$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft File: Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft (raw, json) Hash identifier: dTaqaiW7xU/vebQ2WMMi0VcB1fPSSDMpIpe6ZmFe8Q4= Subject key identifier: 9F:45:B5:33:42:98:56:09:A2:4C:60:1C:52:1C:8D:54:18:62:88:88 Authority key identifier: 1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A Certificate issuer: /CN=A91AFC4E/serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Certificate serial: 041D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft Manifest number: 041A Signing time: Fri 22 Nov 2024 23:55:58 +0000 Manifest this update: Fri 22 Nov 2024 23:55:58 +0000 Manifest next update: Fri 29 Nov 2024 23:55:58 +0000 Files and hashes: 1: Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl (hash: dmFG3+fmBMiiyCzkS3sfFFLbEqC4HHdt7R/YRfNB2RU=) 2: B5F911E8429411EC8882FA1EC4F9AE02.roa (hash: eiFpIrtVuamTu+rojHR+H9DwuIU7s8sph+ALrli0Nnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFC4E/serialNumber=1EFEDA34287F858DDCF4DCE8428C33B61C41D99A Validity Not Before: Nov 22 23:55:58 2024 GMT Not After : Nov 29 23:55:58 2024 GMT Subject: CN=67411a0e-c522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:95:18:7b:b5:1f:be:55:4c:40:b7:bd:3f:01: ad:82:7e:d6:a6:b9:c8:f0:30:cd:b2:98:97:c6:40: 9b:44:fd:a2:5a:d5:66:d8:c6:9c:1d:c1:56:d0:a3: c7:f0:94:df:e8:70:4c:ea:d2:97:3b:bd:2e:b6:6a: 8e:37:e5:f4:37:fe:32:e5:b9:be:42:4f:3b:9a:2d: 83:1f:5e:4d:fa:45:2e:ad:9b:2a:0d:e0:8f:f3:d2: 63:5e:af:de:22:f8:c2:25:4b:29:8f:21:83:e1:24: 8d:ad:09:fa:49:55:24:28:60:63:04:3a:67:d9:57: 5b:86:da:8d:44:c1:10:5e:c9:cb:a6:45:c7:30:b0: 92:fa:af:87:42:50:ec:2d:11:4e:2e:4a:d3:98:94: b7:9e:0f:3e:08:ae:f6:a2:93:4c:ca:3a:a1:cf:f3: 1c:cf:15:63:67:32:ec:c9:2c:d6:52:bd:ec:c7:c3: 88:87:8e:bf:1e:b8:24:d5:0d:94:a2:53:e8:47:03: fe:3a:89:bc:6c:a7:1e:52:91:44:6b:8d:78:7c:87: 0f:f9:b8:cb:53:82:1d:99:00:93:3c:de:31:59:4a: 04:a6:a5:99:6b:8b:69:5d:e8:7d:96:e2:6d:67:7b: 44:0c:2c:06:69:a2:cb:d8:37:08:a2:3d:61:24:f4: 46:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:45:B5:33:42:98:56:09:A2:4C:60:1C:52:1C:8D:54:18:62:88:88 X509v3 Authority Key Identifier: keyid:1E:FE:DA:34:28:7F:85:8D:DC:F4:DC:E8:42:8C:33:B6:1C:41:D9:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv7aNCh_hY3c9NzoQowzthxB2Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFC4E/FB221D40429011EC9D21A316C4F9AE02/Hv7aNCh_hY3c9NzoQowzthxB2Zo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:e1:5c:7c:f3:83:ce:a7:9a:59:15:b8:4d:ad:d7:f3:6e:ab: df:5a:d6:1c:dd:e7:0f:58:61:41:f2:15:74:86:ad:25:8e:47: 30:91:df:10:68:bd:22:e3:ba:e4:f5:c2:eb:6e:e3:08:ee:31: c2:19:7d:f1:f5:05:99:d5:00:78:d5:44:e8:5d:30:10:62:19: 25:41:4f:10:66:14:6c:e8:9c:d4:1c:c8:af:72:56:91:b6:2c: d4:62:cd:a8:c9:d6:7e:05:f9:d5:24:b2:e1:cf:49:66:1d:06: 81:4a:26:65:ca:94:4a:a2:39:6d:ef:14:7a:cb:b9:03:a5:22: e3:e0:ea:5c:d5:ca:2f:30:98:08:d8:66:1b:ac:be:17:f1:ae: 05:e0:31:e7:1d:43:fc:ec:15:76:dd:85:e5:f9:9f:fd:e0:5b: 6a:3f:ff:28:0a:60:85:87:13:ea:b9:2e:c2:2c:c4:20:5b:f6: 02:2b:72:4b:86:ce:25:8c:79:90:63:1d:90:03:7f:62:73:1c: d7:d7:f2:04:bb:7a:3e:9d:9f:d5:cd:ed:7b:75:dc:28:91:b6: 9e:0a:c9:89:af:13:c6:1f:0d:e2:93:bf:7e:60:5b:f2:61:b7: 1f:40:54:65:3a:59:69:6d:b6:c8:c8:c4:eb:63:49:53:14:f5: 20:83:45:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZDNEUxMTAvBgNVBAUTKDFFRkVEQTM0Mjg3Rjg1OEREQ0Y0RENFODQyOEMzM0I2 MUM0MUQ5OUEwHhcNMjQxMTIyMjM1NTU4WhcNMjQxMTI5MjM1NTU4WjAYMRYwFAYD VQQDEw02NzQxMWEwZS1jNTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5UYe7UfvlVMQLe9PwGtgn7WprnI8DDNspiXxkCbRP2iWtVm2MacHcFW0KPH 8JTf6HBM6tKXO70utmqON+X0N/4y5bm+Qk87mi2DH15N+kUurZsqDeCP89JjXq/e IvjCJUspjyGD4SSNrQn6SVUkKGBjBDpn2VdbhtqNRMEQXsnLpkXHMLCS+q+HQlDs LRFOLkrTmJS3ng8+CK72opNMyjqhz/MczxVjZzLsySzWUr3sx8OIh46/Hrgk1Q2U olPoRwP+Oom8bKceUpFEa414fIcP+bjLU4IdmQCTPN4xWUoEpqWZa4tpXeh9luJt Z3tEDCwGaaLL2DcIoj1hJPRGVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9FtTNC mFYJokxgHFIcjVQYYoiIMB8GA1UdIwQYMBaAFB7+2jQof4WN3PTc6EKMM7YcQdma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkM0RS9GQjIyMUQ0MDQy OTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZM2M5TnpvUW93enRoeEIy Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2N2FOQ2hfaFkzYzlOem9Rb3d6dGh4QjJaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkM0RS9GQjIyMUQ0MDQyOTAxMUVDOUQyMUEzMTZDNEY5QUUwMi9IdjdhTkNoX2hZ M2M5TnpvUW93enRoeEIyWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt4Vx884POp5pZFbhNrdfzbqvfWtYc3ecPWGFB8hV0hq0ljkcwkd8Q aL0i47rk9cLrbuMI7jHCGX3x9QWZ1QB41UToXTAQYhklQU8QZhRs6JzUHMivclaR tizUYs2oydZ+BfnVJLLhz0lmHQaBSiZlypRKojlt7xR6y7kDpSLj4Opc1covMJgI 2GYbrL4X8a4F4DHnHUP87BV23YXl+Z/94FtqP/8oCmCFhxPquS7CLMQgW/YCK3JL hs4ljHmQYx2QA39icxzX1/IEu3o+nZ/Vze17ddwokbaeCsmJrxPGHw3ik79+YFvy YbcfQFRlOllpbbbIyMTrY0lTFPUgg0UX -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org