$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft File: HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft (raw, json) Hash identifier: tMHjl31+4xIJ/EzC31IcSdjEDfWknsytwghaSU+cSXs= Subject key identifier: AF:A5:2F:BB:6F:0D:87:F4:CB:61:98:BD:C3:4D:97:60:77:CC:C8:E6 Authority key identifier: 1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B Certificate issuer: /CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Certificate serial: 1306 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft Manifest number: 12DF Signing time: Wed 20 Nov 2024 17:02:21 +0000 Manifest this update: Wed 20 Nov 2024 17:02:21 +0000 Manifest next update: Wed 27 Nov 2024 17:02:21 +0000 Files and hashes: 1: HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl (hash: UwecH9ZTieHgvXLKUdc/MLcF+7uMQazAz5XHK+3YM2I=) 2: 40366CF0F8C811EBB7BFD243C4F9AE02.roa (hash: 8hyXNYESkSjUrpbYxaS/qkwp3HcVC+EurBWeQvWRtvM=) 3: E4A74BE6255211EB96B9B269C4F9AE02.roa (hash: Ahmq+kO6A0bgXkAjwTqcQfdgpiGuxiz20RpREd5Xycs=) 4: 538F7B12B1D711EBB3C0A24AC4F9AE02.roa (hash: lphxg6l5kCfwED0OWn5gQnqtc1lhTVAr6wMcBhF8yGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4870 (0x1306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8/serialNumber=1C4E9F3F800505A40BA165B6C020405A22C64B3B Validity Not Before: Nov 20 17:02:21 2024 GMT Not After : Nov 27 17:02:21 2024 GMT Subject: CN=673e161d-f68b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:8b:45:2a:b3:0c:c3:7b:da:eb:81:cc:57: 52:25:ee:72:27:1f:d0:a9:f5:2e:73:3a:54:87:13: c2:22:8c:03:8b:65:b1:9c:2e:ee:2e:5d:38:fd:09: 7a:e8:71:87:ed:a3:11:ec:eb:b9:6a:a6:11:69:d6: 95:5c:d1:53:80:26:a3:ee:c8:ce:d7:1c:31:e3:d8: 4f:21:ea:65:66:22:c6:62:64:2f:30:92:54:d3:d1: 64:64:fd:e7:94:ce:96:ea:1f:a0:15:0f:f7:ed:67: f8:b1:0c:29:38:b7:02:b1:46:9f:76:47:28:a1:56: 1d:ae:04:aa:4f:25:b5:a9:6e:df:be:fa:74:b6:80: ab:e7:25:02:b5:3b:d4:46:dc:3e:c0:92:74:e5:06: 1a:fa:1b:0b:f7:ec:68:1a:08:8f:fb:20:60:d4:c1: 2a:c8:11:26:f7:a6:3f:68:05:39:40:0d:a8:e5:12: b1:93:a6:78:9d:b3:7c:61:53:31:4d:83:20:23:c6: 67:3c:fc:df:56:ea:c7:25:db:20:41:f3:0e:7e:62: 3c:7a:9d:02:29:f7:a9:1e:90:e1:bb:03:67:c9:74: 0f:78:5d:3c:66:89:3c:25:0d:bb:96:d3:53:f4:93: fc:52:60:34:63:31:c6:7f:d5:d6:cf:17:ad:a1:20: fd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A5:2F:BB:6F:0D:87:F4:CB:61:98:BD:C3:4D:97:60:77:CC:C8:E6 X509v3 Authority Key Identifier: keyid:1C:4E:9F:3F:80:05:05:A4:0B:A1:65:B6:C0:20:40:5A:22:C6:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HE6fP4AFBaQLoWW2wCBAWiLGSzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/E861FD3AAFD911E8B2ED4C7FC4F9AE02/HE6fP4AFBaQLoWW2wCBAWiLGSzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:29:7a:ee:5d:b2:6d:b5:55:bd:89:cf:b5:1a:0c:ec:1f:14: 60:43:10:45:2c:74:c3:81:7a:c6:7b:4c:1e:22:d4:89:92:01: e6:53:16:10:41:9b:c4:d3:35:27:c7:00:8a:91:3b:00:60:a4: f1:7c:0a:45:5a:da:e6:3a:d9:cf:62:2a:03:65:7c:20:80:63: b7:c1:c4:39:d3:c3:4e:fe:eb:e9:f5:ba:9e:9d:7d:53:94:4d: 8f:32:91:8b:89:9e:69:18:41:4b:1b:84:02:40:46:fd:9a:fa: 71:6d:2f:15:2d:3e:1d:29:d1:1d:ff:2c:69:49:34:f4:37:c5: 9b:e9:50:05:f7:31:98:74:b7:f5:74:2a:6f:7d:5d:0a:e8:9c: 19:c8:4f:1a:65:eb:61:e7:d1:bb:70:fd:e1:41:be:6e:69:d9: 20:6f:fe:48:d5:60:50:a7:0e:8b:1e:d8:eb:96:04:1e:12:47: d7:b5:c3:70:f5:2b:7d:a9:04:2e:cc:bd:a2:33:be:3c:da:83: bb:a5:27:b2:27:76:41:68:a9:f6:bd:01:3d:34:d8:4b:18:d4: 09:a5:eb:e0:47:ea:c5:12:89:9a:c8:c3:4a:9d:8b:5a:e9:80: cd:e5:9d:e6:cd:42:82:b4:89:61:32:6c:69:2f:60:ae:84:50: c0:b9:7f:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDFDNEU5RjNGODAwNTA1QTQwQkExNjVCNkMwMjA0MDVB MjJDNjRCM0IwHhcNMjQxMTIwMTcwMjIxWhcNMjQxMTI3MTcwMjIxWjAYMRYwFAYD VQQDEw02NzNlMTYxZC1mNjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUGLRSqzDMN72uuBzFdSJe5yJx/QqfUuczpUhxPCIowDi2WxnC7uLl04/Ql6 6HGH7aMR7Ou5aqYRadaVXNFTgCaj7sjO1xwx49hPIeplZiLGYmQvMJJU09FkZP3n lM6W6h+gFQ/37Wf4sQwpOLcCsUafdkcooVYdrgSqTyW1qW7fvvp0toCr5yUCtTvU Rtw+wJJ05QYa+hsL9+xoGgiP+yBg1MEqyBEm96Y/aAU5QA2o5RKxk6Z4nbN8YVMx TYMgI8ZnPPzfVurHJdsgQfMOfmI8ep0CKfepHpDhuwNnyXQPeF08Zok8JQ27ltNT 9JP8UmA0YzHGf9XWzxetoSD9KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+lL7tv DYf0y2GYvcNNl2B3zMjmMB8GA1UdIwQYMBaAFBxOnz+ABQWkC6FltsAgQFoixks7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9FODYxRkQzQUFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJhUUxvV1cyd0NCQVdpTEdT enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hFNmZQNEFGQmFRTG9XVzJ3Q0JBV2lMR1N6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUZBOC9FODYxRkQzQUFGRDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9IRTZmUDRBRkJh UUxvV1cyd0NCQVdpTEdTenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcKXruXbJttVW9ic+1GgzsHxRgQxBFLHTDgXrGe0weItSJkgHmUxYQ QZvE0zUnxwCKkTsAYKTxfApFWtrmOtnPYioDZXwggGO3wcQ508NO/uvp9bqenX1T lE2PMpGLiZ5pGEFLG4QCQEb9mvpxbS8VLT4dKdEd/yxpSTT0N8Wb6VAF9zGYdLf1 dCpvfV0K6JwZyE8aZeth59G7cP3hQb5uadkgb/5I1WBQpw6LHtjrlgQeEkfXtcNw 9St9qQQuzL2iM7482oO7pSeyJ3ZBaKn2vQE9NNhLGNQJpevgR+rFEomayMNKnYta 6YDN5Z3mzUKCtIlhMmxpL2CuhFDAuX8Q -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:04 2024 by rpki-client on console-fra.rpki-client.org