$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft File: hrHxHRgdpsydsDI95DvJbFkJZeE.mft (raw, json) Hash identifier: Nc3h0EBgvC6OkVu3KlPuqNUl59hA48wl1Nqjn4qPIhQ= Subject key identifier: BD:23:1C:5E:A7:BC:57:AE:D5:D8:E8:97:11:81:BC:F8:3D:4B:F2:6F Authority key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 Certificate issuer: /CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Certificate serial: 0B54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft Manifest number: 0B48 Signing time: Fri 22 Nov 2024 18:56:47 +0000 Manifest this update: Fri 22 Nov 2024 18:56:47 +0000 Manifest next update: Fri 29 Nov 2024 18:56:47 +0000 Files and hashes: 1: hrHxHRgdpsydsDI95DvJbFkJZeE.crl (hash: nI51yK5YIlZshVN4HGAIJhNqs/DMLxZMT/6rixX2sqI=) 2: C41D0390EA9611EEA68A3A1DC4F9AE02.roa (hash: 5i93kRFt15g1HXOZqcCTfVRBgr0xgYI+radWhnpC7c0=) 3: BF21F788EC5811EEB4293455C4F9AE02.roa (hash: a1JRhaeXn2WFPrwLiqmndenyLacpnioyFrrd1MH8M2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2900 (0xb54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBFCF/serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1 Validity Not Before: Nov 22 18:56:47 2024 GMT Not After : Nov 29 18:56:47 2024 GMT Subject: CN=6740d3ef-87eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2d:4b:e7:6b:9c:1b:74:ac:3e:4f:51:80:de: a3:c0:24:40:2e:ed:82:b4:3e:4d:e5:5d:b4:00:6b: 63:3c:8b:77:73:00:7a:68:ec:46:8e:fe:ea:70:35: fc:f9:60:71:42:73:30:5f:65:e4:1e:1f:56:b6:7b: 0a:dd:85:34:83:66:0d:7b:60:d0:cf:f8:44:d6:60: 3f:cb:62:3d:63:2d:07:24:96:c5:bb:41:b7:12:74: f4:ca:e1:1e:a9:ab:d4:07:27:83:bd:5c:a6:f3:55: 00:9a:13:a4:40:7f:99:20:b5:5c:2f:20:29:5f:97: c2:ad:79:14:c3:4f:9b:5e:84:62:91:e8:be:33:bc: d8:44:01:76:9e:c8:83:ce:1c:56:20:36:e3:52:55: b9:2c:e6:3a:6d:87:e5:cc:a4:6e:b1:44:f4:05:21: 67:da:1b:02:bd:80:d6:84:22:2d:7a:f7:e0:03:13: 00:62:8d:7d:6d:1c:f4:48:95:dc:77:3e:68:7b:ab: 33:39:f3:fe:ec:2b:c1:2a:73:1a:8d:c7:c7:a1:25: 5c:7d:ed:2a:22:25:02:f5:18:a5:6f:14:22:f8:77: 94:9b:98:d8:8d:30:4c:f9:25:84:9d:40:68:cb:ad: 58:c8:b3:7c:c4:74:ab:d5:8e:4f:d5:8d:35:e3:dc: 6b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:23:1C:5E:A7:BC:57:AE:D5:D8:E8:97:11:81:BC:F8:3D:4B:F2:6F X509v3 Authority Key Identifier: keyid:86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:1d:85:c9:69:74:30:a6:3c:0b:94:34:fd:b1:c3:ab:7b:cc: 93:18:c9:a7:01:21:ae:e9:5f:4b:1c:e5:6d:2c:48:fd:20:2d: 5d:86:7d:79:1f:1d:7a:02:75:64:86:1d:49:37:70:bb:b5:ea: cd:69:ef:14:01:83:01:b4:39:e9:41:5c:2c:1b:40:3f:5d:4c: fe:ac:59:79:b2:25:b7:ee:9f:29:fe:a1:ea:4e:63:73:45:40: 39:48:35:93:e1:4f:dd:ca:c2:61:8d:37:8d:46:b4:43:b3:c0: 26:82:63:7e:f4:7a:33:5a:89:03:74:82:f5:37:e2:c8:62:8e: 4d:35:15:71:a7:f4:1c:04:9d:b1:61:89:c9:7f:ea:eb:15:d5: 84:1b:ca:c4:e9:44:05:3d:9d:c4:49:d8:75:4b:93:b8:f4:24: 9d:1b:ea:1e:b4:1c:f2:d4:d4:a4:52:40:22:f1:53:e1:e0:46: 16:34:3c:25:84:85:ed:00:3e:c3:27:14:a8:38:08:a3:ce:06: 5b:0c:13:66:70:55:83:30:61:34:ed:0e:bc:24:4a:68:a8:5f: de:4c:23:a9:e8:7f:ce:5d:13:55:3d:ca:26:9f:fd:23:a6:6b: 8c:81:93:97:26:38:6a:9c:9b:cb:81:a6:1b:df:71:a4:7d:3f: aa:b1:9b:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JGQ0YxMTAvBgNVBAUTKDg2QjFGMTFEMTgxREE2Q0M5REIwMzIzREU0M0JDOTZD NTkwOTY1RTEwHhcNMjQxMTIyMTg1NjQ3WhcNMjQxMTI5MTg1NjQ3WjAYMRYwFAYD VQQDEw02NzQwZDNlZi04N2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAly1L52ucG3SsPk9RgN6jwCRALu2CtD5N5V20AGtjPIt3cwB6aOxGjv7qcDX8 +WBxQnMwX2XkHh9WtnsK3YU0g2YNe2DQz/hE1mA/y2I9Yy0HJJbFu0G3EnT0yuEe qavUByeDvVym81UAmhOkQH+ZILVcLyApX5fCrXkUw0+bXoRikei+M7zYRAF2nsiD zhxWIDbjUlW5LOY6bYflzKRusUT0BSFn2hsCvYDWhCItevfgAxMAYo19bRz0SJXc dz5oe6szOfP+7CvBKnMajcfHoSVcfe0qIiUC9RilbxQi+HeUm5jYjTBM+SWEnUBo y61YyLN8xHSr1Y5P1Y0149xrDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0jHF6n vFeu1djolxGBvPg9S/JvMB8GA1UdIwQYMBaAFIax8R0YHabMnbAyPeQ7yWxZCWXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkZDRi85NTYzOUJGMDI0 OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBzeWRzREk5NUR2SmJGa0pa ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hySHhIUmdkcHN5ZHNESTk1RHZKYkZrSlplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkZDRi85NTYzOUJGMDI0OEQxMUVBQURBMjA1NEVDNEY5QUUwMi9ockh4SFJnZHBz eWRzREk5NUR2SmJGa0paZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYHYXJaXQwpjwLlDT9scOre8yTGMmnASGu6V9LHOVtLEj9IC1dhn15 Hx16AnVkhh1JN3C7terNae8UAYMBtDnpQVwsG0A/XUz+rFl5siW37p8p/qHqTmNz RUA5SDWT4U/dysJhjTeNRrRDs8AmgmN+9HozWokDdIL1N+LIYo5NNRVxp/QcBJ2x YYnJf+rrFdWEG8rE6UQFPZ3ESdh1S5O49CSdG+oetBzy1NSkUkAi8VPh4EYWNDwl hIXtAD7DJxSoOAijzgZbDBNmcFWDMGE07Q68JEpoqF/eTCOp6H/OXRNVPcomn/0j pmuMgZOXJjhqnJvLgaYb33GkfT+qsZsl -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org