5B92665E9ADD11ECA5401423C4F9AE02.roa (hash: lSLBriHRX11FONZNG/sRS79LEifS1Ktn8fDveXnQBko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Validity Not Before: Nov 23 00:37:19 2024 GMT Not After : Nov 30 00:37:19 2024 GMT Subject: CN=674123bf-b598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b7:cc:a8:7f:2c:ed:c8:47:2f:57:f9:15:4a: bb:39:42:53:ee:3d:ac:73:a5:7d:c3:fe:52:2c:d8: dd:64:ab:1a:52:53:7b:86:03:7b:8c:31:52:13:bf: f8:dc:41:68:7c:f2:6a:9f:de:85:9e:e3:79:3f:eb: 2b:31:08:ea:8f:c8:4b:e9:ba:2d:50:db:03:85:99: 36:e7:b6:a0:71:b7:23:a0:d5:00:18:b0:c8:a1:c2: 44:42:b4:34:c7:76:e7:88:73:f7:5e:16:4d:e3:91: 38:21:d3:07:6f:6f:7d:4f:69:5c:19:3c:f3:63:69: c1:b9:45:66:8f:e8:25:e7:a9:16:19:5b:4f:2d:4a: ed:ac:88:7c:17:43:d8:54:fb:98:cd:ea:2c:77:7c: 55:f3:d2:cc:1a:a6:b8:26:d4:27:e6:8f:f8:9b:97: 60:c4:e8:05:54:19:dd:8b:23:eb:2f:b0:80:93:3d: 48:ff:2c:4a:11:9c:58:11:74:94:b7:82:c1:20:bc: b8:b4:3f:98:1e:45:c9:b0:d1:7b:fb:14:7f:33:af: 88:18:cd:24:c0:cd:62:f8:a6:76:3f:87:3d:19:21: cb:0a:4c:8f:8b:aa:50:3f:dc:af:2e:9e:a5:ec:64: 49:65:87:7e:3a:cf:f5:a8:11:45:0c:60:e7:2a:ca: 07:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:05:96:50:12:54:A9:99:E4:42:77:AE:F4:EF:97:19:4F:80:13:F9 X509v3 Authority Key Identifier: keyid:90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:1c:8d:66:e6:fc:8a:6a:17:63:0c:d1:f1:7d:14:2f:82:77: f0:1c:16:0c:66:61:33:6e:46:04:52:34:1a:0d:28:67:25:42: 7a:17:cd:c9:34:27:a6:5f:64:16:3f:f3:5e:70:6b:86:fa:e6: f9:3e:ca:c5:fa:a2:ed:2a:25:23:ae:b1:c2:89:2b:9f:e4:bb: e1:a3:94:2e:f2:70:1b:c8:74:ba:01:e5:23:fa:5a:b4:42:cc: 06:5c:7a:f5:8a:16:42:c7:dd:35:5f:ac:ab:b8:cb:70:49:c1: 45:57:bf:75:d3:a3:0d:12:66:0a:09:b7:96:1d:e0:c6:7b:a2: 0d:89:37:6b:0d:d9:f7:9c:19:2f:ec:ef:8f:58:f3:58:95:e4: 48:71:72:38:d9:05:81:15:a3:57:e9:ed:7c:0f:f5:1e:4c:28: 97:05:59:3e:e9:d7:5f:40:97:15:88:67:d5:02:b4:1e:a1:6b: a5:04:34:a5:30:77:cf:ef:a9:16:f2:93:00:61:ac:d5:48:c4: 03:b7:ed:16:31:ed:5d:99:3c:26:3d:c9:45:17:e9:08:ae:69: 38:4c:88:fc:de:87:55:e8:6e:32:10:90:59:f5:1b:d9:51:39: 31:86:dc:2a:9c:dc:c2:0c:c2:be:29:60:de:81:66:c6:d0:78: ea:a0:1d:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBNjQxMTAvBgNVBAUTKDkwN0JCMjYyQjU3MTYyM0UzNEIyRTIwQzYwQTcxOEMx NzM5Q0MzQkQwHhcNMjQxMTIzMDAzNzE5WhcNMjQxMTMwMDAzNzE5WjAYMRYwFAYD VQQDEw02NzQxMjNiZi1iNTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LfMqH8s7chHL1f5FUq7OUJT7j2sc6V9w/5SLNjdZKsaUlN7hgN7jDFSE7/4 3EFofPJqn96FnuN5P+srMQjqj8hL6botUNsDhZk257agcbcjoNUAGLDIocJEQrQ0 x3bniHP3XhZN45E4IdMHb299T2lcGTzzY2nBuUVmj+gl56kWGVtPLUrtrIh8F0PY VPuYzeosd3xV89LMGqa4JtQn5o/4m5dgxOgFVBndiyPrL7CAkz1I/yxKEZxYEXSU t4LBILy4tD+YHkXJsNF7+xR/M6+IGM0kwM1i+KZ2P4c9GSHLCkyPi6pQP9yvLp6l 7GRJZYd+Os/1qBFFDGDnKsoHgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoFllAS VKmZ5EJ3rvTvlxlPgBP5MB8GA1UdIwQYMBaAFJB7smK1cWI+NLLiDGCnGMFznMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0E2NC8zNThDNjdCRTlB REExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlqNDBzdUlNWUtjWXdYT2N3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIdXlZclZ4WWo0MHN1SU1ZS2NZd1hPY3c3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0E2NC8zNThDNjdCRTlBREExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlq NDBzdUlNWUtjWXdYT2N3NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkHI1m5vyKahdjDNHxfRQvgnfwHBYMZmEzbkYEUjQaDShnJUJ6F83J NCemX2QWP/NecGuG+ub5PsrF+qLtKiUjrrHCiSuf5Lvho5Qu8nAbyHS6AeUj+lq0 QswGXHr1ihZCx901X6yruMtwScFFV79106MNEmYKCbeWHeDGe6INiTdrDdn3nBkv 7O+PWPNYleRIcXI42QWBFaNX6e18D/UeTCiXBVk+6ddfQJcViGfVArQeoWulBDSl MHfP76kW8pMAYazVSMQDt+0WMe1dmTwmPclFF+kIrmk4TIj83odV6G4yEJBZ9RvZ UTkxhtwqnNzCDMK+KWDegWbG0HjqoB0S -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org