$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft File: He4XpqM4DuSI7ztuISW4eOZAckg.mft (raw, json) Hash identifier: aEfBfBQzZ+/KhDrVa1TgV0jxE8OnxUQltwVcOLC645M= Subject key identifier: F8:C1:38:4C:4E:06:C2:17:60:F0:1F:60:44:36:BC:07:48:87:16:DC Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft Manifest number: 0119 Signing time: Sat 23 Nov 2024 03:01:31 +0000 Manifest this update: Sat 23 Nov 2024 03:01:30 +0000 Manifest next update: Sat 30 Nov 2024 03:01:30 +0000 Files and hashes: 1: He4XpqM4DuSI7ztuISW4eOZAckg.crl (hash: IkJ7x3ctaEASVfJCya+AJJHjosZrZd1ycQSa/WzHQbE=) 2: 8405155C69EB11EF933A993CC4F9AE02.roa (hash: KqMt9phZ8XUUuD0mnBnPJy5s5JnY4AHzIdD5+OAEsY4=) 3: 805A2E74660311EF90397033C4F9AE02.roa (hash: rPnc+aLwa+d5IwykOHXYF2wZIOiKCdYANiQw09gw2p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Nov 23 03:01:30 2024 GMT Not After : Nov 30 03:01:30 2024 GMT Subject: CN=6741458a-fe31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:96:b5:26:d5:33:ab:19:30:ed:85:38:e7:22: bb:3e:3a:d5:10:0b:02:bf:ca:38:09:e5:83:68:d0: b5:e7:1f:18:82:ac:26:38:a9:ef:84:53:b4:0e:37: d7:d7:28:ad:a6:13:58:1b:64:5b:3f:16:da:f4:12: 2d:67:f9:94:00:75:99:3b:7c:8f:8e:c3:54:f4:94: 57:39:c7:15:49:ff:29:ae:d2:17:fc:2b:d6:39:4b: a1:82:a4:34:31:3e:e0:d3:01:bb:a3:11:73:39:c8: d5:29:dd:d7:aa:0f:60:00:76:60:30:6d:d7:1f:90: da:b5:38:f5:36:de:ab:31:6a:54:61:c2:9d:dc:90: f9:16:84:bd:2b:a6:67:6c:b7:c5:c1:c2:b9:fa:c2: 05:6a:c8:56:df:20:49:bb:af:46:2c:57:cd:90:aa: de:2b:d3:58:e6:4e:56:0b:3a:7e:66:ff:bc:ea:2b: a9:a0:f8:fe:5b:42:fc:ff:fd:25:ef:2f:00:60:5f: cd:da:87:34:71:6e:8a:25:41:18:27:94:ca:62:ec: fb:68:38:04:35:c8:9d:d7:cd:10:6b:f9:12:df:a7: 19:a9:54:ea:05:9d:ed:2a:80:c1:91:b1:72:1c:a5: ce:bd:4c:21:15:7f:dd:74:e9:6a:e2:6b:9e:9a:d9: d0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C1:38:4C:4E:06:C2:17:60:F0:1F:60:44:36:BC:07:48:87:16:DC X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:40:95:91:24:db:2b:80:13:73:fe:a4:d7:06:8d:47:de:81: 4b:85:5d:b9:3e:ba:05:f6:e7:ef:f2:9e:f8:ad:af:a9:c8:09: 1a:23:1f:ee:91:33:bc:d2:f8:e9:b1:8f:98:0f:fa:f5:6e:b0: be:eb:82:3f:1a:6d:a6:a9:ed:09:41:68:11:22:39:d7:15:a8: 19:e1:2c:3a:47:18:f8:dd:54:e1:96:bf:7a:7a:5c:e3:94:fb: b5:78:0c:c6:9d:50:63:a1:8a:06:7f:e1:42:be:32:e1:e8:56: 41:9f:2a:c8:78:05:38:e7:f1:ab:0f:f2:c7:c5:29:90:11:9d: 1b:14:c7:a1:1a:26:10:2e:f9:4e:23:fe:aa:0b:cc:13:75:16: d0:fd:14:f8:ac:d0:f2:b1:b2:dc:34:e1:b9:13:28:f2:98:3b: 3d:eb:af:fd:54:32:71:63:fc:ad:c2:33:d6:70:fb:09:51:d3: e9:b4:0f:e1:46:93:d7:af:1b:a4:29:c6:1c:c1:df:b7:c2:40: cd:5e:ff:f2:ad:79:d2:46:81:d3:e4:d6:9c:34:d4:a9:ad:04: 11:e6:79:6f:22:f4:92:2a:9c:9a:d3:8c:f1:52:7b:91:ac:2f: 74:a5:cd:b1:1f:31:5d:cb:88:4c:55:67:e1:40:4e:25:e5:10: b6:48:e7:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjQxMTIzMDMwMTMwWhcNMjQxMTMwMDMwMTMwWjAYMRYwFAYD VQQDEw02NzQxNDU4YS1mZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZa1JtUzqxkw7YU45yK7PjrVEAsCv8o4CeWDaNC15x8YgqwmOKnvhFO0DjfX 1yitphNYG2RbPxba9BItZ/mUAHWZO3yPjsNU9JRXOccVSf8prtIX/CvWOUuhgqQ0 MT7g0wG7oxFzOcjVKd3Xqg9gAHZgMG3XH5DatTj1Nt6rMWpUYcKd3JD5FoS9K6Zn bLfFwcK5+sIFashW3yBJu69GLFfNkKreK9NY5k5WCzp+Zv+86iupoPj+W0L8//0l 7y8AYF/N2oc0cW6KJUEYJ5TKYuz7aDgENcid180Qa/kS36cZqVTqBZ3tKoDBkbFy HKXOvUwhFX/ddOlq4muemtnQ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjBOExO BsIXYPAfYEQ2vAdIhxbcMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyMi8zRjdENjhBOEZERTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1 U0k3enR1SVNXNGVPWkFja2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAQJWRJNsrgBNz/qTXBo1H3oFLhV25ProF9ufv8p74ra+pyAkaIx/u kTO80vjpsY+YD/r1brC+64I/Gm2mqe0JQWgRIjnXFagZ4Sw6Rxj43VThlr96elzj lPu1eAzGnVBjoYoGf+FCvjLh6FZBnyrIeAU45/GrD/LHxSmQEZ0bFMehGiYQLvlO I/6qC8wTdRbQ/RT4rNDysbLcNOG5EyjymDs966/9VDJxY/ytwjPWcPsJUdPptA/h RpPXrxukKcYcwd+3wkDNXv/yrXnSRoHT5NacNNSprQQR5nlvIvSSKpya04zxUnuR rC90pc2xHzFdy4hMVWfhQE4l5RC2SOdy -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:57 2024 by rpki-client on console-ams.rpki-client.org