$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft File: HLS_2cCnMryPSmDIaUyR-DTKvBM.mft (raw, json) Hash identifier: iMXxXX/2K/WVSjTf/c2NuJt/b8ChzB6yigH55ldMbbk= Subject key identifier: 4A:8C:CB:55:86:8B:4D:88:E4:44:B5:CD:C3:E4:F2:D2:B4:DD:E5:68 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 087E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft Manifest number: 0878 Signing time: Wed 20 Nov 2024 20:18:33 +0000 Manifest this update: Wed 20 Nov 2024 20:18:32 +0000 Manifest next update: Wed 27 Nov 2024 20:18:32 +0000 Files and hashes: 1: HLS_2cCnMryPSmDIaUyR-DTKvBM.crl (hash: ef9K6O9/jBKQYue9VbLn5oX0n5GkxMksa6MWExrhWz0=) 2: 3C52563E781F11EE9787607FC4F9AE02.roa (hash: 0bgef1HoOJUlJF+Pq5efX6bYiWvNFCdJrO6WEDGbgUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2174 (0x87e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Nov 20 20:18:32 2024 GMT Not After : Nov 27 20:18:32 2024 GMT Subject: CN=673e4419-5eca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f4:b6:77:7b:1d:49:36:9b:ec:3c:07:c8:a8: 38:37:e5:6e:84:b9:04:40:d9:e7:55:87:ea:22:d7: fe:46:1a:7b:c2:78:1b:cf:94:2e:c1:f5:8a:a1:10: 86:c8:89:e5:58:c3:e0:f1:00:f9:3a:2a:53:80:35: 9c:55:bb:c6:36:7b:d0:a8:70:98:34:ea:b3:4b:ca: 70:f9:79:89:4a:01:b2:4b:03:0e:4c:85:be:4f:87: 53:ec:f2:38:41:25:88:ef:7e:50:5a:bc:de:78:89: 10:7d:8f:6b:c2:86:06:5d:0c:f0:69:dc:e4:23:1e: 1e:c0:6c:83:9a:e4:24:10:f8:30:15:26:b9:ce:0b: f1:7d:e4:35:6a:6d:cf:b4:a4:65:7e:0b:00:5b:fc: af:a7:ee:6b:be:6a:00:84:5c:3e:51:41:7c:6d:fd: e7:1b:fb:d4:5f:ae:aa:f5:6f:37:f9:21:79:c5:38: 7f:04:29:54:bf:2b:fb:6e:10:13:f3:47:70:9e:ba: 45:5f:89:b0:1f:8c:8e:7a:f5:75:09:c5:de:89:ce: 40:eb:1b:9f:80:7f:83:f2:53:f9:f8:5c:8b:2f:5d: 5d:64:32:a0:c1:63:b8:89:d4:60:0b:cf:e1:81:91: 2f:97:96:24:77:a8:f1:7d:38:16:b3:ea:51:cd:12: ef:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8C:CB:55:86:8B:4D:88:E4:44:B5:CD:C3:E4:F2:D2:B4:DD:E5:68 X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:b8:c9:30:6a:b1:b6:34:be:f4:f9:d3:50:74:5e:a3:66:07: aa:0e:d1:69:cf:88:55:99:f8:ec:c0:0e:0c:ba:21:6c:2c:ba: 58:48:3f:95:f7:1c:7d:33:d9:91:6c:ed:21:c9:0a:c5:24:51: 7d:de:0e:e1:d1:98:cf:49:4e:47:d9:96:09:3e:ac:40:1a:83: e8:ad:98:9b:5a:80:4b:a0:7f:21:e6:9e:8f:1d:67:7f:af:96: 07:ef:6b:89:55:16:d5:8f:5d:c7:32:33:62:04:43:e5:d2:46: bc:a9:8d:f2:31:8e:35:59:c8:51:c2:8c:d0:43:96:a4:a8:51: 40:a2:4b:06:f8:b9:33:f3:f5:01:d6:82:11:ea:6e:3f:4c:a1: 8a:86:96:f1:fc:d9:a5:2a:a4:e5:68:3c:fe:a1:18:75:e2:eb: 77:71:dd:8c:47:ba:12:28:1d:39:71:bc:a4:10:78:ab:2b:f8: 47:2c:7b:e3:39:94:34:6b:c1:75:43:cd:3d:3b:10:ea:02:f3: 7b:f5:70:07:ef:08:db:3c:7e:ca:e7:46:e8:83:fd:9b:3a:7a: 91:eb:cf:3c:dc:c8:b1:2c:4c:b5:ef:ab:cf:5b:2b:fb:43:01: f8:00:e5:00:9d:f6:e3:96:a4:c5:9d:58:b2:fb:93:8e:0c:94: c7:ba:e2:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjQxMTIwMjAxODMyWhcNMjQxMTI3MjAxODMyWjAYMRYwFAYD VQQDEw02NzNlNDQxOS01ZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/S2d3sdSTab7DwHyKg4N+VuhLkEQNnnVYfqItf+Rhp7wngbz5QuwfWKoRCG yInlWMPg8QD5OipTgDWcVbvGNnvQqHCYNOqzS8pw+XmJSgGySwMOTIW+T4dT7PI4 QSWI735QWrzeeIkQfY9rwoYGXQzwadzkIx4ewGyDmuQkEPgwFSa5zgvxfeQ1am3P tKRlfgsAW/yvp+5rvmoAhFw+UUF8bf3nG/vUX66q9W83+SF5xTh/BClUvyv7bhAT 80dwnrpFX4mwH4yOevV1CcXeic5A6xufgH+D8lP5+FyLL11dZDKgwWO4idRgC8/h gZEvl5Ykd6jxfTgWs+pRzRLvXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqMy1WG i02I5ES1zcPk8tK03eVoMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wMzExNjMxMkFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1y eVBTbURJYVV5Ui1EVEt2Qk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeuMkwarG2NL70+dNQdF6jZgeqDtFpz4hVmfjswA4MuiFsLLpYSD+V 9xx9M9mRbO0hyQrFJFF93g7h0ZjPSU5H2ZYJPqxAGoPorZibWoBLoH8h5p6PHWd/ r5YH72uJVRbVj13HMjNiBEPl0ka8qY3yMY41WchRwozQQ5akqFFAoksG+Lkz8/UB 1oIR6m4/TKGKhpbx/NmlKqTlaDz+oRh14ut3cd2MR7oSKB05cbykEHirK/hHLHvj OZQ0a8F1Q809OxDqAvN79XAH7wjbPH7K50bog/2bOnqR68883MixLEy176vPWyv7 QwH4AOUAnfbjlqTFnViy+5OODJTHuuLN -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:47 2024 by rpki-client on console-fra.rpki-client.org