$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: VYNvnZ0oaXYayOmijtm93BDkNdIfX/05jjNnLSEfqTA= Subject key identifier: A5:32:57:63:88:B8:CA:AA:AA:CA:28:C7:9B:BD:D3:0F:83:08:32:E7 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 2085 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 2074 Signing time: Fri 22 Nov 2024 15:57:40 +0000 Manifest this update: Fri 22 Nov 2024 15:57:39 +0000 Manifest next update: Fri 29 Nov 2024 15:57:39 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: q6kg5R33yddmTA9x9KsE//B9zylwq2nx1JzHxEQ4YwQ=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: ZtA42MiYiR48zZwCRwa0egur+P+IXymEJJp62pzAS3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8325 (0x2085) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Nov 22 15:57:39 2024 GMT Not After : Nov 29 15:57:39 2024 GMT Subject: CN=6740a9f4-3088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:71:fe:d4:04:d7:d3:1e:f5:dc:7c:36:27:25: cd:fb:f2:70:0c:0f:98:66:ca:5e:e2:cf:44:00:53: f1:7a:2f:f2:0f:62:b2:26:fd:7e:fa:ea:16:13:da: 51:22:03:b7:99:cc:07:49:df:85:0c:ba:90:ad:71: f9:5b:eb:da:4c:af:1d:55:3e:e4:da:b5:af:59:da: b4:af:8a:20:17:6c:7f:a9:7e:0f:b4:43:52:e7:a4: 94:52:8d:b3:4d:1b:42:8f:05:52:bc:8b:d9:00:c5: 94:b3:c9:db:5a:1a:2d:8e:a5:37:7f:df:30:03:a9: 47:57:81:e3:e9:89:61:45:4a:22:ab:9b:8f:79:82: 84:d6:09:ae:a5:42:a3:0d:68:05:1a:b3:6c:ed:d1: ef:68:b0:9e:a9:ca:6e:e7:53:a4:f3:fc:43:80:99: ac:0a:cb:06:8a:6e:62:1e:3c:70:f9:f6:c5:9b:70: ce:7f:c7:bc:96:52:2d:62:19:80:6b:f5:81:3b:1f: aa:4a:60:70:29:5f:c9:7b:68:9b:88:3c:cd:95:5e: 7d:f4:a5:21:11:fc:c1:0a:05:bb:bf:60:08:5a:22: 26:ac:6f:46:83:1d:0a:44:21:8b:5a:58:32:5f:45: a1:d4:ff:05:3d:75:85:2c:70:23:3e:ac:e9:3b:40: e9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:32:57:63:88:B8:CA:AA:AA:CA:28:C7:9B:BD:D3:0F:83:08:32:E7 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:89:b2:fe:53:fd:2d:3c:26:ba:f9:bf:de:24:47:2f:ac:00: d9:61:29:7b:c2:62:41:3f:63:bd:0f:3c:02:3e:da:d5:ce:ca: bf:a6:18:f6:80:0c:3d:e0:d4:67:8d:3a:b7:13:9d:c8:fb:91: 29:da:dd:c2:1f:cf:5e:d6:dd:0c:05:8f:76:20:66:55:6d:30: ca:b9:a7:91:21:d2:58:b7:37:84:c6:fb:a8:98:4f:f2:73:42: 71:f4:aa:12:5d:14:7a:c4:df:31:79:7b:08:78:ff:35:64:b7: 81:88:1c:9a:cf:ad:54:e7:cf:f2:23:9f:08:5f:9a:ef:97:b8: e3:31:b8:64:60:cb:f3:e8:49:36:b2:14:27:c2:6d:d2:ab:a1: 30:27:3b:09:5f:74:67:64:5e:15:07:8d:89:1e:4c:ec:72:47: 0d:76:54:35:b0:7a:ae:2b:a7:6a:8a:e9:f3:f1:46:95:08:42: f0:56:1e:15:be:d1:d7:bc:42:e8:c4:20:3c:7a:28:fb:8d:8a: 25:df:91:96:8d:d1:ca:1c:71:96:99:06:5c:12:35:d7:1e:19: 77:83:82:ad:d7:82:05:f8:5b:1f:50:67:a4:ff:1f:1e:39:ed: 4f:65:de:7e:19:9c:66:bc:9a:6f:47:05:c7:10:4e:f5:92:bc: 98:0c:29:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjQxMTIyMTU1NzM5WhcNMjQxMTI5MTU1NzM5WjAYMRYwFAYD VQQDEw02NzQwYTlmNC0zMDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3H+1ATX0x713Hw2JyXN+/JwDA+YZspe4s9EAFPxei/yD2KyJv1++uoWE9pR IgO3mcwHSd+FDLqQrXH5W+vaTK8dVT7k2rWvWdq0r4ogF2x/qX4PtENS56SUUo2z TRtCjwVSvIvZAMWUs8nbWhotjqU3f98wA6lHV4Hj6YlhRUoiq5uPeYKE1gmupUKj DWgFGrNs7dHvaLCeqcpu51Ok8/xDgJmsCssGim5iHjxw+fbFm3DOf8e8llItYhmA a/WBOx+qSmBwKV/Je2ibiDzNlV599KUhEfzBCgW7v2AIWiImrG9Ggx0KRCGLWlgy X0Wh1P8FPXWFLHAjPqzpO0Dp8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUyV2OI uMqqqsoox5u90w+DCDLnMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVibL+U/0tPCa6+b/eJEcvrADZYSl7wmJBP2O9DzwCPtrVzsq/phj2 gAw94NRnjTq3E53I+5Ep2t3CH89e1t0MBY92IGZVbTDKuaeRIdJYtzeExvuomE/y c0Jx9KoSXRR6xN8xeXsIeP81ZLeBiByaz61U58/yI58IX5rvl7jjMbhkYMvz6Ek2 shQnwm3Sq6EwJzsJX3RnZF4VB42JHkzsckcNdlQ1sHquK6dqiunz8UaVCELwVh4V vtHXvELoxCA8eij7jYol35GWjdHKHHGWmQZcEjXXHhl3g4Kt14IF+FsfUGek/x8e Oe1PZd5+GZxmvJpvRwXHEE71kryYDCkc -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org