$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft File: Hv520ajcbNAkyzz0B5Cl8UosITg.mft (raw, json) Hash identifier: Bkn4L43O/onFIBFGmKFxZ0l6grW/ucVG9Xb+bcqe5PU= Subject key identifier: 5C:E1:DA:E3:43:9F:46:5C:21:DD:7E:20:6A:74:2F:57:67:95:81:79 Authority key identifier: 1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 Certificate issuer: /CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Certificate serial: 044F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft Manifest number: 044B Signing time: Fri 22 Nov 2024 23:46:51 +0000 Manifest this update: Fri 22 Nov 2024 23:46:50 +0000 Manifest next update: Fri 29 Nov 2024 23:46:50 +0000 Files and hashes: 1: Hv520ajcbNAkyzz0B5Cl8UosITg.crl (hash: pBS78+Tic88PgogQDlZWxFeD61AE+LsPrGWrjsK0D3o=) 2: E52DE77630B611EC981BBF1CC4F9AE02.roa (hash: Do6OgnR2E8Iy4DGGhWcszr7SeA/TupAI+DlFPIrWpNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1103 (0x44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7B3/serialNumber=1EFE76D1A8DC6CD024CB3CF40790A5F14A2C2138 Validity Not Before: Nov 22 23:46:50 2024 GMT Not After : Nov 29 23:46:50 2024 GMT Subject: CN=674117eb-d617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7a:bd:df:34:40:78:9e:b7:61:ca:72:c4:3f: a6:8b:41:33:b5:82:f2:b2:0f:2e:7c:f4:65:e5:7b: 46:90:3e:26:6d:4e:16:a7:f3:7f:ca:a0:0e:a7:96: 7b:62:ae:d0:39:54:5c:1f:ff:d5:a3:d1:9a:62:0d: 03:e4:6e:85:2a:7d:7d:57:1c:c7:f2:21:30:74:ae: 11:47:23:f1:0a:7d:37:a3:e2:f7:5a:71:83:49:e2: 12:06:0b:9b:d7:c3:ab:20:d2:08:63:65:18:64:dc: a2:60:eb:84:43:54:bf:3c:ac:15:ab:44:77:eb:4d: 4a:39:6e:8c:3f:7b:4f:8d:b1:86:6b:b3:e3:0f:20: d6:5f:5e:67:77:02:f4:90:8a:10:49:1f:55:02:d8: 61:27:21:40:80:0d:96:67:55:d5:1b:b3:46:94:09: 62:2e:3d:d8:61:a9:74:ae:be:f6:ba:aa:39:a5:89: c1:88:e9:c2:67:8a:cf:bd:2c:37:3b:13:4e:b3:ac: 62:88:23:0d:e2:7b:fa:0a:19:9e:ed:06:b8:9f:1e: cb:78:c8:8c:5d:e8:06:84:61:77:07:78:d5:df:26: 54:72:69:9a:20:f4:1c:b9:e1:22:cb:a2:c2:ce:e6: 5a:b2:24:2a:0a:ac:f5:98:d6:6f:67:9e:25:e9:88: 41:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E1:DA:E3:43:9F:46:5C:21:DD:7E:20:6A:74:2F:57:67:95:81:79 X509v3 Authority Key Identifier: keyid:1E:FE:76:D1:A8:DC:6C:D0:24:CB:3C:F4:07:90:A5:F1:4A:2C:21:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hv520ajcbNAkyzz0B5Cl8UosITg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7B3/2FD815EC30B411EC80609275C4F9AE02/Hv520ajcbNAkyzz0B5Cl8UosITg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e4:e6:06:6b:b5:a8:83:af:95:b2:5e:b5:9c:40:36:74:9f: 25:83:7d:71:ed:74:cd:b6:73:63:ad:b5:ed:34:e2:5a:28:32: d7:05:14:ae:32:d8:d4:2b:95:87:c9:0a:6f:e7:0b:16:8d:5f: 46:01:8b:37:e4:de:15:dc:a3:f0:08:f0:be:a9:7e:77:d3:9c: 78:15:5c:31:fc:3a:d2:77:98:64:a8:41:83:ee:ce:10:ed:93: 8d:7f:d4:e9:23:f8:2e:9b:a8:68:e5:cc:32:ac:d7:30:0e:4c: f1:74:ef:89:25:9f:2e:94:4a:52:a9:cc:98:d5:d6:e2:68:bb: 51:d1:a0:dc:42:a0:99:9f:69:6b:82:38:c9:a4:fa:31:1b:a8: 0b:66:f2:90:16:05:1f:89:cf:98:82:c9:ae:cb:43:43:92:d9: 19:1f:68:c0:c4:68:5e:c8:01:3d:2f:8c:6a:4f:4e:17:e7:7d: 86:21:29:97:d3:fb:82:67:4a:d7:75:df:86:5d:93:fa:96:25: f3:40:40:14:df:16:19:6b:3a:f9:88:b5:bd:c4:b1:8a:43:83: 30:b6:4d:83:e5:ab:75:e8:18:1c:4c:33:6c:46:7d:a3:3d:db: 3f:62:ac:06:b7:2e:82:4e:9b:84:49:09:8d:4b:07:fe:c7:e6: 54:71:eb:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3QjMxMTAvBgNVBAUTKDFFRkU3NkQxQThEQzZDRDAyNENCM0NGNDA3OTBBNUYx NEEyQzIxMzgwHhcNMjQxMTIyMjM0NjUwWhcNMjQxMTI5MjM0NjUwWjAYMRYwFAYD VQQDEw02NzQxMTdlYi1kNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHq93zRAeJ63YcpyxD+mi0EztYLysg8ufPRl5XtGkD4mbU4Wp/N/yqAOp5Z7 Yq7QOVRcH//Vo9GaYg0D5G6FKn19VxzH8iEwdK4RRyPxCn03o+L3WnGDSeISBgub 18OrINIIY2UYZNyiYOuEQ1S/PKwVq0R3601KOW6MP3tPjbGGa7PjDyDWX15ndwL0 kIoQSR9VAthhJyFAgA2WZ1XVG7NGlAliLj3YYal0rr72uqo5pYnBiOnCZ4rPvSw3 OxNOs6xiiCMN4nv6Chme7Qa4nx7LeMiMXegGhGF3B3jV3yZUcmmaIPQcueEiy6LC zuZasiQqCqz1mNZvZ54l6YhBGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzh2uND n0ZcId1+IGp0L1dnlYF5MB8GA1UdIwQYMBaAFB7+dtGo3GzQJMs89AeQpfFKLCE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdCMy8yRkQ4MTVFQzMw QjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JOQWt5enowQjVDbDhVb3NJ VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2NTIwYWpjYk5Ba3l6ejBCNUNsOFVvc0lUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdCMy8yRkQ4MTVFQzMwQjQxMUVDODA2MDkyNzVDNEY5QUUwMi9IdjUyMGFqY2JO QWt5enowQjVDbDhVb3NJVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp5OYGa7Wog6+Vsl61nEA2dJ8lg31x7XTNtnNjrbXtNOJaKDLXBRSu MtjUK5WHyQpv5wsWjV9GAYs35N4V3KPwCPC+qX5305x4FVwx/DrSd5hkqEGD7s4Q 7ZONf9TpI/gum6ho5cwyrNcwDkzxdO+JJZ8ulEpSqcyY1dbiaLtR0aDcQqCZn2lr gjjJpPoxG6gLZvKQFgUfic+Ygsmuy0NDktkZH2jAxGheyAE9L4xqT04X532GISmX 0/uCZ0rXdd+GXZP6liXzQEAU3xYZazr5iLW9xLGKQ4Mwtk2D5at16BgcTDNsRn2j Pds/YqwGty6CTpuESQmNSwf+x+ZUcest -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org