$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: 7bcAt+lFOYL1S4mhti2wB3+ibC++A6jXn9lK/hD5/r4= Subject key identifier: 34:41:20:19:0F:90:44:ED:D7:D7:32:06:90:7E:C1:55:9C:21:3A:4E Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: 15 Signing time: Thu 21 Nov 2024 06:03:54 +0000 Manifest this update: Thu 21 Nov 2024 06:03:54 +0000 Manifest next update: Thu 28 Nov 2024 06:03:54 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: qWaJJwCtmtvp6JmPXccJzU4XcZYRt0sZFxKTjm4DKT0=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Nov 21 06:03:54 2024 GMT Not After : Nov 28 06:03:54 2024 GMT Subject: CN=673ecd4a-e94c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cb:2d:60:1f:cb:ba:83:8e:9c:4e:c7:96:0e: f3:08:be:37:ab:c0:9e:d6:a5:3b:67:17:3f:31:77: 9b:9e:8f:34:0c:08:8b:3a:1d:12:5c:09:ab:ce:ca: 0e:06:87:be:bf:62:91:68:b0:d5:a3:4b:df:71:90: 82:2e:7e:66:d8:9f:a3:a7:52:2c:d7:4c:e4:3d:7e: b9:65:52:3b:dd:fc:e2:ae:20:d9:3c:5a:8a:6b:9b: f9:b4:6e:b2:75:bc:51:03:4d:c4:38:25:72:05:65: 70:4f:0b:07:5c:80:d4:5a:55:9f:d8:10:e8:28:83: 6e:ec:be:db:88:e8:9f:8a:ca:66:5b:60:12:5b:82: 8d:68:36:a4:14:e4:ca:df:c0:71:f6:b4:8c:66:e5: bd:42:5f:96:6d:cf:ef:ee:f8:20:eb:59:72:22:95: 2e:25:f8:bd:89:7f:04:5a:30:7c:e0:8a:c1:79:47: 9b:86:96:e2:5e:46:f0:55:e1:ed:c0:48:64:2f:d7: bb:78:14:f0:45:30:19:5d:7f:3f:47:bb:ad:f0:76: 1d:c4:80:aa:de:69:31:5e:dc:15:06:a1:fe:1a:63: 75:4f:6a:af:cb:da:60:df:73:ae:4d:29:c5:0f:bb: 74:f0:38:68:16:2b:92:34:7f:34:be:00:8b:e0:78: e9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:41:20:19:0F:90:44:ED:D7:D7:32:06:90:7E:C1:55:9C:21:3A:4E X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:23:86:a9:12:a8:e9:22:92:86:5e:00:30:b7:0e:7c:54:a9: 87:62:3c:37:7f:97:1a:a6:3d:e2:63:73:76:f6:85:f0:a5:20: 0f:e2:07:19:50:4f:6f:48:02:c4:4c:88:20:e5:d6:67:ef:6d: 53:5e:41:6c:7d:3a:93:04:6c:e7:cd:e7:33:7c:3c:6f:10:b6: 8c:be:48:24:4b:51:34:e2:da:95:d1:ca:f7:70:60:2f:28:db: 75:f4:7b:42:4e:ef:c6:ac:4d:57:81:76:d5:f4:64:c0:46:6a: 71:a2:cf:4b:70:e3:64:2c:ba:e1:c3:e3:02:c1:30:ed:b5:2e: 52:92:dd:4a:06:a8:46:8b:64:37:2e:b0:f1:52:ed:6b:fa:ad: 4a:c6:3e:b0:c1:14:e6:d5:ad:20:83:06:87:8f:fb:1b:23:b1: b1:63:c2:13:b8:e3:80:b2:ea:5e:4f:39:95:0b:8b:83:a8:62: 15:ae:38:d5:ac:5b:81:94:42:c3:e5:2d:89:a5:4a:8b:f7:3c: 3a:f6:da:e9:f0:1a:75:51:87:19:70:81:7e:1e:e5:22:f9:e3: 80:ed:05:31:eb:38:7a:e2:a1:57:e1:54:c2:30:ee:45:95:2a: 6c:04:6b:be:fa:f1:7c:e7:bb:cb:de:7c:cf:a1:e1:80:bc:8c: 79:f2:2b:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTMxOTExMC8GA1UEBRMoMUREMzNBNjhCQzBCNUM5MzEwRkZGNTJBRDczOTQxMjBE MTAyQTYyNzAeFw0yNDExMjEwNjAzNTRaFw0yNDExMjgwNjAzNTRaMBgxFjAUBgNV BAMTDTY3M2VjZDRhLWU5NGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGyy1gH8u6g46cTseWDvMIvjerwJ7WpTtnFz8xd5uejzQMCIs6HRJcCavOyg4G h76/YpFosNWjS99xkIIufmbYn6OnUizXTOQ9frllUjvd/OKuINk8Woprm/m0brJ1 vFEDTcQ4JXIFZXBPCwdcgNRaVZ/YEOgog27svtuI6J+KymZbYBJbgo1oNqQU5Mrf wHH2tIxm5b1CX5Ztz+/u+CDrWXIilS4l+L2JfwRaMHzgisF5R5uGluJeRvBV4e3A SGQv17t4FPBFMBldfz9Hu63wdh3EgKreaTFe3BUGof4aY3VPaq/L2mDfc65NKcUP u3TwOGgWK5I0fzS+AIvgeOkjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNEEgGQ+Q RO3X1zIGkH7BVZwhOk4wHwYDVR0jBBgwFoAUHdM6aLwLXJMQ//Uq1zlBINECpicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1MzE5L0Y5NEQ0MUM4OEMy QzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3Bp Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSGRNNmFMd0xYSk1RX19VcTF6bEJJTkVDcGljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 MzE5L0Y5NEQ0MUM4OEMyQzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpN UV9fVXExemxCSU5FQ3BpYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALojhqkSqOkikoZeADC3DnxUqYdiPDd/lxqmPeJjc3b2hfClIA/iBxlQ T29IAsRMiCDl1mfvbVNeQWx9OpMEbOfN5zN8PG8Qtoy+SCRLUTTi2pXRyvdwYC8o 23X0e0JO78asTVeBdtX0ZMBGanGiz0tw42QsuuHD4wLBMO21LlKS3UoGqEaLZDcu sPFS7Wv6rUrGPrDBFObVrSCDBoeP+xsjsbFjwhO444Cy6l5POZULi4OoYhWuONWs W4GUQsPlLYmlSov3PDr22unwGnVRhxlwgX4e5SL544DtBTHrOHrioVfhVMIw7kWV KmwEa7768Xznu8vefM+h4YC8jHnyKw4= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org