$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft File: Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft (raw, json) Hash identifier: BBuYhjnbjgVC48TgQopVBa2CGr+2BymT0RsmtJ4N/gI= Subject key identifier: 1A:BF:42:61:19:B7:F9:FD:7A:5D:B1:CA:8F:C5:AB:97:7D:1E:A9:88 Authority key identifier: 1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE Certificate issuer: /CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Certificate serial: 07F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft Manifest number: 07EB Signing time: Fri 22 Nov 2024 20:38:27 +0000 Manifest this update: Fri 22 Nov 2024 20:38:27 +0000 Manifest next update: Fri 29 Nov 2024 20:38:27 +0000 Files and hashes: 1: Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl (hash: jWu27E5feAe49KId6+J878Doql/FMKldq6K23K9gt+g=) 2: 3A5B01A0CA8F11EAA35BF958C4F9AE02.roa (hash: rarNamT8etGmrzl2oBorgmdNrF9oOnpcrAlb12sZ65o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C9A/serialNumber=1E7E0D8946BC48D0754B03E9872AD3880C54E4BE Validity Not Before: Nov 22 20:38:27 2024 GMT Not After : Nov 29 20:38:27 2024 GMT Subject: CN=6740ebc3-fe8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:67:1d:6f:0f:5e:5c:bd:43:bc:aa:14:cc:40: 57:28:36:e2:13:67:7a:23:c9:ba:56:82:b3:c9:5c: ae:f5:c9:0d:fb:42:06:87:b5:a3:fd:28:76:c9:ef: 1a:bd:b0:30:79:1e:f8:57:1c:4b:2b:03:b7:58:60: fc:b2:77:02:b7:6c:57:2e:81:2a:1a:5c:9f:6e:f3: 14:52:6a:c0:5a:d9:32:4f:5e:b0:14:d9:72:ab:ba: 8d:c6:ec:83:8a:31:3f:6d:d4:50:f0:4d:01:ae:aa: 6c:00:6d:59:62:e2:c4:f8:ab:fd:89:c4:a6:9b:d0: 72:95:61:7f:bd:a7:39:fd:a8:a6:3e:fd:de:10:9a: 77:53:98:5e:eb:36:5d:28:96:eb:4f:81:16:8e:9f: 41:8c:ea:a2:22:18:43:b0:75:7f:bd:47:cc:cc:52: 0c:ee:93:82:20:38:f3:9c:43:50:25:35:20:59:9c: 41:75:e5:2a:b2:4c:0c:28:81:39:ea:3d:50:ad:ce: 3c:f4:af:8d:f0:c3:df:75:7c:1d:54:75:35:36:84: 1d:dc:16:4b:4f:b1:5a:6e:8a:bc:22:b6:3d:12:39: 91:51:d2:88:38:d3:a2:f2:93:7a:f9:a8:43:98:dc: b2:68:cf:d6:26:fd:d1:5e:a7:73:05:67:c1:75:d4: 65:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BF:42:61:19:B7:F9:FD:7A:5D:B1:CA:8F:C5:AB:97:7D:1E:A9:88 X509v3 Authority Key Identifier: keyid:1E:7E:0D:89:46:BC:48:D0:75:4B:03:E9:87:2A:D3:88:0C:54:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hn4NiUa8SNB1SwPphyrTiAxU5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C9A/A1D61D3ACA8D11EABE5BB656C4F9AE02/Hn4NiUa8SNB1SwPphyrTiAxU5L4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:72:e0:1c:6e:a8:8e:a8:41:0e:84:48:b7:32:6e:d2:12:a2: 23:e0:51:f5:6a:b5:34:32:d9:0a:74:de:55:a0:90:19:6a:c8: 0d:d2:4f:48:59:11:db:ad:94:c3:36:6d:c9:20:00:36:5c:08: dd:1e:18:2d:15:87:c3:73:e1:78:0b:cf:96:4a:40:fc:a2:db: f4:2c:90:90:5f:e8:d4:14:03:e8:a4:37:c1:c4:8e:71:76:2f: b6:09:32:af:ba:0f:e6:25:ab:db:00:08:ab:e1:f3:bf:3f:68: cd:36:d5:03:93:28:10:3d:ec:80:ee:25:9d:64:0b:f2:0e:e5: a9:bb:95:db:a0:9a:b4:f3:47:71:0e:e9:d1:e2:6c:a0:84:77: 24:bd:6d:3f:fb:2f:ba:16:ea:ba:44:ef:38:e0:71:67:5d:b1: 4c:a0:5d:77:c1:ad:1e:36:d6:c0:69:fa:a4:9a:da:e8:49:23: 56:c3:92:dd:e3:99:5a:f8:b3:f4:a4:0e:06:ff:59:90:49:04: dd:f1:d6:06:6b:ac:82:cd:c9:47:a8:92:e1:29:ec:26:22:7a: c6:de:88:0d:0b:e2:23:04:5b:c0:cf:9a:22:6b:60:be:c5:e4: dc:5b:a9:98:52:57:18:cf:92:54:fe:1b:dd:f1:c8:b9:8a:f3: 63:43:f0:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDOUExMTAvBgNVBAUTKDFFN0UwRDg5NDZCQzQ4RDA3NTRCMDNFOTg3MkFEMzg4 MEM1NEU0QkUwHhcNMjQxMTIyMjAzODI3WhcNMjQxMTI5MjAzODI3WjAYMRYwFAYD VQQDEw02NzQwZWJjMy1mZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWcdbw9eXL1DvKoUzEBXKDbiE2d6I8m6VoKzyVyu9ckN+0IGh7Wj/Sh2ye8a vbAweR74VxxLKwO3WGD8sncCt2xXLoEqGlyfbvMUUmrAWtkyT16wFNlyq7qNxuyD ijE/bdRQ8E0BrqpsAG1ZYuLE+Kv9icSmm9BylWF/vac5/aimPv3eEJp3U5he6zZd KJbrT4EWjp9BjOqiIhhDsHV/vUfMzFIM7pOCIDjznENQJTUgWZxBdeUqskwMKIE5 6j1Qrc489K+N8MPfdXwdVHU1NoQd3BZLT7Faboq8IrY9EjmRUdKIONOi8pN6+ahD mNyyaM/WJv3RXqdzBWfBddRlCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq/QmEZ t/n9el2xyo/Fq5d9HqmIMB8GA1UdIwQYMBaAFB5+DYlGvEjQdUsD6Ycq04gMVOS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M5QS9BMUQ2MUQzQUNB OEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNOQjFTd1BwaHlyVGlBeFU1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0huNE5pVWE4U05CMVN3UHBoeXJUaUF4VTVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M5QS9BMUQ2MUQzQUNBOEQxMUVBQkU1QkI2NTZDNEY5QUUwMi9IbjROaVVhOFNO QjFTd1BwaHlyVGlBeFU1TDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCucuAcbqiOqEEOhEi3Mm7SEqIj4FH1arU0MtkKdN5VoJAZasgN0k9I WRHbrZTDNm3JIAA2XAjdHhgtFYfDc+F4C8+WSkD8otv0LJCQX+jUFAPopDfBxI5x di+2CTKvug/mJavbAAir4fO/P2jNNtUDkygQPeyA7iWdZAvyDuWpu5XboJq080dx DunR4myghHckvW0/+y+6Fuq6RO844HFnXbFMoF13wa0eNtbAafqkmtroSSNWw5Ld 45la+LP0pA4G/1mQSQTd8dYGa6yCzclHqJLhKewmInrG3ogNC+IjBFvAz5oia2C+ xeTcW6mYUlcYz5JU/hvd8ci5ivNjQ/Ag -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:13 2024 by rpki-client on console-fra.rpki-client.org