$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: 5yeQiKnUpKb5lBUTdjeZIWcMy/dMHOU7nqG+pjHfVVY= Subject key identifier: 0C:5D:19:28:A0:60:01:49:62:A5:01:66:8B:19:F1:AF:3A:31:B7:97 Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 01B8 Signing time: Sat 23 Nov 2024 01:47:15 +0000 Manifest this update: Sat 23 Nov 2024 01:47:14 +0000 Manifest next update: Sat 30 Nov 2024 01:47:14 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: vqVVKJnP/KqBvISZWx7eydtWgaLQXHmcP16khMo33VY=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: PkaRAOyxeuH2U7UkwpCaJHtr/yLJ/iuQhH7B44HKa84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Nov 23 01:47:14 2024 GMT Not After : Nov 30 01:47:14 2024 GMT Subject: CN=67413422-f23f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:19:5f:ca:1d:05:f3:54:fb:6c:1c:68:70:4a: 0b:70:4c:54:21:11:1d:5e:99:01:49:95:8a:7a:37: 83:40:d3:a7:a2:f6:47:a6:f5:26:9e:aa:b4:cd:87: f7:55:de:69:9e:e0:d5:ab:a4:69:49:6a:c9:54:75: c0:53:f5:c1:27:57:bf:f9:fa:96:29:b4:dd:b2:1c: 4e:9e:20:46:62:cf:83:8d:9a:3e:ce:ed:fd:e4:09: 7f:5d:d6:03:4a:0b:cf:66:83:11:8b:5f:d3:ce:1a: 9d:42:68:18:e8:ed:ec:5f:27:af:fc:fa:a2:d8:7a: 0b:3a:88:b2:79:4e:3f:01:a2:ff:e1:53:c8:fb:93: f6:1a:5e:4c:65:7a:19:ea:ce:a2:90:27:db:03:94: 70:f3:91:a8:ce:2a:71:f4:35:11:d9:93:e3:47:61: f6:2a:92:23:13:88:f9:ff:e5:6f:df:ff:a2:77:71: c3:88:57:bd:b9:41:be:5e:20:77:2d:30:1b:ce:83: 4b:93:24:12:14:b2:e6:ca:85:8c:d0:66:25:db:80: c4:94:8a:de:d1:55:b6:6d:46:d3:a6:ce:55:3c:62: 78:2c:3a:ab:31:c8:fe:b0:a0:a4:19:61:9e:00:6c: 26:3f:f8:74:83:f5:b8:f9:70:7f:94:ae:38:e4:d2: 80:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5D:19:28:A0:60:01:49:62:A5:01:66:8B:19:F1:AF:3A:31:B7:97 X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:73:df:5b:3f:16:f9:41:26:82:76:a7:38:95:b6:a5:83:4d: 2f:31:a9:30:b9:a1:46:4d:01:7a:1b:a0:35:98:1e:6b:81:0b: 65:ee:6d:fa:87:37:34:b9:3e:61:f0:de:30:97:3c:3f:5f:8b: b4:ac:43:d4:a6:b3:bf:3f:a1:49:0c:44:53:f2:fa:b9:d7:b3: a5:2a:7e:30:72:cf:d5:de:95:e8:f9:c7:9f:d2:41:0f:9e:58: 45:4e:ff:a4:f2:18:ea:77:5d:ec:11:55:90:95:3c:d2:7a:76: 6d:8c:3e:e1:3a:e7:65:95:34:0f:a8:ab:d7:a6:e6:13:7d:56: cd:ee:51:c9:34:87:8f:3c:98:8c:fc:1d:1f:65:b1:aa:dd:4d: 79:15:f4:0f:2a:60:51:4c:eb:89:2f:0d:4e:82:73:0c:78:4c: 55:9d:d8:48:f3:64:e8:a4:cf:98:36:14:ba:90:8e:b5:6c:59: 08:1e:fe:8b:39:59:0f:23:82:37:38:55:a6:74:0a:14:1c:9b: 8f:ed:8a:36:a4:d9:50:79:95:1f:0f:3f:2d:5e:62:b4:11:11: c5:86:f8:ad:c6:eb:3b:fd:f9:73:21:c8:70:a8:af:12:58:b0: 96:e7:89:f1:c5:88:51:c9:e2:16:32:f4:8f:cd:84:dd:49:82: 9e:3a:79:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjQxMTIzMDE0NzE0WhcNMjQxMTMwMDE0NzE0WjAYMRYwFAYD VQQDEw02NzQxMzQyMi1mMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxlfyh0F81T7bBxocEoLcExUIREdXpkBSZWKejeDQNOnovZHpvUmnqq0zYf3 Vd5pnuDVq6RpSWrJVHXAU/XBJ1e/+fqWKbTdshxOniBGYs+DjZo+zu395Al/XdYD SgvPZoMRi1/TzhqdQmgY6O3sXyev/Pqi2HoLOoiyeU4/AaL/4VPI+5P2Gl5MZXoZ 6s6ikCfbA5Rw85Gozipx9DUR2ZPjR2H2KpIjE4j5/+Vv3/+id3HDiFe9uUG+XiB3 LTAbzoNLkyQSFLLmyoWM0GYl24DElIre0VW2bUbTps5VPGJ4LDqrMcj+sKCkGWGe AGwmP/h0g/W4+XB/lK445NKAyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxdGSig YAFJYqUBZosZ8a86MbeXMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCc99bPxb5QSaCdqc4lbalg00vMakwuaFGTQF6G6A1mB5rgQtl7m36 hzc0uT5h8N4wlzw/X4u0rEPUprO/P6FJDERT8vq517OlKn4wcs/V3pXo+cef0kEP nlhFTv+k8hjqd13sEVWQlTzSenZtjD7hOudllTQPqKvXpuYTfVbN7lHJNIePPJiM /B0fZbGq3U15FfQPKmBRTOuJLw1OgnMMeExVndhI82TopM+YNhS6kI61bFkIHv6L OVkPI4I3OFWmdAoUHJuP7Yo2pNlQeZUfDz8tXmK0ERHFhvitxus7/flzIchwqK8S WLCW54nxxYhRyeIWMvSPzYTdSYKeOnms -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:31 2024 by rpki-client on console-fra.rpki-client.org