$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: DEeB5UYjs4bUWqk/q6E1tZNmw79utivMpf0zuMONSEg= Subject key identifier: 1E:9C:4A:C0:EE:97:A1:5D:FA:79:77:57:7D:B3:98:09:C7:2E:F5:A7 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: 17 Signing time: Wed 23 Oct 2024 06:40:52 +0000 Manifest this update: Wed 23 Oct 2024 06:40:52 +0000 Manifest next update: Wed 30 Oct 2024 06:40:52 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: vjThNin3eI9ZSCMMx5KF2d83CRwtjPZFu7X7Hk9KnQk=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: psVpSVTIe8+AZiKNpgFs07aLN6Bb1+TjrtoRE57p52A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Oct 23 06:40:52 2024 GMT Not After : Oct 30 06:40:52 2024 GMT Subject: CN=67189a74-f89a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ab:80:6e:28:65:2d:14:68:93:44:1a:9c:11: 15:be:93:93:47:53:5d:a8:2f:e5:e6:ba:b9:ac:de: 2e:75:eb:6d:9a:72:5e:23:59:43:73:6c:e9:bb:d6: 72:f3:9a:83:10:7d:2c:4a:c8:a6:33:e5:bf:5e:98: e6:cc:e5:73:aa:7a:4c:d2:98:2d:43:c6:ee:6a:cc: 81:be:a8:99:92:13:31:d5:fa:7a:c3:41:3c:45:ae: 0d:5d:d4:b0:ca:d2:73:e3:59:97:59:a0:1e:1f:ae: f5:fa:13:d0:f3:69:10:07:ee:85:72:ce:db:e9:9b: 76:55:40:01:75:32:20:de:2e:4f:72:cc:f8:cd:59: bd:48:b9:71:cb:b1:7b:f1:cb:b6:3b:5f:d8:d6:39: 25:1c:e6:70:18:1a:f4:b9:2b:e5:28:87:fb:f0:ce: 57:c9:15:93:a3:f5:20:cf:46:16:6f:01:52:03:72: aa:ef:1d:43:e0:81:68:7d:9f:ad:64:7b:6f:a7:c4: f0:13:00:5e:bd:98:55:ea:aa:3d:db:2d:fa:8a:e8: 1e:75:0f:59:12:4b:55:e7:b1:7f:32:b8:cc:67:6b: a8:2a:9e:6d:a1:c1:11:1e:a2:84:d5:8a:0b:79:1a: 0b:61:d4:61:40:46:c6:7a:cc:65:29:a1:d9:5d:9e: 9f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9C:4A:C0:EE:97:A1:5D:FA:79:77:57:7D:B3:98:09:C7:2E:F5:A7 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:a4:95:16:7b:f4:07:d5:42:a2:15:fe:6f:e4:14:dc:97:5c: e1:a4:b5:b6:b5:af:74:60:83:55:15:65:42:b2:c2:dd:e8:00: 42:5b:cb:5b:ae:a4:17:98:be:b3:b4:9b:a9:78:a1:97:48:13: ee:7a:cc:f9:4c:30:71:0c:d6:66:5a:7a:c0:a3:9e:78:68:38: 64:f6:37:1c:2a:ae:61:ee:b5:37:4d:35:03:c9:39:48:b0:b1: cc:59:9f:6a:5a:c2:5e:ee:7f:ed:07:ac:b0:33:31:1a:ab:76: 5f:f9:e0:bd:a8:c5:5d:cd:6c:e3:b1:35:15:86:bd:19:67:a7: 5e:ff:ff:9a:90:ce:be:07:cb:51:7e:54:10:ab:35:97:22:e1: 27:85:a7:63:aa:0d:5f:55:2e:c5:44:7e:ff:04:5f:b7:57:c6: 9c:82:2c:81:f0:6b:fd:a6:98:e5:02:94:09:61:f0:60:74:98: 5b:55:ff:43:07:ad:ff:98:c4:71:7a:57:a4:a5:31:d5:8c:b4: e8:d2:d0:20:8e:d0:85:fe:72:f3:73:85:dc:33:bd:46:c8:ca: ed:40:97:62:c1:f7:a7:46:b9:dc:b3:ed:36:af:99:b3:66:28: cb:f8:69:3b:04:67:bf:90:bc:a6:ea:d1:94:cd:f7:22:bc:f3: 44:aa:49:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NEFDRDExMC8GA1UEBRMoODY5MDREMkQwMkRCOEEwNTlCRUQ5MzhGMkY4RUFFRjND NDIwNkZEMDAeFw0yNDEwMjMwNjQwNTJaFw0yNDEwMzAwNjQwNTJaMBgxFjAUBgNV BAMTDTY3MTg5YTc0LWY4OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxq4BuKGUtFGiTRBqcERW+k5NHU12oL+Xmurms3i51622acl4jWUNzbOm71nLz moMQfSxKyKYz5b9emObM5XOqekzSmC1Dxu5qzIG+qJmSEzHV+nrDQTxFrg1d1LDK 0nPjWZdZoB4frvX6E9DzaRAH7oVyztvpm3ZVQAF1MiDeLk9yzPjNWb1IuXHLsXvx y7Y7X9jWOSUc5nAYGvS5K+Uoh/vwzlfJFZOj9SDPRhZvAVIDcqrvHUPggWh9n61k e2+nxPATAF69mFXqqj3bLfqK6B51D1kSS1XnsX8yuMxna6gqnm2hwREeooTVigt5 Ggth1GFARsZ6zGUpodldnp/pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHpxKwO6X oV36eXdXfbOYCccu9acwHwYDVR0jBBgwFoAUhpBNLQLbigWb7ZOPL46u88Qgb9Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0QUNELzFGNTM1NjlFNzU2 RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHBCTkxRTGJpZ1diN1pPUEw0NnU4OFFnYjlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 QUNELzFGNTM1NjlFNzU2RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdX YjdaT1BMNDZ1ODhRZ2I5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG+klRZ79AfVQqIV/m/kFNyXXOGktba1r3Rgg1UVZUKywt3oAEJby1uu pBeYvrO0m6l4oZdIE+56zPlMMHEM1mZaesCjnnhoOGT2NxwqrmHutTdNNQPJOUiw scxZn2pawl7uf+0HrLAzMRqrdl/54L2oxV3NbOOxNRWGvRlnp17//5qQzr4Hy1F+ VBCrNZci4SeFp2OqDV9VLsVEfv8EX7dXxpyCLIHwa/2mmOUClAlh8GB0mFtV/0MH rf+YxHF6V6SlMdWMtOjS0CCO0IX+cvNzhdwzvUbIyu1Al2LB96dGudyz7TavmbNm KMv4aTsEZ7+QvKbq0ZTN9yK880SqSVg= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:25 2024 by rpki-client on console-fra.rpki-client.org