$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft File: Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft (raw, json) Hash identifier: NZQjrPjicIctgR1wWrU7Uv/hVTExLe6KDpG/yX9iUwo= Subject key identifier: 2F:5E:49:6E:3C:F9:A4:F2:1D:B8:EE:50:5A:C4:C8:4F:69:10:4B:3C Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft Manifest number: 066E Signing time: Fri 22 Nov 2024 21:54:48 +0000 Manifest this update: Fri 22 Nov 2024 21:54:48 +0000 Manifest next update: Fri 29 Nov 2024 21:54:48 +0000 Files and hashes: 1: Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl (hash: FsLEOj8RYKGC3wLtIDHuOsnKTWWTCeXWm1fShlNQcOE=) 2: 6AA36A7E564D11EB8B387024C4F9AE02.roa (hash: D45gCx25p55ZdSrenESWExC8wZeu5xeOajPz7tvTQDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Nov 22 21:54:48 2024 GMT Not After : Nov 29 21:54:48 2024 GMT Subject: CN=6740fda8-593e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f7:50:f8:c0:ad:32:dc:16:85:34:d6:78:60: 19:5a:24:14:79:1f:e3:69:53:3a:db:2d:7b:a8:33: 10:ef:ce:9e:de:b1:c7:de:d8:71:75:50:52:6e:bb: cd:2a:f3:94:68:b9:45:ef:51:39:2d:4c:2d:f0:31: 3f:e0:f3:c8:30:40:9e:02:d5:1e:3d:dd:8b:a2:63: 97:4e:97:23:e6:1c:43:4f:a5:90:aa:5b:01:ae:da: 22:25:2e:4e:b7:2e:7d:91:cf:ed:01:6f:e7:51:3c: 05:d9:1c:ca:6e:79:ec:af:6d:5a:93:dd:8c:21:8c: 03:ff:50:f7:94:70:c6:98:49:e3:ae:68:e9:10:46: 3b:0d:81:3f:dd:02:fe:87:5c:bb:f8:01:1b:6a:2f: 64:f8:c2:d5:68:a9:2a:82:17:5b:5d:8f:a0:fb:05: eb:b8:0d:7f:e3:8d:5d:de:03:42:bc:a5:d8:5c:67: df:c5:b5:bd:90:1f:64:82:c3:db:7e:4f:e8:d0:9f: e6:35:4a:0a:83:a4:e2:7f:47:a3:0e:fa:04:92:3b: 89:8e:67:e1:0d:a0:9e:31:0e:53:7c:d9:8f:c0:8a: 94:04:0b:df:cd:0e:4e:eb:ff:95:0b:68:a6:73:9d: 11:53:9b:81:4c:1d:52:71:ef:58:5f:57:3e:de:a8: 2a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:5E:49:6E:3C:F9:A4:F2:1D:B8:EE:50:5A:C4:C8:4F:69:10:4B:3C X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f9:5d:58:64:4b:05:2e:a2:4a:8f:7e:91:d6:f6:fc:23:fd: 3c:f0:33:45:b5:7e:3c:84:83:7b:86:ba:9d:5e:cc:dc:23:d0: 51:0f:46:5b:8b:83:12:f5:1f:8c:42:9e:52:d3:b1:9d:fb:02: 10:92:d3:e4:29:af:53:8f:af:7d:af:72:0b:b1:72:4f:68:0b: 4b:14:2c:ba:c2:19:40:f2:e9:09:23:03:be:3d:9a:e6:f6:29: d7:0d:bc:31:a3:d6:4f:ad:6a:59:f0:00:01:bd:91:35:50:d1: 8f:bd:0a:32:12:de:f6:66:29:4f:8d:d2:7c:02:0a:41:a8:47: e9:8f:a5:58:91:0e:63:64:d8:3d:21:d2:b0:c0:f2:f3:3f:43: 99:59:5e:42:44:b3:af:21:19:ef:f7:dd:b8:5c:f1:a9:ac:3e: 40:c7:a6:07:8a:46:d4:21:1f:2e:a6:38:9d:94:ea:e5:12:6b: 43:4e:15:ae:8d:e3:74:da:d9:1a:06:15:20:27:ee:33:e8:3e: 6b:c7:8a:fb:7a:83:55:5f:b6:11:0d:0d:f5:03:13:0c:60:90: f9:06:6b:0d:75:b3:f8:8d:bf:a6:b3:e0:c3:af:ac:07:7d:29: c0:4e:da:01:9f:77:dc:ce:7d:8e:9b:1e:27:67:d8:07:48:d1: c8:73:76:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjQxMTIyMjE1NDQ4WhcNMjQxMTI5MjE1NDQ4WjAYMRYwFAYD VQQDEw02NzQwZmRhOC01OTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/dQ+MCtMtwWhTTWeGAZWiQUeR/jaVM62y17qDMQ786e3rHH3thxdVBSbrvN KvOUaLlF71E5LUwt8DE/4PPIMECeAtUePd2LomOXTpcj5hxDT6WQqlsBrtoiJS5O ty59kc/tAW/nUTwF2RzKbnnsr21ak92MIYwD/1D3lHDGmEnjrmjpEEY7DYE/3QL+ h1y7+AEbai9k+MLVaKkqghdbXY+g+wXruA1/441d3gNCvKXYXGffxbW9kB9kgsPb fk/o0J/mNUoKg6Tif0ejDvoEkjuJjmfhDaCeMQ5TfNmPwIqUBAvfzQ5O6/+VC2im c50RU5uBTB1Sce9YX1c+3qgqcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9eSW48 +aTyHbjuUFrEyE9pEEs8MB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RC81NkZFRkY4MDU2NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3 bnpxUWJyQjlXUnljODRqVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq+V1YZEsFLqJKj36R1vb8I/088DNFtX48hIN7hrqdXszcI9BRD0Zb i4MS9R+MQp5S07Gd+wIQktPkKa9Tj699r3ILsXJPaAtLFCy6whlA8ukJIwO+PZrm 9inXDbwxo9ZPrWpZ8AABvZE1UNGPvQoyEt72ZilPjdJ8AgpBqEfpj6VYkQ5jZNg9 IdKwwPLzP0OZWV5CRLOvIRnv9924XPGprD5Ax6YHikbUIR8upjidlOrlEmtDThWu jeN02tkaBhUgJ+4z6D5rx4r7eoNVX7YRDQ31AxMMYJD5BmsNdbP4jb+ms+DDr6wH fSnATtoBn3fczn2Omx4nZ9gHSNHIc3ay -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:34 2024 by rpki-client on console-fra.rpki-client.org