$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: TRpcdTgtHUl6NW88HFgkldMQcjvyP4oJlvCWpFMOC/0= Subject key identifier: 13:1C:C2:B0:FC:6C:59:E9:BD:66:50:10:4C:E5:2B:9E:E1:EE:86:32 Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: 06 Signing time: Wed 23 Oct 2024 06:52:17 +0000 Manifest this update: Wed 23 Oct 2024 06:52:17 +0000 Manifest next update: Wed 30 Oct 2024 06:52:17 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: MIt8BXFxJ1Oh0+5AC9ZmHA0g6MncbogqD3m8I76YC5U=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Oct 23 06:52:17 2024 GMT Not After : Oct 30 06:52:17 2024 GMT Subject: CN=67189d21-2199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:32:27:7a:d3:75:6f:67:82:df:d6:55:32:71: a4:b2:ec:52:00:f0:ac:8b:e7:9a:8c:40:e9:64:b0: 88:5c:f4:f3:5e:c0:90:22:77:51:b8:a2:41:57:e8: ca:25:99:98:e1:a4:e1:fb:2f:82:57:d6:91:87:93: 1c:8b:da:06:dd:a3:dc:86:a0:a9:ec:58:64:c0:a7: ed:fb:c9:0f:ac:80:94:76:86:e1:95:37:38:c1:b5: 04:f8:a4:03:b6:c2:07:b6:a0:7e:ba:ff:73:e7:2a: c7:ba:53:1c:9a:bd:60:c5:e1:2e:eb:8f:25:7e:57: bb:fb:05:3f:d9:49:40:76:de:69:dd:52:36:0d:6d: af:c9:83:ec:cc:31:4c:e0:ad:ee:ab:22:85:6b:77: 19:a8:a8:03:d7:0c:69:0f:b4:c9:9f:56:c8:c5:8f: 94:1c:fb:31:e6:b8:ee:fc:36:ec:76:94:39:90:4a: 31:53:d0:0c:3c:10:2f:15:c9:3e:ed:8f:2a:c8:b1: d4:5d:1c:cb:5d:6c:ff:5b:d3:2b:11:db:61:55:54: da:26:b8:bf:4e:0e:0f:9f:0f:99:f3:14:53:da:5b: 60:a2:79:b2:a4:da:b7:da:97:39:c1:0c:57:cc:3b: bc:ed:0f:42:cc:55:55:0f:79:23:82:e8:99:97:4b: bb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1C:C2:B0:FC:6C:59:E9:BD:66:50:10:4C:E5:2B:9E:E1:EE:86:32 X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:cf:3c:82:9d:fc:10:88:d9:ef:0c:66:ee:fe:09:44:27:33: 40:3c:07:7a:b3:d2:97:33:36:64:7d:06:9d:b9:40:dc:ed:10: b2:45:b0:98:1b:d5:8a:3c:ef:fd:9a:4a:4b:d2:64:58:03:f1: 7a:83:f0:d3:c9:63:bf:3f:a4:8e:b8:cc:aa:11:87:42:60:3a: 06:4b:7e:f7:d0:66:bd:12:d5:61:ae:59:c2:4f:bb:67:56:5e: fe:ae:d5:94:cb:bd:42:60:02:bd:52:06:b2:00:ae:2c:1d:b1: da:88:83:47:17:be:59:a4:7e:b7:a3:74:29:86:d1:55:01:fd: 3d:fa:c8:c4:48:cc:fb:8b:25:ab:49:c3:06:d5:31:28:b8:49: 8c:ef:03:80:f9:9a:bd:53:ce:dd:3b:0c:95:be:c1:7b:c9:6e: bf:a3:fc:81:fe:4b:70:aa:df:be:4f:e9:a9:4a:7b:0c:49:59: 77:ca:0d:20:52:22:78:31:e9:ab:36:ec:2d:ed:b3:1c:94:7a: 47:39:5e:e9:32:98:a1:d4:bc:af:2b:43:1a:af:bf:2a:e6:a3: 90:5f:32:f8:b1:c2:aa:bb:61:e8:cf:1a:e1:49:a4:e8:42:67: b6:1d:70:37:42:8c:81:ad:bb:86:03:05:f5:07:c5:db:71:01: 3c:83:76:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTMxOTExMC8GA1UEBRMoMUREMzNBNjhCQzBCNUM5MzEwRkZGNTJBRDczOTQxMjBE MTAyQTYyNzAeFw0yNDEwMjMwNjUyMTdaFw0yNDEwMzAwNjUyMTdaMBgxFjAUBgNV BAMTDTY3MTg5ZDIxLTIxOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9Mid603VvZ4Lf1lUycaSy7FIA8KyL55qMQOlksIhc9PNewJAid1G4okFX6Mol mZjhpOH7L4JX1pGHkxyL2gbdo9yGoKnsWGTAp+37yQ+sgJR2huGVNzjBtQT4pAO2 wge2oH66/3PnKse6UxyavWDF4S7rjyV+V7v7BT/ZSUB23mndUjYNba/Jg+zMMUzg re6rIoVrdxmoqAPXDGkPtMmfVsjFj5Qc+zHmuO78Nux2lDmQSjFT0Aw8EC8VyT7t jyrIsdRdHMtdbP9b0ysR22FVVNomuL9ODg+fD5nzFFPaW2CiebKk2rfalznBDFfM O7ztD0LMVVUPeSOC6JmXS7vnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUExzCsPxs Wem9ZlAQTOUrnuHuhjIwHwYDVR0jBBgwFoAUHdM6aLwLXJMQ//Uq1zlBINECpicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1MzE5L0Y5NEQ0MUM4OEMy QzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3Bp Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSGRNNmFMd0xYSk1RX19VcTF6bEJJTkVDcGljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 MzE5L0Y5NEQ0MUM4OEMyQzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpN UV9fVXExemxCSU5FQ3BpYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALDPPIKd/BCI2e8MZu7+CUQnM0A8B3qz0pczNmR9Bp25QNztELJFsJgb 1Yo87/2aSkvSZFgD8XqD8NPJY78/pI64zKoRh0JgOgZLfvfQZr0S1WGuWcJPu2dW Xv6u1ZTLvUJgAr1SBrIAriwdsdqIg0cXvlmkfrejdCmG0VUB/T36yMRIzPuLJatJ wwbVMSi4SYzvA4D5mr1Tzt07DJW+wXvJbr+j/IH+S3Cq375P6alKewxJWXfKDSBS Ingx6as27C3tsxyUekc5XukymKHUvK8rQxqvvyrmo5BfMvixwqq7YejPGuFJpOhC Z7YdcDdCjIGtu4YDBfUHxdtxATyDduU= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:02 2024 by rpki-client on console-ams.rpki-client.org