$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json) Hash identifier: 0KkT+bGyKeVIj/9sfTqbjLgeLZX2iukwnGegUfg+7ek= Subject key identifier: 02:D6:8E:B7:44:66:20:D0:B8:3F:1B:DA:E9:D9:78:B8:BB:88:2A:90 Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 0998 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft Manifest number: 098E Signing time: Fri 22 Nov 2024 19:50:43 +0000 Manifest this update: Fri 22 Nov 2024 19:50:42 +0000 Manifest next update: Fri 29 Nov 2024 19:50:42 +0000 Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: /N8ob0gInC9rO0MqHmjSdbhk5tEbTzpxuAAjgC/gi04=) 2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: pkQyF6/gfOZsdS2FZ7pXb1wwkEQgEQkFPici094hylM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2456 (0x998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Nov 22 19:50:42 2024 GMT Not After : Nov 29 19:50:42 2024 GMT Subject: CN=6740e093-36da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:15:ac:f8:92:49:67:4d:97:2a:69:e4:b5:f4: 25:06:98:1b:6b:f8:b6:42:e1:5e:6f:10:f9:ae:cb: ff:96:a3:b0:2b:2e:c9:7a:b7:bd:38:d2:1b:04:50: fd:55:48:82:a0:4f:64:a0:0d:f0:53:c7:f2:e3:f8: 50:40:70:02:c3:4a:b8:81:26:5a:b8:ab:89:8c:51: e9:d0:d6:1d:70:c3:89:c6:f4:db:1c:e5:f2:84:0c: d3:6b:12:02:cf:33:60:b7:df:8c:0a:c4:63:d7:70: ea:c8:50:3c:ea:46:c7:ff:8d:87:dd:49:a1:8b:9b: 3b:04:dd:ef:53:43:b4:e1:c1:a1:92:b4:aa:9a:b9: b4:af:35:b4:3b:53:d6:a8:27:43:d7:d9:a4:d6:c2: 38:e2:a5:89:fe:03:c7:d8:7d:7e:5a:ae:bd:f6:c2: db:e0:87:1c:bd:03:d6:80:e6:bb:38:88:75:8b:7f: e3:a1:d4:8a:0b:62:4d:4a:ed:d1:cc:cf:6d:ee:32: f8:a2:fd:95:68:f6:7b:bd:f1:c5:75:18:a4:73:db: 72:56:5a:49:e5:ce:70:77:29:ce:04:51:4d:a0:aa: ff:6c:58:c9:9e:4f:db:1b:0a:91:3b:54:15:c3:af: ad:bb:7d:32:54:f2:eb:5d:6e:ca:ed:1f:11:cf:b4: 3e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D6:8E:B7:44:66:20:D0:B8:3F:1B:DA:E9:D9:78:B8:BB:88:2A:90 X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:81:14:10:51:94:3a:cf:18:00:91:42:9a:03:38:5c:5a:d0: 65:0e:76:8c:2f:35:bf:e8:56:fc:86:d8:d5:69:72:39:e7:d2: c7:11:81:a0:bb:a9:b3:f1:23:8c:36:0f:85:c6:fe:e5:67:ae: 36:ae:d1:38:de:63:5a:74:69:70:d1:49:42:56:bb:58:69:4b: d8:24:7a:cb:fc:16:2d:5c:ff:32:6e:c7:b6:e0:46:f0:21:63: fb:11:e6:00:52:11:4d:34:76:ef:e7:80:69:c0:b8:69:a0:7a: 91:6d:71:a7:62:5d:5e:4a:b7:fc:e5:01:b3:fa:e6:74:f7:49: 79:fc:8d:0b:d3:a0:37:c2:d8:41:e4:09:55:d4:eb:09:f1:f3: ec:98:c8:61:79:50:a0:bc:3e:da:4f:75:b5:e1:24:95:c6:cb: f8:93:4d:8b:b5:c4:fe:72:94:15:b9:dc:6a:55:3f:47:9c:4b: 34:92:07:40:3e:63:41:37:66:e2:a7:aa:e9:b9:87:23:24:c8: f7:cb:36:c6:81:6c:35:bb:55:b8:0b:1b:46:db:e8:26:7d:17: 8d:21:22:1e:1d:c7:a8:a2:e7:b2:09:63:04:54:04:67:d7:44: e9:42:cc:3c:52:6c:ad:f9:a2:0f:10:15:8a:5e:9c:00:b5:3f: ef:54:c3:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjQxMTIyMTk1MDQyWhcNMjQxMTI5MTk1MDQyWjAYMRYwFAYD VQQDEw02NzQwZTA5My0zNmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRWs+JJJZ02XKmnktfQlBpgba/i2QuFebxD5rsv/lqOwKy7Jere9ONIbBFD9 VUiCoE9koA3wU8fy4/hQQHACw0q4gSZauKuJjFHp0NYdcMOJxvTbHOXyhAzTaxIC zzNgt9+MCsRj13DqyFA86kbH/42H3Umhi5s7BN3vU0O04cGhkrSqmrm0rzW0O1PW qCdD19mk1sI44qWJ/gPH2H1+Wq699sLb4IccvQPWgOa7OIh1i3/jodSKC2JNSu3R zM9t7jL4ov2VaPZ7vfHFdRikc9tyVlpJ5c5wdynOBFFNoKr/bFjJnk/bGwqRO1QV w6+tu30yVPLrXW7K7R8Rz7Q+kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALWjrdE ZiDQuD8b2unZeLi7iCqQMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjIyNy8wRDcyOEEwQTdBM0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9O ZFltTzFMQmZudFRFQUV6cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfgRQQUZQ6zxgAkUKaAzhcWtBlDnaMLzW/6Fb8htjVaXI559LHEYGg u6mz8SOMNg+Fxv7lZ642rtE43mNadGlw0UlCVrtYaUvYJHrL/BYtXP8ybse24Ebw IWP7EeYAUhFNNHbv54BpwLhpoHqRbXGnYl1eSrf85QGz+uZ090l5/I0L06A3wthB 5AlV1OsJ8fPsmMhheVCgvD7aT3W14SSVxsv4k02LtcT+cpQVudxqVT9HnEs0kgdA PmNBN2bip6rpuYcjJMj3yzbGgWw1u1W4CxtG2+gmfReNISIeHceooueyCWMEVARn 10TpQsw8Umyt+aIPEBWKXpwAtT/vVMO2 -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org