$ rpki-client -vvf rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft File: HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft (raw, json) Hash identifier: TiZnOxCGdxaYhYVigXGxBWFlOpAMvEST2o+mMqiZDhc= Subject key identifier: 69:10:DB:41:AE:96:80:EB:DF:41:EE:C9:C2:52:12:1E:4A:C9:8A:A3 Authority key identifier: 1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E Certificate issuer: /CN=A91D19ED/serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Certificate serial: 05FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft Manifest number: 05F3 Signing time: Fri 22 Nov 2024 22:23:43 +0000 Manifest this update: Fri 22 Nov 2024 22:23:43 +0000 Manifest next update: Fri 29 Nov 2024 22:23:43 +0000 Files and hashes: 1: HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl (hash: bWBGm1BKR7v+AW4oZCdlwKeNSR43oczHmASpbne3S3Y=) 2: C28841A201DB11EDA4B7F257C4F9AE02.roa (hash: gl+Xayi16U6h277wIL1sN1GFI6Op5pizCRAvEuYKZew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1530 (0x5fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D19ED/serialNumber=1ED4A50449F86200A0C2668069A28324F9F6A93E Validity Not Before: Nov 22 22:23:43 2024 GMT Not After : Nov 29 22:23:43 2024 GMT Subject: CN=6741046f-d2c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c8:b0:19:54:02:a5:b2:51:72:40:1e:57:9b: 87:01:b6:ac:85:e4:93:e3:01:77:32:ed:3b:10:95: 61:90:37:83:c2:f8:90:db:cf:75:e6:e7:41:0a:4f: 38:92:ab:c9:6e:6a:15:f0:c9:b2:a5:96:c1:15:37: 60:cb:d6:06:16:04:8a:30:9b:52:c5:e6:3d:9a:39: 32:9a:ba:7b:8b:9b:6d:fb:fa:64:57:69:a8:bd:43: 98:52:d5:6a:51:3b:dc:e7:99:c8:eb:71:3d:b0:b3: 2b:39:9a:cb:7c:be:a0:e2:ac:b5:e1:90:db:3b:a7: 0d:fc:84:59:06:ab:e1:6d:45:9b:f3:25:63:db:31: 06:4e:43:7f:8e:39:7b:ed:37:eb:68:50:f6:8a:9f: e6:4e:5a:be:1c:eb:c7:a9:18:a3:fd:35:3e:9e:6a: 0b:7e:be:d2:4b:44:cd:7c:8e:f6:ae:1c:49:f3:33: 9a:60:de:72:c9:d0:5f:06:dd:63:fe:52:b9:20:78: 4f:9f:51:b3:b4:19:7d:d0:d2:e3:0e:8b:de:da:46: a9:a6:f5:32:90:4e:41:5c:cf:ee:d6:91:e3:04:ea: da:38:ae:b2:3e:67:94:77:b2:18:91:21:1b:81:f8: 16:2b:a4:ab:cd:26:eb:d5:5c:c5:75:a2:17:79:20: d9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:10:DB:41:AE:96:80:EB:DF:41:EE:C9:C2:52:12:1E:4A:C9:8A:A3 X509v3 Authority Key Identifier: keyid:1E:D4:A5:04:49:F8:62:00:A0:C2:66:80:69:A2:83:24:F9:F6:A9:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HtSlBEn4YgCgwmaAaaKDJPn2qT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D19ED/54B97A268AB611EB832F0314C4F9AE02/HtSlBEn4YgCgwmaAaaKDJPn2qT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:33:86:1a:7a:d7:f5:c8:ec:a9:d2:e9:11:74:5a:6a:9d:c8: ca:8f:9a:66:e3:e9:b0:6f:77:1f:35:e9:4f:5a:c2:ac:13:b6: 7f:a1:8c:a6:be:c6:ae:80:ac:8d:84:84:71:7a:7c:64:38:fc: 8d:13:bb:01:64:cb:ef:2c:7d:ad:a7:8f:d2:d0:d6:2e:89:0c: a9:db:75:6e:4f:25:8c:35:7e:5b:23:26:07:8b:03:b6:47:1b: 4d:2e:94:e1:99:20:99:e0:b5:0a:0a:84:9e:ff:2c:0d:f5:d2: 60:24:18:f2:55:1e:97:0e:fe:98:64:ff:c4:e8:7c:82:9f:17: 86:04:37:be:35:7a:b5:f4:01:d1:f9:65:5d:1e:9d:b8:26:bf: 10:c7:d0:44:fb:08:8c:f6:d9:46:08:82:c0:23:de:55:07:34: 22:4e:d6:bf:13:fc:18:e3:4f:bf:c7:8c:50:85:19:73:e1:da: 78:73:87:57:99:0b:da:e2:fa:31:b4:58:fe:13:23:66:f6:40: 84:3a:80:d4:3d:86:26:b3:b9:9e:9a:ac:11:d0:e7:83:8f:eb: b2:61:73:e4:6e:b0:58:93:16:63:d9:e6:60:84:72:58:5e:81: e2:bd:a2:15:dd:62:19:b4:a6:12:e3:d7:7b:c0:c5:9b:85:6c: 26:db:93:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE5RUQxMTAvBgNVBAUTKDFFRDRBNTA0NDlGODYyMDBBMEMyNjY4MDY5QTI4MzI0 RjlGNkE5M0UwHhcNMjQxMTIyMjIyMzQzWhcNMjQxMTI5MjIyMzQzWjAYMRYwFAYD VQQDEw02NzQxMDQ2Zi1kMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58iwGVQCpbJRckAeV5uHAbasheST4wF3Mu07EJVhkDeDwviQ28915udBCk84 kqvJbmoV8MmypZbBFTdgy9YGFgSKMJtSxeY9mjkymrp7i5tt+/pkV2movUOYUtVq UTvc55nI63E9sLMrOZrLfL6g4qy14ZDbO6cN/IRZBqvhbUWb8yVj2zEGTkN/jjl7 7TfraFD2ip/mTlq+HOvHqRij/TU+nmoLfr7SS0TNfI72rhxJ8zOaYN5yydBfBt1j /lK5IHhPn1GztBl90NLjDove2kappvUykE5BXM/u1pHjBOraOK6yPmeUd7IYkSEb gfgWK6SrzSbr1VzFdaIXeSDZwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkQ20Gu loDr30HuycJSEh5KyYqjMB8GA1UdIwQYMBaAFB7UpQRJ+GIAoMJmgGmigyT59qk+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTlFRC81NEI5N0EyNjhB QjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFlnQ2d3bWFBYWFLREpQbjJx VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0U2xCRW40WWdDZ3dtYUFhYUtESlBuMnFUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTlFRC81NEI5N0EyNjhBQjYxMUVCODMyRjAzMTRDNEY5QUUwMi9IdFNsQkVuNFln Q2d3bWFBYWFLREpQbjJxVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfM4Yaetf1yOyp0ukRdFpqncjKj5pm4+mwb3cfNelPWsKsE7Z/oYym vsaugKyNhIRxenxkOPyNE7sBZMvvLH2tp4/S0NYuiQyp23VuTyWMNX5bIyYHiwO2 RxtNLpThmSCZ4LUKCoSe/ywN9dJgJBjyVR6XDv6YZP/E6HyCnxeGBDe+NXq19AHR +WVdHp24Jr8Qx9BE+wiM9tlGCILAI95VBzQiTta/E/wY40+/x4xQhRlz4dp4c4dX mQva4voxtFj+EyNm9kCEOoDUPYYms7memqwR0OeDj+uyYXPkbrBYkxZj2eZghHJY XoHivaIV3WIZtKYS49d7wMWbhWwm25Pp -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org