$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft File: hs2LQhipuaG84vrF7m3HhbAKkx0.mft (raw, json) Hash identifier: 5SWubllen/0ItWYaa3KkoPZIPDPtSJCsK2C7KNYYlgM= Subject key identifier: 4E:B6:EA:B3:4B:3A:BC:9F:49:93:DB:D9:5E:0A:FD:90:D1:22:3A:EC Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft Manifest number: 01AF Signing time: Sat 23 Nov 2024 01:59:18 +0000 Manifest this update: Sat 23 Nov 2024 01:59:18 +0000 Manifest next update: Sat 30 Nov 2024 01:59:18 +0000 Files and hashes: 1: hs2LQhipuaG84vrF7m3HhbAKkx0.crl (hash: ri/+0kNXziRAkHqk0JDbPFfzvQdo8yZaC/rJT3eTF1k=) 2: FB9DB0B8778011EFA197A558C4F9AE02.roa (hash: Xb5H7vRLOBo1ZZodz8+wvrypS1HvOJ+5QJJOglzsKIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:59:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D Validity Not Before: Nov 23 01:59:18 2024 GMT Not After : Nov 30 01:59:18 2024 GMT Subject: CN=674136f6-2789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1f:78:ae:0e:92:4b:4f:98:e2:9f:94:6b:c4: db:17:42:84:2d:11:7d:cf:53:62:13:08:95:35:cc: 59:af:cc:0d:83:8a:06:8a:fd:99:95:ee:b6:63:a4: 00:87:88:11:74:a3:25:b3:b6:48:42:4b:21:eb:1c: 64:f8:64:fb:25:84:cd:a2:c5:8a:1f:da:4a:67:0c: c8:4c:73:27:bd:29:61:34:e3:6b:e9:c2:3b:2f:79: 16:de:a6:a5:d8:50:16:dd:0d:6b:83:e6:04:01:5a: 4d:57:07:57:56:cb:f0:34:71:00:df:2c:7a:b4:5d: 53:7b:96:85:76:cd:6c:7f:4d:aa:8c:6d:cb:4e:b5: 1a:4c:5a:7e:42:79:fb:e1:b5:80:e2:4b:f9:57:6d: a5:c7:3a:a8:23:b1:87:0d:92:1d:1e:df:a7:bc:dc: 96:05:0c:25:be:b6:2e:b7:85:d1:1b:2e:49:be:18: 49:e7:4a:1a:b4:b9:3b:38:90:5f:ab:5f:4e:89:77: 1e:7b:8e:0c:a6:c3:24:35:5b:2d:5e:56:a6:70:d4: a0:06:f3:50:b1:b0:13:7d:3a:5b:bb:c5:3c:4a:d8: 51:a9:5f:ab:22:b1:67:0e:2b:a5:84:e5:88:f3:68: b3:78:e7:ed:b4:00:36:4b:c4:b4:53:ec:43:81:aa: b1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B6:EA:B3:4B:3A:BC:9F:49:93:DB:D9:5E:0A:FD:90:D1:22:3A:EC X509v3 Authority Key Identifier: keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f7:ec:b6:65:62:42:f8:d3:b2:9c:f5:37:a2:c6:57:aa:b4: ba:b7:0d:d9:db:6e:4d:dd:9f:ff:76:e4:56:e0:35:87:1b:9f: c1:f8:4a:52:4c:36:4a:f2:ad:3e:ba:29:dd:e0:95:78:95:cd: 7b:f5:d4:5e:f5:b0:68:42:34:31:59:33:b0:9a:12:96:0d:14: 42:be:5c:28:6f:d4:8f:97:43:26:79:b5:08:e2:7b:29:ae:18: e0:cd:92:76:7e:b3:6e:33:9f:40:07:b3:d9:a6:88:44:fe:54: 2e:d4:53:ac:96:7b:6d:ce:46:4e:d0:df:cc:77:b5:ea:a4:ac: bf:1b:31:d0:45:e7:9d:30:79:af:8c:36:df:52:58:ee:4a:ad: a3:37:72:76:93:0f:2c:ba:07:c7:84:4e:11:70:f0:77:91:f7: 6a:bd:55:0a:bb:05:c8:87:dd:4a:19:f5:4b:8a:9f:0c:72:ee: 86:30:1b:da:e5:ed:22:e2:69:ed:e9:d1:fd:04:8b:7c:6e:24: c8:f4:c0:5f:5a:a6:54:38:b1:f5:0f:00:99:8f:4e:8b:1a:72: 1f:74:26:48:22:90:df:66:08:66:d5:a8:f7:23:b7:1c:ed:92: 17:dc:eb:44:05:52:b9:12:58:91:bd:f4:8e:6c:ef:47:10:1d: 3c:d1:87:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyOEYxMTAvBgNVBAUTKDg2Q0Q4QjQyMThBOUI5QTFCQ0UyRkFDNUVFNkRDNzg1 QjAwQTkzMUQwHhcNMjQxMTIzMDE1OTE4WhcNMjQxMTMwMDE1OTE4WjAYMRYwFAYD VQQDEw02NzQxMzZmNi0yNzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAph94rg6SS0+Y4p+Ua8TbF0KELRF9z1NiEwiVNcxZr8wNg4oGiv2Zle62Y6QA h4gRdKMls7ZIQksh6xxk+GT7JYTNosWKH9pKZwzITHMnvSlhNONr6cI7L3kW3qal 2FAW3Q1rg+YEAVpNVwdXVsvwNHEA3yx6tF1Te5aFds1sf02qjG3LTrUaTFp+Qnn7 4bWA4kv5V22lxzqoI7GHDZIdHt+nvNyWBQwlvrYut4XRGy5JvhhJ50oatLk7OJBf q19OiXcee44MpsMkNVstXlamcNSgBvNQsbATfTpbu8U8SthRqV+rIrFnDiulhOWI 82izeOfttAA2S8S0U+xDgaqxzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE626rNL OryfSZPb2V4K/ZDRIjrsMB8GA1UdIwQYMBaAFIbNi0IYqbmhvOL6xe5tx4WwCpMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ri83RERDNUEyRTU1 NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVhRzg0dnJGN20zSGhiQUtr eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzMkxRaGlwdWFHODR2ckY3bTNIaGJBS2t4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ri83RERDNUEyRTU1NDcxMUVEQjQ3QjMzMkJDNEY5QUUwMi9oczJMUWhpcHVh Rzg0dnJGN20zSGhiQUtreDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk9+y2ZWJC+NOynPU3osZXqrS6tw3Z225N3Z//duRW4DWHG5/B+EpS TDZK8q0+uind4JV4lc179dRe9bBoQjQxWTOwmhKWDRRCvlwob9SPl0MmebUI4nsp rhjgzZJ2frNuM59AB7PZpohE/lQu1FOslnttzkZO0N/Md7XqpKy/GzHQReedMHmv jDbfUljuSq2jN3J2kw8sugfHhE4RcPB3kfdqvVUKuwXIh91KGfVLip8Mcu6GMBva 5e0i4mnt6dH9BIt8biTI9MBfWqZUOLH1DwCZj06LGnIfdCZIIpDfZghm1aj3I7cc 7ZIX3OtEBVK5EliRvfSObO9HEB080YeB -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:50 2024 by rpki-client on console-ams.rpki-client.org