$ rpki-client -vvf rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft File: 7HnRemDtVw7Ge1EWFitgi2C5zUE.mft (raw, json) Hash identifier: HwBeiHNWWUPAhUHwAEq/c3KhPmzOjCsWq9Y7YJwWplo= Subject key identifier: BB:37:6F:7A:6E:D3:8D:F7:1B:3D:F6:55:65:1E:B4:D0:9D:44:BE:B3 Authority key identifier: EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 Certificate issuer: /CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Certificate serial: 0646 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft Manifest number: 0640 Signing time: Fri 22 Nov 2024 22:02:16 +0000 Manifest this update: Fri 22 Nov 2024 22:02:16 +0000 Manifest next update: Fri 29 Nov 2024 22:02:16 +0000 Files and hashes: 1: 7HnRemDtVw7Ge1EWFitgi2C5zUE.crl (hash: jFK+ESOOYcruEvkpjseU5n1Jvg+WxVD3Qdj4ZiUhIx8=) 2: C144C89ADCF311EC80AD955EC4F9AE02.roa (hash: ekWMI9lKI80qdKLgYltLVxIp5iJZ3aucbrILlremPho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1606 (0x646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Validity Not Before: Nov 22 22:02:16 2024 GMT Not After : Nov 29 22:02:16 2024 GMT Subject: CN=6740ff68-2d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7f:0b:7c:66:bd:0a:2f:22:ae:c3:8c:80:52: b4:d8:14:f4:78:18:e6:af:8a:0f:b4:5a:8a:fc:c2: 64:f7:c6:1d:66:5c:4b:20:79:94:a8:06:a4:71:f5: 74:52:e1:b0:ac:fa:33:98:97:5c:18:e1:65:3c:64: 72:51:a5:15:94:bd:ee:a7:78:e2:bc:76:42:48:39: e7:f2:b5:f0:94:f5:a2:4a:ba:5f:1a:49:08:3c:22: 62:b0:51:64:3b:89:cd:10:a8:55:31:da:a2:e0:f9: ee:bb:29:c0:44:3c:30:30:ed:c5:7d:66:e2:9c:d6: 75:a1:a7:fa:b7:70:74:4b:2b:54:af:58:32:54:47: 2d:83:8c:fb:55:0f:ac:73:79:d6:a7:5c:d2:d6:72: 66:43:e8:09:e1:cc:a9:68:a5:5a:20:1d:8f:d7:20: 6b:20:65:43:49:75:47:1a:4f:fe:2e:b0:32:fd:ea: cb:6e:11:33:de:3c:80:1a:bc:a6:e5:f3:c5:3d:d0: 14:da:48:3b:be:d1:b7:fd:d5:7a:65:0f:18:1a:df: 2b:af:47:8a:26:57:8f:20:11:70:d6:b7:34:d1:64: 9d:9d:59:a4:56:05:d1:dd:7c:e9:96:b8:a7:c7:00: 12:3d:c5:b3:b0:0b:3c:36:03:eb:77:1b:c8:99:90: f2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:37:6F:7A:6E:D3:8D:F7:1B:3D:F6:55:65:1E:B4:D0:9D:44:BE:B3 X509v3 Authority Key Identifier: keyid:EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c9:80:b2:b4:ba:43:28:35:6c:e0:d8:a3:39:37:c4:63:c0: cb:71:2f:90:15:36:e7:9a:e2:73:86:f5:8e:4a:f5:eb:71:57: c4:c5:de:77:47:57:61:48:f7:0a:d0:48:34:2d:fd:82:d1:1f: 67:1d:d0:e0:6e:ee:62:4a:00:a5:57:12:74:dd:aa:b2:13:88: 13:19:7a:74:3a:4d:84:70:00:e6:d1:f4:72:eb:bb:11:f0:4c: 97:61:d1:70:92:bf:a1:1e:c9:08:e5:c2:4a:84:17:fb:93:1f: 99:10:c3:5b:84:ec:73:38:4c:07:cf:91:51:af:00:93:8b:5e: 06:c7:ac:cb:79:44:11:cc:1b:68:0f:0e:7c:3a:87:dc:69:9c: 52:d7:06:46:4a:17:6c:46:4f:7d:53:7a:89:29:4d:07:bc:08: 96:42:23:94:a8:9a:d6:b2:23:a7:aa:fc:3a:62:99:48:3a:25: 06:1f:e7:dd:53:29:97:30:c9:71:4e:99:6d:d6:01:7e:10:55: b1:f5:58:81:e1:bb:ef:3e:25:a4:87:37:3d:20:61:14:2f:3d: df:a1:de:cd:8a:45:3b:31:b3:18:a7:0c:cc:6b:47:8f:2f:e0: d2:5f:f5:4f:26:d4:1c:02:99:eb:77:c3:42:84:ae:65:5c:bf: 39:52:13:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwOUYxMTAvBgNVBAUTKEVDNzlEMTdBNjBFRDU3MEVDNjdCNTExNjE2MkI2MDhC NjBCOUNENDEwHhcNMjQxMTIyMjIwMjE2WhcNMjQxMTI5MjIwMjE2WjAYMRYwFAYD VQQDEw02NzQwZmY2OC0yZDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxH8LfGa9Ci8irsOMgFK02BT0eBjmr4oPtFqK/MJk98YdZlxLIHmUqAakcfV0 UuGwrPozmJdcGOFlPGRyUaUVlL3up3jivHZCSDnn8rXwlPWiSrpfGkkIPCJisFFk O4nNEKhVMdqi4PnuuynARDwwMO3FfWbinNZ1oaf6t3B0SytUr1gyVEctg4z7VQ+s c3nWp1zS1nJmQ+gJ4cypaKVaIB2P1yBrIGVDSXVHGk/+LrAy/erLbhEz3jyAGrym 5fPFPdAU2kg7vtG3/dV6ZQ8YGt8rr0eKJlePIBFw1rc00WSdnVmkVgXR3Xzplrin xwASPcWzsAs8NgPrdxvImZDyIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLs3b3pu 0433Gz32VWUetNCdRL6zMB8GA1UdIwQYMBaAFOx50Xpg7VcOxntRFhYrYItguc1B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA5Ri8xREI0ODNBNDY5 REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3N0dlMUVXRml0Z2kyQzV6 VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIblJlbUR0Vnc3R2UxRVdGaXRnaTJDNXpVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzA5Ri8xREI0ODNBNDY5REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3 N0dlMUVXRml0Z2kyQzV6VUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAryYCytLpDKDVs4NijOTfEY8DLcS+QFTbnmuJzhvWOSvXrcVfExd53 R1dhSPcK0Eg0Lf2C0R9nHdDgbu5iSgClVxJ03aqyE4gTGXp0Ok2EcADm0fRy67sR 8EyXYdFwkr+hHskI5cJKhBf7kx+ZEMNbhOxzOEwHz5FRrwCTi14Gx6zLeUQRzBto Dw58OofcaZxS1wZGShdsRk99U3qJKU0HvAiWQiOUqJrWsiOnqvw6YplIOiUGH+fd UymXMMlxTplt1gF+EFWx9ViB4bvvPiWkhzc9IGEULz3fod7NikU7MbMYpwzMa0eP L+DSX/VPJtQcApnrd8NChK5lXL85UhPe -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org