$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: dROudIRO9tBR95/2I2hzfPCRLsCLCfF8dPrLFy3gDfs= Subject key identifier: BE:55:1B:F5:80:80:77:8E:D5:FE:F0:CA:86:29:B1:69:EA:21:B8:F2 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 035E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 0352 Signing time: Thu 21 Nov 2024 00:34:37 +0000 Manifest this update: Thu 21 Nov 2024 00:34:36 +0000 Manifest next update: Thu 28 Nov 2024 00:34:36 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: Z2NB7rDgFXd2qsGNZaXJLfM/C/Nx8r7zAyCtYXBzcW0=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 0ekBq+u3qTtCrN1H3WBpcyEBXqtT/nmRB1wnzUy864Q=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: AajhgEbZBOC20FRVNZHV44NbIbhPj9V3ePlv/pPgwT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 862 (0x35e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Nov 21 00:34:36 2024 GMT Not After : Nov 28 00:34:36 2024 GMT Subject: CN=673e801c-d41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:56:70:95:cb:5e:53:33:66:6d:f8:f3:61:da: 93:e7:54:d7:c7:21:43:aa:9f:56:68:5a:98:a3:3a: 91:18:1c:b8:12:a3:43:63:f3:19:6a:ee:83:86:56: 72:12:a2:c4:c6:b1:78:61:96:a9:be:52:a4:3c:14: 2d:d0:f8:3b:4c:d9:e5:50:e9:80:67:70:93:13:c8: 49:71:79:2d:e8:17:88:99:06:a7:07:50:fc:ea:a9: 7a:81:a0:a4:5b:47:2f:fa:ee:b8:0a:93:18:19:10: 62:0d:f8:5f:4e:8a:83:c9:40:2e:86:ae:7e:f3:b1: 56:4b:63:04:58:38:38:fa:3c:60:18:c8:2a:8e:c0: 01:c0:92:c0:e9:df:d8:75:a5:46:ff:cd:e4:13:78: 9c:0d:09:60:fd:fa:4d:95:0d:04:6e:d4:95:2e:a8: 58:62:cd:9e:a8:82:8b:31:a5:a8:f5:97:0e:05:06: af:72:7c:4c:d0:ca:71:f6:61:14:9f:ba:a4:53:33: c3:27:9e:73:e5:f7:e8:af:ce:0d:0c:79:20:be:d2: b4:ac:1f:f6:85:4c:9e:3b:6d:4a:7e:33:0b:92:9b: f5:3b:d0:bc:f1:69:0d:ee:ff:b4:8b:7a:7a:33:e2: 03:89:33:dc:ef:46:fe:29:b9:d6:2c:12:1f:9c:cf: 1c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:55:1B:F5:80:80:77:8E:D5:FE:F0:CA:86:29:B1:69:EA:21:B8:F2 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:0c:ed:04:85:69:73:79:67:fc:80:42:5a:cc:a1:cc:14:5b: 3e:96:4b:28:2c:61:e3:38:d0:18:f1:73:29:c7:c8:76:b0:51: 41:18:c2:fb:4b:dc:85:6f:54:0b:84:fa:0e:1a:7f:60:93:8a: ba:24:90:19:99:57:cb:58:bc:b1:fc:ca:59:7c:66:29:25:f6: 87:f4:77:a2:e6:2f:66:62:7e:41:1e:fe:1a:d8:99:a6:1f:20: 88:69:36:05:d6:f6:1a:08:fb:97:f5:a6:7f:d9:3a:6f:f0:c5: 12:26:fd:fb:3f:57:20:e5:c6:dc:5f:58:2f:ca:30:15:1b:d1: 4c:35:c4:f0:f5:dd:54:5a:e4:cb:9d:b2:a6:c7:59:b7:c1:1b: 56:1f:4a:e6:73:88:ee:2d:4f:ff:d9:a6:2a:95:6b:49:01:58: ac:4c:d7:e0:77:09:27:e3:07:78:06:93:d0:4c:e6:da:44:15: 86:08:10:9a:82:51:c7:b3:67:ef:a2:d6:00:e5:fa:5b:5f:f1: da:b9:d0:2c:6d:30:b8:08:a9:8a:36:bd:2b:32:3e:4e:e0:3a: 13:55:a1:eb:53:5a:d4:32:5c:f7:06:ce:23:39:79:b4:f3:77: f9:99:a4:d9:94:e3:65:e3:64:62:56:54:60:79:ad:1c:1d:9c: 4e:6e:85:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjQxMTIxMDAzNDM2WhcNMjQxMTI4MDAzNDM2WjAYMRYwFAYD VQQDEw02NzNlODAxYy1kNDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1ZwlcteUzNmbfjzYdqT51TXxyFDqp9WaFqYozqRGBy4EqNDY/MZau6DhlZy EqLExrF4YZapvlKkPBQt0Pg7TNnlUOmAZ3CTE8hJcXkt6BeImQanB1D86ql6gaCk W0cv+u64CpMYGRBiDfhfToqDyUAuhq5+87FWS2MEWDg4+jxgGMgqjsABwJLA6d/Y daVG/83kE3icDQlg/fpNlQ0EbtSVLqhYYs2eqIKLMaWo9ZcOBQavcnxM0Mpx9mEU n7qkUzPDJ55z5ffor84NDHkgvtK0rB/2hUyeO21KfjMLkpv1O9C88WkN7v+0i3p6 M+IDiTPc70b+KbnWLBIfnM8c9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5VG/WA gHeO1f7wyoYpsWnqIbjyMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWDO0EhWlzeWf8gEJazKHMFFs+lksoLGHjONAY8XMpx8h2sFFBGML7 S9yFb1QLhPoOGn9gk4q6JJAZmVfLWLyx/MpZfGYpJfaH9Hei5i9mYn5BHv4a2Jmm HyCIaTYF1vYaCPuX9aZ/2Tpv8MUSJv37P1cg5cbcX1gvyjAVG9FMNcTw9d1UWuTL nbKmx1m3wRtWH0rmc4juLU//2aYqlWtJAVisTNfgdwkn4wd4BpPQTObaRBWGCBCa glHHs2fvotYA5fpbX/HaudAsbTC4CKmKNr0rMj5O4DoTVaHrU1rUMlz3Bs4jOXm0 83f5maTZlONl42RiVlRgea0cHZxOboWY -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:06 2024 by rpki-client on console-ams.rpki-client.org