$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: GvUIU3G0KQN1pP497nVukt/gqhkqE7N4awoC3jR6MaE= Subject key identifier: D1:F2:F2:60:C7:9D:42:45:DF:F7:61:8A:A3:30:A7:F0:53:BD:3F:4B Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 0E Signing time: Thu 21 Nov 2024 06:09:38 +0000 Manifest this update: Thu 21 Nov 2024 06:09:37 +0000 Manifest next update: Thu 28 Nov 2024 06:09:37 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: LlEYrhCCABpKscjk/uzpTA3jVvp8EgI+wt6Q0aoHPCM=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Nov 21 06:09:37 2024 GMT Not After : Nov 28 06:09:37 2024 GMT Subject: CN=673ecea2-d73b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f7:ca:16:c8:68:e0:7c:24:86:48:66:5e:3d: 30:44:db:10:f2:c0:87:94:c6:9f:6a:a6:31:53:42: 1c:cb:f3:94:98:66:ce:57:50:30:f5:54:f2:f9:8b: 00:93:cc:80:4a:b2:9f:17:b7:c3:e6:47:db:87:3c: 76:10:08:a2:fd:59:21:07:2f:e3:ac:84:b7:bd:a4: 66:eb:63:6d:78:9c:dd:33:ff:2b:a9:06:e0:3c:d9: df:57:92:ed:47:30:71:31:65:4d:a6:e3:ed:95:b3: 1c:20:6b:44:6a:f2:f4:5d:4f:fd:ee:85:05:8b:f8: 0d:ad:7b:20:0d:56:42:93:ae:37:d9:a5:40:86:9f: 3e:a2:e9:5e:16:35:da:00:19:a4:18:f2:52:3f:0d: 79:97:db:9a:35:2a:9e:1e:b6:69:f6:15:b7:3c:67: 59:6d:ca:83:e8:ae:15:96:5f:e8:b2:49:8f:33:a6: 93:08:58:2e:5d:f0:60:37:96:43:ff:f6:3d:c5:15: 46:78:29:86:85:97:a0:19:9e:0e:de:23:29:57:53: 95:bd:af:d8:25:ab:cb:4e:7a:96:da:c4:cf:f8:67: 67:f2:85:0b:4a:74:c9:39:de:53:e5:5a:eb:28:50: bd:5e:b4:7c:11:a3:0d:c1:e1:27:79:6e:81:87:8a: d2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F2:F2:60:C7:9D:42:45:DF:F7:61:8A:A3:30:A7:F0:53:BD:3F:4B X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:d5:4a:1b:78:55:7b:49:15:fd:67:00:22:18:c3:db:cd:d8: 92:79:a2:f1:7c:82:e3:88:b3:7d:6c:97:d8:8f:dd:c1:01:f7: b7:c5:cf:a4:62:b2:0e:b5:3a:c9:01:39:19:06:39:c0:99:d1: 0d:1e:df:b1:48:d1:db:a8:47:a3:1f:a4:c3:78:ae:ee:ce:62: 35:a4:d5:ed:70:24:1e:92:c0:2d:c6:4e:54:6e:8a:3a:d3:b8: a1:8d:cb:ee:df:eb:b1:1a:b9:67:d2:9d:4b:d5:50:63:3a:7d: 9a:b6:c3:cf:98:73:f3:34:d6:b1:76:59:54:3c:39:b8:f8:a7: db:fc:84:87:92:32:f6:d2:f3:7e:5b:93:7b:5f:cb:e7:38:db: 3e:8c:c4:89:94:4f:5c:de:3a:22:17:14:19:1f:d0:36:0e:77: 75:cd:4a:29:d5:cd:f8:c7:04:a2:2f:05:d1:a1:e9:fd:18:54: f4:a5:62:f4:29:e8:0b:66:b0:ad:55:b6:f9:df:ab:21:df:87: 8b:33:eb:ea:cc:9b:50:09:69:23:8e:c8:1b:e9:a2:86:c0:67: 33:b7:46:d4:68:58:0c:0d:ab:63:f6:14:fa:84:5d:65:19:9d: 9b:9b:cc:ca:f4:6d:a8:39:18:14:90:f6:95:61:6f:b3:10:17: 02:3b:41:03 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNDExMjEwNjA5MzdaFw0yNDExMjgwNjA5MzdaMBgxFjAUBgNV BAMTDTY3M2VjZWEyLWQ3M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN98oWyGjgfCSGSGZePTBE2xDywIeUxp9qpjFTQhzL85SYZs5XUDD1VPL5iwCT zIBKsp8Xt8PmR9uHPHYQCKL9WSEHL+OshLe9pGbrY214nN0z/yupBuA82d9Xku1H MHExZU2m4+2Vsxwga0Rq8vRdT/3uhQWL+A2teyANVkKTrjfZpUCGnz6i6V4WNdoA GaQY8lI/DXmX25o1Kp4etmn2Fbc8Z1ltyoPorhWWX+iySY8zppMIWC5d8GA3lkP/ 9j3FFUZ4KYaFl6AZng7eIylXU5W9r9glq8tOepbaxM/4Z2fyhQtKdMk53lPlWuso UL1etHwRow3B4Sd5boGHitL7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0fLyYMed QkXf92GKozCn8FO9P0swHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzM1Qzc2QzdFOTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNT aGh2X2JiMWwzRUtyX0tvMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJPVSht4VXtJFf1nACIYw9vN2JJ5ovF8guOIs31sl9iP3cEB97fFz6Ri sg61OskBORkGOcCZ0Q0e37FI0duoR6MfpMN4ru7OYjWk1e1wJB6SwC3GTlRuijrT uKGNy+7f67EauWfSnUvVUGM6fZq2w8+Yc/M01rF2WVQ8Obj4p9v8hIeSMvbS835b k3tfy+c42z6MxImUT1zeOiIXFBkf0DYOd3XNSinVzfjHBKIvBdGh6f0YVPSlYvQp 6AtmsK1VtvnfqyHfh4sz6+rMm1AJaSOOyBvpoobAZzO3RtRoWAwNq2P2FPqEXWUZ nZubzMr0bag5GBSQ9pVhb7MQFwI7QQM= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:49 2024 by rpki-client on console-fra.rpki-client.org