$ rpki-client -vvf rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft File: HAQwdyQVc864WNlR8CsiBXujluc.mft (raw, json) Hash identifier: qzZLhM5+mGs8fJbaFh4tRbY0OOzxIuu3+VR23EzKgTQ= Subject key identifier: 25:83:10:95:4A:E6:1E:FB:3C:2C:D2:81:16:F0:20:DF:86:97:FC:DA Authority key identifier: 1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 Certificate issuer: /CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Certificate serial: 0388 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft Manifest number: 0383 Signing time: Sat 23 Nov 2024 00:24:14 +0000 Manifest this update: Sat 23 Nov 2024 00:24:14 +0000 Manifest next update: Sat 30 Nov 2024 00:24:14 +0000 Files and hashes: 1: HAQwdyQVc864WNlR8CsiBXujluc.crl (hash: L924uZJEaRWfJTtXXJn6Vo9D2sB3XW/Ommmyv66YbKo=) 2: 4AB730E0800B11EC84B3FA3BC4F9AE02.roa (hash: FLNuzQsiXD7KkcF5wVKcCpcAVmQ8hS+JXE7aj3S10Xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 904 (0x388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D45A2/serialNumber=1C043077241573CEB858D951F02B22057BA396E7 Validity Not Before: Nov 23 00:24:14 2024 GMT Not After : Nov 30 00:24:14 2024 GMT Subject: CN=674120ae-789e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:c7:24:04:84:18:3a:f9:f0:f2:78:18:85: 4b:68:d2:49:cd:bc:bf:89:7e:67:00:a1:07:55:eb: a1:02:db:15:88:c3:d2:e4:20:55:8c:6a:20:22:74: 04:ef:80:b2:9c:52:1e:ba:20:24:67:54:7a:0b:f0: cc:e1:63:50:10:9a:cd:42:ed:2c:ac:41:6b:42:81: 92:4d:32:80:11:b0:b7:70:84:8f:13:26:d5:7a:a0: 01:63:fd:ce:ef:2d:61:5a:56:85:e8:1a:b9:de:9a: 01:93:82:83:20:8d:1d:16:80:17:00:e5:db:ac:6a: 5c:7b:63:38:04:7c:82:a9:c1:ee:f1:33:0b:e7:a5: 1e:16:32:22:57:b8:55:fe:15:e0:bf:00:6e:de:a7: 0e:84:22:2a:11:53:ad:1f:5d:6d:21:54:de:24:f4: 2b:c7:67:9d:bb:23:57:58:10:2d:ae:0c:b7:03:e1: 50:5c:b8:ff:de:34:e3:68:04:ed:60:f2:e3:f5:94: 29:cd:85:3a:2a:aa:6f:72:39:32:46:3b:7c:88:49: ef:04:df:6f:27:fe:8d:3b:0d:32:be:77:08:f0:0b: 50:91:1b:65:82:8c:9c:a0:6d:23:d1:07:38:5f:8f: a8:b2:83:40:19:bb:ec:3d:ac:f8:38:ca:ee:4b:d5: 18:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:83:10:95:4A:E6:1E:FB:3C:2C:D2:81:16:F0:20:DF:86:97:FC:DA X509v3 Authority Key Identifier: keyid:1C:04:30:77:24:15:73:CE:B8:58:D9:51:F0:2B:22:05:7B:A3:96:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAQwdyQVc864WNlR8CsiBXujluc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D45A2/A3D2DCAA800711EC908AA967C4F9AE02/HAQwdyQVc864WNlR8CsiBXujluc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:32:fc:01:25:f6:d7:e2:b1:19:db:37:a7:2e:e5:10:50:74: 8b:f0:0f:95:07:98:ee:10:a5:67:d0:a2:3a:56:17:25:61:72: ed:38:b5:d8:7b:41:b9:61:30:7c:fd:8b:d0:91:77:68:b0:b9: c0:30:be:5e:30:20:23:cd:71:f3:37:32:3a:cb:aa:ff:ee:b4: d7:fa:74:b5:ba:f3:ea:2f:4c:d7:84:33:9d:b3:40:40:28:a5: 6d:72:c2:53:95:a9:14:48:a9:80:29:df:b0:d8:49:7f:a7:d4: 93:ba:98:92:12:8e:a0:8d:98:12:d5:8b:5b:3c:05:11:2b:9a: 95:36:56:33:9a:2f:43:98:19:32:e9:27:ec:63:22:64:e2:96: 0f:70:3b:81:25:0f:34:cc:4d:f7:4f:d8:13:7a:2f:d0:54:22: 3d:71:b0:ea:ab:58:ad:e2:22:b5:2d:a3:ae:31:97:ee:15:71: 6b:06:71:04:45:f1:55:30:26:e0:b6:1c:e4:d8:70:d0:25:99: 48:3e:93:06:48:99:47:16:a0:17:96:24:40:c9:f9:18:43:e8: ef:10:cf:6e:58:4a:f6:12:a9:c8:9b:b9:13:72:d1:96:43:6b: 71:f2:25:6e:8e:4f:a8:3e:d5:a2:5d:c3:ee:7a:aa:7b:ed:43: da:65:b9:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ1QTIxMTAvBgNVBAUTKDFDMDQzMDc3MjQxNTczQ0VCODU4RDk1MUYwMkIyMjA1 N0JBMzk2RTcwHhcNMjQxMTIzMDAyNDE0WhcNMjQxMTMwMDAyNDE0WjAYMRYwFAYD VQQDEw02NzQxMjBhZS03ODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxonHJASEGDr58PJ4GIVLaNJJzby/iX5nAKEHVeuhAtsViMPS5CBVjGogInQE 74CynFIeuiAkZ1R6C/DM4WNQEJrNQu0srEFrQoGSTTKAEbC3cISPEybVeqABY/3O 7y1hWlaF6Bq53poBk4KDII0dFoAXAOXbrGpce2M4BHyCqcHu8TML56UeFjIiV7hV /hXgvwBu3qcOhCIqEVOtH11tIVTeJPQrx2eduyNXWBAtrgy3A+FQXLj/3jTjaATt YPLj9ZQpzYU6KqpvcjkyRjt8iEnvBN9vJ/6NOw0yvncI8AtQkRtlgoycoG0j0Qc4 X4+osoNAGbvsPaz4OMruS9UYUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWDEJVK 5h77PCzSgRbwIN+Gl/zaMB8GA1UdIwQYMBaAFBwEMHckFXPOuFjZUfArIgV7o5bn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDVBMi9BM0QyRENBQTgw MDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4NjRXTmxSOENzaUJYdWps dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBUXdkeVFWYzg2NFdObFI4Q3NpQlh1amx1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDVBMi9BM0QyRENBQTgwMDcxMUVDOTA4QUE5NjdDNEY5QUUwMi9IQVF3ZHlRVmM4 NjRXTmxSOENzaUJYdWpsdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyMvwBJfbX4rEZ2zenLuUQUHSL8A+VB5juEKVn0KI6VhclYXLtOLXY e0G5YTB8/YvQkXdosLnAML5eMCAjzXHzNzI6y6r/7rTX+nS1uvPqL0zXhDOds0BA KKVtcsJTlakUSKmAKd+w2El/p9STupiSEo6gjZgS1YtbPAURK5qVNlYzmi9DmBky 6SfsYyJk4pYPcDuBJQ80zE33T9gTei/QVCI9cbDqq1it4iK1LaOuMZfuFXFrBnEE RfFVMCbgthzk2HDQJZlIPpMGSJlHFqAXliRAyfkYQ+jvEM9uWEr2EqnIm7kTctGW Q2tx8iVujk+oPtWiXcPueqp77UPaZbkN -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org