$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft File: HteCvmLXEBdmiyijJonkcO2iAfg.mft (raw, json) Hash identifier: 9T5ohhin0XticzppIb6fzKHrT9yG4aoVKiuTAjakKRc= Subject key identifier: 78:CC:36:B3:CB:58:38:10:DA:EA:BF:B1:84:C6:22:DB:EA:78:4E:B8 Authority key identifier: 1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 Certificate issuer: /CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Certificate serial: 06A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft Manifest number: 06A2 Signing time: Fri 22 Nov 2024 21:47:17 +0000 Manifest this update: Fri 22 Nov 2024 21:47:16 +0000 Manifest next update: Fri 29 Nov 2024 21:47:16 +0000 Files and hashes: 1: HteCvmLXEBdmiyijJonkcO2iAfg.crl (hash: FJ+FdjVbkI4OrRjsVY2iGbwY8cBU889cVnQFFkQbcVM=) 2: D41A1814442211EBBF7D9D65C4F9AE02.roa (hash: wrLVWTfBY7EfCeqWtjAJjv+pu46Ld+Ri9uPM3Fhe0T0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Validity Not Before: Nov 22 21:47:16 2024 GMT Not After : Nov 29 21:47:16 2024 GMT Subject: CN=6740fbe5-51e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e6:ee:4d:a7:16:68:ed:44:58:0a:5c:4c:c9: d8:88:4e:d8:d5:ef:e9:52:0d:f8:a2:54:ea:75:2f: 77:44:fe:4a:c3:79:f2:b4:31:ec:64:01:f7:bf:eb: e0:1a:f6:65:f2:4e:54:20:56:42:b3:7e:00:16:2f: da:ef:3f:8f:6b:54:ee:96:6e:15:89:a9:c6:ba:5f: 4a:21:ea:cd:fe:01:9a:57:3e:40:28:57:ab:bb:77: f2:a0:9c:61:c0:1d:2a:0f:41:2b:48:0a:92:2a:ce: be:16:53:c0:8a:56:41:9f:d4:2c:2a:0f:cb:8c:f8: 14:c0:ea:03:43:6d:45:39:46:09:2c:1e:8b:68:31: 35:24:ff:67:eb:07:67:76:1d:b4:9e:a0:42:ae:92: 94:20:d1:b7:0a:0e:a7:8f:47:ea:1e:fc:29:3f:fc: 55:ef:dd:52:e2:3b:3f:0e:17:df:d0:07:09:53:48: 0e:a5:95:9e:4d:eb:3d:53:61:4a:27:19:bc:0e:42: 14:ef:4a:a8:a3:ea:f1:95:fb:0f:ad:7f:75:60:e4: 20:10:58:98:5d:e9:d9:86:77:78:1b:15:76:24:5e: 3b:0c:6f:d9:4e:26:1b:f0:e9:e3:fb:0d:af:46:91: a0:43:c1:4d:51:f2:ed:8c:61:3a:c7:20:34:5c:b2: 6b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CC:36:B3:CB:58:38:10:DA:EA:BF:B1:84:C6:22:DB:EA:78:4E:B8 X509v3 Authority Key Identifier: keyid:1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:f1:35:32:3f:d8:d9:c9:1b:43:b8:7b:d4:6c:03:bf:b3:b3: 7d:25:30:a3:bb:a9:00:ac:0e:79:80:0c:9c:97:a5:a2:93:3e: 69:50:5a:54:a5:57:af:91:85:c1:6f:17:e9:30:c7:13:cf:87: ad:b9:9c:4e:22:d8:56:9e:2a:7b:98:58:fb:d2:e9:f2:c6:45: a6:22:99:8a:ee:1a:3b:0e:fc:cc:8d:b8:42:6d:c9:37:7d:88: 55:fa:2f:2f:43:39:35:21:b8:5e:d8:fd:53:1c:c2:51:16:8c: a1:1e:43:e8:4d:37:16:44:ea:60:2c:35:2b:24:0a:b6:71:23: 06:11:cb:64:90:0d:71:94:e6:de:ba:1c:77:86:4f:1a:c8:68: 77:66:20:dd:ed:1e:e9:c1:27:c3:0d:cc:c1:dd:79:f9:fe:ea: 78:46:f1:55:48:47:c1:2a:4a:47:a4:f1:37:b9:a3:55:ae:43: 91:0b:aa:2a:e7:14:92:b9:ed:fb:8a:77:96:78:b2:db:6c:12: 8a:7d:12:fe:f4:fa:00:17:38:76:24:32:aa:52:d7:19:b7:59: 79:77:19:2f:18:48:f0:de:c4:e6:5f:8c:cd:aa:d5:26:39:d0: 80:88:7b:87:4a:a9:7c:99:17:07:23:10:16:5b:4e:ad:b6:0b: 79:9c:90:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyNTcxMTAvBgNVBAUTKDFFRDc4MkJFNjJENzEwMTc2NjhCMjhBMzI2ODlFNDcw RURBMjAxRjgwHhcNMjQxMTIyMjE0NzE2WhcNMjQxMTI5MjE0NzE2WjAYMRYwFAYD VQQDEw02NzQwZmJlNS01MWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtubuTacWaO1EWApcTMnYiE7Y1e/pUg34olTqdS93RP5Kw3nytDHsZAH3v+vg GvZl8k5UIFZCs34AFi/a7z+Pa1Tulm4VianGul9KIerN/gGaVz5AKFeru3fyoJxh wB0qD0ErSAqSKs6+FlPAilZBn9QsKg/LjPgUwOoDQ21FOUYJLB6LaDE1JP9n6wdn dh20nqBCrpKUING3Cg6nj0fqHvwpP/xV791S4js/Dhff0AcJU0gOpZWeTes9U2FK Jxm8DkIU70qoo+rxlfsPrX91YOQgEFiYXenZhnd4GxV2JF47DG/ZTiYb8Onj+w2v RpGgQ8FNUfLtjGE6xyA0XLJrHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjMNrPL WDgQ2uq/sYTGItvqeE64MB8GA1UdIwQYMBaAFB7Xgr5i1xAXZosooyaJ5HDtogH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTI1Ny9BOTBGMUVFNjQ0 MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVCZG1peWlqSm9ua2NPMmlB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZUN2bUxYRUJkbWl5aWpKb25rY08yaUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTI1Ny9BOTBGMUVFNjQ0MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVC ZG1peWlqSm9ua2NPMmlBZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI8TUyP9jZyRtDuHvUbAO/s7N9JTCju6kArA55gAycl6Wikz5pUFpU pVevkYXBbxfpMMcTz4etuZxOIthWnip7mFj70unyxkWmIpmK7ho7DvzMjbhCbck3 fYhV+i8vQzk1Ibhe2P1THMJRFoyhHkPoTTcWROpgLDUrJAq2cSMGEctkkA1xlObe uhx3hk8ayGh3ZiDd7R7pwSfDDczB3Xn5/up4RvFVSEfBKkpHpPE3uaNVrkORC6oq 5xSSue37ineWeLLbbBKKfRL+9PoAFzh2JDKqUtcZt1l5dxkvGEjw3sTmX4zNqtUm OdCAiHuHSql8mRcHIxAWW06ttgt5nJDh -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:52 2024 by rpki-client on console-ams.rpki-client.org